charleskinzel.com/
185.199.110.153301 Moved Permanently 162 B IP 185.199.110.153:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: keep-alive
Content-Length: 162
Server: GitHub.com
Content-Type: text/html
Location: https://www.charleskinzel.com/
X-GitHub-Request-Id: AC1A:3033:18F65D:19D1AB:63DFF413
Accept-Ranges: bytes
Date: Sun, 05 Feb 2023 18:23:15 GMT
Via: 1.1 varnish
Age: 0
X-Served-By: cache-bma1672-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1675621395.383548,VS0,VE116
Vary: Accept-Encoding
X-Fastly-Request-ID: 00c15f484882f54b50b8853e1861446dc4508137
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 507011ccb9124dcd57e84a90a0965cc4
1a6575d0ac979c7184490cc9836ac4812ad2afd1
01626c18e1e68507aa33ef7448dbc3311901ab6f29adc2f51d449409b0680dce
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01626C18E1E68507AA33EF7448DBC3311901AB6F29ADC2F51D449409B0680DCE"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3731
Expires: Sun, 05 Feb 2023 19:25:26 GMT
Date: Sun, 05 Feb 2023 18:23:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7304
Expires: Sun, 05 Feb 2023 20:24:59 GMT
Date: Sun, 05 Feb 2023 18:23:15 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 05 Feb 2023 17:33:56 GMT
content-type: application/json
age: 2959
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14904
Expires: Sun, 05 Feb 2023 22:31:39 GMT
Date: Sun, 05 Feb 2023 18:23:15 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: M6j7E36Xc8O+pabSKZgliLD3fVqfxtbK/IT+XOI4tTWF+SZ9ws4oANStQzE67chTLUzpUv5sp2w=
x-amz-request-id: NN53YZX9WNXWW4Q6
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 05 Feb 2023 17:53:22 GMT
age: 1793
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 18:23:15 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.charleskinzel.com/
185.199.108.153200 OK 2.0 kB IP 185.199.108.153:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (317), with CRLF line terminators
Hash 1c7b368d2b80f6274b8bd71076bbf31c
93c4eeef6589be02c8661e369837d8454588e2ca
2d86510f534b699a5390f9e770bce77cd6b1ee8618913dab1d6a2510f1908225
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: GitHub.com
content-type: text/html; charset=utf-8
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-1949"
expires: Sun, 05 Feb 2023 18:33:15 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 6D82:91F4:18ACCF:1987EA:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:15 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.674276,VS0,VE113
vary: Accept-Encoding
x-fastly-request-id: f737db8aba7e4a2eb1058572eb3f0620a3187382
content-length: 2012
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9206c3ba6d5a17d62244c438fd03496e
069e8257aebe618953434b1299d065540125a512
937d395fed398e9410f75945e80f607f3146458b48cd47ba7249536ca2195817
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 18:23:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 98be7fe21d059e46146a43d20c4eea92
1ec58129fea75085588be7b8baec05b0874b5274
7bb2eb5ffcd88a3b6ba7b210bdbcd4469134c9708f06befb6c616beebf8dae46
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 18:23:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 26a15a1b880ec1026360b696b1c27074
fd35f80a1cf599da2a8e68a44477465a580440a5
a6d5caec988319523c120bc435a4ff0200b7ead114db10db19a09caeace978f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 18:23:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 98be7fe21d059e46146a43d20c4eea92
1ec58129fea75085588be7b8baec05b0874b5274
7bb2eb5ffcd88a3b6ba7b210bdbcd4469134c9708f06befb6c616beebf8dae46
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 18:23:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.charleskinzel.com/css/open-iconic-bootstrap.min.css
185.199.108.153200 OK 2.1 kB URL HTTP/2 www.charleskinzel.com/css/open-iconic-bootstrap.min.css
IP 185.199.108.153:0
File type ASCII text, with very long lines (9467), with no line terminators
Hash 682855dd6ed7d201bc3554b640059267
aff23aa1a41473546044f5b013d403329a52bcb4
f733a6bb2e0cf2e7aaf6d34816fe7d80bec9935dcf77ad2d99ced2332da5dbc5
GET /css/open-iconic-bootstrap.min.css HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-24fb"
expires: Sun, 05 Feb 2023 18:33:15 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 85DE:C141:187F39:195AC6:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.934062,VS0,VE112
vary: Accept-Encoding
x-fastly-request-id: 1581d222a40e322b90bbda7e860f9506deb32682
content-length: 2087
X-Firefox-Spdy: h2
www.charleskinzel.com/css/animate.css
185.199.108.153200 OK 4.7 kB URL HTTP/2 www.charleskinzel.com/css/animate.css
IP 185.199.108.153:0
Hash 94771e77b7a2d60f370f9de86b6d1b48
cdebe3186b534cbcabe6690ef73d87aa637773af
b9898eeb0ef68738109490acf782189e3311cced0a53f71d860c4706fb821066
GET /css/animate.css HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-11fa9"
expires: Sun, 05 Feb 2023 18:33:15 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: D6A2:3033:18F67F:19D1CC:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.934798,VS0,VE112
vary: Accept-Encoding
x-fastly-request-id: e85c52ff4381204654c93caf6f9abe0a46584030
content-length: 4719
X-Firefox-Spdy: h2
www.charleskinzel.com/css/ionicons.min.css
185.199.108.153200 OK 8.1 kB URL HTTP/2 www.charleskinzel.com/css/ionicons.min.css
IP 185.199.108.153:0
File type Unicode text, UTF-8 text, with very long lines (46353)
Hash 2e5492e45fe762e29d3cd2b2b6b849df
c2190642e11ac42f728c0acc84155405d7f3ab9c
ed1025858e3070729a7ce3738672dc082216aa296320b6eb33314edc0b12087a
GET /css/ionicons.min.css HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-b6e0"
expires: Sun, 05 Feb 2023 18:33:15 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: F078:129C3:188E34:196994:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.938192,VS0,VE109
vary: Accept-Encoding
x-fastly-request-id: 28ca7080a259ddf1d32feab98a409c68cdcc3ea5
