belief.ournuclearfamily.com/
104.21.68.177200 OK 35 kB URL HTTP/1.1 belief.ournuclearfamily.com/
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1782), with CRLF, LF line terminators
Hash 159abd84e2ce3ab3c1b5a5e6cd92a502
7edbf07502318c3c2a08dcdf38828e24e721eb08
8574cddce1f64874fc8b07d3c12b06df1005868abd6eeb1a64afab972bb143c7
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:28 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:04 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I1yzJoxCA51IjXKvnESuwz746ciN%2BcOg802ojTKSPgpMKf62u1ZMRVWPJd1qC7pWEBT7Q9%2FZr2CaI1Am87BeucOf17kjvhEqXgiZ%2FQFbbrlBay4BGxCETx5A5XlPydpgMWvD4AwiixtaAHxIZxE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 747fd8032cb90b02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f55e483f32b3fd50b1a2414aaada9b61
9d6b22edb98866e002e3b1ace44dfb0f8d00935f
4b09e1d2b887ded061e4ec5f82ec70ce699eeed428acc6b4fd3ef10ed9233c89
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4B09E1D2B887DED061E4EC5F82EC70CE699EEED428ACC6B4FD3EF10ED9233C89"
Last-Modified: Thu, 08 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5998
Expires: Fri, 09 Sep 2022 13:54:26 GMT
Date: Fri, 09 Sep 2022 12:14:28 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 09 Sep 2022 12:11:18 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: sxQff8ftwwhM3zlWv7uL-ZNhYLX8MGRbkag2SWwCxetMg2xV-6duRg==
Age: 190
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 09 Sep 2022 03:46:35 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: j4cq7ATi15waQyrkPHhn5dM9anvKsp0YoMONCVBNatsMYdHV663-UA==
age: 30474
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Sep 2022 12:14:28 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
belief.ournuclearfamily.com/wp-content/plugins/arscode-ninja-popups/themes/jquery.material.form.css?ver=4.9.9
104.21.68.177200 OK 22 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/plugins/arscode-ninja-popups/themes/jquery.material.form.css?ver=4.9.9
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (7644), with CRLF, LF line terminators
Hash fd1177f650fd4ea766c462f80ef0c404
3a1ff17b4b3b3b943b4935101ed291b3bb339992
a122cde8372fc11ede51de6d8e6f66558236462eca6fa4701e685a785d1277cf
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/arscode-ninja-popups/themes/jquery.material.form.css?ver=4.9.9 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:28 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:06 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZkWQ1BsEZHCFu39OloWw8JMs3nAZRdJ53TIFzwuDq6zdoQfKxrdcYOlsfwCqJ%2Ftp95X1sQmU%2BNgHxJtoOmtwunRVOWQK8acjp0G%2BzVhAtmLVPNv4KUGpRwJBar5g%2B4sTGzKa9veLVRyF7h8iZ8Q%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd805afd50b06-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
belief.ournuclearfamily.com/wp-content/plugins/arscode-ninja-popups/themes/reset.min.css?ver=4.9.9
104.21.68.177200 OK 13 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/plugins/arscode-ninja-popups/themes/reset.min.css?ver=4.9.9
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (12079), with CRLF, LF line terminators
Hash bdfd1522778f4b53ee5bd9145a34efbd
b9f442388e2fc44cdbc20c8eac02d1514f79ff5c
ef6f992dc2c9d3fdd200f5af4c2a0cbddb0981e273767945b7d5e81e7d34853b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/arscode-ninja-popups/themes/reset.min.css?ver=4.9.9 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:28 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:06 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xVgOPUgJ22UCCI9ei%2B0ly7L3CICDtiGc3zQFHnmln34xpRUfoTYtmByHQ8mboiBjEIlm2D5RVCIdU5vHany3OnGldrxlIUotf4VeIKgNljUZDTF%2B2Qa%2FPTB4gnEX6YYhbTEkho9ggJ9xA6VMELk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd805b91eb4f3-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
belief.ournuclearfamily.com/wp-content/plugins/arscode-ninja-popups/tooltipster/plugins/tooltipster/sideTip/themes/tooltipster-sideTip-light.min.css?ver=4.9.9
104.21.68.177200 OK 26 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/plugins/arscode-ninja-popups/tooltipster/plugins/tooltipster/sideTip/themes/tooltipster-sideTip-light.min.css?ver=4.9.9
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1867), with CRLF, LF line terminators
Hash 3ff61b7e2c39b72667349975a1f7d328
59dfa0ce88ea05458ee88d061c01cf9b624d3006
45ae1c46cea312a154d198ce8542b46bc59099b80aba50549b434c0c211c1a4e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/arscode-ninja-popups/tooltipster/plugins/tooltipster/sideTip/themes/tooltipster-sideTip-light.min.css?ver=4.9.9 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:28 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:03 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OfuK3kfspfc1Yj3jSDpQmeEkemwFZd8ZBHl3kkA3nNxOxa15l8W0XY6Cqx13nOOqh0j5k0gZWC%2BDFU%2BK1dTY0DhaxRgVdwVNOagCNHl%2BxuNKVhEB6cm3PhEC8HJ6dYk2OJXrNaLAliO7Ucl3%2Fq4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd805a86b0b45-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
belief.ournuclearfamily.com/wp-content/plugins/arscode-ninja-popups/tooltipster/tooltipster.bundle.min.css?ver=4.9.9
104.21.68.177200 OK 68 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/plugins/arscode-ninja-popups/tooltipster/tooltipster.bundle.min.css?ver=4.9.9
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3045), with CRLF, CR, LF line terminators
Hash ebea79b88cf3355b5a3cc3c7b2ec0470
841de952b33109dff39299e40f56252633c28fc5
798a2c8213374d5525d3caa1825a4509b6effebc47e0720de8d05f3a6167cd81
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/arscode-ninja-popups/tooltipster/tooltipster.bundle.min.css?ver=4.9.9 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:28 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:06 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BLSyYOXmu1DeqS4qdb0NXZeEG%2BUMvTou%2BvLsZ%2BuHeQcE1rTH2ivjsxauBxnuYV6cQEEczxRVCg000fPPe%2Bq%2FotNxTG8rBQqFwotCIJx0npzjL2%2Ba994BCnRMkeErfszHzZvpfvrg%2F%2BrIVNf%2FBR0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd8059f5d0b02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
belief.ournuclearfamily.com/wp-content/plugins/arscode-ninja-popups/fancybox2/jquery.fancybox.min.css?ver=4.9.9
104.21.68.177200 OK 12 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/plugins/arscode-ninja-popups/fancybox2/jquery.fancybox.min.css?ver=4.9.9
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5726)
Hash 51755039863bad391477aae40e155306
ff66d84d0680ecbc80a06ac5e3bc5aa3222f7aa2
5d89636a8c7948a7999694c2d526a144278b68df69404c0acc6e68a46e4bf18c
GET /wp-content/plugins/arscode-ninja-popups/fancybox2/jquery.fancybox.min.css?ver=4.9.9 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:28 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:06 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ewI%2FAaGXK5kPHv%2B5fmJeFhtKNaiFV1OhRbVvJhIaoD5wBVGP0j4D5q9p7MLy94xtwAylu%2FYtiRctC6ST%2B6sF0kgrMpPeW9%2FBgux7KhOHXNaTez9PxGyBVJhVuxypBMamujCLfAX1VMnnIRNsI8Q%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd805bd820afe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
amp.cloudflare.com/viewer/rtv/011-4-71/amp-viewer.js
104.16.133.229404 Not Found 9 B URL HTTP/2 amp.cloudflare.com/viewer/rtv/011-4-71/amp-viewer.js
IP 104.16.133.229:0
File type ASCII text, with no line terminators
Hash 9e076f5885f5cc16a4b5aeb8de4adff5
475c848673a3f79fa778f01c2bd5a721d4c41707
e3ebaa16dd9d9b9fc107c42183fb6cf9d22927e1af03dbbdfa0ccc38e4e4ac31
GET /viewer/rtv/011-4-71/amp-viewer.js HTTP/1.1
Host: amp.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://belief.ournuclearfamily.com
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Fri, 09 Sep 2022 12:14:28 GMT
content-type: text/plain;charset=UTF-8
content-length: 9
set-cookie: __cf_bm=RZ8h9dAbk_AR_wX.Ahykfkoz9siKcqy0JbgJtBzQq9E-1662725668-0-AbaFHmEftv7/QxzMSwCeBgkzdX+uazxyXZ62AgbP21XESGf5cpLrP8aEaENpjCrEiOmaQsJ0a1q9Nsu4HzcOGXI=; path=/; expires=Fri, 09-Sep-22 12:44:28 GMT; domain=.cloudflare.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R%2FCsmlEFQe8NOIFXidj1LwV0HFl4uyWPOsxgsqGJ10r5fGsI%2B6fOTP%2B5up8%2BMo104jOvUCqxp3OS1NSphtK6i2AlKk6h3c0IaWfctXWGHLKWj%2FEslPJqBqzeEjQtWAqZBYOFaQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15780000; includeSubDomains
server: cloudflare
cf-ray: 747fd8062e9fb521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans&ver=4.9.9
142.250.74.10200 OK 601 B URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans&ver=4.9.9
IP 142.250.74.10:0
Hash 75d181fc850170da6e8f60df6cfc3f07
8c36b95d4b2746668a67479d14c983993d415038
9f8f28568038df45d52650d52e7316819f7f787c480f016af0333127eb11b67e
GET /css?family=Open+Sans&ver=4.9.9 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 09 Sep 2022 12:14:28 GMT
Date: Fri, 09 Sep 2022 12:14:28 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
belief.ournuclearfamily.com/wp-content/plugins/arscode-ninja-popups/themes/newtheme1/css/newtheme1.css?ver=4.9.9
104.21.68.177200 OK 64 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/plugins/arscode-ninja-popups/themes/newtheme1/css/newtheme1.css?ver=4.9.9
IP 104.21.68.177:0
File type AppleWorks Word Processor 0x20, tabstop ruler "CTYPE ", zoomed, with mail merge, 49/10 inch left margin\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1227)
Hash a3732d88365e6965aa1ac1f606264711
2af3410674ad3f7d3762eb277000ca131cab413a
f149c4f9d5b861ddd48ad1b7e90f7efba3f3a0bdc7ea8110f349041874e4df54
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/arscode-ninja-popups/themes/newtheme1/css/newtheme1.css?ver=4.9.9 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:28 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:06 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DzpXLqUYukZa67Kj77IoTHnBxoSJbcMIXTamfJlhowxB6n5i6KalPeQKadAPWuB2Jf1sMYkQsjNxq%2BdyKXF6Z2%2Bpt6w90WWJx8Y%2FjppIyZwSUsfO%2FpbYT9xjJxfL4I7Nxe%2FzLcj70DlaoBimIQ0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd805b99b0af6-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
belief.ournuclearfamily.com/wp-content/plugins/quotes-collection/css/quotes-collection.css?ver=2.0.10
104.21.68.177200 OK 25 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/plugins/quotes-collection/css/quotes-collection.css?ver=2.0.10
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (19701)
Hash 04c41ff2365d14ea3ab767e02d38256c
8328f4233c3744ffbd4f6302e99c16864fc8f3cd
e2f9757a54e4b74a4205b8134f7a17495e8eb3117d484390bac893dc40307a8a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/quotes-collection/css/quotes-collection.css?ver=2.0.10 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:28 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:04 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mMXir1UvMS%2FUqhK7ajIhipptX%2FY%2FdPZYqoTVieIzt3n64lXJqLdYJQA7SmzuY2u0lXcNEXMIsPAaTn%2FdFO1OPn6o6L2jtiJz6oFIvNo9%2FZ0B416EnQ%2FdlxCLvSnyph1MAqKegJQlNqPcc%2F31yLw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd80628d10b45-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
belief.ournuclearfamily.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.0.5
104.21.68.177200 OK 12 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.0.5
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5726)
Hash 51755039863bad391477aae40e155306
ff66d84d0680ecbc80a06ac5e3bc5aa3222f7aa2
5d89636a8c7948a7999694c2d526a144278b68df69404c0acc6e68a46e4bf18c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.0.5 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:28 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:06 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ECXvh9T9Qgvw4AyDStkxdC%2FWrUubYzT14wJla19iVB0iwlCPifex4yp4f%2FViDHhWLt8JgR8AF8mPLgvXYtYRrlAG0%2FymdJ5G1WCUNuJy0wnU1t461qaMyztAe3l4R5aADiDgvUnzRTcMa%2Bx9kUE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd80628410b06-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
belief.ournuclearfamily.com/wp-content/plugins/wordpress-popular-posts/public/css/wpp.css?ver=4.2.0
104.21.68.177200 OK 50 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/plugins/wordpress-popular-posts/public/css/wpp.css?ver=4.2.0
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (24225), with CRLF, LF line terminators
Hash a46f187b4abeb091ce043c57911c6436
2abb2e621fe08e71f55412a5ad539124ca8ad773
3fc2614a583e9c1150f260bbb9e4bc2acc7f76721ebd08a24af9ca6c63b184ea
