Report - charleskinzel.com/

Report Overview

Submitted URL
charleskinzel.com/
IP
185.199.111.153
ASN
#54113 FASTLY
Submitted
2023-02-05 18:23:26
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
36

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	52 kB	34.120.237.76
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2.4 kB	6.2 kB	23.33.119.27
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
www.charleskinzel.com	unknown	2021-04-16T06:15:19Z	2023-01-31T20:46:43Z	15 kB	1.4 MB	185.199.108.153
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	4.1 kB	8.4 kB	142.250.74.131
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-13T08:14:31Z	1.2 kB	7.5 kB	142.250.74.106
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-13T07:36:03Z	378 B	21 kB	142.250.74.14
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
ckinzel.github.io	unknown	2021-04-16T06:15:19Z	2023-01-31T20:46:43Z	2.0 kB	3.5 kB	185.199.110.153
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-13T08:44:36Z	2.0 kB	68 kB	216.58.207.227
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-13T08:28:24Z	391 B	45 kB	142.250.74.168
maps.googleapis.com	33876	2019-10-17T17:56:16Z	2023-03-13T08:06:07Z	862 B	54 kB	142.250.74.106
charleskinzel.com	unknown	2019-08-24T20:38:16Z	2023-01-31T20:46:43Z	349 B	655 B	185.199.110.153
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	44.238.73.182

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-02-05	medium	charleskinzel.com/	Malware
2023-02-05	medium	www.charleskinzel.com/	Malware
2023-02-05	medium	www.charleskinzel.com/js/jquery.animateNumber.min.js	Malware
2023-02-05	medium	www.charleskinzel.com/js/jquery.easing.1.3.js	Malware
2023-02-05	medium	www.charleskinzel.com/js/jquery-migrate-3.0.1.min.js	Malware
2023-02-05	medium	www.charleskinzel.com/js/jquery.stellar.min.js	Malware
2023-02-05	medium	www.charleskinzel.com/js/jquery.timepicker.min.js	Malware
2023-02-05	medium	www.charleskinzel.com/js/jquery.waypoints.min.js	Malware
2023-02-05	medium	www.charleskinzel.com/js/jquery.magnific-popup.min.js	Malware
2023-02-05	medium	www.charleskinzel.com/js/aos.js	Malware
2023-02-05	medium	www.charleskinzel.com/js/owl.carousel.min.js	Malware
2023-02-05	medium	www.charleskinzel.com/js/popper.min.js	Malware
2023-02-05	medium	www.charleskinzel.com/js/main.js	Malware
2023-02-05	medium	www.charleskinzel.com/js/jquery.min.js	Malware
2023-02-05	medium	www.charleskinzel.com/js/scrollax.min.js	Malware
2023-02-05	medium	www.charleskinzel.com/js/google-map.js	Malware
2023-02-05	medium	www.charleskinzel.com/images/ICO.PNG	Malware
2023-02-05	medium	www.charleskinzel.com/js/bootstrap-datepicker.js	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (20)

	URL	Size	First Seen	Last Seen
	www.charleskinzel.com/	155 B	2023-03-13	2023-03-13
Pretty URL www.charleskinzel.com/ IP 185.199.108.153 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:50:35 Last Seen2023-03-13 17:50:35 Times Seen1 Hash 0e5745ebd23b1a9d881d7a75fd692968 3e939775202fcd7e518274d02771307a0afea45d e0fbeb9cbf77c034fd077d49c192654f55804a1cf3e8c86b282c8811b7d8cdd6 Loading...

	www.charleskinzel.com/js/jquery.easing.1.3.js	8.1 kB	2023-03-07	2024-05-10
Pretty URL www.charleskinzel.com/js/jquery.easing.1.3.js IP 185.199.108.153 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:01 Last Seen2024-05-10 05:43:17 Times Seen943 Hash 2cb90c06cfc2084e0e11ca2b8a10f6c9 45144c119832bb70b1d0e9708cba1e007ee9fbec 11c19392554c9b78c15771afa8f9fbfc78e0e46ca9527831f90ae41f95da73b8 Loading...

	www.charleskinzel.com/js/owl.carousel.min.js	43 kB	2023-03-07	2024-05-10
Pretty URL www.charleskinzel.com/js/owl.carousel.min.js IP 185.199.108.153 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:39 Last Seen2024-05-10 06:39:10 Times Seen424 Hash 7c55a054d51f046526a6c94cf915b1f5 a088565329115bea60113dd1e00b76528e545f04 7ddc424649b256e50ebbde6522b13a627359b25c299b3ffa32a2896866e277c1 Loading...

	www.charleskinzel.com/js/scrollax.min.js	7.4 kB	2023-03-07	2024-05-04
Pretty URL www.charleskinzel.com/js/scrollax.min.js IP 185.199.108.153 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:39 Last Seen2024-05-04 11:50:14 Times Seen294 Hash d21f954ca07a666641163d5c75e8c6e4 b5eb2a221c80c52ad2cfb3daaceedf71422466f7 500bfc62d016cf183c412c5936594c609064cbc5865c1065353af9ad09aa46a4 Loading...

	www.charleskinzel.com/js/google-map.js	1.9 kB	2023-03-07	2024-05-04
Pretty URL www.charleskinzel.com/js/google-map.js IP 185.199.108.153 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:39 Last Seen2024-05-04 11:50:14 Times Seen122 Hash f23d510a5fc4674254ba354895b9aecd 126578d6b5c81d6142bad964e677cfe98c81701f c5fb7f4e112926030e617a2c8a48d21e9f86a2153a38e634eb9998e36ab16cf2 Loading...

	www.charleskinzel.com/js/jquery-migrate-3.0.1.min.js	11 kB	2023-03-07	2024-05-10
Pretty URL www.charleskinzel.com/js/jquery-migrate-3.0.1.min.js IP 185.199.108.153 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:01 Last Seen2024-05-10 06:26:43 Times Seen6142 Hash 05689c22f0c872e5089f80a5745e31ce 381ef842b4e21e4783d412a90925ea11281c406d 1743b54e611ae08f0ddb89d8d1bc9ae7d78feacbd672c86a5f5bb3c1a582e05e Loading...

	maps.googleapis.com/maps/api/js?key=AIzaSyBVWaKrjvy3MaE7SQ74_uJiULgl1JY0H2s&sensor=false	163 kB	2023-03-13	2023-03-13
Pretty URL maps.googleapis.com/maps/api/js?key=AIzaSyBVWaKrjvy3MaE7SQ74_uJiULgl1JY0H2s&sensor=false IP 142.250.74.106 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:50:35 Last Seen2023-03-13 17:50:35 Times Seen1 Hash f21c6f61bff579207b8e839cd61b99e1 2e06ee3158052a9b4ca6e5ff27ef05f8f5c5c081 24ab0348d94e320dad187281e99a92b6705dc42f740a22cfca8ccb8258f96c74 Loading...

	www.charleskinzel.com/js/bootstrap-datepicker.js	47 kB	2023-03-07	2024-05-04
Pretty URL www.charleskinzel.com/js/bootstrap-datepicker.js IP 185.199.108.153 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:39 Last Seen2024-05-04 11:50:16 Times Seen188 Hash 6f2305704b66eea2b6a7c5dd0a08293b 023eb42884db66ec3ae2a872faab9e3747d0f2c3 ae69f62cf7df7c2777acf907e06e7ad0406b727ebb7544949e1ecd7b1a82f6f6 Loading...