content-length: 8059
X-Firefox-Spdy: h2
www.charleskinzel.com/css/magnific-popup.css
185.199.108.153200 OK 1.8 kB URL HTTP/2 www.charleskinzel.com/css/magnific-popup.css
IP 185.199.108.153:0
Hash 3eca7beda9a3326c5ebfc1a75bebdd28
83fba1064b7f6479f08f8f63e9d07cabc8da8a52
849dd371128847b0b087180df93b0b70ff136b3a1027a121231567e6dd91f9ec
GET /css/magnific-popup.css HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-1b26"
expires: Sun, 05 Feb 2023 18:33:15 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 0E90:49FA:18FCF2:19D892:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.936944,VS0,VE115
vary: Accept-Encoding
x-fastly-request-id: b9e28ab08e69112d9d4ec659687e2a826496546b
content-length: 1834
X-Firefox-Spdy: h2
www.charleskinzel.com/css/bootstrap-datepicker.css
185.199.108.153200 OK 2.4 kB URL HTTP/2 www.charleskinzel.com/css/bootstrap-datepicker.css
IP 185.199.108.153:0
Hash c4fb02ff7436b4aacccc34c9cb699b5a
329c102b9145d2624eec5007a4de8b8d9f22ee7c
7517381b50407c4f11f6bad280d62c337a0946cd0372be081c10f8d102525a81
GET /css/bootstrap-datepicker.css HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-4619"
expires: Sun, 05 Feb 2023 18:33:15 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 4D6A:FB49:1A289C:1B1580:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.943460,VS0,VE109
vary: Accept-Encoding
x-fastly-request-id: 30754c3159d3cb8d8c8bdacbd43e6475c47587ca
content-length: 2380
X-Firefox-Spdy: h2
www.charleskinzel.com/css/flaticon.css
185.199.108.153200 OK 508 B URL HTTP/2 www.charleskinzel.com/css/flaticon.css
IP 185.199.108.153:0
Hash 315478f552966d49e4e4660f01bbb6e9
1f5eee6de895e88156291167a91afd5d07ac41c6
83351c848aef8af1dc48b8e138678c67fb1c37d244dd7a6b318af053b82c3d1c
GET /css/flaticon.css HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-563"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 5FC8:120D:181655:18F127:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.944004,VS0,VE110
vary: Accept-Encoding
x-fastly-request-id: c8991524cfb16b4695865fed9597bbe1ca5718e6
content-length: 508
X-Firefox-Spdy: h2
www.charleskinzel.com/css/owl.carousel.min.css
185.199.108.153200 OK 1.0 kB URL HTTP/2 www.charleskinzel.com/css/owl.carousel.min.css
IP 185.199.108.153:0
File type ASCII text, with very long lines (3350)
Hash 33786d43881b52d9baaf9abad3704ff5
2d020c3ab5cf9bd2ce2de7686e9b5b8d91b72d7b
906c74f13bb952c84be26f5a330228426b21ccaf620d8aeac756719664d43865
GET /css/owl.carousel.min.css HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-d70"
expires: Sun, 05 Feb 2023 18:33:15 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 5E2C:9DFF:18101E:18EBCE:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.935342,VS0,VE120
vary: Accept-Encoding
x-fastly-request-id: fc4e92cd1af62699ead6ac73bece994adeab0f98
content-length: 1018
X-Firefox-Spdy: h2
www.charleskinzel.com/css/jquery.timepicker.css
185.199.108.153200 OK 448 B URL HTTP/2 www.charleskinzel.com/css/jquery.timepicker.css
IP 185.199.108.153:0
Hash 89576ce07ee4fafdfe57a2d11353fc09
6f0f8b944bb44569766720db76b1bd63dc111137
48ef1262e0ba7d14043a25bee8305b53711efa50dfc0238833ad40407da21a7d
GET /css/jquery.timepicker.css HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-634"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 71E6:FB49:1A289C:1B157F:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.943673,VS0,VE111
vary: Accept-Encoding
x-fastly-request-id: 961c817128224cda90017ed96b17947ba77a3d1b
content-length: 448
X-Firefox-Spdy: h2
www.charleskinzel.com/css/aos.css
185.199.108.153200 OK 2.4 kB URL HTTP/2 www.charleskinzel.com/css/aos.css
IP 185.199.108.153:0
File type ASCII text, with very long lines (25948)
Hash 3c67fb114ef1cb7b044a3d5cf8735d5d
d210f953d56ace509f53ff65b24f71d45d93df01
97d09e3f5418a37790a2db034b2e190306249fbb85e695b1e7318947f7c8209c
GET /css/aos.css HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-657f"
expires: Sun, 05 Feb 2023 18:33:15 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: F51C:3D82:1A1FFB:1AFC92:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.937366,VS0,VE120
vary: Accept-Encoding
x-fastly-request-id: 045d304bd64cad46d7cbb5cee45ae53de63d4d98
content-length: 2440
X-Firefox-Spdy: h2
www.charleskinzel.com/css/icomoon.css
185.199.108.153200 OK 14 kB URL HTTP/2 www.charleskinzel.com/css/icomoon.css
IP 185.199.108.153:0
Hash a69df27cf209d6ab9099a755068fdd2f
6442edd1de80cf7093b11fdd4c47428ff3886911
32a31122ea8fb8451da28309d2dcb0208d8badb5f7dec78629bf4926a53aa2f5
GET /css/icomoon.css HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-13803"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 62D0:059D:186CBD:1947B4:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.944254,VS0,VE118
vary: Accept-Encoding
x-fastly-request-id: 592d81b4eb8e35410344c443e7e38f185f981a8e
content-length: 14067
X-Firefox-Spdy: h2
www.charleskinzel.com/css/owl.theme.default.min.css
185.199.108.153200 OK 446 B URL HTTP/2 www.charleskinzel.com/css/owl.theme.default.min.css
IP 185.199.108.153:0
Hash 829abaf1a058dee8d1c923200a574f17
8acb6c114c4650ffa90f120d35061545c09b64e0
380a836084c2489b0ba6266d630d9cd26b12a2f3151ce0d7ce11f7de5377d0f3
GET /css/owl.theme.default.min.css HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-3c5"
expires: Sun, 05 Feb 2023 18:33:15 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 9E82:120D:181654:18F125:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.936170,VS0,VE128
vary: Accept-Encoding
x-fastly-request-id: a8571087159794d2d35c7c7bc4c4572a83ebcf8c
content-length: 446
X-Firefox-Spdy: h2
www.charleskinzel.com/js/jquery.animateNumber.min.js
185.199.108.153200 OK 738 B URL HTTP/2 www.charleskinzel.com/js/jquery.animateNumber.min.js
IP 185.199.108.153:0
File type ASCII text, with very long lines (527)