GET /wp-content/plugins/wordpress-popular-posts/public/css/wpp.css?ver=4.2.0 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:28 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:06 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hTFFrxvWBfT2a5f17%2B9WJI7tQsB0CRqjECXSC9b4XVEvkx7nL1UvTq5HikYohejGPZI%2BfMx7a14SpcecEWkGrHMrYWFcxUNSjnfgCE2Ge7yu0G%2BHjeSUS%2Fww%2F9K9X6t%2BIrVcwdMqTY0SObK714Y%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd80629b6b4f3-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
belief.ournuclearfamily.com/wp-content/plugins/td-composer/td-multi-purpose/style.css?ver=72ece2de773553959e5098a544851753
104.21.68.177200 OK 22 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/plugins/td-composer/td-multi-purpose/style.css?ver=72ece2de773553959e5098a544851753
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2827)
Hash 076f938c930c960f6afbfc7dbafd1df7
50feb97f926dba1d31ba7512cb58dc29872216ab
5e5bae78354740815ae5b43c163447cc0c81f3fabc946fcdba329aa2da84a29d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/td-composer/td-multi-purpose/style.css?ver=72ece2de773553959e5098a544851753 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:28 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:06 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f6RzRwFatJflNcMmyeiGOzYqedADh1a%2F5gmSRZm958KqnsnIwtu8rr4773%2Fi%2BQ4aO97L5IthbQ8XpX8L0x%2BISb4XiMHLONMhBc8mUpt53ZqZQ8z2UlivHpQ4EUlcROzoO526gBKzF0zNVBc6Xog%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd80658040b02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
belief.ournuclearfamily.com/wp-includes/css/dashicons.min.css?ver=4.9.9
104.21.68.177200 OK 18 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-includes/css/dashicons.min.css?ver=4.9.9
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1025), with CRLF, LF line terminators
Hash 8ccdb3103112a76abcad6e0aaf602cc7
76976d3341bfb3b278eaa82e8c038f871244d25d
1fa345a580ed34e59366ce7a8906f5eb738243caf6514408abe0b877b5872dd3
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dashicons.min.css?ver=4.9.9 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:28 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:02 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7LdVm6VacE23TxgqO9gcE8HmURloLmIc4vQ9Hy795xWtwbkau0W1EBf9Pa6SQZLZhUrRTKzPFS60WVwA4Jy1Z%2FeuvzLgx13oLk7dgxBMPDjRMimd9MvUX7%2B968PUlWcX8yP8EApZG8CnRPWG0HI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd8067a320af6-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
belief.ournuclearfamily.com/wp-content/plugins/divi-builder/includes/builder/styles/frontend-builder-plugin-style.min.css?ver=2.17.6
104.21.68.177200 OK 64 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/plugins/divi-builder/includes/builder/styles/frontend-builder-plugin-style.min.css?ver=2.17.6
IP 104.21.68.177:0
File type AppleWorks Word Processor 0x20, tabstop ruler "CTYPE ", zoomed, with mail merge, 49/10 inch left margin\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1227)
Hash 6095bdb58dc5fb817912ebef895d88f3
c7967667bf841010961f660bcc69bbade88d2641
0b3218b76f70b81a2aff4c8279d88adc1dca40207bc61547e32809c9d548a8f1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/divi-builder/includes/builder/styles/frontend-builder-plugin-style.min.css?ver=2.17.6 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:28 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:06 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ueBDbRfoLwu3wkCmWA5O5zKcd%2FGT1Pavj4fzL7DuzEJNJRwhlobxaOzAK4dCUbeo7Yq211sE4SxfungR8FZ78t7lgnf6WKq8zrVTqh1a%2By073ssALcoS66cAI6H2C49FwwHECOgaftjk0WDSHSY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd8065e2e0afe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
belief.ournuclearfamily.com/wp-content/plugins/td-cloud-library/assets/css/tdb_less_front.css?ver=dc11e23cd0219f30e55307de07f135fc
104.21.68.177200 OK 14 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/plugins/td-cloud-library/assets/css/tdb_less_front.css?ver=dc11e23cd0219f30e55307de07f135fc
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1223), with CRLF, CR, LF line terminators
Hash 7083d75888f24342fb139fffa340a06c
efa11f3a3182fed67cfcb258ffa88003aa60f58d
1650c0cea0a79c8c4924cbe59d3e215b17a4a595ca48e207a8e6a474e29b9e90
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/td-cloud-library/assets/css/tdb_less_front.css?ver=dc11e23cd0219f30e55307de07f135fc HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:28 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:04 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B3otcnD9K5F4Teo4Xw8OV7Yg%2BiLXtvAtSsS%2F0kzJUqXyeLvHkC%2BF1%2F3ZKCR%2FyunqQ6ehR1VPw6wn5aDNVMdW%2FYwtG0EKXDqrcNnBSjKKygUmBia0LlTF%2BLVtLM%2BduG7LwwcNRVTn6dFKrNC7uT4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd806ba5eb4f3-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
belief.ournuclearfamily.com/wp-content/themes/Newspaper/style.css?ver=9.0.1
104.21.68.177200 OK 30 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/themes/Newspaper/style.css?ver=9.0.1
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF, LF line terminators
Hash 7e1d9cfaafd234fafdde481f8dd6f4ef
bd5ce47c900742ec21f16bda3b1749bbf2ad0d6f
804b585a6f6e8042badfe57a93d98c8bc1c76c2256cbe0bccbd4178ddeba71bf
GET /wp-content/themes/Newspaper/style.css?ver=9.0.1 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:28 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:03 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iAUjBH3tOzFF6kmGx%2F%2B9pNmB9yUTZV%2FeslKGfoBnDsHz5jeVlsmNQhbGn0xnNczLLpRezMHYUVLFC8NcOTBfofBilM3vW28xEhGTwG3ZHf8VMTjL5sFqo0r1IdBm%2FfG4%2FDww%2FcHr7C2WttGZpNA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd806b95a0b45-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
belief.ournuclearfamily.com/wp-content/plugins/wp-google-analytics-events/js/ga-scroll-events.js?ver=2.5.2
104.21.68.177200 OK 21 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/plugins/wp-google-analytics-events/js/ga-scroll-events.js?ver=2.5.2
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4541), with CRLF, LF line terminators
Hash 1bd13840f2da7b5550f7b77c1e6cb401
c0a21259eb277591f1881e084f4c6e2812c46baa
3d6f7854c35ddaca133660c81be586e88831521d732a7a93ce486eaf1187b609
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-google-analytics-events/js/ga-scroll-events.js?ver=2.5.2 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:07 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LuftqiHsSqKyB888Bm%2FtHYS%2Bdn1pb49z7uavQOclYua8c45ZjQJV1yBhurHUFwi99aW8D%2BvIQYcJJWtiXJM4QOvhlI8%2Ft2UwCDY4KeZr9vbPY%2BMnCE6iqcSZLNl3Jzm7wzfHru1aI0%2FkTxdsFms%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd806fec60afe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
belief.ournuclearfamily.com/wp-includes/js/jquery/jquery.js?ver=1.12.4
104.21.68.177200 OK 26 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8374), with CRLF, LF line terminators
Hash 7b4462b6ed1f67ff7821430949e9311d
065019d4526f65706a042c67bed4456e1fd0665a
1a341d66a33259063597184becb4fb568b90d6e1898d8b99114fab3372bbd444
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:02 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l1bgmAXE8UNmZsBojOdVJTcE8S7ppYhf6g2Udoe3sQt%2FMg3pGiVZdAEF%2BPqFHYF2VllpS%2BZgnZ4cuXmmUpRtiF0rSPrzeKCxCZGCztsJ7vBtHphAvRGCDfnsYEKpPbfZwyez050MP9Hjsw8aCCY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd806e88c0b02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
belief.ournuclearfamily.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
104.21.68.177200 OK 22 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2827)
Hash 8a77f7d46eb5b32d4d8ebf2c6ba1fc49
02e06616262773a85d80f29ea1de71ecdf7fcc3f
0662217b676d53a54dd659c227d55c83df0803ca24964677d9610883024b81b8
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:06 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i%2F4mCZLR3%2F7p%2Fdi2V08sBE6Q2yw4z98NENrPvRcviOyxnF%2FxJY39EVlmYRjYFcXAnthTwrpapzGEx6FIHR3Pz1wxSdy8u6pkQgBIvOgMW18xBM0w06CMU1%2Ff5imawkcP2BNdBRemsLhv7t7Ceps%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd806eab20af6-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
belief.ournuclearfamily.com/wp-content/plugins/wordpress-popular-posts/public/js/wpp-4.2.0.min.js?ver=4.2.0
104.21.68.177200 OK 26 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/plugins/wordpress-popular-posts/public/js/wpp-4.2.0.min.js?ver=4.2.0
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (45956), with CRLF, LF line terminators
Hash 0597ceb9c3b240e1d294aeab7fff5e7f
4b1e36e26c042247b3f67966d9514c01e194fad3
13c34533b81fd242446be903b5b91c8700656951262eee45926576c55dec06f6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wordpress-popular-posts/public/js/wpp-4.2.0.min.js?ver=4.2.0 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:03 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iiUWM0oFxn1EhqVLNmVzrFWkz%2FQrUzsFkqyrU%2Bw0UV8gCEEICJb6qvStKzopsKNM40Ges0EPr%2F4dIP%2F1fARnzPddIeYRD0pYMZFrM0R0C874fBZ%2Bqjd7C27q9vO0nYwnPc1r5BEP%2BzxXaBFm6UI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd80739e00b45-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
belief.ournuclearfamily.com/wp-content/plugins/arscode-ninja-popups/themes/builder/style.css?ver=4.9.9
104.21.68.177200 OK 18 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/plugins/arscode-ninja-popups/themes/builder/style.css?ver=4.9.9
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (59841), with no line terminators
Hash 3d074907ba89353c70df00560139ee23
11c153e8f3137d558abab5287d41834f79987e3d
b039bc18f585c23403eb7939640b06a52d870675b09494d6f578421a345ede04
GET /wp-content/plugins/arscode-ninja-popups/themes/builder/style.css?ver=4.9.9 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:04 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NQjY3bwQAquAs60tYlEfXh8IdQ%2FTSSBoBYcyVxNqApWj8nrdqHs0flfJaVTPgSgR2l4Jz7y2n3ntl82qs2GR0ki0F1eEwnVHKXhSGZKdlD3LiDWgosmdceKHMHxZIJCfvcgX4C3xTjSDWRZBCWM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd80769390b02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
belief.ournuclearfamily.com/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4
104.21.68.177200 OK 38 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1211), with CRLF line terminators
Hash cc9b5e85127eee617bf7dfecc4812aa7
836a43eda3b9460c38fd2f06f55afbbf8fe3d259
053e7d2de207f54665f38a4369a1a6a4139b797feb57cf7210bd77c9c75eb68a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:07 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P4tb15i8379AShOutxPvpnt%2B84WUpURX759QZ%2FjJDGnclL%2F7NQLc%2FOAugvifpU1ZiZJB6Zl0criXqZmjxHsqwTqNI%2Fo42q%2FzxLKiBXiL1mDc6uXl1NCiX2Lh103Z7wM1p20kmL4LAZAMsJ%2FOAZo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd807abe3b4f3-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
belief.ournuclearfamily.com/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4
104.21.68.177200 OK 68 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (25073), with CRLF, LF line terminators
Hash ec55653de7124378a7a6ed046af22f56
ddeab36298f6506452468fc4163bbeea517e7fe3
5802d15a4ad9703d1b3b3438b0cc200ffbe6dabb38e68fa16b7518d386dd47a0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:04 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F3bGg854GZ%2B0DxpAcB6bKYNSwZptB7bSopCZ4ik1OXyrWgLrz%2Fs%2FL9IfQRDGEgt%2F9dctrx%2B8UMf2cdVZ1jM9FUkzLQKa8dR9CKiAl4e1V1BEdViYYSQZr3RDy5vrc3uGj9Xd%2B%2BDAaqTzrruTlcc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd807aa560b45-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 55362bc853c99806e54641de1e0fdb0c
1c84425554ce994c84fd4d3b95833fed9bf16023
936a1c711aea3c55e6e270aec23f72818b7bbfed28b1c9859697050ebe9aaf4e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Sep 2022 12:14:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
belief.ournuclearfamily.com/wp-content/plugins/arscode-ninja-popups/js/cookie.js?ver=4.9.9
104.21.68.177200 OK 29 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/plugins/arscode-ninja-popups/js/cookie.js?ver=4.9.9
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (16859), with CRLF, LF line terminators
Hash f6812d46d50a810f7f0f6a3212826ab6
ec5fdeeaa6c5b1bb2a1274724200d0a725a384eb
87ce26050698350470c7935d7151dc8212971109081f24a747b4d2cd2f8755b1
GET /wp-content/plugins/arscode-ninja-popups/js/cookie.js?ver=4.9.9 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:05 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B3rcyd4IKoC1TEn08ubo9MT7%2BoBNvAn6p57NSzEb8uK7Z157tYP8q4NoER8gyG1EV1%2F%2BQcOAwZkWafr7xPxhRPVfglACjcT0yFGySh2%2BvO6BrlhkzNenpI3kifOQo4J0Yrn6KshcZAb50An4beE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd807df910afe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ede92f781233f857c299e00d2090aeba