	www.charleskinzel.com/js/aos.js	14 kB	2023-03-07	2024-05-10
Pretty URL www.charleskinzel.com/js/aos.js IP 185.199.108.153 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:42 Last Seen2024-05-10 08:09:56 Times Seen1097 Hash cfef135dd95c93ece22421733f319db3 7ca38e8b8c6febc6f6d0d80ff9cdd14d6ab4dcd6 8acb04628394993656dad11f23029fc6ad13cf90cfaa1f5df89150b2727684a9 Loading...

	www.charleskinzel.com/js/bootstrap.min.js	51 kB	2023-03-07	2024-05-10
Pretty URL www.charleskinzel.com/js/bootstrap.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-05-10 19:22:17 Times Seen6499 Hash ce6e785579ae4cb555c9de311d1b9271 5ef2c15b47d7290698c737676ba9c3056b45f2e8 0bca10549df770ab6790046799e5a9e920c286453ebbb2afb0d3055339245339 Loading...

	unknown	0 B	2023-03-07	2024-05-10
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-10 21:44:54 Times Seen37525323 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.charleskinzel.com/js/jquery.waypoints.min.js	8.8 kB	2023-03-07	2024-05-10
Pretty URL www.charleskinzel.com/js/jquery.waypoints.min.js IP 185.199.108.153 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:01 Last Seen2024-05-10 08:27:12 Times Seen776 Hash 28ef3dc306be44a30ec0d0ffe2bee109 791cc9899f0f4dc57ace616780448da4763f05bc 114484b6bcaa6c2e7ac8301929d6bcda18a7f71924a835c2e6c01fdbd6421f5b Loading...

	www.charleskinzel.com/js/jquery.magnific-popup.min.js	20 kB	2023-03-07	2024-05-10
Pretty URL www.charleskinzel.com/js/jquery.magnific-popup.min.js IP 185.199.108.153 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-05-10 21:23:03 Times Seen19999 Hash ba6cf724c8bb1cf5b084e79ff230626e f455c5f153f872e52265f87a644ff89fe14a6fb6 3fddc6d28aba3c13d64cfd4847c333ff48c71d4a5a58bd1a0494ca6ae8ac1bb4 Loading...

	www.charleskinzel.com/js/jquery.animateNumber.min.js	1.4 kB	2023-03-07	2024-05-04
Pretty URL www.charleskinzel.com/js/jquery.animateNumber.min.js IP 185.199.108.153 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:39 Last Seen2024-05-04 11:50:14 Times Seen501 Hash c46a5138afcd0ac989037e5bc908bcac 12a8dd3a49fb07fb906739626d9157e73d1789c1 18201e44a097144b4b4d9fa01b548222bb46918ab5cd98cc5e48fe5d414d26aa Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.14 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	www.charleskinzel.com/js/jquery.stellar.min.js	13 kB	2023-03-07	2024-05-10
Pretty URL www.charleskinzel.com/js/jquery.stellar.min.js IP 185.199.108.153 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:01 Last Seen2024-05-10 05:43:17 Times Seen2123 Hash 257c1e014bfdf359297cf2a80440a0ba c0655887944d3b358be98b7d6cd0dcdc975a6b3e 1dd583c8ff8eaeeb2f5622845527acbf0e4a875e335b4b706b305590d5a7b456 Loading...

	www.charleskinzel.com/js/popper.min.js	19 kB	2023-03-07	2024-05-04
Pretty URL www.charleskinzel.com/js/popper.min.js IP 185.199.108.153 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:39 Last Seen2024-05-04 11:50:16 Times Seen1497 Hash 068d64fd1715635226e7a4b91017c6cf ca344d4feda098dc568fea9591be7beefcc6b2aa 072214cac2642148ff8266b18c82fdc64428932369da84dec0562cf01ca58d32 Loading...

	www.charleskinzel.com/js/main.js	4.9 kB	2023-03-13	2023-03-13
Pretty URL www.charleskinzel.com/js/main.js IP 185.199.108.153 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:50:35 Last Seen2023-03-13 17:50:35 Times Seen1 Hash 890a74074b19c0d1bd3bfa15610c99f8 4e92e76d430da95cc68ebfdb069668b06c593d6f 4d83fa280cee5715858dc1274a9f65fc06354e9684fc78cd0e9fa8da9c68d785 Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/8/common.js	277 kB	2023-03-13	2023-03-14
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/8/common.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:22:57 Last Seen2023-03-14 13:31:01 Times Seen1 Hash 1453ba51a450fdb7acafceb66a2a99bd cd3598337b26f6f4116e6d0ebdb6ed5f0181e23e a63c8a81e2094da4cf6f608732bd29c7210be02457ff7166676a8de0813ad973 Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/8/util.js	163 kB	2023-03-13	2023-03-14
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/8/util.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:22:51 Last Seen2023-03-14 13:31:02 Times Seen1 Hash f52e72535cb9b84fbf0ec5ff9455bc03 383b25e2066d88d52e03380256ed05c225867e9d 493ab4e7ca6837030e64d507c6ab90890cd9a63fc25bb7bf3bcd441dda6881b0 Loading...

HTTP Transactions (84)

URL IP Response Size

charleskinzel.com/

185.199.110.153

301 Moved Permanently

162 B

URL HTTP/1.1
charleskinzel.com/
IP
185.199.110.153:0
ASN
#54113 FASTLY

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Connection: keep-alive
Content-Length: 162
Server: GitHub.com
Content-Type: text/html
Location: https://www.charleskinzel.com/
X-GitHub-Request-Id: AC1A:3033:18F65D:19D1AB:63DFF413
Accept-Ranges: bytes
Date: Sun, 05 Feb 2023 18:23:15 GMT
Via: 1.1 varnish
Age: 0
X-Served-By: cache-bma1672-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1675621395.383548,VS0,VE116
Vary: Accept-Encoding
X-Fastly-Request-ID: 00c15f484882f54b50b8853e1861446dc4508137

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
507011ccb9124dcd57e84a90a0965cc4
1a6575d0ac979c7184490cc9836ac4812ad2afd1
01626c18e1e68507aa33ef7448dbc3311901ab6f29adc2f51d449409b0680dce

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01626C18E1E68507AA33EF7448DBC3311901AB6F29ADC2F51D449409B0680DCE"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3731
Expires: Sun, 05 Feb 2023 19:25:26 GMT
Date: Sun, 05 Feb 2023 18:23:15 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7304
Expires: Sun, 05 Feb 2023 20:24:59 GMT
Date: Sun, 05 Feb 2023 18:23:15 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 05 Feb 2023 17:33:56 GMT
content-type: application/json
age: 2959
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14904
Expires: Sun, 05 Feb 2023 22:31:39 GMT
Date: Sun, 05 Feb 2023 18:23:15 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: M6j7E36Xc8O+pabSKZgliLD3fVqfxtbK/IT+XOI4tTWF+SZ9ws4oANStQzE67chTLUzpUv5sp2w=
x-amz-request-id: NN53YZX9WNXWW4Q6
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 05 Feb 2023 17:53:22 GMT
age: 1793
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 18:23:15 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

www.charleskinzel.com/

185.199.108.153

200 OK

2.0 kB

URL HTTP/2
www.charleskinzel.com/
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (317), with CRLF line terminators
Size
2.0 kB (2012 bytes)
Hash
1c7b368d2b80f6274b8bd71076bbf31c
93c4eeef6589be02c8661e369837d8454588e2ca
2d86510f534b699a5390f9e770bce77cd6b1ee8618913dab1d6a2510f1908225