Hash 1b5dbfd86c5fcd7e4a6aa0f3fdb52da4
85ad40c39eaab8d8a30c95b617bd7530103567e9
632ec174cdd0aeb5f0c2f40c38435f2c8ffca35961b169561791bef58019d05c
Analyzer Verdict Alert fortinet Malware
GET /js/jquery.animateNumber.min.js HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-56f"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: E336:B1F6:12B1F9:135AB6:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.958817,VS0,VE106
vary: Accept-Encoding
x-fastly-request-id: d731d3c4768d01e06a14b7fd7fd08fa3579aa187
content-length: 738
X-Firefox-Spdy: h2
www.charleskinzel.com/js/jquery.easing.1.3.js
185.199.108.153200 OK 2.0 kB URL HTTP/2 www.charleskinzel.com/js/jquery.easing.1.3.js
IP 185.199.108.153:0
Hash 60089f17bdbbedbb501e23abe760596e
1a91284b8b679490fce2ba18b27cdf3f51824d06
4846b9f46afd3c8f60ba8ba44f27f04e893050152d7dc2bce82b842831b1983a
Analyzer Verdict Alert fortinet Malware
GET /js/jquery.easing.1.3.js HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-1faf"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 5F42:91F4:18ACDE:1987FE:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.955255,VS0,VE111
vary: Accept-Encoding
x-fastly-request-id: 6ff4c503496521d39f77f101e24d9927810d2b31
content-length: 2016
X-Firefox-Spdy: h2
www.charleskinzel.com/js/jquery-migrate-3.0.1.min.js
185.199.108.153200 OK 3.5 kB URL HTTP/2 www.charleskinzel.com/js/jquery-migrate-3.0.1.min.js
IP 185.199.108.153:0
Hash 91264bcc1925ee0d6b74406786e36616
2d3789ba2decfbc4e9cf9ab19f815f7f07db2558
5ded0f818df17d84f3ff56acfe886a1b02338a4e6ec30511a246c2a32a355a0b
Analyzer Verdict Alert fortinet Malware
GET /js/jquery-migrate-3.0.1.min.js HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-2c9d"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: BDB8:E0E7:18AC55:1987B8:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.955333,VS0,VE112
vary: Accept-Encoding
x-fastly-request-id: 7f4ab8743d05a62abae9c32dd2c44abc7938e553
content-length: 3502
X-Firefox-Spdy: h2
www.charleskinzel.com/js/jquery.stellar.min.js
185.199.108.153200 OK 3.4 kB URL HTTP/2 www.charleskinzel.com/js/jquery.stellar.min.js
IP 185.199.108.153:0
File type ASCII text, with very long lines (12453)
Hash a7eb4037cce8a4b79daab4de4bd383d7
b946f08d9b1275d0642d8c3e2f3a42ba4bbd4162
4201aab08d4c9665fafb14b101aa5f907a83e7f35feee481d54e0d3b61585c1f
Analyzer Verdict Alert fortinet Malware
GET /js/jquery.stellar.min.js HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-3135"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: AF5A:059D:186CBD:1947B5:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.955965,VS0,VE112
vary: Accept-Encoding
x-fastly-request-id: d5ff2117f80415bbb56c8f4c8a6b9fb1a221532f
content-length: 3423
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-176091397-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-176091397-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1759)
Hash 0f18dd8e9ef7f634f59551d54b9a4bb9
637b7ee799fadd00ef7d9b2e439e27c301a5f730
6391cc8b2ea604eed30812b2aabc3f9e02fa2ec704d4b5fd75ee292f531885e7
GET /gtag/js?id=UA-176091397-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 05 Feb 2023 18:23:16 GMT
expires: Sun, 05 Feb 2023 18:23:16 GMT
cache-control: private, max-age=900
last-modified: Sun, 05 Feb 2023 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43914
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/js?key=AIzaSyBVWaKrjvy3MaE7SQ74_uJiULgl1JY0H2s&sensor=false
142.250.74.106200 OK 53 kB URL HTTP/2 maps.googleapis.com/maps/api/js?key=AIzaSyBVWaKrjvy3MaE7SQ74_uJiULgl1JY0H2s&sensor=false
IP 142.250.74.106:0
File type ASCII text, with very long lines (2452)
Hash 9aee3d5b4fb7f163f30161ce5689834a
092c16848881bb8a5711f6b83a75cd9f2e1d58f9
fdcf8750bb6c97f96465a793e945acff2c2e2a9b2c86311d4b5d5a204342fd2b
GET /maps/api/js?key=AIzaSyBVWaKrjvy3MaE7SQ74_uJiULgl1JY0H2s&sensor=false HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Sun, 05 Feb 2023 18:23:16 GMT
expires: Sun, 05 Feb 2023 18:53:16 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 53194
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=22
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ckinzel.github.io/images/maw869.png
185.199.110.153301 Moved Permanently 162 B URL HTTP/2 ckinzel.github.io/images/maw869.png
IP 185.199.110.153:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /images/maw869.png HTTP/1.1
Host: ckinzel.github.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
server: GitHub.com
content-type: text/html
permissions-policy: interest-cohort=()
location: https://www.charleskinzel.com/images/maw869.png
x-github-request-id: B2F0:B1F6:12B1FD:135ABF:63DFF414
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1683-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.007243,VS0,VE115
vary: Accept-Encoding
x-fastly-request-id: 72b6e1cb19be248dd3168130854968797a1fb474
content-length: 162
X-Firefox-Spdy: h2
ckinzel.github.io/images/fb.png
185.199.110.153301 Moved Permanently 162 B URL HTTP/2 ckinzel.github.io/images/fb.png
IP 185.199.110.153:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /images/fb.png HTTP/1.1
Host: ckinzel.github.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
server: GitHub.com
content-type: text/html
permissions-policy: interest-cohort=()
location: https://www.charleskinzel.com/images/fb.png
x-github-request-id: D64E:3D41:188D86:1968E6:63DFF414
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1683-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.007514,VS0,VE111
vary: Accept-Encoding
x-fastly-request-id: f11c6e7841351cd0710731e1c24b3322add84062
content-length: 162
X-Firefox-Spdy: h2
ckinzel.github.io/images/images.jpg
185.199.110.153301 Moved Permanently 162 B URL HTTP/2 ckinzel.github.io/images/images.jpg
IP 185.199.110.153:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /images/images.jpg HTTP/1.1