b7296da3b0981e9c1937bf8ebc73d5138c5fa19a
16a97da8a523d4cb06430ff26d026d14377c888e5e80a78937afba38fded3122
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Sep 2022 12:14:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
belief.ournuclearfamily.com/wp-content/plugins/arscode-ninja-popups/js/dialog_trigger.js?ver=4.9.9
104.21.68.177200 OK 38 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/plugins/arscode-ninja-popups/js/dialog_trigger.js?ver=4.9.9
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1464), with CRLF, LF line terminators
Hash f46e633cb28b23cab02d08e16786d0cf
cad905356f13d77cfa1139b8f97ca1df5e6278c7
1e7df9241d9956957781b625ac7ff261841f4bc95f31c2ffc829908d6ae4d93d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/arscode-ninja-popups/js/dialog_trigger.js?ver=4.9.9 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:06 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HtqIWkSQcHA69G51FvTIYrj4z6ngr4Qxs5KEH2HHM%2BYC168J%2FSyA6KnbD8gzPCLBkplLhzSGM8J0hBcOTolBbYPH9gpHmSZvqQZlvAk5PmT%2BKd7OJJUeXHIscFcMN2vb1r7wB%2BaijhqUOD4%2FS3I%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd8082c8fb4f3-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
belief.ournuclearfamily.com/wp-content/plugins/arscode-ninja-popups/js/ninjapopups.min.js?ver=4.9.9
104.21.68.177200 OK 32 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/plugins/arscode-ninja-popups/js/ninjapopups.min.js?ver=4.9.9
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3181), with CRLF, LF line terminators
Hash 15b3554c028d073eeb9d2bf874c177c5
1e0e0ef177e6a322309e8b9c3e1069a1f790a316
d2b5f3fbba96ee84654fff25b92f028fdc6c3065beed7c5f7c1d606b088b445d
GET /wp-content/plugins/arscode-ninja-popups/js/ninjapopups.min.js?ver=4.9.9 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:04 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S%2B%2Btii2rmdsGPORzVNV8m%2BfZ2vkh7FUYm9h116bORVdmKnjIWL0qENJdO2181Vz2WvZMbxyc2OmWCiBt5Q3uocf4ZurCCmNRvYo4lB8edQwx%2BcRZx2EwNJ8M7wg3Goi%2BdCjhqFE%2BYaFmoWVWDcw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd8084b060b45-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
belief.ournuclearfamily.com/wp-content/plugins/arscode-ninja-popups/fancybox2/jquery.fancybox.min.js?ver=4.9.9
104.21.68.177200 OK 27 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/plugins/arscode-ninja-popups/fancybox2/jquery.fancybox.min.js?ver=4.9.9
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (548), with CRLF, LF line terminators
Hash 084fea63a4312c0c926e4204801d77d4
7a70a978e7192059a980dcfee2729a67e053c842
8e79ea5b73a9e99044372ce9c31694ac70f11915c4889b34506fa0f5044bebbf
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/arscode-ninja-popups/fancybox2/jquery.fancybox.min.js?ver=4.9.9 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:05 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=amhSWqoRLKSCzuOBts%2FzNewQSJVSjx7LBUdC6LHWEdSIbS429FLbkr1tui4dnCM7pkyykKWcZdg6Pb0EH6jFf09qRefbhSvJODa2R03%2B%2B2645lLenOQo%2FsFmNmg1th%2FnSG07%2FnAcOg4sWG5pYJ4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd8086a500b06-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
maps.google.com/maps/api/js?key=AIzaSyBNIsU_Nn_Fz0LldlyTKSjGyzSvy3w1_54&libraries=geometry%2Cplaces%2Cweather%2Cpanoramio%2Cdrawing&language=el&ver=4.9.9
216.58.211.14200 OK 60 kB URL HTTP/2 maps.google.com/maps/api/js?key=AIzaSyBNIsU_Nn_Fz0LldlyTKSjGyzSvy3w1_54&libraries=geometry%2Cplaces%2Cweather%2Cpanoramio%2Cdrawing&language=el&ver=4.9.9
IP 216.58.211.14:0
File type ASCII text, with very long lines (2409)
Hash 0ee4c7968ea9307290f637b792b10e3c
f5a81ff9ca9cd3c811cee061535a9c9f5ea4526d
c8ca2ea43a62281700b3f9698c470d4cc4a87d07385b3697f2348ce33ec29fc4
GET /maps/api/js?key=AIzaSyBNIsU_Nn_Fz0LldlyTKSjGyzSvy3w1_54&libraries=geometry%2Cplaces%2Cweather%2Cpanoramio%2Cdrawing&language=el&ver=4.9.9 HTTP/1.1
Host: maps.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Fri, 09 Sep 2022 12:14:29 GMT
expires: Fri, 09 Sep 2022 12:44:29 GMT
cache-control: public, max-age=1800
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 60152
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=30
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
belief.ournuclearfamily.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.0.5
104.21.68.177200 OK 46 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.0.5
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10806)
Hash edcc437632d07422849c359378f6451a
d2de6ba944499856dfb57cdcfd40d4cc21a7a5da
136430bfbe5ebf45c7c40bb457d982971a2a40cc0435d543a156438a52faf89d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.0.5 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:02 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D0PIiF7e8swUjecH3bTvGBA0fQuamh%2FZg9rxO0%2FTKcKhZH%2Fre%2FBQdDx33Po24mE2ifhzN56mTWXvABDSwB5K4XZx8xJOzdM4PPXgCOetQ5fP%2FnkooS0Nezm%2BtGZerL9HMmfgluetax6UOkdoV7s%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd808680d0afe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
belief.ournuclearfamily.com/wp-includes/js/comment-reply.min.js?ver=4.9.9
104.21.68.177200 OK 28 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-includes/js/comment-reply.min.js?ver=4.9.9
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (33486), with CRLF, LF line terminators
Hash 1f1216e149bd858144b05af233046504
793a026f1f558fb8227ba6e3f5d60a2fa8ca9838
7512a7fce7c02ab8a29581155bd05cad0a632a426415a724adade67ed92f8538
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/comment-reply.min.js?ver=4.9.9 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:05 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F8kI3E%2FXwg8mgtA0HPH9fMJMW%2Fn%2B%2BswbhGGJeUNZc6622%2BzSQ1GYXH2zlAAs1hlI4tkYCI6dNQGPLh6M11neEQgBr7TCaAu2nf6D7XcKjDawl923zwk5OkrJQRQ1RAOV%2B22HVjzdBk9qLscSDKE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd8087a530b02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
belief.ournuclearfamily.com/wp-content/themes/Newspaper/js/tagdiv_theme.min.js?ver=9.0.1
104.21.68.177200 OK 16 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/themes/Newspaper/js/tagdiv_theme.min.js?ver=9.0.1
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (505), with CRLF, LF line terminators
Hash 62fbb82819bf4227f536d8f8b4a9f236
fd889f2252226835538813d8828987a451fac499
2d54272cb4029a73f874b6917ca2e456a0b410af01b127dca2e01465f2c80219
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Newspaper/js/tagdiv_theme.min.js?ver=9.0.1 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:06 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j%2BqvWQOYDl5u%2BYShBWc7ecx8AoLBDWU0Hw920xNkqx2ZCgLA9%2Bs%2B34nNp%2FvyGXgrfdczesWD7foTInwvyj6%2FkySo6fQ9pEVuCs%2FvX%2Bx3ELrYTLAvWsOYesCuWn7BZgQnQUJkTIEoFyDDPRpKotI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd8087c700af6-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
belief.ournuclearfamily.com/wp-content/plugins/divi-builder/js/divi-builder.min.js?ver=2.17.6
104.21.68.177200 OK 38 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/plugins/divi-builder/js/divi-builder.min.js?ver=2.17.6
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1464), with CRLF, LF line terminators
Hash 0ce7735895c612033bf277a72e3326ab
192824348c8f8e260a616c76187ecd22081ada24
b1ac24ce649a78ba586787cf0f3011edee202c3525d548a89bf6bf2db3628231
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/divi-builder/js/divi-builder.min.js?ver=2.17.6 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:06 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b30k2%2F%2FVm%2BuUqIVnsDqMXdWlUjsZho0VKrhBMH2tfhecwfWrEyicWQBcfILnb2cXUbIdjiTH7QCZFjSZNtVWxT0yE43IWTHIL4aEDxcMVoChsWcubuFBsQPyWrEw7zsxwtIxK7nA%2FQtn%2B3UTUhk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd8089d32b4f3-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 55362bc853c99806e54641de1e0fdb0c
1c84425554ce994c84fd4d3b95833fed9bf16023
936a1c711aea3c55e6e270aec23f72818b7bbfed28b1c9859697050ebe9aaf4e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Sep 2022 12:14:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
belief.ournuclearfamily.com/wp-content/plugins/wp-google-map-gold/assets/js/maps.js?ver=2.3.4
104.21.68.177200 OK 13 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/plugins/wp-google-map-gold/assets/js/maps.js?ver=2.3.4
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (34720), with CRLF, LF line terminators
Hash c9bf622615285df070b7a25e50196e19
8025afdcff384b37e0582e6f513701a2918cb716
1965c5e0745bec6a02cbf8fca2823b90e34d6bf561522868d100a629e83f21c5
GET /wp-content/plugins/wp-google-map-gold/assets/js/maps.js?ver=2.3.4 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:06 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UlOi7kx9bhLhvQXNg8teTi7twWmGRejubiYsFh5gbBVP%2Bf1di9CfQWwoOK3Kxxd9Er%2BmRi0RMLt2DDhjvWPx9zt9CyVmBf%2BsdKN7g2B%2B8uO0aH%2BxYWQDuQCcn3mw02DwHdSvZzktHhibALbTna8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd808ab6c0b45-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
belief.ournuclearfamily.com/wp-content/plugins/divi-builder/core/admin/js/common.js?ver=3.17.6
104.21.68.177200 OK 31 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/plugins/divi-builder/core/admin/js/common.js?ver=3.17.6
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2677)
Hash f747f63694073e6e1988867744ecde05
78e9b0e6c0dc3899f7ca2ececb3c0c7a86132fa0
7e9f3070fbda35038e34ad750abca8f9d4a674fff0dc10d6ff79b956caf6a02a
GET /wp-content/plugins/divi-builder/core/admin/js/common.js?ver=3.17.6 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:04 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fg11xpd7kEfwe2XTWzb8Kjz%2FKwMP25Y%2F%2FgwS%2BvN3tQNJB0FnLsi%2BD%2BvywBDEAsbtafTtu%2FwAWHK2lhz7PKlOyb6ONV8MVbAlrAqHXhydFcyfc75FIFro7%2FQMr4m6U9n5zg4BW0F%2FKvLkB6RzuKo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd808cabd0b06-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
amp.cloudflare.com/viewer/rtv/011-4-71/amp-viewer.js
104.16.133.229404 Not Found 9 B URL HTTP/2 amp.cloudflare.com/viewer/rtv/011-4-71/amp-viewer.js
IP 104.16.133.229:0
File type ASCII text, with no line terminators
Hash 9e076f5885f5cc16a4b5aeb8de4adff5
475c848673a3f79fa778f01c2bd5a721d4c41707
e3ebaa16dd9d9b9fc107c42183fb6cf9d22927e1af03dbbdfa0ccc38e4e4ac31
GET /viewer/rtv/011-4-71/amp-viewer.js HTTP/1.1
Host: amp.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://belief.ournuclearfamily.com
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Fri, 09 Sep 2022 12:14:29 GMT
content-type: text/plain;charset=UTF-8
content-length: 9
set-cookie: __cf_bm=_Z5iIqUtsI.5DPgAs_f23nxFUGaK8o2dU_oBbWfW55o-1662725669-0-AcjW+vUpYwQ79y/esN8DLAyFgLZ4jdOKIanUVYQ6TXIXp2b11o8rxMktNSOX5oXQ6b6yfS5J2kp1S8fcvkhOsC0=; path=/; expires=Fri, 09-Sep-22 12:44:29 GMT; domain=.cloudflare.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rjXGhWGY3xPnLNldVah4mlrj4f0IDxiLFZI7PoSLxACUeD%2BzVqi3HNrmRrI%2BRLBFIA%2BHrCKO%2B7y%2Frk3rf6eUk0FkD6EAVmFIdRbumMaP9yhqZgJjlta4WTYDWmEpyLxKeNG1lw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15780000; includeSubDomains
server: cloudflare
cf-ray: 747fd8090bd1b521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
belief.ournuclearfamily.com/wp-includes/js/wp-embed.min.js?ver=4.9.9
104.21.68.177200 OK 18 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-includes/js/wp-embed.min.js?ver=4.9.9
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1025), with CRLF, LF line terminators
Hash a5427a7fc34774f63c5ba6450f15c789
cd8f328ce2d838a5d8811ae2fc04d67dd7eaeaaf
f8d5135aafe6aff604b8b98c80ba9395f4367d3dc7ebd1f4590df0cdc5d08baf
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-embed.min.js?ver=4.9.9 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:02 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D8etw%2BrQ3tG%2FeyZ9SmgdkdBM6x9IdNB8qLc3UPAMNBbSIhSa6FwVmP%2BPxUrKzfArA1rHHWDCXZwV33fK4GX42HoLJukC%2Bf8gfszNO4XKmR9Cl5DRrlsl%2B%2FNFxZF9Pbwv9i5PPR%2BSTKJwUWX%2Fbdk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd8090aec0b02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
belief.ournuclearfamily.com/wp-content/uploads/2018/12/cheffing-218x150.jpg
104.21.68.177502 Bad Gateway 6.5 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/uploads/2018/12/cheffing-218x150.jpg
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 041cfa715157b2fcc5b3fdcb2781883a
0a1c83533455906990d1f8b69e9bb716246b4f17