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: GitHub.com
content-type: text/html; charset=utf-8
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-1949"
expires: Sun, 05 Feb 2023 18:33:15 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 6D82:91F4:18ACCF:1987EA:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:15 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.674276,VS0,VE113
vary: Accept-Encoding
x-fastly-request-id: f737db8aba7e4a2eb1058572eb3f0620a3187382
content-length: 2012
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
9206c3ba6d5a17d62244c438fd03496e
069e8257aebe618953434b1299d065540125a512
937d395fed398e9410f75945e80f607f3146458b48cd47ba7249536ca2195817

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 18:23:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
98be7fe21d059e46146a43d20c4eea92
1ec58129fea75085588be7b8baec05b0874b5274
7bb2eb5ffcd88a3b6ba7b210bdbcd4469134c9708f06befb6c616beebf8dae46

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 18:23:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
26a15a1b880ec1026360b696b1c27074
fd35f80a1cf599da2a8e68a44477465a580440a5
a6d5caec988319523c120bc435a4ff0200b7ead114db10db19a09caeace978f7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 18:23:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
98be7fe21d059e46146a43d20c4eea92
1ec58129fea75085588be7b8baec05b0874b5274
7bb2eb5ffcd88a3b6ba7b210bdbcd4469134c9708f06befb6c616beebf8dae46

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 18:23:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.charleskinzel.com/css/open-iconic-bootstrap.min.css

185.199.108.153

200 OK

2.1 kB

URL HTTP/2
www.charleskinzel.com/css/open-iconic-bootstrap.min.css
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (9467), with no line terminators
Size
2.1 kB (2087 bytes)
Hash
682855dd6ed7d201bc3554b640059267
aff23aa1a41473546044f5b013d403329a52bcb4
f733a6bb2e0cf2e7aaf6d34816fe7d80bec9935dcf77ad2d99ced2332da5dbc5

HTTP Headers

GET /css/open-iconic-bootstrap.min.css HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-24fb"
expires: Sun, 05 Feb 2023 18:33:15 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 85DE:C141:187F39:195AC6:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.934062,VS0,VE112
vary: Accept-Encoding
x-fastly-request-id: 1581d222a40e322b90bbda7e860f9506deb32682
content-length: 2087
X-Firefox-Spdy: h2

www.charleskinzel.com/css/animate.css

185.199.108.153

200 OK

4.7 kB

URL HTTP/2
www.charleskinzel.com/css/animate.css
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
ASCII text
Size
4.7 kB (4719 bytes)
Hash
94771e77b7a2d60f370f9de86b6d1b48
cdebe3186b534cbcabe6690ef73d87aa637773af
b9898eeb0ef68738109490acf782189e3311cced0a53f71d860c4706fb821066

HTTP Headers

GET /css/animate.css HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-11fa9"
expires: Sun, 05 Feb 2023 18:33:15 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: D6A2:3033:18F67F:19D1CC:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.934798,VS0,VE112
vary: Accept-Encoding
x-fastly-request-id: e85c52ff4381204654c93caf6f9abe0a46584030
content-length: 4719
X-Firefox-Spdy: h2

www.charleskinzel.com/css/ionicons.min.css

185.199.108.153

200 OK

8.1 kB

URL HTTP/2
www.charleskinzel.com/css/ionicons.min.css
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (46353)
Size
8.1 kB (8059 bytes)
Hash
2e5492e45fe762e29d3cd2b2b6b849df
c2190642e11ac42f728c0acc84155405d7f3ab9c
ed1025858e3070729a7ce3738672dc082216aa296320b6eb33314edc0b12087a

HTTP Headers

GET /css/ionicons.min.css HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-b6e0"
expires: Sun, 05 Feb 2023 18:33:15 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: F078:129C3:188E34:196994:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.938192,VS0,VE109
vary: Accept-Encoding
x-fastly-request-id: 28ca7080a259ddf1d32feab98a409c68cdcc3ea5
content-length: 8059
X-Firefox-Spdy: h2

www.charleskinzel.com/css/magnific-popup.css

185.199.108.153

200 OK

1.8 kB

URL HTTP/2
www.charleskinzel.com/css/magnific-popup.css
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
ASCII text
Size
1.8 kB (1834 bytes)
Hash
3eca7beda9a3326c5ebfc1a75bebdd28
83fba1064b7f6479f08f8f63e9d07cabc8da8a52
849dd371128847b0b087180df93b0b70ff136b3a1027a121231567e6dd91f9ec

HTTP Headers

GET /css/magnific-popup.css HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-1b26"
expires: Sun, 05 Feb 2023 18:33:15 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 0E90:49FA:18FCF2:19D892:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.936944,VS0,VE115
vary: Accept-Encoding
x-fastly-request-id: b9e28ab08e69112d9d4ec659687e2a826496546b
content-length: 1834
X-Firefox-Spdy: h2

www.charleskinzel.com/css/bootstrap-datepicker.css

185.199.108.153

200 OK

2.4 kB

URL HTTP/2
www.charleskinzel.com/css/bootstrap-datepicker.css
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
ASCII text
Size
2.4 kB (2380 bytes)
Hash
c4fb02ff7436b4aacccc34c9cb699b5a
329c102b9145d2624eec5007a4de8b8d9f22ee7c
7517381b50407c4f11f6bad280d62c337a0946cd0372be081c10f8d102525a81

HTTP Headers

GET /css/bootstrap-datepicker.css HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-4619"
expires: Sun, 05 Feb 2023 18:33:15 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 4D6A:FB49:1A289C:1B1580:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.943460,VS0,VE109
vary: Accept-Encoding
x-fastly-request-id: 30754c3159d3cb8d8c8bdacbd43e6475c47587ca
content-length: 2380
X-Firefox-Spdy: h2

www.charleskinzel.com/css/flaticon.css

185.199.108.153

200 OK

508 B

URL HTTP/2
www.charleskinzel.com/css/flaticon.css
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
ASCII text
Size
508 B (508 bytes)
Hash
315478f552966d49e4e4660f01bbb6e9
1f5eee6de895e88156291167a91afd5d07ac41c6
83351c848aef8af1dc48b8e138678c67fb1c37d244dd7a6b318af053b82c3d1c

HTTP Headers

GET /css/flaticon.css HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-563"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 5FC8:120D:181655:18F127:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.944004,VS0,VE110
vary: Accept-Encoding
x-fastly-request-id: c8991524cfb16b4695865fed9597bbe1ca5718e6
content-length: 508
X-Firefox-Spdy: h2

www.charleskinzel.com/css/owl.carousel.min.css

185.199.108.153

200 OK

1.0 kB

URL HTTP/2
www.charleskinzel.com/css/owl.carousel.min.css
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (3350)
Size
1.0 kB (1018 bytes)
Hash
33786d43881b52d9baaf9abad3704ff5
2d020c3ab5cf9bd2ce2de7686e9b5b8d91b72d7b
906c74f13bb952c84be26f5a330228426b21ccaf620d8aeac756719664d43865

HTTP Headers

GET /css/owl.carousel.min.css HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-d70"
expires: Sun, 05 Feb 2023 18:33:15 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 5E2C:9DFF:18101E:18EBCE:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.935342,VS0,VE120
vary: Accept-Encoding
x-fastly-request-id: fc4e92cd1af62699ead6ac73bece994adeab0f98
content-length: 1018
X-Firefox-Spdy: h2

www.charleskinzel.com/css/jquery.timepicker.css

185.199.108.153

200 OK

448 B

URL HTTP/2
www.charleskinzel.com/css/jquery.timepicker.css
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
ASCII text
Size
448 B (448 bytes)
Hash
89576ce07ee4fafdfe57a2d11353fc09
6f0f8b944bb44569766720db76b1bd63dc111137
48ef1262e0ba7d14043a25bee8305b53711efa50dfc0238833ad40407da21a7d