Host: ckinzel.github.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
server: GitHub.com
content-type: text/html
permissions-policy: interest-cohort=()
location: https://www.charleskinzel.com/images/images.jpg
x-github-request-id: 72EC:3D41:188D86:1968E5:63DFF414
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1683-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.006782,VS0,VE112
vary: Accept-Encoding
x-fastly-request-id: 2796262e142fb2a9921e587e8b72dde39723ba2a
content-length: 162
X-Firefox-Spdy: h2
www.charleskinzel.com/js/jquery.timepicker.min.js
185.199.108.153404 Not Found 5.2 kB URL HTTP/2 www.charleskinzel.com/js/jquery.timepicker.min.js
IP 185.199.108.153:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3909)
Hash 9e153320896acc099d55d0063a13c3f1
450359be030d156afed3730836fa8bcdba0303f0
7c7764e1634baa3482e3c38f79d66e64987b5b061e1fa0dfe4cd495e5ac73828
Analyzer Verdict Alert fortinet Malware
GET /js/jquery.timepicker.min.js HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: GitHub.com
content-type: text/html; charset=utf-8
x-origin-cache: HIT
access-control-allow-origin: *
etag: W/"63cf03be-247b"
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; img-src data:; connect-src 'self'
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: E030:C141:187F3A:195AC9:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.958977,VS0,VE111
vary: Accept-Encoding
x-fastly-request-id: d5b5f332de5c1a20fd12272a1d05baf5a6812676
content-length: 5232
X-Firefox-Spdy: h2
ckinzel.github.io/images/mail.png
185.199.110.153301 Moved Permanently 162 B URL HTTP/2 ckinzel.github.io/images/mail.png
IP 185.199.110.153:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /images/mail.png HTTP/1.1
Host: ckinzel.github.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
server: GitHub.com
content-type: text/html
permissions-policy: interest-cohort=()
location: https://www.charleskinzel.com/images/mail.png
x-github-request-id: A566:E0E7:18AC5D:1987C1:63DFF414
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1683-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.013961,VS0,VE113
vary: Accept-Encoding
x-fastly-request-id: 796d8405593dd6026901281f62e563f290882d28
content-length: 162
X-Firefox-Spdy: h2
www.charleskinzel.com/js/jquery.waypoints.min.js
185.199.108.153200 OK 2.7 kB URL HTTP/2 www.charleskinzel.com/js/jquery.waypoints.min.js
IP 185.199.108.153:0
File type Unicode text, UTF-8 text, with very long lines (8668)
Hash 65c4f282bad6aba770d222d816b7c2cf
729d3663d391de902dac4f3843f312f3c56651b5
bdcc231e45ec565bbc57988f744ac13bc58b0878bbac02df6285cd47eeaf39d6
Analyzer Verdict Alert fortinet Malware
GET /js/jquery.waypoints.min.js HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-2283"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 5F32:81B9:17D370:18AE27:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.955979,VS0,VE114
vary: Accept-Encoding
x-fastly-request-id: dc6a8e2a1005a29211b4c0c0c135d750489eee36
content-length: 2701
X-Firefox-Spdy: h2
www.charleskinzel.com/js/jquery.magnific-popup.min.js
185.199.108.153200 OK 7.4 kB URL HTTP/2 www.charleskinzel.com/js/jquery.magnific-popup.min.js
IP 185.199.108.153:0
File type ASCII text, with very long lines (20087)
Hash 5511847cd9a357ddee504844e0d23c73
b7fd3dbb0677b17d92e68a4c640717145187d633
a9873d6b14f85515078c9990f24476dacbc693771330bceb710fee1d2087a362
Analyzer Verdict Alert fortinet Malware
GET /js/jquery.magnific-popup.min.js HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-4ef8"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: FEB6:9DFF:181023:18EBD0:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.958022,VS0,VE112
vary: Accept-Encoding
x-fastly-request-id: 062a11d950f0f5633181321daf22f90ec37b7261
content-length: 7363
X-Firefox-Spdy: h2
www.charleskinzel.com/js/aos.js
185.199.108.153200 OK 4.6 kB URL HTTP/2 www.charleskinzel.com/js/aos.js
IP 185.199.108.153:0
File type ASCII text, with very long lines (14212)
Hash 372fc4bd9fb82f68a665c03d9967188d
ef193fd622942d178e5379b6b7bb019df0d650d1
c7daf2d02137c3cf05530eb64729a832b790b46d88aefa2ba4029873caec8dee
Analyzer Verdict Alert fortinet Malware
GET /js/aos.js HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-37a4"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 55E4:3D41:188D7E:1968E1:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.958400,VS0,VE113
vary: Accept-Encoding
x-fastly-request-id: 1c0fca8ce34790990ef54edb7854abd1d0c73a56
content-length: 4593
X-Firefox-Spdy: h2
www.charleskinzel.com/js/owl.carousel.min.js
185.199.108.153200 OK 11 kB URL HTTP/2 www.charleskinzel.com/js/owl.carousel.min.js
IP 185.199.108.153:0
File type ASCII text, with very long lines (32035)
Hash b9bad97c30b1bde0b76e109cd87c3c1d
b181448c65c91651da5844ac82d225764bf6d4f4
cac4049624005e98251f04b705220fe6ddfe7c716479cbf3328e6efa08fd45c1
Analyzer Verdict Alert fortinet Malware
GET /js/owl.carousel.min.js HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-a8e5"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: A0F6:059D:186CBD:1947B6:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.955921,VS0,VE118
vary: Accept-Encoding
x-fastly-request-id: ccfc397f8628a507986474fb028e98c756d95ede
content-length: 11258
X-Firefox-Spdy: h2
www.charleskinzel.com/js/popper.min.js
185.199.108.153200 OK 6.9 kB URL HTTP/2 www.charleskinzel.com/js/popper.min.js
IP 185.199.108.153:0
File type ASCII text, with very long lines (18860)
Hash 797fcc4015caac53d4fbcab1fe74f026
d53f94df2a6766e133d64784443b344c3a6ffb84
606d5f65335a2b5e6114d6b470c2b0d9af839adf3de67e38e6d6954231336cb1
Analyzer Verdict Alert fortinet Malware
GET /js/popper.min.js HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-4a58"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 5610:E0E7:18AC55:1987B9:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.955317,VS0,VE119