3f8d816470799d102fc8c4d404889c9200038e6d726453f36d99ad8124eb22eb
GET /wp-content/uploads/2018/12/cheffing-218x150.jpg HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 502 Bad Gateway
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 09-Sep-22 12:14:59 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 747fd8092de8b4f3-OSL
Server: cloudflare
belief.ournuclearfamily.com/wp-content/plugins/td-cloud-library/assets/js/js_files_for_front.min.js?ver=dc11e23cd0219f30e55307de07f135fc
104.21.68.177200 OK 29 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/plugins/td-cloud-library/assets/js/js_files_for_front.min.js?ver=dc11e23cd0219f30e55307de07f135fc
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (16859), with CRLF, LF line terminators
Hash 628fb4b68f6b2617e7cfb8b60cf6e0ec
cb3823d648e4067ac15e7a40cc06ab18584ba85e
4e0749872a56b63e1123e7470454628cf734bca0e80302ba16f7212316d7e9e8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/td-cloud-library/assets/js/js_files_for_front.min.js?ver=dc11e23cd0219f30e55307de07f135fc HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:05 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RA67qzTuy0WGVU%2FhLcPVFKJW170uHATBwsEesvfUXixwHP1N%2F0yXAWqXJ3gUaR463fjeXw6gzR1q1sowWs3LFgg7K9aVkC%2BoS3A%2BqOtHwMuey25wDuEXmtFLnpO5Qi9Tf5CMLTdEZqdZG2%2BxLn4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd808e8b30afe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
belief.ournuclearfamily.com/wp-content/uploads/2018/12/thomas-kelley-175678-unsplash-218x150.jpg
104.21.68.177502 Bad Gateway 6.5 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/uploads/2018/12/thomas-kelley-175678-unsplash-218x150.jpg
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 12be3f3d2de6200afce2ace6ef0f66f7
18654053a577cd9a4a7d0c18a0a831798a64bc89
01b5510f5be8f36f16865fe37068ccea07f07d17b721ea6be9cbfdb9ed20a5b0
GET /wp-content/uploads/2018/12/thomas-kelley-175678-unsplash-218x150.jpg HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 502 Bad Gateway
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 09-Sep-22 12:14:59 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 747fd8090cfa0af6-OSL
Server: cloudflare
belief.ournuclearfamily.com/wp-content/uploads/2018/12/lucas-albuquerque-615558-unsplash-218x150.jpg
104.21.68.177502 Bad Gateway 6.5 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/uploads/2018/12/lucas-albuquerque-615558-unsplash-218x150.jpg
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 83e8efff56b04ef1b69594146fce3556
7315743a7b8085ef165b1177c7c01dd3913ee665
ae44e60b68537826cf7d7e635c89c3dfa5a40ff488bd002896ec1fbed02b0899
GET /wp-content/uploads/2018/12/lucas-albuquerque-615558-unsplash-218x150.jpg HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 502 Bad Gateway
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 09-Sep-22 12:14:59 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 747fd8096b5d0b06-OSL
Server: cloudflare
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ede92f781233f857c299e00d2090aeba
b7296da3b0981e9c1937bf8ebc73d5138c5fa19a
16a97da8a523d4cb06430ff26d026d14377c888e5e80a78937afba38fded3122
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Sep 2022 12:14:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
aff.bstatic.com/static/affiliate_base/js/flexiproduct.js?v=1662725660606
143.204.55.39301 Moved Permanently 183 B URL HTTP/1.1 aff.bstatic.com/static/affiliate_base/js/flexiproduct.js?v=1662725660606
IP 143.204.55.39:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash e4e384d6672787c1bb2a9b500114f1f5
cf909e7937cd3f312c434367b732a53d7a6cbf14
80785f5520097dde3b28c617171415cd690cbf1e0353a5f3e348c83a4656ea0f
GET /static/affiliate_base/js/flexiproduct.js?v=1662725660606 HTTP/1.1
Host: aff.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html
Content-Length: 183
Connection: keep-alive
Location: https://aff.bstatic.com/static/affiliate_base/js/flexiproduct.js?v=1662725660606
X-Cache: Redirect from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: j-TEq-YnXwxmx4LKG9qEEaxM6LHb3ugJaQ7y_X-CMrXXMtLZZsEUxg==
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
142.250.74.163200 OK 17 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Hash e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://belief.ournuclearfamily.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 16740
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 05 Sep 2022 19:01:10 GMT
Expires: Tue, 05 Sep 2023 19:01:10 GMT
Cache-Control: public, max-age=31536000
Age: 321199
Last-Modified: Mon, 15 Aug 2022 18:14:44 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4jaVIGxA.woff2
142.250.74.163200 OK 9.0 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4jaVIGxA.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 8952, version 1.0\012- data
Hash b8ff821b54d8701399dad0bab071ae96
028954d24edcc6daf074d20081cc04ae7ee28128
7bd5dafcffe6e1c9c5c4b07cdf36301e5de79104569642aa9899c98a7abbb5c9
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4jaVIGxA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://belief.ournuclearfamily.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 8952
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 06 Sep 2022 02:21:05 GMT
Expires: Wed, 06 Sep 2023 02:21:05 GMT
Cache-Control: public, max-age=31536000
Age: 294804
Last-Modified: Mon, 15 Aug 2022 18:11:28 GMT
Content-Type: font/woff2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 61961ee76ab6c28f6e17eb7a1df4a3ea
ab4e8c9c284a0eed6b2fab77c9df432839158b3a
9e3bec23cc8ea49ab4e3a3a244a428c59e6c48c80359c473155584807ba0de41
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Sep 2022 12:14:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 61961ee76ab6c28f6e17eb7a1df4a3ea
ab4e8c9c284a0eed6b2fab77c9df432839158b3a
9e3bec23cc8ea49ab4e3a3a244a428c59e6c48c80359c473155584807ba0de41
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Sep 2022 12:14:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
belief.ournuclearfamily.com/wp-content/plugins/arscode-ninja-popups/font-awesome/css/font-awesome.min.css?ver=4.9.9
104.21.68.177200 OK 471 B URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/plugins/arscode-ninja-popups/font-awesome/css/font-awesome.min.css?ver=4.9.9
IP 104.21.68.177:0
Hash 0adcdf311c307962c09ff6e0b3a4d0a6
2f358cc3b121ec7340c2c38721c292cd7fb0ebb4
2bbda38cb2eb20dbe9286311420c33cd52e7582fd336fcbbcaa922464507635a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/arscode-ninja-popups/font-awesome/css/font-awesome.min.css?ver=4.9.9 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:07 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DFl38dsIQhShYbqTyeS3i3iyPxzzZbTxxgotvSltPdS92SHBrSqgrk%2BxQMDrhiglfTCJ%2FLk9pIVEkCSGrIsrwmb4FPOCEgsahmuyFCaIWq6FxVUKLA5fZeodlxevYtXsQ6mg76on2CJ%2FAQ0O0Vk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd8077b310af6-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Fri, 09 Sep 2022 11:56:07 GMT
Expires: Fri, 09 Sep 2022 12:30:37 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: M7OrjJeCLElkVTI2aFBCRTStDjqUv-u850TCvLJgUq5-YGpDaLqWcQ==
Age: 1102
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 61961ee76ab6c28f6e17eb7a1df4a3ea
ab4e8c9c284a0eed6b2fab77c9df432839158b3a
9e3bec23cc8ea49ab4e3a3a244a428c59e6c48c80359c473155584807ba0de41
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Sep 2022 12:14:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 61961ee76ab6c28f6e17eb7a1df4a3ea
ab4e8c9c284a0eed6b2fab77c9df432839158b3a
9e3bec23cc8ea49ab4e3a3a244a428c59e6c48c80359c473155584807ba0de41
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Sep 2022 12:14:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuk6F15M.woff2
142.250.74.163200 OK 22 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuk6F15M.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 22372, version 1.0\012- data
Hash 0baeca519c89870f0e2cf29147dd34a8
a1654b86b895556d0f964b1df0296df6262d8c18
43349e770e72367541ec5bd99d50fce1853c281b9b30ad5859a0aa7249458694
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuk6F15M.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://belief.ournuclearfamily.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22372
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 01:22:02 GMT
expires: Wed, 06 Sep 2023 01:22:02 GMT
cache-control: public, max-age=31536000
age: 298347
last-modified: Mon, 15 Aug 2022 18:16:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.163200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://belief.ournuclearfamily.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 08:31:01 GMT
expires: Wed, 06 Sep 2023 08:31:01 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
age: 272608
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
belief.ournuclearfamily.com/cdn-cgi/mirage_speedtest/1662725660909
104.21.68.177200 OK 102 kB URL HTTP/1.1 belief.ournuclearfamily.com/cdn-cgi/mirage_speedtest/1662725660909
IP 104.21.68.177:0
Size 102 kB (102400 bytes)
Hash 4c6426ac7ef186464ecbb0d81cbfcb1e
5a6918eebd9d635e8f632e3ef34e3792b1b5ec13
f627ca4c2c322f15db26152df306bd4f983f0146409b81a4341b9b340c365a16
Analyzer Verdict Alert fortinet Phishing
GET /cdn-cgi/mirage_speedtest/1662725660909 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Cookie: cf_use_ob=0
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: application/octet-stream
Content-Length: 102400
Connection: keep-alive
Last-Modified: Tue, 06 Sep 2022 17:30:38 GMT
ETag: "631783be-19000"
Server: cloudflare
CF-RAY: 747fd80afd9d0b45-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Mirage-Transfer-Size: 102400
X-Mirage-Server-Time: 1662725669.591
Accept-Ranges: bytes
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
142.250.74.163200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Hash 17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://belief.ournuclearfamily.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Sep 2022 18:59:14 GMT
expires: Tue, 05 Sep 2023 18:59:14 GMT
cache-control: public, max-age=31536000
age: 321315
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
belief.ournuclearfamily.com/wp-content/themes/Newspaper/includes/demos/gadgets/demo_style.css?ver=9.0.1
104.21.68.177200 OK 0 B URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/themes/Newspaper/includes/demos/gadgets/demo_style.css?ver=9.0.1
IP 104.21.68.177:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Newspaper/includes/demos/gadgets/demo_style.css?ver=9.0.1 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:02 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M%2BUfyfOY0KjPWy2jpthO0Wc%2F8KRlBdfDZmbbZuxNO1%2BkTX5boPJ%2FXe6TypCb%2BFN4otcTa3MLfyDLB0xCSH9aa3iqD2JgXs6KfNYbGJazlxbvaUtcNuzdEgLumTu722ZlW6nLOeLTu0lakjMxYeI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd806b8b90b06-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
fonts.googleapis.com/css?family=Open+Sans%3A300italic%2C400%2C400italic%2C600%2C600italic%2C700%2C500%2C800%7CRoboto%3A300%2C400%2C400italic%2C500%2C500italic%2C700%2C900%2C600%2C800&ver=9.0.1
142.250.74.10200 OK 1.9 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A300italic%2C400%2C400italic%2C600%2C600italic%2C700%2C500%2C800%7CRoboto%3A300%2C400%2C400italic%2C500%2C500italic%2C700%2C900%2C600%2C800&ver=9.0.1
IP 142.250.74.10:0
Hash 827f51231b5e93fd47ba9e8bbca9a2d0
6861cfa9eb54f3f565506dcb55c0f48cf78f5b28
8b7e72ca1719edcfdd61090c5d8c6ebcb2051d41cc1ee93cffb8c219bd0b6a26
GET /css?family=Open+Sans%3A300italic%2C400%2C400italic%2C600%2C600italic%2C700%2C500%2C800%7CRoboto%3A300%2C400%2C400italic%2C500%2C500italic%2C700%2C900%2C600%2C800&ver=9.0.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 09 Sep 2022 12:14:29 GMT
date: Fri, 09 Sep 2022 12:14:29 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0adcdf311c307962c09ff6e0b3a4d0a6
2f358cc3b121ec7340c2c38721c292cd7fb0ebb4
2bbda38cb2eb20dbe9286311420c33cd52e7582fd336fcbbcaa922464507635a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4914
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 09 Sep 2022 12:14:29 GMT
Last-Modified: Fri, 09 Sep 2022 10:52:35 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
www.travelstories.gr/?wordfence_lh=1&hid=BDA9BC6D6DF9AB8EFA8082B666D26558&r=0.7211379532033615
172.67.72.203301 Moved Permanently 0 B URL HTTP/1.1 www.travelstories.gr/?wordfence_lh=1&hid=BDA9BC6D6DF9AB8EFA8082B666D26558&r=0.7211379532033615