HTTP Headers

GET /css/jquery.timepicker.css HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-634"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 71E6:FB49:1A289C:1B157F:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.943673,VS0,VE111
vary: Accept-Encoding
x-fastly-request-id: 961c817128224cda90017ed96b17947ba77a3d1b
content-length: 448
X-Firefox-Spdy: h2

www.charleskinzel.com/css/aos.css

185.199.108.153

200 OK

2.4 kB

URL HTTP/2
www.charleskinzel.com/css/aos.css
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (25948)
Size
2.4 kB (2440 bytes)
Hash
3c67fb114ef1cb7b044a3d5cf8735d5d
d210f953d56ace509f53ff65b24f71d45d93df01
97d09e3f5418a37790a2db034b2e190306249fbb85e695b1e7318947f7c8209c

HTTP Headers

GET /css/aos.css HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-657f"
expires: Sun, 05 Feb 2023 18:33:15 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: F51C:3D82:1A1FFB:1AFC92:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.937366,VS0,VE120
vary: Accept-Encoding
x-fastly-request-id: 045d304bd64cad46d7cbb5cee45ae53de63d4d98
content-length: 2440
X-Firefox-Spdy: h2

www.charleskinzel.com/css/icomoon.css

185.199.108.153

200 OK

14 kB

URL HTTP/2
www.charleskinzel.com/css/icomoon.css
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
ASCII text
Size
14 kB (14067 bytes)
Hash
a69df27cf209d6ab9099a755068fdd2f
6442edd1de80cf7093b11fdd4c47428ff3886911
32a31122ea8fb8451da28309d2dcb0208d8badb5f7dec78629bf4926a53aa2f5

HTTP Headers

GET /css/icomoon.css HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-13803"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 62D0:059D:186CBD:1947B4:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.944254,VS0,VE118
vary: Accept-Encoding
x-fastly-request-id: 592d81b4eb8e35410344c443e7e38f185f981a8e
content-length: 14067
X-Firefox-Spdy: h2

www.charleskinzel.com/css/owl.theme.default.min.css

185.199.108.153

200 OK

446 B

URL HTTP/2
www.charleskinzel.com/css/owl.theme.default.min.css
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
ASCII text
Size
446 B (446 bytes)
Hash
829abaf1a058dee8d1c923200a574f17
8acb6c114c4650ffa90f120d35061545c09b64e0
380a836084c2489b0ba6266d630d9cd26b12a2f3151ce0d7ce11f7de5377d0f3

HTTP Headers

GET /css/owl.theme.default.min.css HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-3c5"
expires: Sun, 05 Feb 2023 18:33:15 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 9E82:120D:181654:18F125:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.936170,VS0,VE128
vary: Accept-Encoding
x-fastly-request-id: a8571087159794d2d35c7c7bc4c4572a83ebcf8c
content-length: 446
X-Firefox-Spdy: h2

www.charleskinzel.com/js/jquery.animateNumber.min.js

185.199.108.153

200 OK

738 B

URL HTTP/2
www.charleskinzel.com/js/jquery.animateNumber.min.js
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (527)
Size
738 B (738 bytes)
Hash
1b5dbfd86c5fcd7e4a6aa0f3fdb52da4
85ad40c39eaab8d8a30c95b617bd7530103567e9
632ec174cdd0aeb5f0c2f40c38435f2c8ffca35961b169561791bef58019d05c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /js/jquery.animateNumber.min.js HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-56f"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: E336:B1F6:12B1F9:135AB6:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.958817,VS0,VE106
vary: Accept-Encoding
x-fastly-request-id: d731d3c4768d01e06a14b7fd7fd08fa3579aa187
content-length: 738
X-Firefox-Spdy: h2

www.charleskinzel.com/js/jquery.easing.1.3.js

185.199.108.153

200 OK

2.0 kB

URL HTTP/2
www.charleskinzel.com/js/jquery.easing.1.3.js
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text
Size
2.0 kB (2016 bytes)
Hash
60089f17bdbbedbb501e23abe760596e
1a91284b8b679490fce2ba18b27cdf3f51824d06
4846b9f46afd3c8f60ba8ba44f27f04e893050152d7dc2bce82b842831b1983a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /js/jquery.easing.1.3.js HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-1faf"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 5F42:91F4:18ACDE:1987FE:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.955255,VS0,VE111
vary: Accept-Encoding
x-fastly-request-id: 6ff4c503496521d39f77f101e24d9927810d2b31
content-length: 2016
X-Firefox-Spdy: h2

www.charleskinzel.com/js/jquery-migrate-3.0.1.min.js

185.199.108.153

200 OK

3.5 kB

URL HTTP/2
www.charleskinzel.com/js/jquery-migrate-3.0.1.min.js
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
ASCII text
Size
3.5 kB (3502 bytes)
Hash
91264bcc1925ee0d6b74406786e36616
2d3789ba2decfbc4e9cf9ab19f815f7f07db2558
5ded0f818df17d84f3ff56acfe886a1b02338a4e6ec30511a246c2a32a355a0b

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /js/jquery-migrate-3.0.1.min.js HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-2c9d"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: BDB8:E0E7:18AC55:1987B8:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.955333,VS0,VE112
vary: Accept-Encoding
x-fastly-request-id: 7f4ab8743d05a62abae9c32dd2c44abc7938e553
content-length: 3502
X-Firefox-Spdy: h2

www.charleskinzel.com/js/jquery.stellar.min.js

185.199.108.153

200 OK

3.4 kB

URL HTTP/2
www.charleskinzel.com/js/jquery.stellar.min.js
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (12453)
Size
3.4 kB (3423 bytes)
Hash
a7eb4037cce8a4b79daab4de4bd383d7
b946f08d9b1275d0642d8c3e2f3a42ba4bbd4162
4201aab08d4c9665fafb14b101aa5f907a83e7f35feee481d54e0d3b61585c1f

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /js/jquery.stellar.min.js HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-3135"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: AF5A:059D:186CBD:1947B5:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.955965,VS0,VE112
vary: Accept-Encoding
x-fastly-request-id: d5ff2117f80415bbb56c8f4c8a6b9fb1a221532f
content-length: 3423
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-176091397-1

142.250.74.168

200 OK

44 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-176091397-1
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1759)
Size
44 kB (43914 bytes)
Hash
0f18dd8e9ef7f634f59551d54b9a4bb9
637b7ee799fadd00ef7d9b2e439e27c301a5f730
6391cc8b2ea604eed30812b2aabc3f9e02fa2ec704d4b5fd75ee292f531885e7

HTTP Headers

GET /gtag/js?id=UA-176091397-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 05 Feb 2023 18:23:16 GMT
expires: Sun, 05 Feb 2023 18:23:16 GMT
cache-control: private, max-age=900
last-modified: Sun, 05 Feb 2023 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43914
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

maps.googleapis.com/maps/api/js?key=AIzaSyBVWaKrjvy3MaE7SQ74_uJiULgl1JY0H2s&sensor=false

142.250.74.106

200 OK

53 kB

URL HTTP/2
maps.googleapis.com/maps/api/js?key=AIzaSyBVWaKrjvy3MaE7SQ74_uJiULgl1JY0H2s&sensor=false
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2452)
Size
53 kB (53194 bytes)
Hash
9aee3d5b4fb7f163f30161ce5689834a
092c16848881bb8a5711f6b83a75cd9f2e1d58f9
fdcf8750bb6c97f96465a793e945acff2c2e2a9b2c86311d4b5d5a204342fd2b