vary: Accept-Encoding
x-fastly-request-id: ae2efa2cd0f983066510e005a1d31dc8abfc0fae
content-length: 6861
X-Firefox-Spdy: h2
www.charleskinzel.com/css/style.css
185.199.108.153200 OK 32 kB URL HTTP/2 www.charleskinzel.com/css/style.css
IP 185.199.108.153:0
Hash 974e658c8f78292ea4291fc607f4c4d3
bafc95c9b4b3b9dbb0b476fdb7d1f71ef021423d
ed6da347ebc8cf7382e66a230cd98e9381faf173997082a7b115d5a771632fbf
GET /css/style.css HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-39961"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: D2BC:120D:181654:18F126:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.944476,VS0,VE132
vary: Accept-Encoding
x-fastly-request-id: b9bfaa20aee83f5d890feb21af045879d32ab90e
content-length: 32066
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2866
Expires: Sun, 05 Feb 2023 19:11:02 GMT
Date: Sun, 05 Feb 2023 18:23:16 GMT
Connection: keep-alive
www.charleskinzel.com/js/main.js
185.199.108.153200 OK 1.7 kB URL HTTP/2 www.charleskinzel.com/js/main.js
IP 185.199.108.153:0
Hash a24edac86e4457f196dceb42419b0b85
6f2158495e5467f54c735d58389ef74f6597a9c0
15ceafca1122709a615fa6465cf631182938d9ce80af9c07491d4b0b5d37a1a2
Analyzer Verdict Alert fortinet Malware
GET /js/main.js HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-1349"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: D536:B1F6:12B1FB:135ABA:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.970769,VS0,VE106
vary: Accept-Encoding
x-fastly-request-id: dcfdc896b6cfeb8c8d52de23f01f09d7194a768e
content-length: 1733
X-Firefox-Spdy: h2
www.charleskinzel.com/js/jquery.min.js
185.199.108.153200 OK 81 kB URL HTTP/2 www.charleskinzel.com/js/jquery.min.js
IP 185.199.108.153:0
Hash fcbba9123d91d1bdf6c232e606f7839a
f28c543867b356a897cb163a74b71e4619acd76b
7385dca2f9aa4df574472f476768c4f7b4a954635f9e9fb5a21b724b2df4cc4d
Analyzer Verdict Alert fortinet Malware
GET /js/jquery.min.js HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-41706"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 31CE:059D:186CBD:1947B8:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.955363,VS0,VE122
vary: Accept-Encoding
x-fastly-request-id: 26f1e6bd972306bcae5d77080abe9f2b1f04b840
content-length: 80847
X-Firefox-Spdy: h2
www.charleskinzel.com/js/scrollax.min.js
185.199.108.153200 OK 3.2 kB URL HTTP/2 www.charleskinzel.com/js/scrollax.min.js
IP 185.199.108.153:0
File type ASCII text, with very long lines (567)
Hash 2984fa943a562ae5b978b15fc09c0c75
aae6d1c3ed919b54e370b806904001c440c3f1b1
11a820021779af225eb077c2ec05df2fb8e75b71e10375d6117d6b6d03e080f0
Analyzer Verdict Alert fortinet Malware
GET /js/scrollax.min.js HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-1d17"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 4006:F3EF:18BDCA:199A14:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.963823,VS0,VE120
vary: Accept-Encoding
x-fastly-request-id: 7f363f04102ac6602a0e23bfdb4cd7f27871c9a3
content-length: 3221
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 98be7fe21d059e46146a43d20c4eea92
1ec58129fea75085588be7b8baec05b0874b5274
7bb2eb5ffcd88a3b6ba7b210bdbcd4469134c9708f06befb6c616beebf8dae46
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 18:23:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.charleskinzel.com/js/google-map.js
185.199.108.153200 OK 893 B URL HTTP/2 www.charleskinzel.com/js/google-map.js
IP 185.199.108.153:0
Hash 3f738ad2bcacd888e6730306ca1a3461
c7eaf38ffaa31394560cb6bd9511cf2fbcc85571
c111a011e351d3c6431f6a299af4e610eb68f4f0d3e7209e060350ed47c291e2
Analyzer Verdict Alert fortinet Malware
GET /js/google-map.js HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-79a"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: BDC6:FB49:1A28A4:1B1588:63DFF414
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.968140,VS0,VE175
vary: Accept-Encoding
x-fastly-request-id: 934e8bc2d27dd98c4f2446cfb683af3e55a5f16f
content-length: 893
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 153d0de36959c722c00df71ba86daca2
305f56a3134879ebf0828e169e903e560540c070
0cf533a798d42d1e97fb6619a411afadf9a68c92302ba852869b0c0555a47987
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 18:23:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 05 Feb 2023 17:49:07 GMT
age: 2049
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.charleskinzel.com/images/maw869.png
185.199.108.153200 OK 26 kB URL HTTP/2 www.charleskinzel.com/images/maw869.png
IP 185.199.108.153:0
File type PNG image data, 225 x 225, 8-bit/color RGBA, non-interlaced\012- data
Hash dacdc172632f4ea797ec7c208261ac75
a4ca57ae4970d434557a89afe3a3086ad111677b
62986b6633978cbc33808a516435dc2e2cd4e6b04349615b08fcb393d743ed3d
GET /images/maw869.png HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.charleskinzel.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: "61e43a42-6401"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 7FB4:3D41:188DA9:196905:63DFF414
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.321052,VS0,VE114
vary: Accept-Encoding
x-fastly-request-id: 985078b7d86c8b363d6478d6ccf31d4f4e8fdec7
content-length: 25601
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Herr+Von+Muellerhoff
142.250.74.106200 OK 5.6 kB URL HTTP/2 fonts.googleapis.com/css?family=Herr+Von+Muellerhoff
IP 142.250.74.106:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3909)
Hash 7c11b256d3511bb5927d93b181f943db
9586c625d2a3c1b420fb7f181345755a4aa2ec7d
a428d99cf25a158ac450cbc22c221842192d89b5a29e80b84e3d00a5373c1986
GET /css?family=Herr+Von+Muellerhoff HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 05 Feb 2023 18:23:16 GMT