IP 172.67.72.203:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?wordfence_lh=1&hid=BDA9BC6D6DF9AB8EFA8082B666D26558&r=0.7211379532033615 HTTP/1.1
Host: www.travelstories.gr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 301 Moved Permanently
Date: Fri, 09 Sep 2022 12:14:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 09 Sep 2022 13:14:29 GMT
Location: https://www.travelstories.gr/?wordfence_lh=1&hid=BDA9BC6D6DF9AB8EFA8082B666D26558&r=0.7211379532033615
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KYQ%2FybcPGnKmZZNYDovSG1cIrqNk52m2rhgRp0qHpvWBs9r9DxW1p%2BqLjDVP2kYQezZf3Dcusf8ef39gKjuQXpTj469OjahCrpUWh5sWBIJ3DpcV1dDXNIQB%2FeodD4NSsDai4Un9"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 747fd80b8bebb51d-OSL
alt-svc: h2=":443"; ma=60
belief.ournuclearfamily.com/wp-content/uploads/2017/07/TraveStories_Logo_square_152.png
104.21.68.177502 Bad Gateway 6.5 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/uploads/2017/07/TraveStories_Logo_square_152.png
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 387c57441e2bb168d359e94a7218750c
78b918aa0d312edea8b4576543bdbe7b9c954985
8f68c7c2ded3b4755892098b3e7badbc4cafa51ac53cff384a02cf1ba91be26b
GET /wp-content/uploads/2017/07/TraveStories_Logo_square_152.png HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Cookie: cf_use_ob=0
HTTP/1.1 502 Bad Gateway
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 09-Sep-22 12:14:59 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 747fd80b7e140b45-OSL
Server: cloudflare
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash dad8f08be4d6d5166c7f54004cb37c64
949b5738d5c880445510774f1da0e0af667308b3
398205f8248c3e00126eb21e6cb1d4e21a981a1b46d59ff4993e6023f33c6b9f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Sep 2022 12:14:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 54f9e2ed11c19f565afc5d45d2f1e499
5c933cf89e4be594a152d7b1aa7bed6ab42169df
1deae88857366dba09c5e498d9067529377741b3c51b711b4adb88d861f58718
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Sep 2022 12:14:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
belief.ournuclearfamily.com/favicon.ico
104.21.68.177200 OK 19 kB URL HTTP/1.1 belief.ournuclearfamily.com/favicon.ico
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2950)
Hash 59de9391dad287828b2e6466b0c8d7c6
32bd197e03a99d46afcfb152ce7c250fe3344931
76c6885e63469adacaae3d9dc20946b87dbe416706c932f46d52eb36c678d418
GET /favicon.ico HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Cookie: cf_use_ob=0
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:07 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u2qDNw0xvJnWhkHL%2BqBXhEwb4dfyXR18ld3ms%2BCLbV%2FX5Ylh4eHnhxN8Ud%2BAjNOGXbuKAWl3GyIVj8QI0s0%2FnxOItP5wULHoNUw1fRjRrfeyDBF1SxzrR4651skZg40u7MAUCdoTid2QYjurJfI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd80b7b5b0afe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Fri, 09 Sep 2022 10:41:12 GMT
expires: Fri, 09 Sep 2022 12:41:12 GMT
cache-control: public, max-age=7200
age: 5597
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
aff.bstatic.com/static/affiliate_base/js/flexiproduct.js?v=1662725660606
143.204.55.39200 OK 31 kB URL HTTP/2 aff.bstatic.com/static/affiliate_base/js/flexiproduct.js?v=1662725660606
IP 143.204.55.39:0
File type ASCII text, with very long lines (6217), with no line terminators
Hash 875bb28da6636a8a49e22e73ecba7128
789898dccffb5e90c1be673de61f3f720e6764b2
c3cf8d6d71218dd8ae40b36820c34a800aad60f679543e4b3c642f520124d8af
GET /static/affiliate_base/js/flexiproduct.js?v=1662725660606 HTTP/1.1
Host: aff.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://belief.ournuclearfamily.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 09 Sep 2022 12:14:29 GMT
last-modified: Mon, 13 Jun 2022 03:41:28 GMT
etag: W/"62a6b1e8-1849"
expires: Sun, 09 Oct 2022 12:14:29 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hL4gHWMq62Fp6PMSSsJTiXO2dR1s8fcdbOcL7fzeQjySRUs65Crrog==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 54f9e2ed11c19f565afc5d45d2f1e499
5c933cf89e4be594a152d7b1aa7bed6ab42169df
1deae88857366dba09c5e498d9067529377741b3c51b711b4adb88d861f58718
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Sep 2022 12:14:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
belief.ournuclearfamily.com/wp-content/uploads/2017/07/TraveStories_Logo_f.png
104.21.68.177502 Bad Gateway 6.5 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/uploads/2017/07/TraveStories_Logo_f.png
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 398cfb137f9b90d85836422cf60b0cae
72a29192c9984faa8cd8dc85d9a3b9bb32d2020b
4362bbda5019ed70e129a71eb8f067aab430d975c2ccb01a3c11c3e20f8a2823
GET /wp-content/uploads/2017/07/TraveStories_Logo_f.png HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Cookie: cf_use_ob=0
HTTP/1.1 502 Bad Gateway
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 09-Sep-22 12:14:59 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 747fd80c3ec30b45-OSL
Server: cloudflare
belief.ournuclearfamily.com/wp-content/uploads/2017/09/TraveStories_Logo_01_white_a.png
104.21.68.177502 Bad Gateway 6.5 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/uploads/2017/09/TraveStories_Logo_01_white_a.png
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash ce588c6722cc08939d451665eb38f209
43b81ad453a73c72df5c223b76b62c4d561c40ee
ebb3ac96f645bfcc47cdf73428a1d5f83cdca40cc3c2e2ac6108b17d5ba49035
GET /wp-content/uploads/2017/09/TraveStories_Logo_01_white_a.png HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Cookie: cf_use_ob=0
HTTP/1.1 502 Bad Gateway
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 09-Sep-22 12:14:59 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 747fd80c3c200afe-OSL
Server: cloudflare
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d0c56e0b2955a5dd7f37ba4bbf5727b4
f435bd1f6fb8ec931f1817fe4b91e6b86a7cb14b
99f7da9dca677db8e9cec5491c0d6d8a86b9c5e907907c2fdd30973c747f4282
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2290
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 09 Sep 2022 12:14:29 GMT
Last-Modified: Fri, 09 Sep 2022 11:36:19 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
belief.ournuclearfamily.com/wp-content/uploads/2018/04/05-Marseille.jpg
104.21.68.177502 Bad Gateway 6.5 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/uploads/2018/04/05-Marseille.jpg
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 38bd25805a2222432758ee98e70f7dd5
8d73d580e037e45266886d59ebb9554550cfb835
b1dc0e82e7bb791e7554306d178fc7a49bdf91b2160a26229b82e69715422017
GET /wp-content/uploads/2018/04/05-Marseille.jpg HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Cookie: cf_use_ob=0
HTTP/1.1 502 Bad Gateway
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 09-Sep-22 12:14:59 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 747fd80c3fda0af6-OSL
Server: cloudflare
belief.ournuclearfamily.com/wp-content/uploads/wordpress-popular-posts/366955-featured-150x100.jpg
104.21.68.177502 Bad Gateway 6.5 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/uploads/wordpress-popular-posts/366955-featured-150x100.jpg
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 3708c22612e8a976aa46a521ccb76633
56b050c43a743898b5497a64342c8c9d804428db
ae8edf002053277c7ac288711d32a49a63c55575fc925fd58f5545bb7fd47f22
GET /wp-content/uploads/wordpress-popular-posts/366955-featured-150x100.jpg HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Cookie: cf_use_ob=0
HTTP/1.1 502 Bad Gateway
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 09-Sep-22 12:14:59 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 747fd80c5ee90b06-OSL
Server: cloudflare
belief.ournuclearfamily.com/wp-content/uploads/wordpress-popular-posts/365804-featured-150x100.jpg
104.21.68.177502 Bad Gateway 6.5 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/uploads/wordpress-popular-posts/365804-featured-150x100.jpg
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 6758acb5dee2439f65b4087acde4b4db
0d9b4e2dd4474b4064c28fa284195c28d1ba1292
fd2604d0d004c0b83bbf797fc9834ac29c1d8ecbc3898b10bcab16cfe33573d2
GET /wp-content/uploads/wordpress-popular-posts/365804-featured-150x100.jpg HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Cookie: cf_use_ob=0
HTTP/1.1 502 Bad Gateway
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 09-Sep-22 12:14:59 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 747fd80c5ef60b02-OSL
Server: cloudflare
belief.ournuclearfamily.com/wp-content/uploads/wordpress-popular-posts/363490-featured-150x100.jpg
104.21.68.177502 Bad Gateway 6.5 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/uploads/wordpress-popular-posts/363490-featured-150x100.jpg
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash e21d4eebdcf5034bf292e489c0cc4ea5
a11741ca437207ea6500d64097feea5db87ff891
16c2573a0039f0a2886224aef0a0b56929da6cfacbb29f34244788b326b307a3
GET /wp-content/uploads/wordpress-popular-posts/363490-featured-150x100.jpg HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Cookie: cf_use_ob=0
HTTP/1.1 502 Bad Gateway
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 09-Sep-22 12:14:59 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 747fd80c4a49b4f3-OSL
Server: cloudflare
belief.ournuclearfamily.com/wp-content/uploads/2018/12/thomas-kelley-175678-unsplash-218x150.jpg
104.21.68.177502 Bad Gateway 6.5 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/uploads/2018/12/thomas-kelley-175678-unsplash-218x150.jpg
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 45e4df7ab4f2bf56f0cf2a9bd8212812
13d2b6bd86bf8580a802bf4a85a302747267ffdd
4cf74e025d0f2421b7742d2e3961dad78a56a71a9e404cbd61cba400a50b9065
GET /wp-content/uploads/2018/12/thomas-kelley-175678-unsplash-218x150.jpg HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Cookie: cf_use_ob=0; _ga=GA1.2.147791662.1662725661; _gid=GA1.2.129866829.1662725661
HTTP/1.1 502 Bad Gateway
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 09-Sep-22 12:14:59 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 747fd80c6ee90b45-OSL
Server: cloudflare
www.booking.com/flexiproduct.html?product=dfl2&w=300&h=400&lang=el&aid=1332462&target_aid=317904&selected_currency=EUR&dest_id=-1456928&dest_type=city&fid=1662725661020&
5.57.17.220301 Moved Permanently 0 B URL HTTP/1.1 www.booking.com/flexiproduct.html?product=dfl2&w=300&h=400&lang=el&aid=1332462&target_aid=317904&selected_currency=EUR&dest_id=-1456928&dest_type=city&fid=1662725661020&
IP 5.57.17.220:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /flexiproduct.html?product=dfl2&w=300&h=400&lang=el&aid=1332462&target_aid=317904&selected_currency=EUR&dest_id=-1456928&dest_type=city&fid=1662725661020& HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
server: nginx
date: Fri, 09 Sep 2022 12:14:29 GMT
transfer-encoding: chunked
location: https://www.booking.com/flexiproduct.html?product=dfl2&w=300&h=400&lang=el&aid=1332462&target_aid=317904&selected_currency=EUR&dest_id=-1456928&dest_type=city&fid=1662725661020&
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=4db9561262dd009b&e=UmFuZG9tSVYkc2RlIyh9YRXtvWBsZHB6V-Jh6sqVBe8o9Hr_CBjpqwG4n2OFUMsw57FOEWVRp_4;
x-xss-protection: 1; mode=block
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash dad8f08be4d6d5166c7f54004cb37c64
949b5738d5c880445510774f1da0e0af667308b3
398205f8248c3e00126eb21e6cb1d4e21a981a1b46d59ff4993e6023f33c6b9f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Sep 2022 12:14:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
belief.ournuclearfamily.com/wp-content/uploads/2018/12/cheffing-218x150.jpg
104.21.68.177502 Bad Gateway 6.5 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/uploads/2018/12/cheffing-218x150.jpg
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash ca5fd982677e3e06cac1314a54f8cbbd
42bf8c8d657863aa85ab4c9d4bcbe397730332d2
e43f1d883d7d5f88c6c290f63bac780bf9c0e858e23f5504678d30379a60c82c
GET /wp-content/uploads/2018/12/cheffing-218x150.jpg HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Cookie: cf_use_ob=0; _ga=GA1.2.147791662.1662725661; _gid=GA1.2.129866829.1662725661
HTTP/1.1 502 Bad Gateway
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 09-Sep-22 12:14:59 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 747fd80c7c680afe-OSL
Server: cloudflare
belief.ournuclearfamily.com/wp-content/uploads/2017/07/TraveStories_Logo_01_white.png
104.21.68.177502 Bad Gateway 6.5 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/uploads/2017/07/TraveStories_Logo_01_white.png
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash eb809aa1206c271c8c7383155f027176