HTTP Headers

GET /maps/api/js?key=AIzaSyBVWaKrjvy3MaE7SQ74_uJiULgl1JY0H2s&sensor=false HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Sun, 05 Feb 2023 18:23:16 GMT
expires: Sun, 05 Feb 2023 18:53:16 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 53194
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=22
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ckinzel.github.io/images/maw869.png

185.199.110.153

301 Moved Permanently

162 B

URL HTTP/2
ckinzel.github.io/images/maw869.png
IP
185.199.110.153:0
ASN
#54113 FASTLY

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /images/maw869.png HTTP/1.1
Host: ckinzel.github.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 301 Moved Permanently
server: GitHub.com
content-type: text/html
permissions-policy: interest-cohort=()
location: https://www.charleskinzel.com/images/maw869.png
x-github-request-id: B2F0:B1F6:12B1FD:135ABF:63DFF414
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1683-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.007243,VS0,VE115
vary: Accept-Encoding
x-fastly-request-id: 72b6e1cb19be248dd3168130854968797a1fb474
content-length: 162
X-Firefox-Spdy: h2

ckinzel.github.io/images/fb.png

185.199.110.153

301 Moved Permanently

162 B

URL HTTP/2
ckinzel.github.io/images/fb.png
IP
185.199.110.153:0
ASN
#54113 FASTLY

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /images/fb.png HTTP/1.1
Host: ckinzel.github.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 301 Moved Permanently
server: GitHub.com
content-type: text/html
permissions-policy: interest-cohort=()
location: https://www.charleskinzel.com/images/fb.png
x-github-request-id: D64E:3D41:188D86:1968E6:63DFF414
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1683-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.007514,VS0,VE111
vary: Accept-Encoding
x-fastly-request-id: f11c6e7841351cd0710731e1c24b3322add84062
content-length: 162
X-Firefox-Spdy: h2

ckinzel.github.io/images/images.jpg

185.199.110.153

301 Moved Permanently

162 B

URL HTTP/2
ckinzel.github.io/images/images.jpg
IP
185.199.110.153:0
ASN
#54113 FASTLY

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /images/images.jpg HTTP/1.1
Host: ckinzel.github.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 301 Moved Permanently
server: GitHub.com
content-type: text/html
permissions-policy: interest-cohort=()
location: https://www.charleskinzel.com/images/images.jpg
x-github-request-id: 72EC:3D41:188D86:1968E5:63DFF414
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1683-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.006782,VS0,VE112
vary: Accept-Encoding
x-fastly-request-id: 2796262e142fb2a9921e587e8b72dde39723ba2a
content-length: 162
X-Firefox-Spdy: h2

www.charleskinzel.com/js/jquery.timepicker.min.js

185.199.108.153

404 Not Found

5.2 kB

URL HTTP/2
www.charleskinzel.com/js/jquery.timepicker.min.js
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3909)
Size
5.2 kB (5232 bytes)
Hash
9e153320896acc099d55d0063a13c3f1
450359be030d156afed3730836fa8bcdba0303f0
7c7764e1634baa3482e3c38f79d66e64987b5b061e1fa0dfe4cd495e5ac73828

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /js/jquery.timepicker.min.js HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: GitHub.com
content-type: text/html; charset=utf-8
x-origin-cache: HIT
access-control-allow-origin: *
etag: W/"63cf03be-247b"
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; img-src data:; connect-src 'self'
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: E030:C141:187F3A:195AC9:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.958977,VS0,VE111
vary: Accept-Encoding
x-fastly-request-id: d5b5f332de5c1a20fd12272a1d05baf5a6812676
content-length: 5232
X-Firefox-Spdy: h2

ckinzel.github.io/images/mail.png

185.199.110.153

301 Moved Permanently

162 B

URL HTTP/2
ckinzel.github.io/images/mail.png
IP
185.199.110.153:0
ASN
#54113 FASTLY

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /images/mail.png HTTP/1.1
Host: ckinzel.github.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 301 Moved Permanently
server: GitHub.com
content-type: text/html
permissions-policy: interest-cohort=()
location: https://www.charleskinzel.com/images/mail.png
x-github-request-id: A566:E0E7:18AC5D:1987C1:63DFF414
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1683-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.013961,VS0,VE113
vary: Accept-Encoding
x-fastly-request-id: 796d8405593dd6026901281f62e563f290882d28
content-length: 162
X-Firefox-Spdy: h2

www.charleskinzel.com/js/jquery.waypoints.min.js

185.199.108.153

200 OK

2.7 kB

URL HTTP/2
www.charleskinzel.com/js/jquery.waypoints.min.js
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (8668)
Size
2.7 kB (2701 bytes)
Hash
65c4f282bad6aba770d222d816b7c2cf
729d3663d391de902dac4f3843f312f3c56651b5
bdcc231e45ec565bbc57988f744ac13bc58b0878bbac02df6285cd47eeaf39d6

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /js/jquery.waypoints.min.js HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-2283"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 5F32:81B9:17D370:18AE27:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.955979,VS0,VE114
vary: Accept-Encoding
x-fastly-request-id: dc6a8e2a1005a29211b4c0c0c135d750489eee36
content-length: 2701
X-Firefox-Spdy: h2

www.charleskinzel.com/js/jquery.magnific-popup.min.js

185.199.108.153

200 OK

7.4 kB

URL HTTP/2
www.charleskinzel.com/js/jquery.magnific-popup.min.js
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (20087)
Size
7.4 kB (7363 bytes)
Hash
5511847cd9a357ddee504844e0d23c73
b7fd3dbb0677b17d92e68a4c640717145187d633
a9873d6b14f85515078c9990f24476dacbc693771330bceb710fee1d2087a362

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /js/jquery.magnific-popup.min.js HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-4ef8"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: FEB6:9DFF:181023:18EBD0:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.958022,VS0,VE112
vary: Accept-Encoding
x-fastly-request-id: 062a11d950f0f5633181321daf22f90ec37b7261
content-length: 7363
X-Firefox-Spdy: h2

www.charleskinzel.com/js/aos.js

185.199.108.153

200 OK

4.6 kB

URL HTTP/2
www.charleskinzel.com/js/aos.js
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (14212)
Size
4.6 kB (4593 bytes)
Hash
372fc4bd9fb82f68a665c03d9967188d
ef193fd622942d178e5379b6b7bb019df0d650d1
c7daf2d02137c3cf05530eb64729a832b790b46d88aefa2ba4029873caec8dee

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /js/aos.js HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-37a4"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 55E4:3D41:188D7E:1968E1:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.958400,VS0,VE113
vary: Accept-Encoding
x-fastly-request-id: 1c0fca8ce34790990ef54edb7854abd1d0c73a56
content-length: 4593
X-Firefox-Spdy: h2

www.charleskinzel.com/js/owl.carousel.min.js

185.199.108.153

200 OK

11 kB

URL HTTP/2
www.charleskinzel.com/js/owl.carousel.min.js
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (32035)
Size
11 kB (11258 bytes)
Hash
b9bad97c30b1bde0b76e109cd87c3c1d
b181448c65c91651da5844ac82d225764bf6d4f4
cac4049624005e98251f04b705220fe6ddfe7c716479cbf3328e6efa08fd45c1

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /js/owl.carousel.min.js HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-a8e5"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: A0F6:059D:186CBD:1947B6:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.955921,VS0,VE118
vary: Accept-Encoding
x-fastly-request-id: ccfc397f8628a507986474fb028e98c756d95ede
content-length: 11258
X-Firefox-Spdy: h2

www.charleskinzel.com/js/popper.min.js

185.199.108.153

200 OK

6.9 kB

URL HTTP/2
www.charleskinzel.com/js/popper.min.js
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (18860)
Size
6.9 kB (6861 bytes)
Hash
797fcc4015caac53d4fbcab1fe74f026
d53f94df2a6766e133d64784443b344c3a6ffb84
606d5f65335a2b5e6114d6b470c2b0d9af839adf3de67e38e6d6954231336cb1