date: Sun, 05 Feb 2023 18:23:16 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 18:23:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 18:23:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 18:23:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 18:23:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 18:23:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.charleskinzel.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Feb 2023 07:08:09 GMT
expires: Sat, 03 Feb 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 213307
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.charleskinzel.com/images/images.jpg
185.199.108.153200 OK 5.6 kB URL HTTP/2 www.charleskinzel.com/images/images.jpg
IP 185.199.108.153:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 238x212, components 3\012- data
Hash 8157b5f849ca23a4545bf2170f867f25
0e99dd5667da4ce4a7e1ba77af1c651527f9c815
aa442f5b42ec1abc9ff314112c9c4f64b8aeca337ce29ad4632de23aafa36662
GET /images/images.jpg HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.charleskinzel.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/jpeg
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: "61e43a42-15b2"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 46E4:E018:17E823:18C2FA:63DFF414
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.371966,VS0,VE107
vary: Accept-Encoding
x-fastly-request-id: f9bc8659fd7e4bcbfe0bf7b0f5b65fb4a70fd73a
content-length: 5554
X-Firefox-Spdy: h2
fonts.gstatic.com/s/herrvonmuellerhoff/v15/WBL6rFjRZkREW8WqmCWYLgCkQKXb4CAft0c99KM.woff2
216.58.207.227200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/herrvonmuellerhoff/v15/WBL6rFjRZkREW8WqmCWYLgCkQKXb4CAft0c99KM.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 17844, version 1.0\012- data
Hash a511acd421af6bc6cb7565dd1612defd
967d9d3ae9bd58456eed98357a55c54b69f604bc
27a73fa3d5275281b31cf1baec97ba9761ced8eb00080c6ec895d6b51b417196
GET /s/herrvonmuellerhoff/v15/WBL6rFjRZkREW8WqmCWYLgCkQKXb4CAft0c99KM.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.charleskinzel.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17844
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 19:45:45 GMT
expires: Thu, 01 Feb 2024 19:45:45 GMT
cache-control: public, max-age=31536000
age: 340651
last-modified: Tue, 26 Apr 2022 15:42:43 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
216.58.207.227200 OK 7.8 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Hash 25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.charleskinzel.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 02:42:35 GMT
expires: Wed, 31 Jan 2024 02:42:35 GMT
cache-control: public, max-age=31536000
age: 488441
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
216.58.207.227200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.charleskinzel.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 04:05:29 GMT
expires: Tue, 30 Jan 2024 04:05:29 GMT
cache-control: public, max-age=31536000
age: 569867
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.charleskinzel.com/images/fb.png
185.199.108.153200 OK 21 kB URL HTTP/2 www.charleskinzel.com/images/fb.png
IP 185.199.108.153:0
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash 25189b8b46b5cb20ad0b1136a6dbe993
66658c123234f727027ec3cef3b58dfdd0071ccb
b9efd5ae3a6f4712fc6b4ba227c5e2fa9c8525a905a278bc1c15b674efc36465
GET /images/fb.png HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.charleskinzel.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: "61e43a42-5123"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 46CE:E0E7:18AC88:1987EA:63DFF414
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.371983,VS0,VE135
vary: Accept-Encoding
x-fastly-request-id: 4456d887be0c00839cc1309c6e06aa9881b2044e
content-length: 20771
X-Firefox-Spdy: h2
www.charleskinzel.com/images/mail.png
185.199.108.153200 OK 79 kB URL HTTP/2 www.charleskinzel.com/images/mail.png
IP 185.199.108.153:0
File type PNG image data, 1600 x 1600, 8-bit/color RGBA, non-interlaced\012- data
Hash db6182c99f524cd450e2af90df7d2f93
270547e9ca0057e0787ea07110fd2834bca6489f
6efe4684fd925843a5c1870c270927949636f563866294c4125a262883b52138
GET /images/mail.png HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.charleskinzel.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: "61e43a42-134c5"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 1532:9DFF:181040:18EBF0:63DFF414
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.371932,VS0,VE137
vary: Accept-Encoding
x-fastly-request-id: 0ef0dcdd6f8277a5533202c33d376c169d9904ee
content-length: 79045
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 836bc62dbb011b6180fc7209d0061736
74e6f18561a7006a3afb6ab03559eec239ce4b36
90b197384670fdb210d364f91b423fd383d25838e38a494158a8185bef0061f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 18:23:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.charleskinzel.com/images/author.jpg
185.199.108.153200 OK 70 kB URL HTTP/2 www.charleskinzel.com/images/author.jpg
IP 185.199.108.153:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=6], baseline, precision 8, 380x395, components 3\012- data
Hash 3c406c40f0eef8e76b961e7b3cc61fd3
64b86cf842f437907727963f6b3934c28ad13833
f78887558c15c6e5c7b13560f6572e5f0d653fa1e31a200d4e1052428da43d14
GET /images/author.jpg HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/jpeg
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: "61e43a42-11129"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: D6A2:3033:18F6A1:19D1EF:63DFF414
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.418045,VS0,VE112
vary: Accept-Encoding
x-fastly-request-id: 35f81cfa83fd6cd34fd2d1f8d4cf3b8d92bfc4e0
content-length: 69929
X-Firefox-Spdy: h2
push.services.mozilla.com/
44.238.73.182101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.238.73.182:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Sywf4Z0j0oRnqwETetpHEg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: uAd+y7lz4PkoBUQsdo4C/L8Zrr4=