efb168bf2b201a730fa92d0169743cf58c28dfcd
fe1c8b2038ee9f267447701df42ee18321a63a838907e4dad65e7a92d959b344
GET /wp-content/uploads/2017/07/TraveStories_Logo_01_white.png HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Cookie: cf_use_ob=0; _ga=GA1.2.147791662.1662725661; _gid=GA1.2.129866829.1662725661
HTTP/1.1 502 Bad Gateway
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 09-Sep-22 12:14:59 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 747fd80c8f4a0b06-OSL
Server: cloudflare
belief.ournuclearfamily.com/wp-content/uploads/2018/12/lucas-albuquerque-615558-unsplash-218x150.jpg
104.21.68.177502 Bad Gateway 6.5 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/uploads/2018/12/lucas-albuquerque-615558-unsplash-218x150.jpg
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash a03728c7d3e86361c11e556f7891bc1a
69969de7144b56a543a1934e6ad817d48b933f97
61307ae4ee0a1346e0863f54d4562156223bc0b40dd8f9b704afa0d8a3035a6e
GET /wp-content/uploads/2018/12/lucas-albuquerque-615558-unsplash-218x150.jpg HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Cookie: cf_use_ob=0; _ga=GA1.2.147791662.1662725661; _gid=GA1.2.129866829.1662725661
HTTP/1.1 502 Bad Gateway
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 09-Sep-22 12:14:59 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 747fd80c8aa8b4f3-OSL
Server: cloudflare
belief.ournuclearfamily.com/wp-content/uploads/2018/12/LATO-BOUTIQUE-HOTEL.-EXTERIOR-001-218x150.jpg
104.21.68.177502 Bad Gateway 6.5 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/uploads/2018/12/LATO-BOUTIQUE-HOTEL.-EXTERIOR-001-218x150.jpg
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash ab3641628a1a0f2ed2f2d751e3903968
c93ecedbc3b02e1a9e8597984aff517decac4f39
abd9f3be8145a6a45d862958e41c317333cedab85b00f84e9d65cbf123685b19
GET /wp-content/uploads/2018/12/LATO-BOUTIQUE-HOTEL.-EXTERIOR-001-218x150.jpg HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Cookie: cf_use_ob=0; _ga=GA1.2.147791662.1662725661; _gid=GA1.2.129866829.1662725661
HTTP/1.1 502 Bad Gateway
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 09-Sep-22 12:14:59 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 747fd80c882a0af6-OSL
Server: cloudflare
belief.ournuclearfamily.com/wp-content/uploads/wordpress-popular-posts/362986-featured-150x100.jpg
104.21.68.177502 Bad Gateway 6.5 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/uploads/wordpress-popular-posts/362986-featured-150x100.jpg
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 2a5831dbaeebd16ba8448b6d55f6ddc8
1358b18347d88c788f206ee88dda78c9eb61cdb8
ea3f330367fd3a74d18166f288ec97f8ccb82a23fc6db2f86cde4fecf5338e3f
GET /wp-content/uploads/wordpress-popular-posts/362986-featured-150x100.jpg HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Cookie: cf_use_ob=0
HTTP/1.1 502 Bad Gateway
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 09-Sep-22 12:14:59 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 747fd80caf550b02-OSL
Server: cloudflare
belief.ournuclearfamily.com/wp-content/uploads/wordpress-popular-posts/365370-featured-150x100.jpg
104.21.68.177502 Bad Gateway 6.5 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/uploads/wordpress-popular-posts/365370-featured-150x100.jpg
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash a303b4e239c7be4e396fdab64a14d79b
d27470fce90d829cfa1797c83b629c973cea9cdb
2aed3a4c19025c5a84c08ecfd501e7e8b1e66d3dae85f6e65af4fcaaa26dfd97
GET /wp-content/uploads/wordpress-popular-posts/365370-featured-150x100.jpg HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Cookie: cf_use_ob=0
HTTP/1.1 502 Bad Gateway
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 09-Sep-22 12:14:59 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 747fd80cbc9b0afe-OSL
Server: cloudflare
belief.ournuclearfamily.com/wp-content/plugins/arscode-ninja-popups/themes/newtheme1/img/lock.png
104.21.68.177502 Bad Gateway 6.5 kB URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/plugins/arscode-ninja-popups/themes/newtheme1/img/lock.png
IP 104.21.68.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 7e48ad0c099c0b3d397fd3ee1fcfe05e
4fc6a117f9cb3fe205d3720bb6bf5ac680573e73
fa3eb9fb1891fd232532dd94ab8125acf39a19a32d908e03f88fdeccc5cdec50
GET /wp-content/plugins/arscode-ninja-popups/themes/newtheme1/img/lock.png HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Cookie: cf_use_ob=0; _ga=GA1.2.147791662.1662725661; _gid=GA1.2.129866829.1662725661
HTTP/1.1 502 Bad Gateway
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 09-Sep-22 12:14:59 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 747fd80c9f070b45-OSL
Server: cloudflare
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 01a3e443656ff0f80b5581781e6b5c0d
79aeb77255c4ca7b791f01973a5c87d61ac64bbf
1bce5fd600e009384ccd2bd83fe5925aad5f6f1f740cd86816ccf15ea887e71b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3477
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 09 Sep 2022 12:14:29 GMT
Last-Modified: Fri, 09 Sep 2022 11:16:32 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 313
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
142.250.74.138200 OK 23 B URL HTTP/2 maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP 142.250.74.138:0
File type JSON data\012- , ASCII text
Hash e3981ca10169a319d5aa062bf43a5fa1
2c6ed584767b65688ce99b1ebe1a3b7448a67421
8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9
GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://belief.ournuclearfamily.com
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 09 Sep 2022 12:14:30 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: http://belief.ournuclearfamily.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/pagead/ppub_config?ippd=belief.ournuclearfamily.com
142.250.74.66200 OK 63 B URL HTTP/2 securepubads.g.doubleclick.net/pagead/ppub_config?ippd=belief.ournuclearfamily.com
IP 142.250.74.66:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5f122dd1361c57fd6bd6918c73b25df5
5a011224b453258195f348d5fb62a9759c5d5626
5720f9b8f35d80d04d894bccef93b354a5f5061e5b2ecb97bfe0a37399712e4d
GET /pagead/ppub_config?ippd=belief.ournuclearfamily.com HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://belief.ournuclearfamily.com
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
date: Fri, 09 Sep 2022 12:14:30 GMT
expires: Fri, 09 Sep 2022 12:14:30 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 09-Sep-2022 12:29:30 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/gpt/pubads_impl_2022090601.js
142.250.74.66200 OK 133 kB URL HTTP/2 securepubads.g.doubleclick.net/gpt/pubads_impl_2022090601.js
IP 142.250.74.66:0
File type ASCII text, with very long lines (65439)
Size 133 kB (133157 bytes)
Hash 5cb47a81c27e4ff20ef48052db7e5e4b
616440e3a906b5e8a1dfd358a2592355e9f0599c
545e74a06762dfac914f51e05ac4f30d2871e9fef8c36b708d5f182fa936a6be
GET /gpt/pubads_impl_2022090601.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 133157
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Sep 2022 08:36:34 GMT
expires: Sat, 09 Sep 2023 08:36:34 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Tue, 06 Sep 2022 08:35:00 GMT
content-type: text/javascript
age: 13076
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.39.175.179101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.175.179:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: mjAmyVy3HirBh943y92+HQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: aA7MN0tUL/edxzHaOrjYnAq+vWA=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 629977ef3e811313c3398e85eab258c4
69022414f3775ed783dd6d65254988b52eecf3bd
e01f6c335c13dacce6d6a8fb67f165f6c786bbffca33976484ce03922cc04237
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Sep 2022 12:14:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.js?domain=belief.ournuclearfamily.com
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=belief.ournuclearfamily.com
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=belief.ournuclearfamily.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 09 Sep 2022 12:14:30 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.booking.com/flexiproduct.html?product=dfl2&w=300&h=400&lang=el&aid=1332462&target_aid=317904&selected_currency=EUR&dest_id=-1456928&dest_type=city&fid=1662725661020&
5.57.17.220200 OK 23 kB URL HTTP/1.1 www.booking.com/flexiproduct.html?product=dfl2&w=300&h=400&lang=el&aid=1332462&target_aid=317904&selected_currency=EUR&dest_id=-1456928&dest_type=city&fid=1662725661020&
IP 5.57.17.220:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (43494)
Hash ea1c8892c98c5885907040f470bfc456
686f762e5265f059d681d6ecefee8efd796809d6
233322ebb7a681a2c14bffa080e2c61c73207f2410c8dd404c7699824ebb573e
GET /flexiproduct.html?product=dfl2&w=300&h=400&lang=el&aid=1332462&target_aid=317904&selected_currency=EUR&dest_id=-1456928&dest_type=city&fid=1662725661020& HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://belief.ournuclearfamily.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
server: nginx
date: Fri, 09 Sep 2022 12:14:30 GMT
content-type: text/html; charset=UTF-8
content-length: 23330
cache-control: private
vary: User-Agent, Accept-Encoding
content-encoding: br
nel: {"max_age":604800,"report_to":"default"}
report-to: {"max_age":604800,"endpoints":[{"url":"https://nellie.booking.com/report"}],"group":"default"}
set-cookie: _pxhd=MCIoNIFeggUQYp7NPTL%2Fxlx7v6gj80ly3TNbzJrzD0JiSCK-vAESTaH9SmmRCC24lyrb9a%2F-xAfrCJr0EyyD-w%3D%3D%3AefQ84JfXlOfh7ObOJtpq7tZSldt%2Fg0tj1P14IeMrbuhkOfj0klxIQkid89btEocsPq%2F7Y1aPlOo3bQvBorWjai1KU5dtZ%2FKjeqBNPNc345Q%3D; domain=booking.com; path=/; expires=Sat, 09-Sep-2023 12:14:30 GMT
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLblgO%2Fz4BDP5v57Z5w%2BdtFO2J07naa0vlEIYURPjEAkd7S1ijReM%2BEPzdPZv0oAva8g6ynnNjrbATWdFgJXy1eXVsXHxgjGAuRoj6EHOPhmQq8la4e52%2B6%2BSqgkiXiR8Q6jKN9b0AuZxJzw61UkddhQiXalLjX2bh2; domain=.booking.com; path=/; expires=Wed, 08-Sep-2027 12:14:30 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
adservice.google.no/adsid/integrator.js?domain=belief.ournuclearfamily.com
142.250.74.2200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=belief.ournuclearfamily.com
IP 142.250.74.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=belief.ournuclearfamily.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 09 Sep 2022 12:14:30 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/affiliate_base/flexi/booking_logo_w/9b95c8f8556f53ebdf1ace61524be9dfa897bd74.png
143.204.55.39200 OK 3.5 kB URL HTTP/2 cf.bstatic.com/static/img/affiliate_base/flexi/booking_logo_w/9b95c8f8556f53ebdf1ace61524be9dfa897bd74.png
IP 143.204.55.39:0
File type PNG image data, 150 x 25, 8-bit/color RGBA, non-interlaced\012- data
Hash 6f20423678e4861c19434fdd51430458
c127958cd20aa7b434465eeb76dec83dd2cf41b7
0df292ee46eebb53fcf4d98f8735c3cb035e55f7419c68d3f5b2d9af07380a14
GET /static/img/affiliate_base/flexi/booking_logo_w/9b95c8f8556f53ebdf1ace61524be9dfa897bd74.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 3542
server: nginx
date: Thu, 25 Aug 2022 12:40:25 GMT
last-modified: Wed, 10 Apr 2019 11:21:49 GMT
etag: "5cadd1cd-dd6"
expires: Sat, 24 Sep 2022 12:40:25 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cmOp_fU-3i0YG2PVBseH_QyPA0pQRFnrz-51ni7vm7teN6sjNblZuw==
age: 1294445
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/32/fr/8445c6d95d9a59c87b9bfd0c4e8d6d06bae67f9f.png
143.204.55.39200 OK 635 B URL HTTP/2 cf.bstatic.com/static/img/flags/32/fr/8445c6d95d9a59c87b9bfd0c4e8d6d06bae67f9f.png
IP 143.204.55.39:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash d95f66a2e690c74b78f3e57fe9324966
716cad48798d3285a377bb638eb438ad2fb35a92
18a076ed54c175e4c0d840f127c03b8e307a50c98ef1a2be28b7e89e74443c35
GET /static/img/flags/32/fr/8445c6d95d9a59c87b9bfd0c4e8d6d06bae67f9f.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 635
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:53 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sat, 03 Sep 2022 00:08:21 GMT
expires: Mon, 03 Oct 2022 00:08:21 GMT
cache-control: max-age=2592000
etag: "5cadd1d1-27b"
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: NFDEdlTnmNp3VdR4hwxwjfEO9c1Zy2J_PwrObLfDZ1mgMDj0nv--KQ==
age: 561969
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 629977ef3e811313c3398e85eab258c4
69022414f3775ed783dd6d65254988b52eecf3bd
e01f6c335c13dacce6d6a8fb67f165f6c786bbffca33976484ce03922cc04237