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /js/popper.min.js HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-4a58"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 5610:E0E7:18AC55:1987B9:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.955317,VS0,VE119
vary: Accept-Encoding
x-fastly-request-id: ae2efa2cd0f983066510e005a1d31dc8abfc0fae
content-length: 6861
X-Firefox-Spdy: h2

www.charleskinzel.com/css/style.css

185.199.108.153

200 OK

32 kB

URL HTTP/2
www.charleskinzel.com/css/style.css
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
ASCII text
Size
32 kB (32066 bytes)
Hash
974e658c8f78292ea4291fc607f4c4d3
bafc95c9b4b3b9dbb0b476fdb7d1f71ef021423d
ed6da347ebc8cf7382e66a230cd98e9381faf173997082a7b115d5a771632fbf

HTTP Headers

GET /css/style.css HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-39961"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: D2BC:120D:181654:18F126:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.944476,VS0,VE132
vary: Accept-Encoding
x-fastly-request-id: b9bfaa20aee83f5d890feb21af045879d32ab90e
content-length: 32066
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2866
Expires: Sun, 05 Feb 2023 19:11:02 GMT
Date: Sun, 05 Feb 2023 18:23:16 GMT
Connection: keep-alive

www.charleskinzel.com/js/main.js

185.199.108.153

200 OK

1.7 kB

URL HTTP/2
www.charleskinzel.com/js/main.js
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
ASCII text
Size
1.7 kB (1733 bytes)
Hash
a24edac86e4457f196dceb42419b0b85
6f2158495e5467f54c735d58389ef74f6597a9c0
15ceafca1122709a615fa6465cf631182938d9ce80af9c07491d4b0b5d37a1a2

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /js/main.js HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-1349"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: D536:B1F6:12B1FB:135ABA:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.970769,VS0,VE106
vary: Accept-Encoding
x-fastly-request-id: dcfdc896b6cfeb8c8d52de23f01f09d7194a768e
content-length: 1733
X-Firefox-Spdy: h2

www.charleskinzel.com/js/jquery.min.js

185.199.108.153

200 OK

81 kB

URL HTTP/2
www.charleskinzel.com/js/jquery.min.js
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
ASCII text
Size
81 kB (80847 bytes)
Hash
fcbba9123d91d1bdf6c232e606f7839a
f28c543867b356a897cb163a74b71e4619acd76b
7385dca2f9aa4df574472f476768c4f7b4a954635f9e9fb5a21b724b2df4cc4d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /js/jquery.min.js HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-41706"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 31CE:059D:186CBD:1947B8:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.955363,VS0,VE122
vary: Accept-Encoding
x-fastly-request-id: 26f1e6bd972306bcae5d77080abe9f2b1f04b840
content-length: 80847
X-Firefox-Spdy: h2

www.charleskinzel.com/js/scrollax.min.js

185.199.108.153

200 OK

3.2 kB

URL HTTP/2
www.charleskinzel.com/js/scrollax.min.js
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (567)
Size
3.2 kB (3221 bytes)
Hash
2984fa943a562ae5b978b15fc09c0c75
aae6d1c3ed919b54e370b806904001c440c3f1b1
11a820021779af225eb077c2ec05df2fb8e75b71e10375d6117d6b6d03e080f0

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /js/scrollax.min.js HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-1d17"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 4006:F3EF:18BDCA:199A14:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.963823,VS0,VE120
vary: Accept-Encoding
x-fastly-request-id: 7f363f04102ac6602a0e23bfdb4cd7f27871c9a3
content-length: 3221
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
98be7fe21d059e46146a43d20c4eea92
1ec58129fea75085588be7b8baec05b0874b5274
7bb2eb5ffcd88a3b6ba7b210bdbcd4469134c9708f06befb6c616beebf8dae46

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 18:23:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.charleskinzel.com/js/google-map.js

185.199.108.153

200 OK

893 B

URL HTTP/2
www.charleskinzel.com/js/google-map.js
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
ASCII text
Size
893 B (893 bytes)
Hash
3f738ad2bcacd888e6730306ca1a3461
c7eaf38ffaa31394560cb6bd9511cf2fbcc85571
c111a011e351d3c6431f6a299af4e610eb68f4f0d3e7209e060350ed47c291e2

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /js/google-map.js HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-79a"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: BDC6:FB49:1A28A4:1B1588:63DFF414
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.968140,VS0,VE175
vary: Accept-Encoding
x-fastly-request-id: 934e8bc2d27dd98c4f2446cfb683af3e55a5f16f
content-length: 893
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
153d0de36959c722c00df71ba86daca2
305f56a3134879ebf0828e169e903e560540c070
0cf533a798d42d1e97fb6619a411afadf9a68c92302ba852869b0c0555a47987

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 18:23:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 05 Feb 2023 17:49:07 GMT
age: 2049
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

www.charleskinzel.com/images/maw869.png

185.199.108.153

200 OK

26 kB

URL HTTP/2
www.charleskinzel.com/images/maw869.png
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
PNG image data, 225 x 225, 8-bit/color RGBA, non-interlaced\012- data
Size
26 kB (25601 bytes)
Hash
dacdc172632f4ea797ec7c208261ac75
a4ca57ae4970d434557a89afe3a3086ad111677b
62986b6633978cbc33808a516435dc2e2cd4e6b04349615b08fcb393d743ed3d

HTTP Headers

GET /images/maw869.png HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.charleskinzel.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: "61e43a42-6401"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 7FB4:3D41:188DA9:196905:63DFF414
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.321052,VS0,VE114
vary: Accept-Encoding
x-fastly-request-id: 985078b7d86c8b363d6478d6ccf31d4f4e8fdec7
content-length: 25601
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Herr+Von+Muellerhoff

142.250.74.106

200 OK

5.6 kB

URL HTTP/2
fonts.googleapis.com/css?family=Herr+Von+Muellerhoff
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3909)
Size
5.6 kB (5601 bytes)
Hash
7c11b256d3511bb5927d93b181f943db
9586c625d2a3c1b420fb7f181345755a4aa2ec7d
a428d99cf25a158ac450cbc22c221842192d89b5a29e80b84e3d00a5373c1986

HTTP Headers

GET /css?family=Herr+Von+Muellerhoff HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 05 Feb 2023 18:23:16 GMT
date: Sun, 05 Feb 2023 18:23:16 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 18:23:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 18:23:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 18:23:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 18:23:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 18:23:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

216.58.207.227

200 OK

31 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size
31 kB (30928 bytes)
Hash
ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780

HTTP Headers

GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.charleskinzel.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Feb 2023 07:08:09 GMT
expires: Sat, 03 Feb 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 213307
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.charleskinzel.com/images/images.jpg

185.199.108.153

200 OK

5.6 kB

URL HTTP/2
www.charleskinzel.com/images/images.jpg
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 238x212, components 3\012- data
Size
5.6 kB (5554 bytes)
Hash
8157b5f849ca23a4545bf2170f867f25
0e99dd5667da4ce4a7e1ba77af1c651527f9c815
aa442f5b42ec1abc9ff314112c9c4f64b8aeca337ce29ad4632de23aafa36662