www.charleskinzel.com/images/enst.jpg
185.199.108.153200 OK 65 kB URL HTTP/2 www.charleskinzel.com/images/enst.jpg
IP 185.199.108.153:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x640, components 3\012- data
Hash 9e2e1cbd28792a8871eb0112e064da5a
ae08d0f07f94d5b2ff66d2e39ee33bf4f6d2fa12
3a29f2fe5fd59d3c88b7963720ee84f828d4675d757fd12ddf954a208860eb7f
GET /images/enst.jpg HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/jpeg
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: "61e43a42-ff75"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 2512:EFBF:1954F5:1A30DC:63DFF414
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.493914,VS0,VE119
vary: Accept-Encoding
x-fastly-request-id: 4b95b7e1bd9b870efdfa4701acc9e9b1e25bdcea
content-length: 65397
X-Firefox-Spdy: h2
www.charleskinzel.com/images/books.png
185.199.108.153200 OK 803 kB URL HTTP/2 www.charleskinzel.com/images/books.png
IP 185.199.108.153:0
File type PNG image data, 673 x 736, 8-bit/color RGB, non-interlaced\012- data
Size 803 kB (802668 bytes)
Hash 623e26814f8857a58793570089a7a4f1
90dca70eb966c5cec3f24a2ff75acf7fedd88bac
f8c94d3114f0ab6d6554e7966b33c261e388cb5acafbc73aede25c1b4937c945
GET /images/books.png HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: "61e43a42-c3f6c"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: D536:B1F6:12B231:135AF1:63DFF414
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.495745,VS0,VE117
vary: Accept-Encoding
x-fastly-request-id: 614068323fbc6d400e9cbd8fdb190bfb838bb2d8
content-length: 802668
X-Firefox-Spdy: h2
www.charleskinzel.com/images/cops.jpg
185.199.108.153200 OK 94 kB URL HTTP/2 www.charleskinzel.com/images/cops.jpg
IP 185.199.108.153:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 826x960, components 3\012- data
Hash 746ab0b366e033ac4f535d7fc40cd993
af58141260906cb58a3dfa20e38339c98323d187
7b5f0ff6126e5ce650dfe21e2dd45217b9f48884d9abb696c8dec365b32e9aa2
GET /images/cops.jpg HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/jpeg
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: "61e43a42-1711b"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: F218:81B9:17D396:18AE4D:63DFF414
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.495917,VS0,VE153
vary: Accept-Encoding
x-fastly-request-id: a9fc4289d7416fa8ce9bb46718fc98025182a956
content-length: 94491
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.14200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.14:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sun, 05 Feb 2023 17:45:20 GMT
expires: Sun, 05 Feb 2023 19:45:20 GMT
cache-control: public, max-age=7200
age: 2276
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
142.250.74.170200 OK 23 B URL HTTP/2 maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP 142.250.74.170:0
File type JSON data\012- , ASCII text
Hash e3981ca10169a319d5aa062bf43a5fa1
2c6ed584767b65688ce99b1ebe1a3b7448a67421
8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9
GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.charleskinzel.com
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 05 Feb 2023 18:23:16 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.charleskinzel.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ckinzel.github.io/images/ICO.PNG
185.199.110.153301 Moved Permanently 162 B URL HTTP/2 ckinzel.github.io/images/ICO.PNG
IP 185.199.110.153:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /images/ICO.PNG HTTP/1.1
Host: ckinzel.github.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
server: GitHub.com
content-type: text/html
permissions-policy: interest-cohort=()
x-origin-cache: HIT
location: https://www.charleskinzel.com/images/ICO.PNG
x-github-request-id: F51C:3D82:1A2042:1AFCE3:63DFF414
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1683-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621397.694313,VS0,VE105
vary: Accept-Encoding
x-fastly-request-id: 9c587c36859d7c1487f99e9f5a97c040826d7347
content-length: 162
X-Firefox-Spdy: h2
www.charleskinzel.com/images/ICO.PNG
185.199.108.153404 Not Found 5.2 kB URL HTTP/2 www.charleskinzel.com/images/ICO.PNG
IP 185.199.108.153:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3909)
Hash 9e153320896acc099d55d0063a13c3f1
450359be030d156afed3730836fa8bcdba0303f0
7c7764e1634baa3482e3c38f79d66e64987b5b061e1fa0dfe4cd495e5ac73828
Analyzer Verdict Alert fortinet Malware
GET /images/ICO.PNG HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.charleskinzel.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
server: GitHub.com
content-type: text/html; charset=utf-8
x-origin-cache: HIT
access-control-allow-origin: *
etag: W/"63cf03be-247b"
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; img-src data:; connect-src 'self'
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 72EC:3D41:188DDF:196945:63DFF414
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621397.812113,VS0,VE107
vary: Accept-Encoding
x-fastly-request-id: 87e926bab9a4d1872c69289a0185e97600af1335
content-length: 5232
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9384
Expires: Sun, 05 Feb 2023 20:59:41 GMT
Date: Sun, 05 Feb 2023 18:23:17 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9384
Expires: Sun, 05 Feb 2023 20:59:41 GMT
Date: Sun, 05 Feb 2023 18:23:17 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9384
Expires: Sun, 05 Feb 2023 20:59:41 GMT
Date: Sun, 05 Feb 2023 18:23:17 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8e0be7db14d930d6227443314bcd1747
4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d
baedfbdb08a67f9ff4c698f7e65b08d7e4c5078d0a4233e6bff529b44812735a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12967