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Sep 2022 12:14:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cf.bstatic.com/xdata/images/city/600x200/613089.webp?k=113badf503fa7ce0da1370ff4a49180aad9c9137511892747a7302c08e234567&o=
143.204.55.39200 OK 22 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/600x200/613089.webp?k=113badf503fa7ce0da1370ff4a49180aad9c9137511892747a7302c08e234567&o=
IP 143.204.55.39:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x200, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3b1dba768b32e59e221546cf18a6f9df
b096051c6bb44b567cb2dc432c008c0529a4820c
f850d79d8b4baaae4014aff9db1459e9233434e505225972da1fbb19ca74ea25
GET /xdata/images/city/600x200/613089.webp?k=113badf503fa7ce0da1370ff4a49180aad9c9137511892747a7302c08e234567&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 22286
server: nginx
date: Mon, 05 Sep 2022 21:48:06 GMT
etag: "ce62a8ab81ff962fcadbcdf3b5ed89787cc1d515"
expires: Wed, 05 Oct 2022 21:48:06 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: s1jGKeB8tlTU03J9BQ97tAs_mFNUcK9cOYTlLPADjh93H5m2u0KPrw==
age: 311184
X-Firefox-Spdy: h2
cf.bstatic.com/static/affiliate_base/css/flexifonts_cloudfront_sd/82b674edb949dddf78e02d76e8593771bf2e85d5.css
143.204.55.39200 OK 40 kB URL HTTP/2 cf.bstatic.com/static/affiliate_base/css/flexifonts_cloudfront_sd/82b674edb949dddf78e02d76e8593771bf2e85d5.css
IP 143.204.55.39:0
File type ASCII text, with very long lines (1306), with no line terminators
Hash 712d22d5e19da1d75a77c3c6e442bb99
261132f6fa27ac04e4004ae76ab3660f7b7c69c9
12b0403faed322a49f3285e9761e2181e9022b6fe7ba8e7f10709e9e92c16482
GET /static/affiliate_base/css/flexifonts_cloudfront_sd/82b674edb949dddf78e02d76e8593771bf2e85d5.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Sat, 27 Aug 2022 01:04:05 GMT
last-modified: Fri, 05 Jun 2020 10:23:33 GMT
etag: W/"5eda1d25-51a"
expires: Mon, 26 Sep 2022 01:04:05 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Im0EFjiI4ml4Zh34qtTjO6hA9seqZldG1GzTAApH_XxC7N_eWzR3jg==
age: 1163425
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/map-loader/5b002027c2209cf328a1aeffd1954c5516fa0913.gif
143.204.55.39200 OK 8.7 kB URL HTTP/2 cf.bstatic.com/static/img/map-loader/5b002027c2209cf328a1aeffd1954c5516fa0913.gif
IP 143.204.55.39:0
File type GIF image data, version 89a, 32 x 32\012- data
Hash 07693cc217b8832064bd54a128a0f7d5
9435eb561b76148712d9eab28cec1b14c694c3ee
d8314b4eff35940506acf61b840b57de7f67e594af6b0b7976ddf05040334fc6
GET /static/img/map-loader/5b002027c2209cf328a1aeffd1954c5516fa0913.gif HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 8685
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:54 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Wed, 07 Sep 2022 14:46:11 GMT
expires: Fri, 07 Oct 2022 14:46:11 GMT
cache-control: max-age=2592000
etag: "5cadd1d2-21ed"
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Nqbr2qACNwEOFpBH7SPtZ26xtSVYAj2p4vLI2TJVstlyr8exNuRxlg==
age: 163699
X-Firefox-Spdy: h2
0563482bf20fe63e1b2479e68da605b8.safeframe.googlesyndication.com/safeframe/1-0-38/html/container.html
142.250.74.65200 OK 3.1 kB URL HTTP/2 0563482bf20fe63e1b2479e68da605b8.safeframe.googlesyndication.com/safeframe/1-0-38/html/container.html
IP 142.250.74.65:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5835)
Hash 3fa5e95a358d660ddb3c45769ae1357f
5f6164fbaf8cfbccfd061b00ae48dedfc16bbcd9
d32f4b680031c0e11222eb17385aa9d3b11d2903b05bff34c3d4eb6292631137
GET /safeframe/1-0-38/html/container.html HTTP/1.1
Host: 0563482bf20fe63e1b2479e68da605b8.safeframe.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 3108
date: Fri, 09 Sep 2022 12:14:30 GMT
expires: Sat, 09 Sep 2023 12:14:30 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Tue, 02 Mar 2021 20:17:03 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cf.bstatic.com/static/fonts/flexi/flexi/750fa5bec9bde5e6e09115b5970b8106f73a5646.woff
143.204.55.39200 OK 7.8 kB URL HTTP/2 cf.bstatic.com/static/fonts/flexi/flexi/750fa5bec9bde5e6e09115b5970b8106f73a5646.woff
IP 143.204.55.39:0
File type Web Open Font Format, TrueType, length 7772, version 1.0\012- data
Hash 8c951f2352da74860af158a464a6088e
1497fa62aacfd45c2785eefb8c6045f9c55a4191
727b71610239254fbeb9000a4774cf87b96bdd0c7eab1b781d67aa916ab6426e
GET /static/fonts/flexi/flexi/750fa5bec9bde5e6e09115b5970b8106f73a5646.woff HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://cf.bstatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/font-woff
content-length: 7772
server: nginx
date: Tue, 23 Aug 2022 03:50:15 GMT
last-modified: Wed, 10 Apr 2019 11:21:49 GMT
etag: "5cadd1cd-1e5c"
expires: Thu, 22 Sep 2022 03:50:15 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vP9eEZfHaaW7stJTnjsiFpsmvDJemx1qkhkfDukm6Bvu1UopqSSl8g==
age: 1499055
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2022090601&st=env
216.58.207.226200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2022090601&st=env
IP 216.58.207.226:0
File type JSON data\012- , ASCII text, with very long lines (14610), with no line terminators
Hash f977e4206e2c6343e5d437043ced0164
14ca794602e8320fd6f730803f71bf991d3aba8a
2585e9775dfd32fb2023ab5a3aa1f394de23ab2475be2f4784424678698b956b
GET /getconfig/sodar?sv=200&tid=gpt&tv=2022090601&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://belief.ournuclearfamily.com
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 09 Sep 2022 12:14:30 GMT
server: cafe
cache-control: private
content-length: 11095
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 11fc2d46a23e09ac3d79e8b675944204
1c1aaf989f702919ebb458d6fd657c5c39bf3766
ff7a86da263560a13e2067a0813a9cfd1f19d1e2ac5379a42cb57bb4d0a3903e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Sep 2022 12:14:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
142.250.74.33200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Fri, 09 Sep 2022 12:14:30 GMT
expires: Fri, 09 Sep 2022 12:14:30 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
142.250.74.33200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Sep 2022 07:47:45 GMT
expires: Fri, 08 Sep 2023 07:47:45 GMT
cache-control: public, max-age=31536000
age: 102405
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 86354a78c1da4ea13a932216048b2abf
ade657780508cffa8655f7cab6492dc25a79f0d2
458dbf1fcc4ef14e78b991b2f906704b4d27a985d2feb500bb5e5f832232887b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Sep 2022 12:14:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
142.250.74.164200 OK 514 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash dc6658df6626b5019b77703713505ebc
a077218a3dbf4f7a5034c85ceeb11baa209528f7
e51759c27f6391ed7fa766d4cac65f7dde3050f4e9e56fe49bdaa8c1cb3474da
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Fri, 09 Sep 2022 12:14:31 GMT
date: Fri, 09 Sep 2022 12:14:31 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-6b83ZJwLJ01wF4VTLypq4A' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 514
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4862
Expires: Fri, 09 Sep 2022 13:35:33 GMT
Date: Fri, 09 Sep 2022 12:14:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4862
Expires: Fri, 09 Sep 2022 13:35:33 GMT
Date: Fri, 09 Sep 2022 12:14:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4862
Expires: Fri, 09 Sep 2022 13:35:33 GMT
Date: Fri, 09 Sep 2022 12:14:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4862
Expires: Fri, 09 Sep 2022 13:35:33 GMT
Date: Fri, 09 Sep 2022 12:14:31 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F242561c0-8a95-468b-ba61-6859edfe8518.jpeg
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F242561c0-8a95-468b-ba61-6859edfe8518.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3f8aeb20a6543be83f3e422796c4dc70
4e4e127039dd8099c63c3bde198118d2874f7342
0f9fdd1b577e4719f88620bb451131bfb120790479b4feccb4222647fb3ea453
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F242561c0-8a95-468b-ba61-6859edfe8518.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7218
x-amzn-requestid: 26a5c20b-1a4a-4543-b4b9-209b3fc445ab
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YId3DGeUoAMF9-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6319a9c6-629ade4f617f37bf5a281103;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 08:37:26 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RnY_ItUJ0yOpsg80f5Su6oxr5ROLvYTSjuP4g0xrpWML_Qz-uqJ59w==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 21:45:36 GMT
etag: "4e4e127039dd8099c63c3bde198118d2874f7342"
content-type: image/jpeg
age: 52135
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F941aee78-aa38-4160-9ace-6710bf30c1ee.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F941aee78-aa38-4160-9ace-6710bf30c1ee.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 91b464f11732e00e4fd02f22a588db95
1ab4fc655948819c42906d19f60c69f399ab221d
d47f87039129d760f53735d65258611eb2debbc58024738bc60e5a0c99ec8cc5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F941aee78-aa38-4160-9ace-6710bf30c1ee.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7524
x-amzn-requestid: c97e5c90-4fde-400d-b07a-cb7c2f119419
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YKQgIGwDIAMFVcg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631a6133-2dc24fae4af1a68c79dcee95;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 21:40:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: tEARM67qcdwpaRWiZ1l23Kp7XnMCHTy1uwtzk-UtxmELNRk5SHXyIw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 25b9a991f871f75614e7f92f97b136a4.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 21:44:18 GMT
age: 52213
etag: "1ab4fc655948819c42906d19f60c69f399ab221d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffca3b7c7-528e-421a-8910-451f0b9b667f.webp
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffca3b7c7-528e-421a-8910-451f0b9b667f.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 09267c271a56ba4c2d4197543f264fac
67ae4acd88571da51b81fa7ed963b7f2a71845b4
906163f9e1bb8908ae7fcfbf4debc2a42fd14a3f90c8814536025a57ee851dbe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffca3b7c7-528e-421a-8910-451f0b9b667f.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8162
x-amzn-requestid: decb1d93-bcc9-4a71-a054-c537ad7d1add
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YJvndF1fIAMFv7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631a2c95-27cef2465fd0e6c849da81af;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 17:55:33 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: C_J0m9xfkCb5qsoO934KB2Ldk1-yMaMXkgiv9gWus7JqjN3M_HCpdg==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 de8fc80b494d3d381f7e006918dcc588.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 17:56:29 GMT
age: 65882
etag: "67ae4acd88571da51b81fa7ed963b7f2a71845b4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F498f96cc-d02c-4ca3-a7e2-0be324253465.jpeg
34.120.237.76200 OK 3.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F498f96cc-d02c-4ca3-a7e2-0be324253465.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0078c7a407144a1ede33aef6f734eecf
113393e0dbabb3aff949d19ab6517ba1082b622d
42afcaf15e45dfa9aff14f59f69d60a3de127005e35783d2d35a4cfa652b57b3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F498f96cc-d02c-4ca3-a7e2-0be324253465.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3125
x-amzn-requestid: 5820e798-6469-40f9-8d70-ee71f1a163b9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YLM5GGQAoAMF8eQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ac1d3-3a0e9db848ea7ab145f1cffa;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 04:32:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: eZaKpjBYe3Qn7vs3zF52Cxob-xu3LMFs8esQAu6Lp6bzM0aOEHoXVg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1352c0a623ff0601dd16439f3f225f70.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 04:32:20 GMT
etag: "113393e0dbabb3aff949d19ab6517ba1082b622d"
content-type: image/jpeg
age: 27731
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.travelstories.gr/?wordfence_lh=1&hid=BDA9BC6D6DF9AB8EFA8082B666D26558&r=0.7211379532033615
172.67.72.203200 OK 15 kB URL HTTP/2 www.travelstories.gr/?wordfence_lh=1&hid=BDA9BC6D6DF9AB8EFA8082B666D26558&r=0.7211379532033615
IP 172.67.72.203:0
Hash b1fa622490d624fb4eb00bdcb5c1840e
e530be9ec91e0624dab8089c261084658b266e4e
10a18243ee6bf2551fc67e6dba306e861fe2f0cbc9db789a73753e62d572f32d
GET /?wordfence_lh=1&hid=BDA9BC6D6DF9AB8EFA8082B666D26558&r=0.7211379532033615 HTTP/1.1