HTTP Headers

GET /images/images.jpg HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.charleskinzel.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/jpeg
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: "61e43a42-15b2"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 46E4:E018:17E823:18C2FA:63DFF414
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.371966,VS0,VE107
vary: Accept-Encoding
x-fastly-request-id: f9bc8659fd7e4bcbfe0bf7b0f5b65fb4a70fd73a
content-length: 5554
X-Firefox-Spdy: h2

fonts.gstatic.com/s/herrvonmuellerhoff/v15/WBL6rFjRZkREW8WqmCWYLgCkQKXb4CAft0c99KM.woff2

216.58.207.227

200 OK

18 kB

URL HTTP/2
fonts.gstatic.com/s/herrvonmuellerhoff/v15/WBL6rFjRZkREW8WqmCWYLgCkQKXb4CAft0c99KM.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 17844, version 1.0\012- data
Size
18 kB (17844 bytes)
Hash
a511acd421af6bc6cb7565dd1612defd
967d9d3ae9bd58456eed98357a55c54b69f604bc
27a73fa3d5275281b31cf1baec97ba9761ced8eb00080c6ec895d6b51b417196

HTTP Headers

GET /s/herrvonmuellerhoff/v15/WBL6rFjRZkREW8WqmCWYLgCkQKXb4CAft0c99KM.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.charleskinzel.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17844
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 19:45:45 GMT
expires: Thu, 01 Feb 2024 19:45:45 GMT
cache-control: public, max-age=31536000
age: 340651
last-modified: Tue, 26 Apr 2022 15:42:43 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2

216.58.207.227

200 OK

7.8 kB

URL HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Size
7.8 kB (7816 bytes)
Hash
25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526

HTTP Headers

GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.charleskinzel.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 02:42:35 GMT
expires: Wed, 31 Jan 2024 02:42:35 GMT
cache-control: public, max-age=31536000
age: 488441
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2

216.58.207.227

200 OK

7.9 kB

URL HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.charleskinzel.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 04:05:29 GMT
expires: Tue, 30 Jan 2024 04:05:29 GMT
cache-control: public, max-age=31536000
age: 569867
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.charleskinzel.com/images/fb.png

185.199.108.153

200 OK

21 kB

URL HTTP/2
www.charleskinzel.com/images/fb.png
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size
21 kB (20771 bytes)
Hash
25189b8b46b5cb20ad0b1136a6dbe993
66658c123234f727027ec3cef3b58dfdd0071ccb
b9efd5ae3a6f4712fc6b4ba227c5e2fa9c8525a905a278bc1c15b674efc36465

HTTP Headers

GET /images/fb.png HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.charleskinzel.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: "61e43a42-5123"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 46CE:E0E7:18AC88:1987EA:63DFF414
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.371983,VS0,VE135
vary: Accept-Encoding
x-fastly-request-id: 4456d887be0c00839cc1309c6e06aa9881b2044e
content-length: 20771
X-Firefox-Spdy: h2

www.charleskinzel.com/images/mail.png

185.199.108.153

200 OK

79 kB

URL HTTP/2
www.charleskinzel.com/images/mail.png
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
PNG image data, 1600 x 1600, 8-bit/color RGBA, non-interlaced\012- data
Size
79 kB (79045 bytes)
Hash
db6182c99f524cd450e2af90df7d2f93
270547e9ca0057e0787ea07110fd2834bca6489f
6efe4684fd925843a5c1870c270927949636f563866294c4125a262883b52138

HTTP Headers

GET /images/mail.png HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.charleskinzel.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: "61e43a42-134c5"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 1532:9DFF:181040:18EBF0:63DFF414
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.371932,VS0,VE137
vary: Accept-Encoding
x-fastly-request-id: 0ef0dcdd6f8277a5533202c33d376c169d9904ee
content-length: 79045
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
836bc62dbb011b6180fc7209d0061736
74e6f18561a7006a3afb6ab03559eec239ce4b36
90b197384670fdb210d364f91b423fd383d25838e38a494158a8185bef0061f0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 18:23:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.charleskinzel.com/images/author.jpg

185.199.108.153

200 OK

70 kB

URL HTTP/2
www.charleskinzel.com/images/author.jpg
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=6], baseline, precision 8, 380x395, components 3\012- data
Size
70 kB (69929 bytes)
Hash
3c406c40f0eef8e76b961e7b3cc61fd3
64b86cf842f437907727963f6b3934c28ad13833
f78887558c15c6e5c7b13560f6572e5f0d653fa1e31a200d4e1052428da43d14

HTTP Headers

GET /images/author.jpg HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/jpeg
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: "61e43a42-11129"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: D6A2:3033:18F6A1:19D1EF:63DFF414
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.418045,VS0,VE112
vary: Accept-Encoding
x-fastly-request-id: 35f81cfa83fd6cd34fd2d1f8d4cf3b8d92bfc4e0
content-length: 69929
X-Firefox-Spdy: h2

push.services.mozilla.com/

44.238.73.182

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
44.238.73.182:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Sywf4Z0j0oRnqwETetpHEg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: uAd+y7lz4PkoBUQsdo4C/L8Zrr4=

www.charleskinzel.com/images/enst.jpg

185.199.108.153

200 OK

65 kB

URL HTTP/2
www.charleskinzel.com/images/enst.jpg
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x640, components 3\012- data
Size
65 kB (65397 bytes)
Hash
9e2e1cbd28792a8871eb0112e064da5a
ae08d0f07f94d5b2ff66d2e39ee33bf4f6d2fa12
3a29f2fe5fd59d3c88b7963720ee84f828d4675d757fd12ddf954a208860eb7f

HTTP Headers

GET /images/enst.jpg HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/jpeg
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: "61e43a42-ff75"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 2512:EFBF:1954F5:1A30DC:63DFF414
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.493914,VS0,VE119
vary: Accept-Encoding
x-fastly-request-id: 4b95b7e1bd9b870efdfa4701acc9e9b1e25bdcea
content-length: 65397
X-Firefox-Spdy: h2

www.charleskinzel.com/images/books.png

185.199.108.153

200 OK

803 kB

URL HTTP/2
www.charleskinzel.com/images/books.png
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
PNG image data, 673 x 736, 8-bit/color RGB, non-interlaced\012- data
Size
803 kB (802668 bytes)
Hash
623e26814f8857a58793570089a7a4f1
90dca70eb966c5cec3f24a2ff75acf7fedd88bac
f8c94d3114f0ab6d6554e7966b33c261e388cb5acafbc73aede25c1b4937c945

HTTP Headers

GET /images/books.png HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: "61e43a42-c3f6c"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: D536:B1F6:12B231:135AF1:63DFF414
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.495745,VS0,VE117
vary: Accept-Encoding
x-fastly-request-id: 614068323fbc6d400e9cbd8fdb190bfb838bb2d8
content-length: 802668
X-Firefox-Spdy: h2

www.charleskinzel.com/images/cops.jpg

185.199.108.153

200 OK

94 kB

URL HTTP/2
www.charleskinzel.com/images/cops.jpg
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 826x960, components 3\012- data
Size
94 kB (94491 bytes)
Hash
746ab0b366e033ac4f535d7fc40cd993
af58141260906cb58a3dfa20e38339c98323d187
7b5f0ff6126e5ce650dfe21e2dd45217b9f48884d9abb696c8dec365b32e9aa2

HTTP Headers

GET /images/cops.jpg HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/jpeg
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: "61e43a42-1711b"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: F218:81B9:17D396:18AE4D:63DFF414
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.495917,VS0,VE153
vary: Accept-Encoding
x-fastly-request-id: a9fc4289d7416fa8ce9bb46718fc98025182a956
content-length: 94491
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

142.250.74.14

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.14:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1490)
Size
20 kB (20085 bytes)
Hash
ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sun, 05 Feb 2023 17:45:20 GMT
expires: Sun, 05 Feb 2023 19:45:20 GMT
cache-control: public, max-age=7200
age: 2276
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true