x-amzn-requestid: 013fa296-a431-410b-b3fb-7417b3e877eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpIQAFCMIAMF0Sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9ed99-2e1daa8b75977de07c48b8fc;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 04:42:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UzQGDCYe_8AuYYLaLSAWzHQhwJMpzpXWbjE5AwukevW6G6SLDxDjmA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 03:42:59 GMT
age: 52818
etag: "4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6661b7263315f5eb3cd2465f671e1fcd
b7b5831c6b3ccc41d7a980b6088adc10ff8785f1
eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: 6a8c6487-6069-47d1-afa1-648626f85439
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyDqqGg5oAMFV-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd7fdd-0a772cde1e6fba6d7da97435;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:42:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: CHWhIpyzhoPtMUplzh1430Q9FfCM1wkTc_hQsgQk6InM9tYBPGYnNg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:05:45 GMT
age: 73052
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 251f1a5d671fb797fb98e9a71754c341
335425603d9eec146a3c03422dbca91134272e53
74932f07561287e33302aabcf9c639e9df7ae0fbc4bf71f5467310aabafea208
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6202
x-amzn-requestid: 01b85fcd-69a0-49da-8640-32a3ef19378a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bUFEJoAMFapg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c48-14817e717361e09170714e9d;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 1_1mEN4j5cciWEiimz4PRjx3PNGnrSRib9oEJAdYLrrtyjqnz_zvcQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 11:30:31 GMT
age: 24766
etag: "335425603d9eec146a3c03422dbca91134272e53"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5b6c30ad03669b66bf2f63b3edd69882
e630bd132b52b965a5ade646ea8a165d1abf6d7b
f8233d879ec17fd91909655ff8881f2ebfad84272fde3ed5e5be37580378a989
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5014
x-amzn-requestid: a434aae4-fe4b-4fc7-9b7e-eeb552484e8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bIE0aoAMF6YQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c47-5556d14757190c842bbc6b06;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: k6YqagXr3Wr-u1uDKojEnIGW0CxU5yvWPtlzNpzoIvmg9F-rJb9uFQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 11:24:01 GMT
age: 25156
etag: "e630bd132b52b965a5ade646ea8a165d1abf6d7b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg
34.120.237.76200 OK 3.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d7a466d89c75ff3459b7328591db52cf
c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb
e73243be3d01d12a224c4e9826c4f52610cf7722eee69f62755278d7550705f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3474
x-amzn-requestid: 5846c080-9f25-4590-863c-8af2126cdbe1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f1WXEEbnoAMFRdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ded0f9-1bd490125feadc14366e7ca0;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 21:41:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: d8aQmkW-aqLFpb79RynlJG2vY1GTDbjLNY0Qukgg_WIjdI6cmbVKFw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 21:51:26 GMT
age: 73911
etag: "c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98423c35-aa11-41c0-8f4f-52bec4c9eaa8.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98423c35-aa11-41c0-8f4f-52bec4c9eaa8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b3e7140400336984afc6093c1246f863
59e0b21cdf4cfdac3f1ea05badd007727939ac42
4d927e74922159db5d07b9947fa1021cff74bb7b55759960cb3941d05c1e8f11
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98423c35-aa11-41c0-8f4f-52bec4c9eaa8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9579
x-amzn-requestid: c474008d-a6a9-409b-88e2-c55062044575
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzQtnFGhoAMF5Zw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ddfb23-54dd67257ba25ad24e977a9c;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 06:28:51 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 0Of3BK3VqVMGQGDIODQthVmi7BC8Ney4zgGCpVuzYc1j6D8RRP-AxA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 14:15:34 GMT
age: 14863
etag: "59e0b21cdf4cfdac3f1ea05badd007727939ac42"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.charleskinzel.com/js/bootstrap-datepicker.js
185.199.108.153200 OK 0 B URL HTTP/2 www.charleskinzel.com/js/bootstrap-datepicker.js
IP 185.199.108.153:0
Analyzer Verdict Alert fortinet Malware
GET /js/bootstrap-datepicker.js HTTP/1.1
Host: www.charleskinzel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Sun, 16 Jan 2022 15:31:14 GMT
access-control-allow-origin: *
etag: W/"61e43a42-b6e4"
expires: Sun, 05 Feb 2023 18:33:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 9224:C141:187F3A:195ACA:63DFF413
accept-ranges: bytes
date: Sun, 05 Feb 2023 18:23:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675621396.958812,VS0,VE111
vary: Accept-Encoding
x-fastly-request-id: b3e9a57140e6e16cd22f4dcaa9f760981554f298
content-length: 12226
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Poppins:300,400,500,600,700
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Poppins:300,400,500,600,700
IP 142.250.74.106:0
GET /css?family=Poppins:300,400,500,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 05 Feb 2023 18:23:16 GMT
date: Sun, 05 Feb 2023 18:23:16 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat:300,400,500,700
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Montserrat:300,400,500,700
IP 142.250.74.106:0
GET /css?family=Montserrat:300,400,500,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.charleskinzel.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 05 Feb 2023 18:23:16 GMT
date: Sun, 05 Feb 2023 18:23:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2