Host: www.travelstories.gr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://belief.ournuclearfamily.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Sep 2022 12:14:30 GMT
content-type: text/html; charset=UTF-8
cache-control: private, max-age=0, must-revalidate, no-cache, no-store
display: pub_site_sol
expires: Thu, 08 Sep 2022 12:14:30 GMT
link: <https://www.travelstories.gr/wp-json/>; rel="https://api.w.org/", <https://www.travelstories.gr/wp-json/wp/v2/pages/361798>; rel="alternate"; type="application/json", <https://www.travelstories.gr/>; rel=shortlink
pagespeed: off
pragma: no-cache
response: 200
set-cookie: ppwp_wp_session=c05ca2392faf11183c6aa11b1284dd41%7C%7C1662727469%7C%7C1662727109; expires=Fri, 09-Sep-2022 12:44:29 GMT; Max-Age=1800; path=/
PHPSESSID=h08ck9i7cmedufljs3l9jc5s4a; path=/
ezoadgid_128749=-1; Path=/; Domain=travelstories.gr; Expires=Fri, 09 Sep 2022 12:44:29 UTC
ezoref_128749=ournuclearfamily.com; Path=/; Domain=travelstories.gr; Expires=Fri, 09 Sep 2022 14:14:29 UTC
ezosuibasgeneris-1=cdb7989c-0624-4856-7812-2d204c096eae; Path=/; Domain=travelstories.gr; Expires=Sat, 09 Sep 2023 12:14:29 UTC; Secure; SameSite=None
ezoab_128749=mod10; Path=/; Domain=travelstories.gr; Expires=Fri, 09 Sep 2022 14:14:29 UTC
active_template::128749=pub_site.1662725669; Path=/; Domain=travelstories.gr; Expires=Sun, 11 Sep 2022 12:14:29 UTC
ezopvc_128749=1; Path=/; Domain=travelstories.gr; Expires=Fri, 09 Sep 2022 12:44:30 UTC
ezepvv=8; Path=/; Domain=travelstories.gr; Expires=Sat, 10 Sep 2022 12:14:30 UTC
ezovid_128749=483749022; Path=/; Domain=travelstories.gr; Expires=Fri, 09 Sep 2022 12:44:30 UTC
lp_128749=https://www.travelstories.gr/?wordfence_lh=1&hid=BDA9BC6D6DF9AB8EFA8082B666D26558&r=0.7211379532033615; Path=/; Domain=travelstories.gr; Expires=Fri, 09 Sep 2022 12:44:30 UTC
ezovuuidtime_128749=1662725670; Path=/; Domain=travelstories.gr; Expires=Sun, 11 Sep 2022 12:14:30 UTC
ezovuuid_128749=8ad39d11-a372-4499-4154-9a16a81a173e; Path=/; Domain=travelstories.gr; Expires=Fri, 09 Sep 2022 12:44:30 UTC
vary: Accept-Encoding
x-middleton-display: pub_site_sol
x-middleton-response: 200
x-powered-by: centminmod
x-sol: pub_site
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dsM58jNkq6d6Z%2Bznr0ZlG3k70lYY6q4eJdN4TeYWdVioP1pnSmtymgd1MpinE%2BnBMmTQMHHPHMsIPxs3OPF%2BIxT%2BxCpkONk4XA7vttnLuVWFbFiNpYwRrVIXoRUusDC769egI3FC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 747fd80bfea1b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F793f20c6-757e-47e5-8ab6-4d73ceae75af.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F793f20c6-757e-47e5-8ab6-4d73ceae75af.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c9590b525c8b07a297c8784f02b161a1
cec8428d159a5bde29e89c64cfb04146f759d52b
d309772ce79d36f7b1df0a3ea85a01f8278db2909c860721d105b772efed82ed
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F793f20c6-757e-47e5-8ab6-4d73ceae75af.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4002
x-amzn-requestid: ea2f5309-e220-4b7e-b718-9339b9444cc2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YKQ6hHM8IAMFeJQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631a61dc-7d45fd9253b7b7fa732b6f8d;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 21:42:52 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: VD7SlrM2RwFk5cfQvul2bTJA__GPYd5_UPY0D0_5NGLHoBj3yur7PA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 5abfab33f248090bb0f31ca137ce9464.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 22:15:21 GMT
age: 50350
etag: "cec8428d159a5bde29e89c64cfb04146f759d52b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.booking.com/flexiproduct.html?product=df2&w=300&h=400&lang=el&aid=1332462&target_aid=317904&selected_currency=EUR&dest_id=-1456928&dest_type=city&fid=1662725661020&ajax_resp=1
5.57.17.220200 OK 43 B URL HTTP/1.1 www.booking.com/flexiproduct.html?product=df2&w=300&h=400&lang=el&aid=1332462&target_aid=317904&selected_currency=EUR&dest_id=-1456928&dest_type=city&fid=1662725661020&ajax_resp=1
IP 5.57.17.220:0
Hash 0f9ed1dd7b6c1ef7c084010b6883eb14
265dae1cc7ceda7b7134ba761268798a9eb21f25
7c86755f03b936fddf80a18994a66c51290211089a3c20dd06ad6444b67bd55c
GET /flexiproduct.html?product=df2&w=300&h=400&lang=el&aid=1332462&target_aid=317904&selected_currency=EUR&dest_id=-1456928&dest_type=city&fid=1662725661020&ajax_resp=1 HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.booking.com/flexiproduct.html?product=dfl2&w=300&h=400&lang=el&aid=1332462&target_aid=317904&selected_currency=EUR&dest_id=-1456928&dest_type=city&fid=1662725661020&
Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLblgO%2Fz4BDP5v57Z5w%2BdtFO2J07naa0vlEIYURPjEAkd7S1ijReM%2BEPzdPZv0oAva8g6ynnNjrbATWdFgJXy1eXVsXHxgjGAuRoj6EHOPhmQq8la4e52%2B6%2BSqgkiXiR8Q6jKN9b0AuZxJzw61UkddhQiXalLjX2bh2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
server: nginx
date: Fri, 09 Sep 2022 12:14:33 GMT
content-type: text/html; charset=UTF-8
content-length: 43
cache-control: private
vary: User-Agent, Accept-Encoding
content-encoding: br
nel: {"report_to":"default","max_age":604800}
report-to: {"group":"default","max_age":604800,"endpoints":[{"url":"https://nellie.booking.com/report"}]}
set-cookie: _pxhd=QCnId-RzO%2F594aXgzus4MCo%2F6zcYpnwTRgIbM0-IFq6EzyhEaS-e7hgJ1%2FzCWEbDttotonvLjct-YKnFnWjiTQ%3D%3D%3AkfKj1Gq%2FBD26Oy1QinrsX%2FEfmXWhs4GTwMA-e-SsnyHUSV7uWXZalQPhri0hFk-8fOUbt5D9I6eC6rYjTujJczCTWLN8TILRQC3kzR3zh8s%3D; domain=booking.com; path=/; expires=Sat, 09-Sep-2023 12:14:30 GMT
bkng_frontend_sese_exp=0; domain=.booking.com; path=/; expires=Sun, 09-Oct-2022 12:14:30 GMT; secure; HttpOnly
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbwcLxQQ4VaCqv2rsaVoFfcPGvvc9uqdtMDtEVO3uqTcBgs8QxHmIQKAX0y6U7EAV%2FqeZASTBobn6bgG53Z4YsFyaKfeUh9CDMWzJ2xztahOC67eKv1Xxi%2B%2BVlbMkOog87LIu3%2Fga7bm4UPWy2m%2B%2F9tn5C3%2F8OodEutDh6ZI7wBbc%3D; domain=.booking.com; path=/; expires=Wed, 08-Sep-2027 12:14:33 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
belief.ournuclearfamily.com/wp-content/plugins/arscode-ninja-popups/js/tooltipster.bundle.min.js?ver=4.9.9
104.21.68.177200 OK 0 B URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/plugins/arscode-ninja-popups/js/tooltipster.bundle.min.js?ver=4.9.9
IP 104.21.68.177:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/arscode-ninja-popups/js/tooltipster.bundle.min.js?ver=4.9.9 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:04 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EeuAW3UVHg8k%2BByEBz4hwzqCEGxsTz0%2BpW3j73tOricoRFwMWQQuNrpIQq0ZorK1Ws7adXSw1%2B8qAgdytjK5uBy%2FrzL%2FqFh3ZxrAtTT4PlOp0%2BQPF7D9ezecTeBHtu7HoorF12zOdse1UHtoenQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd807f9ce0b02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
cf.bstatic.com/static/affiliate_base/css/flexi_common_elems_cloudfront_sd/19d26ccbecea13a40501b1a204f92d7797638c6b.css
143.204.55.39200 OK 0 B URL HTTP/2 cf.bstatic.com/static/affiliate_base/css/flexi_common_elems_cloudfront_sd/19d26ccbecea13a40501b1a204f92d7797638c6b.css
IP 143.204.55.39:0
GET /static/affiliate_base/css/flexi_common_elems_cloudfront_sd/19d26ccbecea13a40501b1a204f92d7797638c6b.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
last-modified: Tue, 28 Jun 2022 06:07:04 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Mon, 29 Aug 2022 09:42:46 GMT
expires: Wed, 28 Sep 2022 09:42:35 GMT
cache-control: max-age=2592000
etag: W/"62ba9a88-33d2"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: NT34aqVnpuyoEpkgAFVWkYNagyMo6bLaOHlxUnbfSf870hOPbOpvTg==
age: 959515
X-Firefox-Spdy: h2
www.travelstories.gr/wp-includes/js/wp-emoji-release.min.js?ver=4.9.9
172.67.72.203200 OK 0 B URL HTTP/2 www.travelstories.gr/wp-includes/js/wp-emoji-release.min.js?ver=4.9.9
IP 172.67.72.203:0
GET /wp-includes/js/wp-emoji-release.min.js?ver=4.9.9 HTTP/1.1
Host: www.travelstories.gr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Sep 2022 12:14:29 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate, immutable, stale-while-revalidate=86400, stale-if-error=604800
display: staticcontent_sol
etag: W/"62b90e3c-48b9-gzip"
expires: Sun, 09 Oct 2022 12:14:29 GMT
last-modified: Wed, 07 Sep 2022 10:42:40 GMT
response: 200
vary: Accept-Encoding,Origin
x-middleton-display: staticcontent_sol
x-middleton-response: 200
x-powered-by: centminmod
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zIP%2Fp3qJqBLI4cest8Rv8ZSDY62VOtoOoRuLXo8EnpNcnUlB2HKwkZDQLlNgyrQOw0Zx7h%2BcIOwYzoJO%2BRjUsAmDulm%2FD7qzQ2VK4gWgNdD8IoYC88pQqIj6SnHXrXd%2Ba%2F5oaINN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 747fd806ef17b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
cf.bstatic.com/static/affiliate_base/css/flexi_common_base_cloudfront_sd/f6d29e089da85314827d24b5e412d273b710cf84.css
143.204.55.39200 OK 0 B URL HTTP/2 cf.bstatic.com/static/affiliate_base/css/flexi_common_base_cloudfront_sd/f6d29e089da85314827d24b5e412d273b710cf84.css
IP 143.204.55.39:0
GET /static/affiliate_base/css/flexi_common_base_cloudfront_sd/f6d29e089da85314827d24b5e412d273b710cf84.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Sat, 27 Aug 2022 01:04:05 GMT
last-modified: Fri, 05 Jun 2020 14:42:31 GMT
etag: W/"5eda59d7-2ae3"
expires: Mon, 26 Sep 2022 01:04:05 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Grc5MBKP2qgy8zTCGJtSpyWa3iPlLFor-TtFKE1JEaPL41X7KjMiig==
age: 1163425
X-Firefox-Spdy: h2
belief.ournuclearfamily.com/wp-content/plugins/arscode-ninja-popups/js/jquery.material.form.min.js?ver=4.9.9
104.21.68.177200 OK 0 B URL HTTP/1.1 belief.ournuclearfamily.com/wp-content/plugins/arscode-ninja-popups/js/jquery.material.form.min.js?ver=4.9.9
IP 104.21.68.177:0
GET /wp-content/plugins/arscode-ninja-popups/js/jquery.material.form.min.js?ver=4.9.9 HTTP/1.1
Host: belief.ournuclearfamily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
HTTP/1.1 200 OK
Date: Fri, 09 Sep 2022 12:14:29 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Feb 2019 16:02:03 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vMdUyjMg97MoDvPER5miedMgT4WYl4B%2B4S1GX%2FLBWNK%2BcY%2BN5GsDi2QjYq37RwfpUQTpXrCVGOGqNT98B0DiiH9nlvQVbbTvn7jSjglAjxPQozKIN5vVN6BpN6Ysdvatiu01sGXb3Bb8ZJZA0kw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747fd807f9cd0b06-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
cf.bstatic.com/static/affiliate_base/css/flexi_product_df2/e64c0e1deedf8041f9d8526c0500b696a743bf64.css
143.204.55.39200 OK 0 B URL HTTP/2 cf.bstatic.com/static/affiliate_base/css/flexi_product_df2/e64c0e1deedf8041f9d8526c0500b696a743bf64.css
IP 143.204.55.39:0
GET /static/affiliate_base/css/flexi_product_df2/e64c0e1deedf8041f9d8526c0500b696a743bf64.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Sun, 28 Aug 2022 02:09:50 GMT
last-modified: Tue, 28 Jun 2022 06:07:04 GMT
etag: W/"62ba9a88-d90"
expires: Tue, 27 Sep 2022 02:09:50 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: VtM6mfCT9_vtaVewrI6KAoJJR2wDDOv6NNysc6eEFG_Hlu0IzVMA-Q==
age: 1073080
X-Firefox-Spdy: h2
cdn.onesignal.com/sdks/OneSignalSDK.js
104.18.225.52200 OK 0 B URL HTTP/2 cdn.onesignal.com/sdks/OneSignalSDK.js
IP 104.18.225.52:0
GET /sdks/OneSignalSDK.js HTTP/1.1
Host: cdn.onesignal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Sep 2022 12:14:28 GMT
content-type: application/javascript
etag: W/"ae63ef8ff03da61fffaa7f165729897a"
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 218
expires: Mon, 12 Sep 2022 12:14:28 GMT
cache-control: public, max-age=259200
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains
server: cloudflare
cf-ray: 747fd8062e3ab523-OSL
content-encoding: br
X-Firefox-Spdy: h2
ajax.cloudflare.com/cdn-cgi/scripts/04b3eb47/cloudflare-static/mirage2.min.js
104.17.72.14200 OK 0 B URL HTTP/2 ajax.cloudflare.com/cdn-cgi/scripts/04b3eb47/cloudflare-static/mirage2.min.js
IP 104.17.72.14:0
GET /cdn-cgi/scripts/04b3eb47/cloudflare-static/mirage2.min.js HTTP/1.1
Host: ajax.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://belief.ournuclearfamily.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Sep 2022 12:14:28 GMT
content-type: application/javascript
last-modified: Tue, 06 Sep 2022 17:30:38 GMT
etag: W/"631783be-9688"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BXrjVW8h%2BTNMaKkoGE0iW2AK9TEBo338J3C87seCCS1RaeNzCQ1jrb9kxKp7%2B39LgDeQ5dwTYz0VPqpXAB%2Ftf5iUMhCFvnEo31uPBkwkbg4aNYIFSnfQVINMCzgOvdWdYmMsSjw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15780000; includeSubDomains
server: cloudflare
cf-ray: 747fd8062fe10b02-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sun, 11 Sep 2022 12:14:28 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2