142.250.74.170

200 OK

23 B

URL HTTP/2
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP
142.250.74.170:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text
Size
23 B (23 bytes)
Hash
e3981ca10169a319d5aa062bf43a5fa1
2c6ed584767b65688ce99b1ebe1a3b7448a67421
8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9

HTTP Headers

GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.charleskinzel.com
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 05 Feb 2023 18:23:16 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.charleskinzel.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ckinzel.github.io/images/ICO.PNG

185.199.110.153

301 Moved Permanently

162 B

URL HTTP/2
ckinzel.github.io/images/ICO.PNG
IP
185.199.110.153:0
ASN
#54113 FASTLY

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /images/ICO.PNG HTTP/1.1
Host: ckinzel.github.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 301 Moved Permanently
server: GitHub.com
content-type: text/html
permissions-policy: interest-cohort=()
x-origin-cache: HIT
location: https://www.charleskinzel.com/images/ICO.PNG
x-github-request-id: F51C:3D82:1A2042:1AFCE3:63DFF414
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1683-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621397.694313,VS0,VE105
vary: Accept-Encoding
x-fastly-request-id: 9c587c36859d7c1487f99e9f5a97c040826d7347
content-length: 162
X-Firefox-Spdy: h2

www.charleskinzel.com/images/ICO.PNG

185.199.108.153

404 Not Found

5.2 kB

URL HTTP/2
www.charleskinzel.com/images/ICO.PNG
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3909)
Size
5.2 kB (5232 bytes)
Hash
9e153320896acc099d55d0063a13c3f1
450359be030d156afed3730836fa8bcdba0303f0
7c7764e1634baa3482e3c38f79d66e64987b5b061e1fa0dfe4cd495e5ac73828

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /images/ICO.PNG HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.charleskinzel.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 404 Not Found
server: GitHub.com
content-type: text/html; charset=utf-8
x-origin-cache: HIT
access-control-allow-origin: *
etag: W/"63cf03be-247b"
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; img-src data:; connect-src 'self'
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 72EC:3D41:188DDF:196945:63DFF414
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621397.812113,VS0,VE107
vary: Accept-Encoding
x-fastly-request-id: 87e926bab9a4d1872c69289a0185e97600af1335
content-length: 5232
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9384
Expires: Sun, 05 Feb 2023 20:59:41 GMT
Date: Sun, 05 Feb 2023 18:23:17 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9384
Expires: Sun, 05 Feb 2023 20:59:41 GMT
Date: Sun, 05 Feb 2023 18:23:17 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9384
Expires: Sun, 05 Feb 2023 20:59:41 GMT
Date: Sun, 05 Feb 2023 18:23:17 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (12967 bytes)
Hash
8e0be7db14d930d6227443314bcd1747
4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d
baedfbdb08a67f9ff4c698f7e65b08d7e4c5078d0a4233e6bff529b44812735a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12967
x-amzn-requestid: 013fa296-a431-410b-b3fb-7417b3e877eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpIQAFCMIAMF0Sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9ed99-2e1daa8b75977de07c48b8fc;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 04:42:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UzQGDCYe_8AuYYLaLSAWzHQhwJMpzpXWbjE5AwukevW6G6SLDxDjmA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 03:42:59 GMT
age: 52818
etag: "4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8527 bytes)
Hash
6661b7263315f5eb3cd2465f671e1fcd
b7b5831c6b3ccc41d7a980b6088adc10ff8785f1
eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: 6a8c6487-6069-47d1-afa1-648626f85439
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyDqqGg5oAMFV-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd7fdd-0a772cde1e6fba6d7da97435;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:42:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: CHWhIpyzhoPtMUplzh1430Q9FfCM1wkTc_hQsgQk6InM9tYBPGYnNg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:05:45 GMT
age: 73052
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.2 kB (6202 bytes)
Hash
251f1a5d671fb797fb98e9a71754c341
335425603d9eec146a3c03422dbca91134272e53
74932f07561287e33302aabcf9c639e9df7ae0fbc4bf71f5467310aabafea208

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6202
x-amzn-requestid: 01b85fcd-69a0-49da-8640-32a3ef19378a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bUFEJoAMFapg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c48-14817e717361e09170714e9d;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 1_1mEN4j5cciWEiimz4PRjx3PNGnrSRib9oEJAdYLrrtyjqnz_zvcQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 11:30:31 GMT
age: 24766
etag: "335425603d9eec146a3c03422dbca91134272e53"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.0 kB (5014 bytes)
Hash
5b6c30ad03669b66bf2f63b3edd69882
e630bd132b52b965a5ade646ea8a165d1abf6d7b
f8233d879ec17fd91909655ff8881f2ebfad84272fde3ed5e5be37580378a989

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5014
x-amzn-requestid: a434aae4-fe4b-4fc7-9b7e-eeb552484e8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bIE0aoAMF6YQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c47-5556d14757190c842bbc6b06;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: k6YqagXr3Wr-u1uDKojEnIGW0CxU5yvWPtlzNpzoIvmg9F-rJb9uFQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 11:24:01 GMT
age: 25156
etag: "e630bd132b52b965a5ade646ea8a165d1abf6d7b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.5 kB (3474 bytes)
Hash
d7a466d89c75ff3459b7328591db52cf
c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb
e73243be3d01d12a224c4e9826c4f52610cf7722eee69f62755278d7550705f1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3474
x-amzn-requestid: 5846c080-9f25-4590-863c-8af2126cdbe1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f1WXEEbnoAMFRdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ded0f9-1bd490125feadc14366e7ca0;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 21:41:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: d8aQmkW-aqLFpb79RynlJG2vY1GTDbjLNY0Qukgg_WIjdI6cmbVKFw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 21:51:26 GMT
age: 73911
etag: "c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98423c35-aa11-41c0-8f4f-52bec4c9eaa8.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.6 kB (9579 bytes)
Hash
b3e7140400336984afc6093c1246f863
59e0b21cdf4cfdac3f1ea05badd007727939ac42
4d927e74922159db5d07b9947fa1021cff74bb7b55759960cb3941d05c1e8f11

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98423c35-aa11-41c0-8f4f-52bec4c9eaa8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9579
x-amzn-requestid: c474008d-a6a9-409b-88e2-c55062044575
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzQtnFGhoAMF5Zw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ddfb23-54dd67257ba25ad24e977a9c;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 06:28:51 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 0Of3BK3VqVMGQGDIODQthVmi7BC8Ney4zgGCpVuzYc1j6D8RRP-AxA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 14:15:34 GMT
age: 14863
etag: "59e0b21cdf4cfdac3f1ea05badd007727939ac42"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.charleskinzel.com/js/bootstrap-datepicker.js

185.199.108.153

200 OK

0 B

URL HTTP/2
www.charleskinzel.com/js/bootstrap-datepicker.js
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /js/bootstrap-datepicker.js HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-b6e4"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 9224:C141:187F3A:195ACA:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.958812,VS0,VE111
vary: Accept-Encoding
x-fastly-request-id: b3e9a57140e6e16cd22f4dcaa9f760981554f298
content-length: 12226
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Poppins:300,400,500,600,700

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Poppins:300,400,500,600,700
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Poppins:300,400,500,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 05 Feb 2023 18:23:16 GMT
date: Sun, 05 Feb 2023 18:23:16 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Montserrat:300,400,500,700

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Montserrat:300,400,500,700
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Montserrat:300,400,500,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 05 Feb 2023 18:23:16 GMT
date: Sun, 05 Feb 2023 18:23:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (20)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML