Overview

URL keystoneturnerhall.com/
IP199.34.228.76
ASNWEEBLY
Location United States
Report completed2022-09-24 05:36:28 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-24 2 keystoneturnerhall.com/ Malware
2022-09-24 2 www.keystoneturnerhall.com/ Malware
2022-09-24 2 www.keystoneturnerhall.com/files/theme/custom.js?1570137717 Malware
2022-09-24 2 www.keystoneturnerhall.com/uploads/3/9/6/4/39648161/published/keystone-ia-2 (...) Malware
2022-09-24 2 www.keystoneturnerhall.com/files/theme/plugins.js?1570137717 Malware
2022-09-24 2 www.keystoneturnerhall.com/uploads/3/9/6/4/39648161/published/hours-1.jpg?1 (...) Malware
2022-09-24 2 www.keystoneturnerhall.com/files/theme/fonts/Unite_500.otf?1624499758 Malware
2022-09-24 2 www.keystoneturnerhall.com/files/theme/fonts/Unite_700.otf?1624499758 Malware
2022-09-24 2 www.keystoneturnerhall.com/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccou (...) Malware
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (20)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS www.gstatic.com (1) 0 2016-07-26 09:37:06 UTC 2022-09-23 12:12:56 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-23 19:49:02 UTC 18.165.201.17
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-24 04:06:14 UTC 108.156.28.39
mnemonic passive DNS fonts.googleapis.com (5) 8877 2013-06-10 20:14:26 UTC 2022-09-24 00:11:40 UTC 216.58.211.10
mnemonic passive DNS ocsp.pki.goog (6) 175 2017-06-14 07:23:31 UTC 2022-09-23 04:33:33 UTC 142.250.74.3
mnemonic passive DNS p.typekit.net (1) 620 2012-05-23 14:28:57 UTC 2022-09-23 04:34:09 UTC 23.36.76.186
mnemonic passive DNS www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-09-23 22:33:33 UTC 216.239.36.178
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-23 04:33:41 UTC 34.117.237.239
mnemonic passive DNS www.keystoneturnerhall.com (17) 0 2022-07-01 07:49:15 UTC 2022-09-14 06:37:12 UTC 199.34.228.76 Unknown ranking
mnemonic passive DNS use.typekit.net (5) 494 2012-07-05 01:42:39 UTC 2022-09-24 04:47:53 UTC 23.36.76.186
mnemonic passive DNS www.google.com (1) 7 2016-08-04 12:36:31 UTC 2022-09-24 02:52:51 UTC 142.250.74.164
mnemonic passive DNS ec.editmysite.com (2) 12806 2017-01-29 21:50:35 UTC 2022-09-24 04:55:48 UTC 35.82.13.103
mnemonic passive DNS ajax.googleapis.com (1) 12905 2014-10-18 20:16:48 UTC 2022-09-24 04:43:44 UTC 142.250.74.42
mnemonic passive DNS r3.o.lencr.org (4) 344 2020-12-02 08:52:13 UTC 2022-09-23 04:34:39 UTC 23.36.77.32
mnemonic passive DNS cdn2.editmysite.com (17) 11564 2012-10-02 18:27:39 UTC 2022-09-24 04:55:47 UTC 151.101.85.46
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-23 05:02:25 UTC 35.161.231.36
mnemonic passive DNS fonts.gstatic.com (7) 0 2014-08-29 13:43:22 UTC 2022-09-23 04:33:31 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-23 12:37:00 UTC 34.120.237.76
mnemonic passive DNS keystoneturnerhall.com (1) 0 2022-06-03 03:43:56 UTC 2022-09-23 19:37:12 UTC 199.34.228.76 Unknown ranking
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-24 04:16:00 UTC 93.184.220.29


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 199.34.228.76

Date UQ / IDS / BL URL IP
2022-11-21 18:22:53 +0000
0 - 0 - 25 www.joanmmiller.com/ 199.34.228.76
2022-10-09 19:55:24 +0000
0 - 0 - 18 wmpambassadors.org/ 199.34.228.76
2022-10-08 14:21:21 +0000
0 - 0 - 21 www.southernwindsilkies.com/ 199.34.228.76
2022-10-06 00:23:53 +0000
0 - 0 - 12 www.theurbanistsalmanac.com/ 199.34.228.76
2022-09-24 05:36:28 +0000
0 - 0 - 9 keystoneturnerhall.com/ 199.34.228.76

Last 5 reports on ASN: WEEBLY

Date UQ / IDS / BL URL IP
2022-12-01 17:37:19 +0000
0 - 0 - 24 docusignsecureadminserveer.weebly.com/ 199.34.228.53
2022-12-01 15:51:54 +0000
0 - 0 - 5 british-telecommunicationspay883.square.site/ 199.34.228.39
2022-12-01 15:49:36 +0000
0 - 0 - 20 yahoo-103657.square.site/ 199.34.228.39
2022-12-01 14:50:36 +0000
0 - 0 - 24 docusignsecureadminserveer.weebly.com/ 199.34.228.54
2022-12-01 14:06:55 +0000
0 - 0 - 16 bt-106724.weeblysite.com/ 199.34.228.97

Last 5 reports on domain: keystoneturnerhall.com

Date UQ / IDS / BL URL IP
2022-09-24 05:36:28 +0000
0 - 0 - 9 keystoneturnerhall.com/ 199.34.228.76
2022-09-14 06:37:23 +0000
0 - 0 - 9 keystoneturnerhall.com/ 199.34.228.76
2022-09-12 14:43:28 +0000
0 - 0 - 8 keystoneturnerhall.com/ 199.34.228.76
2022-09-04 15:51:24 +0000
0 - 0 - 10 keystoneturnerhall.com/ 199.34.228.76
2022-09-02 17:47:25 +0000
0 - 0 - 10 keystoneturnerhall.com/ 199.34.228.76

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-09-14 06:37:23 +0000
0 - 0 - 9 keystoneturnerhall.com/ 199.34.228.76
2022-09-12 14:43:28 +0000
0 - 0 - 8 keystoneturnerhall.com/ 199.34.228.76
2022-09-04 15:51:24 +0000
0 - 0 - 10 keystoneturnerhall.com/ 199.34.228.76
2022-09-02 17:47:25 +0000
0 - 0 - 10 keystoneturnerhall.com/ 199.34.228.76
2022-09-01 06:48:39 +0000
0 - 0 - 10 keystoneturnerhall.com/ 199.34.228.76


JavaScript

Executed Scripts (29)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (81)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6625
Expires: Sat, 24 Sep 2022 07:26:42 GMT
Date: Sat, 24 Sep 2022 05:36:17 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         18.165.201.17
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 24 Sep 2022 05:05:33 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 d1187be634e389e2e876be936bba8e74.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: USPKs7z_vw15oxUz19iGjxNd_NPWqYlJTzzxaKdPeIAjCX4zmMVZkw==
Age: 1844


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    1b3053fa528e28810f8a2cc9284cc921
Sha1:   cca9eb471d941881a6b9a1793aecb6c281908f6a
Sha256: a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         108.156.28.39
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 24 Sep 2022 04:13:03 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 d32d70ba49809b2292cca689969507a0.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: GcoY7HmrzHjr7cMPOzDoC2hI93vyXU0uvPdrBnDsElngewAEnL0H1A==
age: 4994
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sat, 24 Sep 2022 05:36:17 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET / HTTP/1.1 
Host: keystoneturnerhall.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         199.34.228.76
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Sat, 24 Sep 2022 05:36:17 GMT
Server: Apache
Location: http://www.keystoneturnerhall.com/
Content-Length: 242
Keep-Alive: timeout=10, max=72
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   242
Md5:    c7072a3231e5abecbed298183d3df231
Sha1:   e2415c7630d96e547a92a7854711f6680ad7f2b1
Sha256: 25fcfdb2da76dba35a3cb56f5c9527ac48b2ed498995886c7b3b51ad7cfc1e4a

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         18.165.201.17
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Expires, Alert, Content-Length, ETag, Cache-Control, Content-Type, Backoff, Pragma, Last-Modified
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Sat, 24 Sep 2022 05:20:46 GMT
Expires: Sat, 24 Sep 2022 05:34:48 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 133321d9ca8be95a19f574700824c0e0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: YRt-eq8vQQe3n17iCXcOYIzzcTaKuURxNhF4rRZ6cnlxqpUdJKRcAA==
Age: 931


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5172
Cache-Control: 'max-age=158059'
Date: Sat, 24 Sep 2022 05:36:17 GMT
Last-Modified: Sat, 24 Sep 2022 04:10:05 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: www.keystoneturnerhall.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         199.34.228.76
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 24 Sep 2022 05:36:17 GMT
Server: Apache
Vary: X-W-SSL,Accept-Encoding,User-Agent
Set-Cookie: is_mobile=0; path=/; domain=www.keystoneturnerhall.com language=en; expires=Sat, 08-Oct-2022 05:36:17 GMT; Max-Age=1209600; path=/
Cache-Control: private
ETag: W/"f1f9cf46e37ceb886dfd5fe83caba404-gzip"
Content-Encoding: gzip
X-Host: grn39.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 9850
Keep-Alive: timeout=10, max=74
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4019), with CRLF, LF line terminators
Size:   9850
Md5:    903df56b01d25a62459cebb0cfa21a57
Sha1:   21f2a30726f7045707800583715846689533a46f
Sha256: 0b726a92e766426aa9b1aa62bd7e2e0c15881288a69e2e99a19cc48bfd81d6ab

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /css?family=Crimson+Text:400,700,400italic,700italic&subset=latin,latin-ext HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/

                                         
                                         216.58.211.10
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 24 Sep 2022 05:36:17 GMT
Date: Sat, 24 Sep 2022 05:36:17 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  ASCII text
Size:   544
Md5:    2c83ffa07891befbc2fa4635fe4c88a3
Sha1:   0890cc8d3a42b1d593446e5e1009cf076fb02104
Sha256: e6d3e72ed00f75507b6297fb73954dd08bddf0cf83b129e5e56e33c3931e9aa3
                                        
                                            GET /css?family=Montserrat:400,700&subset=latin,latin-ext HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/

                                         
                                         216.58.211.10
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 24 Sep 2022 05:36:17 GMT
Date: Sat, 24 Sep 2022 05:36:17 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  ASCII text
Size:   521
Md5:    b52e405858cd07e929b5387c0ed0d1de
Sha1:   8dc157b5ece5222f0f175eee9379a699dee76cd8
Sha256: e289bd897465ef8c6c74d81d09ee98cf500d744073df727158f6323caf335547
                                        
                                            GET /css?family=Playfair+Display:400,700,400italic,700italic&subset=latin,latin-ext HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/

                                         
                                         216.58.211.10
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 24 Sep 2022 05:36:17 GMT
Date: Sat, 24 Sep 2022 05:36:17 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  ASCII text
Size:   558
Md5:    de2df5765e9a8a64221d1bef18ff7825
Sha1:   6ba2e1fc90d3b8d134761cc55c21c84a8cf0fe3b
Sha256: 43737a44af8b68628ee3ef39ecab4749dfd0ca4808e78fdec75bc7be7d96a387
                                        
                                            GET /css?family=Lora:400,700,400italic,700italic&subset=latin,latin-ext HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/

                                         
                                         216.58.211.10
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 24 Sep 2022 05:36:17 GMT
Date: Sat, 24 Sep 2022 05:36:17 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  ASCII text
Size:   603
Md5:    12c9e8dd24f193e282f3e350296740b4
Sha1:   af62d74779c35a32dac013fdd63143d236069edf
Sha256: 1e50404b012030e1101f29006d7caadceeaf8e1c7aeab508113a1ec23da16f66
                                        
                                            GET /css?family=Quattrocento:400,700&subset=latin,latin-ext HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/

                                         
                                         216.58.211.10
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 24 Sep 2022 05:36:17 GMT
Date: Sat, 24 Sep 2022 05:36:17 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  ASCII text
Size:   385
Md5:    0d582c553aef3f4aa73d81d99a9f6506
Sha1:   8ca4ed9070410fd919077a23d6090f35a525a49c
Sha256: decf04b0960798013cc8282f7e95ddd63d865031e34a6d63fbc696a6b03b7e23
                                        
                                            GET /css/old/slideshow/slideshow.css?1624479156 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Last-Modified: Thu, 08 Sep 2022 20:49:05 GMT
ETag: W/"631a5541-1cb9"
Expires: Tue, 27 Sep 2022 11:35:06 GMT
Cache-Control: max-age=1209600
X-Host: grn110.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 1488
Accept-Ranges: bytes
Date: Sat, 24 Sep 2022 05:36:17 GMT
Age: 928871
Connection: keep-alive
X-Served-By: cache-sjc10062-SJC, cache-bma1678-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 1
X-Timer: S1663997778.863354,VS0,VE1
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (7352)
Size:   1488
Md5:    ba9bbd4df86b5b255f5ef44658e52130
Sha1:   3970cecb6939475f95556c2d32d17de0d1645f32
Sha256: 244b7b062e6e558009c622e46008d5542604b9163315220199a2ac50868ff3e5
                                        
                                            GET /css/old/fancybox.css?1624479156 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Last-Modified: Thu, 08 Sep 2022 20:48:48 GMT
ETag: "631a5530-f47"
Expires: Tue, 27 Sep 2022 09:30:46 GMT
Cache-Control: max-age=1209600
X-Host: blu88.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 1218
Accept-Ranges: bytes
Date: Sat, 24 Sep 2022 05:36:17 GMT
Age: 936332
Connection: keep-alive
X-Served-By: cache-sjc10068-SJC, cache-bma1650-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 1
X-Timer: S1663997778.863746,VS0,VE1
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (3910)
Size:   1218
Md5:    b644e92258f4c7c0b4270047652d1e60
Sha1:   93734d52ee9e86a768159e514076051813c39cd9
Sha256: 29199496fb817668f887938571046abcdfb49063d0207d571b361f221f467907
                                        
                                            GET /css/sites.css?buildTime=1624479156 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Last-Modified: Tue, 20 Sep 2022 22:44:33 GMT
ETag: W/"632a4251-347ac"
Expires: Wed, 05 Oct 2022 08:39:58 GMT
Cache-Control: max-age=1209600
X-Host: blu13.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 29746
Accept-Ranges: bytes
Date: Sat, 24 Sep 2022 05:36:17 GMT
Age: 248180
Connection: keep-alive
X-Served-By: cache-sjc10029-SJC, cache-bma1624-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 1
X-Timer: S1663997778.864038,VS0,VE1
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   29746
Md5:    d10158b22b553f723d99dc78eaee6390
Sha1:   80f2d6670cfb0d01cd20c471cf8e3e6465ddd3f6
Sha256: 939c7a8e1ad74a44e0c847e38533e69e36454b6805d25acf3fb0cb5c472d245e
                                        
                                            GET /css/social-icons.css?buildtime=1624479156 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Last-Modified: Thu, 08 Sep 2022 20:48:41 GMT
ETag: W/"631a5529-3319"
Expires: Mon, 26 Sep 2022 12:41:46 GMT
Cache-Control: max-age=1209600
X-Host: blu110.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 1639
Accept-Ranges: bytes
Date: Sat, 24 Sep 2022 05:36:17 GMT
Age: 1011271
Connection: keep-alive
X-Served-By: cache-sjc10041-SJC, cache-bma1628-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 1
X-Timer: S1663997778.864220,VS0,VE1
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (13080)
Size:   1639
Md5:    8d187cb7374eeeae857b6a61a61de0f4
Sha1:   b44aac11580606735fa1aa8b9637f56268267b0a
Sha256: 427bb56305a151eebd863996d75a06a7a3efe1a9861eefdea80c820ffcd4fb20
                                        
                                            GET /js/lang/en/stl.js?buildTime=1624479156& HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Last-Modified: Wed, 14 Sep 2022 16:18:05 GMT
ETag: "6321febd-2c4a6"
Expires: Mon, 03 Oct 2022 12:58:26 GMT
Cache-Control: max-age=1209600
X-Host: grn135.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 32828
Accept-Ranges: bytes
Date: Sat, 24 Sep 2022 05:36:17 GMT
Age: 405471
Connection: keep-alive
X-Served-By: cache-sjc10082-SJC, cache-bma1649-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 4, 1
X-Timer: S1663997778.863542,VS0,VE1
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  HTML document, Unicode text, UTF-8 text, with very long lines (64997)
Size:   32828
Md5:    9a49c00a13898c31cb9ae140287b524d
Sha1:   79aa80ae3e30b6f4ea929e6e118b16c68db216c2
Sha256: 7d4c52ebfd0e158669a414ec9c2ee33a1296b20d59370d8b3193c1ec81a9ec35
                                        
                                            GET /js/old/slideshow-jq.js?buildTime=1624479156 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Last-Modified: Thu, 08 Sep 2022 20:49:09 GMT
ETag: "631a5545-9e0b"
Expires: Mon, 26 Sep 2022 12:45:38 GMT
Cache-Control: max-age=1209600
X-Host: blu110.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 13265
Accept-Ranges: bytes
Date: Sat, 24 Sep 2022 05:36:17 GMT
Age: 1011040
Connection: keep-alive
X-Served-By: cache-sjc10070-SJC, cache-bma1678-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 1
X-Timer: S1663997778.872140,VS0,VE1
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (32013)
Size:   13265
Md5:    da04d4da36c827437eb064334cf40561
Sha1:   b54b259c2dce4a00e265deddf2ee0941dda6ed40
Sha256: 0064ed54b2f6244cda5252037026ceb744b58067811265aa1a10c3f7cd937b3a
                                        
                                            GET /js/site/footerSignup.js?buildTime=1663971033 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Last-Modified: Fri, 23 Sep 2022 21:40:32 GMT
ETag: "632e27d0-e10"
Expires: Fri, 07 Oct 2022 22:16:10 GMT
Cache-Control: max-age=1209600
X-Host: blu137.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 1372
Accept-Ranges: bytes
Date: Sat, 24 Sep 2022 05:36:17 GMT
Age: 26407
Connection: keep-alive
X-Served-By: cache-sjc10049-SJC, cache-bma1650-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 3, 26
X-Timer: S1663997778.872957,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (3600), with no line terminators
Size:   1372
Md5:    121a5b9688d8e70ee7bb06cc79491f76
Sha1:   3a28220baa7d8879270c8311bed7dddefa7e43e9
Sha256: 181716c84474c9eb6685a809d69dda5d49ce44dfbf64c5dee89a3091e23def40
                                        
                                            GET /js/site/main-customer-accounts-site.js?buildTime=1624479156 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Last-Modified: Wed, 14 Sep 2022 16:19:21 GMT
ETag: "6321ff09-8250f"
Expires: Mon, 03 Oct 2022 13:36:17 GMT
Cache-Control: max-age=1209600
X-Host: grn90.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 158930
Accept-Ranges: bytes
Date: Sat, 24 Sep 2022 05:36:17 GMT
Age: 403200
Connection: keep-alive
X-Served-By: cache-sjc10046-SJC, cache-bma1624-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 1
X-Timer: S1663997778.878886,VS0,VE1
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (32007)
Size:   158930
Md5:    f740fdfbcf394f270a9b176029fa6f37
Sha1:   5f20c49627104282744508eb0278d7185128532e
Sha256: 3021f0f944c9bd7c6e995601f25b3d970e0bd41f9a411f08b2871bb5415a8707
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 05:36:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /files/main_style.css?1624499758 HTTP/1.1 
Host: www.keystoneturnerhall.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/
Cookie: is_mobile=0; language=en

                                         
                                         199.34.228.76
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Sat, 24 Sep 2022 05:36:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: blu81.sf2p.intern.weebly.net
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (670)
Size:   6584
Md5:    f012f1d358201c00f2ac824aeed0575f
Sha1:   aa3fd77c905e57c043c959b311ca8bf854021e03
Sha256: e39e7396397efcb1e59643d731c2ba5b174bba807979ae12b9281e40155cb83a
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: G6Q980Itmuo0H5OGPsAu8Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.161.231.36
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: czFbykdZwG+ndX17yODjKVXUjrM=

                                        
                                            GET /images/site/footer/footer-toast-published-image-1.png HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: image/png
                                        
X-GUploader-UploadID: ADPycdtBep7ROccdUt9-QNl5VbmRIpCUwFb5y0r5I6-vVE2nBsM9PCbzHI6xHxQIvmEjxA2YbetFcXQVHBR8TKD8jioOTQFmXNb8
x-goog-generation: 1549995548326466
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 9677
x-goog-hash: crc32c=QhrKCw==, md5=bg960xvxh+DYj8V4dXO6cQ==
x-goog-storage-class: STANDARD
Server: UploadServer
Expires: Sun, 17 Apr 2022 00:19:21 GMT
Cache-Control: public, max-age=86400, s-maxage=259200
Last-Modified: Tue, 12 Feb 2019 18:19:08 GMT
ETag: "6e0f7ad31bf187e0d88fc5787573ba71"
Content-Length: 9677
Accept-Ranges: bytes
Date: Sat, 24 Sep 2022 05:36:18 GMT
Via: 1.1 varnish
Age: 104470
Connection: keep-alive
X-Served-By: cache-bma1624-BMA
X-Cache: HIT
X-Cache-Hits: 8985
X-Timer: S1663997778.000953,VS0,VE0
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  PNG image data, 199 x 97, 8-bit colormap, non-interlaced\012- data
Size:   9677
Md5:    6e0f7ad31bf187e0d88fc5787573ba71
Sha1:   14e8b85cc32a01c8901e4ac0160582d29a45e9e6
Sha256: 580ef6409e067a4ec4a427400c7d6216184869e2da53343df20753cc1f8a46cd
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 05:36:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/crimsontext/v19/wlp2gwHKFkZgtmSR3NB0oRJfbwhT.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.keystoneturnerhall.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 25184
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 21 Sep 2022 05:29:29 GMT
Expires: Thu, 21 Sep 2023 05:29:29 GMT
Cache-Control: public, max-age=31536000
Age: 259609
Last-Modified: Tue, 24 May 2022 18:26:18 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 25184, version 1.0\012- data
Size:   25184
Md5:    23eec75ba54d389a0188abbb596b7614
Sha1:   daa4672ad515a108325f52116e9a49aab8cdd5fa
Sha256: 538c7067580f457dd3dd98ebaabeb19405c12bdd01674d3db8fd9948ee73c862
                                        
                                            GET /s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.keystoneturnerhall.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 35764
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 20 Sep 2022 14:11:30 GMT
Expires: Wed, 20 Sep 2023 14:11:30 GMT
Cache-Control: public, max-age=31536000
Age: 314688
Last-Modified: Mon, 18 Jul 2022 19:06:36 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 35764, version 1.0\012- data
Size:   35764
Md5:    60f23230f1a8d5c3b7d25b73f5b5ce23
Sha1:   ed08ada85d017893b9bcb8224e99154c6708f5d2
Sha256: 22b6cdc450204c1cb32b31e679d812fea1c17ac506a7b78daeb12bd0ab25fde8
                                        
                                            GET /files/theme/custom.js?1570137717 HTTP/1.1 
Host: www.keystoneturnerhall.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/
Cookie: is_mobile=0; language=en

                                         
                                         199.34.228.76
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sat, 24 Sep 2022 05:36:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 13 Mar 2022 23:25:41 GMT
x-rgw-object-type: Normal
ETag: W/"a8cdf2852674b9b682c1be61454a75a0"
x-amz-request-id: tx000000000000000044ba1-006258b628-4d5d368-las
X-Storage-Bucket: z4e2f
X-Storage-Object: 4e2f6074e5a0daab0f207bd3b9fc89b10a5383c373bfc8c54fe5dabfd48f240e
X-Host: grn129.sf2p.intern.weebly.net
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   1755
Md5:    17da665a1a7e21ed9787d7251b707343
Sha1:   a69b47d92bb45f5305e4325ef2782a0132d51c73
Sha256: 4958b591154a835ddda0838cde60113f9d438d0eedd71712c85044f68c806c90

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /s/playfairdisplay/v30/nuFkD-vYSZviVYUb_rj3ij__anPXDTnogkk7.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.keystoneturnerhall.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 36104
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 20 Sep 2022 20:44:58 GMT
Expires: Wed, 20 Sep 2023 20:44:58 GMT
Cache-Control: public, max-age=31536000
Age: 291080
Last-Modified: Mon, 18 Jul 2022 19:13:00 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 36104, version 1.0\012- data
Size:   36104
Md5:    32938cccb9665d3b8afe8689b88a9ea3
Sha1:   5834c8e5bf4a8daf23f518a5ccb2e8b8391f6190
Sha256: b574669ac419e9857b34bd603555cc632152f8122f6b154d049e13cc0a167b35
                                        
                                            GET /s/crimsontext/v19/wlppgwHKFkZgtmSR3NB0oRJX1C1GDNNQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.keystoneturnerhall.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 25540
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 21 Sep 2022 10:00:33 GMT
Expires: Thu, 21 Sep 2023 10:00:33 GMT
Cache-Control: public, max-age=31536000
Age: 243345
Last-Modified: Tue, 24 May 2022 18:29:16 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 25540, version 1.0\012- data
Size:   25540
Md5:    19ab149056827f64d640fa3d65f4e536
Sha1:   754c09533c5b386067e762ae85f39c345ec10915
Sha256: 60b9b9640fc716abd752df41f38ad81052f4905e42be2ff3c1f78e851863aee0
                                        
                                            GET /s/crimsontext/v19/wlpogwHKFkZgtmSR3NB0oRJfajhRK_Y.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.keystoneturnerhall.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 26052
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 22 Sep 2022 22:59:52 GMT
Expires: Fri, 22 Sep 2023 22:59:52 GMT
Cache-Control: public, max-age=31536000
Age: 110186
Last-Modified: Tue, 24 May 2022 18:28:35 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 26052, version 1.0\012- data
Size:   26052
Md5:    79f4a05271df2557331188959e000767
Sha1:   e72e4f7d2e58634ca69dabcfccb2c87d92a953d0
Sha256: ded83489adaeec098ee0d639252e72be7de219f759b939ba4b2e606e5e68b272
                                        
                                            GET /s/quattrocento/v17/OZpEg_xvsDZQL_LKIF7q4jP3w2j6.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.keystoneturnerhall.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 35872
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 22 Sep 2022 15:04:34 GMT
Expires: Fri, 22 Sep 2023 15:04:34 GMT
Cache-Control: public, max-age=31536000
Age: 138704
Last-Modified: Wed, 27 Apr 2022 16:12:18 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 35872, version 1.0\012- data
Size:   35872
Md5:    62d2afa37918c2d8841c75898eadd68f
Sha1:   d6da38ee9ba1db21b7ee298f0018c2010d5ad882
Sha256: fe65e8f74381d5afc5a63c298f62b26c4b68531e9e2792e6fa63f4af24842596
                                        
                                            GET /fonts/wSocial/wsocial.woff?ts=1662670121405 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.keystoneturnerhall.com
Connection: keep-alive
Referer: http://cdn2.editmysite.com/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Server: nginx
Last-Modified: Thu, 08 Sep 2022 17:37:46 GMT
ETag: "631a286a-a4c"
Expires: Thu, 22 Sep 2022 21:30:38 GMT
Cache-Control: max-age=1209600
X-Host: blu74.sf2p.intern.weebly.net
Via: 1.1 varnish, 1.1 varnish
Content-Length: 2636
Accept-Ranges: bytes
Date: Sat, 24 Sep 2022 05:36:18 GMT
Age: 923838
Connection: keep-alive
X-Served-By: cache-sjc10062-SJC, cache-bma1641-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 3, 62
X-Timer: S1663997778.175632,VS0,VE0
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 2636, version 1.0\012- data
Size:   2636
Md5:    0e88795b66eeac48b209209aa0179411
Sha1:   983e16566390f9167c6c4fbbdb052623fc01a631
Sha256: e8106b06fab14948098cae97983eafbe1a60643ac725b2a029e4da57d43854df
                                        
                                            GET /nxe1ajf.js HTTP/1.1 
Host: use.typekit.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.76.186
HTTP/2 200 OK
content-type: text/javascript;charset=utf-8
                                        
server: nginx
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: public, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 6739
date: Sat, 24 Sep 2022 05:36:18 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (2258)
Size:   6739
Md5:    9189ca8b387979d5f2feeae6aad5ee64
Sha1:   938a8a1410b1927887df90e08aca8f587fb82fec
Sha256: 0429adbc18a19bede29b164f41a4ab37e2193bb45ec37471cc361c3292536f28
                                        
                                            GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.keystoneturnerhall.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 30928
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 22 Sep 2022 16:50:23 GMT
Expires: Fri, 22 Sep 2023 16:50:23 GMT
Cache-Control: public, max-age=31536000
Age: 132355
Last-Modified: Mon, 11 Jul 2022 18:57:39 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size:   30928
Md5:    ac0d2859ea5f8fd6bcb3c305c08ec184
Sha1:   7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
Sha256: ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
                                        
                                            GET /af/1da05b/0000000000000000000132df/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 HTTP/1.1 
Host: use.typekit.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.keystoneturnerhall.com
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.76.186
HTTP/2 200 OK
content-type: application/font-woff2
                                        
server: nginx
content-length: 26888
etag: "49d80c15efa35e0c65ed7e265d2c0333b309aa4e"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Sat, 24 Sep 2022 05:36:18 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 26888, version 1.0\012- data
Size:   26888
Md5:    6c288957e1ea69636d76b434a53c65ef
Sha1:   b8e0e2074136f3b167567d532312cc0f838bdf5f
Sha256: c763917e443b5583abccb9674edfaf82deada941ad5894d28c672c632fcd64dc
                                        
                                            GET /af/031bc7/0000000000000000000132e5/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n9&v=3 HTTP/1.1 
Host: use.typekit.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.keystoneturnerhall.com
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.76.186
HTTP/2 200 OK
content-type: application/font-woff2
                                        
server: nginx
content-length: 29052
etag: "a6e56bc1473094b110819c4cfa4169b4a97bd255"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Sat, 24 Sep 2022 05:36:18 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), CFF, length 29052, version 1.0\012- data
Size:   29052
Md5:    3437e060c8710bccafd202e3da9a25dc
Sha1:   8e1bbee3d09332165b23156a05b43641f8d9f913
Sha256: 0656089e2e797a739897875d68a79ca62256a3c76ab3f4c31cb2f363cd778fee
                                        
                                            GET /af/099730/0000000000000000000132e6/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i9&v=3 HTTP/1.1 
Host: use.typekit.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.keystoneturnerhall.com
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.76.186
HTTP/2 200 OK
content-type: application/font-woff2
                                        
server: nginx
content-length: 27788
etag: "d76106a15ff619ce03b2c3ca28b4559b159b1b63"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Sat, 24 Sep 2022 05:36:18 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), CFF, length 27788, version 1.0\012- data
Size:   27788
Md5:    ccc7b72fb1a80abb8cbafa94de34a554
Sha1:   0c68982548e2af3c6d6e8c49128be51e3f5dd0d1
Sha256: 3d25e0efebb8648cd1fcb31872cf5200c2e577259ad589b6e802bb1d95d03efe
                                        
                                            GET /af/32d3ee/0000000000000000000132e0/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i4&v=3 HTTP/1.1 
Host: use.typekit.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.keystoneturnerhall.com
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.76.186
HTTP/2 200 OK
content-type: application/font-woff2
                                        
server: nginx
content-length: 26568
etag: "c11943bfe7851ce643a829e2f815ebf55030b555"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Sat, 24 Sep 2022 05:36:18 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 26568, version 1.0\012- data
Size:   26568
Md5:    69d7f21af427ec644440343c1bcd0606
Sha1:   186c5445f00e61e82a73ce3207965ce28c410f72
Sha256: 2a1074cd5044c672760ad745fdbbd125381d63a86f5380b57a1dd28ad0da0d75
                                        
                                            GET /p.gif?s=1&k=nxe1ajf&ht=tk&h=www.keystoneturnerhall.com&f=10294.10295.10304.10305&a=3024360&js=1.21.0&app=typekit&e=js&_=1663997777307 HTTP/1.1 
Host: p.typekit.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.76.186
HTTP/2 200 OK
content-type: image/gif
                                        
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=604800
cross-origin-resource-policy: cross-origin
etag: "61c32ad2-23"
last-modified: Wed, 22 Dec 2021 13:40:34 GMT
server: nginx
content-length: 35
unused62: 8096267
date: Sat, 24 Sep 2022 05:36:18 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   35
Md5:    81144d75b3e69e9aa2fa3e9d83a64d03
Sha1:   f0fbc60b50edf5b2a0b76e0aa0537b76bf346ffc
Sha256: 9b9265c69a5cc295d1ab0d04e0273b3677db1a6216ce2ccf4efc8c277ed84b39
                                        
                                            GET /uploads/3/9/6/4/39648161/published/keystone-ia-2.png?1572818252 HTTP/1.1 
Host: www.keystoneturnerhall.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/
Cookie: is_mobile=0; language=en

                                         
                                         199.34.228.76
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Sat, 24 Sep 2022 05:36:18 GMT
Content-Length: 30425
Connection: keep-alive
Last-Modified: Sun, 03 Nov 2019 21:57:32 GMT
x-rgw-object-type: Normal
ETag: "f00f72d6881b41bb6a831dfca420fd83"
x-amz-request-id: tx00000000000000278f4eb-0062c3a71f-bfe36ba-sfo1
X-Storage-Bucket: z54ba
X-Storage-Object: 54ba3c9553cbc10e48e5e56c5e8949dbde4becdf68a409e840fc132bea9693a0
X-Host: blu39.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 220 x 220, 8-bit/color RGBA, non-interlaced\012- data
Size:   30425
Md5:    f00f72d6881b41bb6a831dfca420fd83
Sha1:   f446798a814162e0db080fd70b744db77269ffe8
Sha256: 54ba3c9553cbc10e48e5e56c5e8949dbde4becdf68a409e840fc132bea9693a0

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /files/theme/plugins.js?1570137717 HTTP/1.1 
Host: www.keystoneturnerhall.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/
Cookie: is_mobile=0; language=en

                                         
                                         199.34.228.76
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sat, 24 Sep 2022 05:36:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 24 Apr 2022 01:56:38 GMT
x-rgw-object-type: Normal
ETag: W/"2b8d85f1ea01d2c3e8b962eac8d76a5c"
x-amz-request-id: tx000000000000001ae94c4-006284793b-b9fbc20-sfo1
X-Storage-Bucket: zb635
X-Storage-Object: b6353ca52760aba4e7547ae9861db68158dc2af0f4febece55e5c775ee4449f5
X-Host: grn40.sf2p.intern.weebly.net
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   15721
Md5:    43e6b0bb6eb6524188831a282f7656d7
Sha1:   44e73fe367fc1fb8efee7eefac557b7d76ef0f44
Sha256: 9001fcfe93ceab40de4bb3535fc61335318c56d4440b53070cac27a26fef42bb

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /uploads/3/9/6/4/39648161/line_17.png HTTP/1.1 
Host: www.keystoneturnerhall.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/
Cookie: is_mobile=0; language=en

                                         
                                         199.34.228.76
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Sat, 24 Sep 2022 05:36:18 GMT
Content-Length: 268
Connection: keep-alive
Last-Modified: Tue, 24 Aug 2021 20:03:24 GMT
x-rgw-object-type: Normal
ETag: "0b02c195a7169afefbb29c1994827f97"
x-amz-request-id: tx0000000000000013aa81a-0061a77c03-a9f41e7-sfo1
X-Storage-Bucket: z76ef
X-Storage-Object: 76ef3ff04c91566565ce56e5b11fbb6ff27edd64df1f9d867be73141eaeddee9
X-Host: grn74.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 150 x 25, 8-bit/color RGBA, non-interlaced\012- data
Size:   268
Md5:    0b02c195a7169afefbb29c1994827f97
Sha1:   84cc3bc8949786c23b00fdf2645cf7f886b5b5bd
Sha256: 76ef3ff04c91566565ce56e5b11fbb6ff27edd64df1f9d867be73141eaeddee9
                                        
                                            GET /js/wsnbn/snowday262.js HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Last-Modified: Wed, 14 Sep 2022 16:18:50 GMT
ETag: "6321feea-124fe"
Expires: Thu, 29 Sep 2022 08:38:41 GMT
Cache-Control: max-age=1209600
X-Host: blu123.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 25752
Accept-Ranges: bytes
Date: Sat, 24 Sep 2022 05:36:18 GMT
Age: 766657
Connection: keep-alive
X-Served-By: cache-sjc10051-SJC, cache-bma1624-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 2, 7510
X-Timer: S1663997778.418598,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (2512)
Size:   25752
Md5:    234327230add9a5a5d61a48829ea4565
Sha1:   7966cc0e4bd76f88ff193c8a99a067de804b7129
Sha256: bb696c58d9ae5fa635b3ff22efdf60de9ac2f8ef9df5e2f2d58dd5f8dc99df75
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 05:36:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /uploads/3/9/6/4/39648161/published/hours-1.jpg?1592666150 HTTP/1.1 
Host: www.keystoneturnerhall.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/
Cookie: is_mobile=0; language=en

                                         
                                         199.34.228.76
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Sat, 24 Sep 2022 05:36:18 GMT
Content-Length: 19194
Connection: keep-alive
Last-Modified: Sat, 20 Jun 2020 15:15:50 GMT
x-rgw-object-type: Normal
ETag: "33c42e8769451138837a4e643c8daedc"
x-amz-request-id: tx00000000000000496a52a-0062c6f4e1-c0351b0-sfo1
X-Storage-Bucket: za2a0
X-Storage-Object: a2a0e5a7185ff4a260e8b920685fdb72f2933e4f0ddb626020762be19941a273
X-Host: grn144.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 382x382, components 3\012- data
Size:   19194
Md5:    33c42e8769451138837a4e643c8daedc
Sha1:   9d59d8d6a7144b064f29df112d0d78f547d5cf11
Sha256: a2a0e5a7185ff4a260e8b920685fdb72f2933e4f0ddb626020762be19941a273

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /images/old/slideshow/control_icons.gif HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn2.editmysite.com/css/old/slideshow/slideshow.css?1624479156

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
X-GUploader-UploadID: ADPycdshi5dyZeH9UESInyD9J5g_61Wg2R1_PTIghVnPr9VsZH5-xUfxzdiSYpFlocOZGdRzMZc_6S5r_-c8Jq5Aqjw_4jDvyx18
Cache-Control: public, max-age=86400, s-maxage=259200
Expires: Fri, 16 Sep 2022 01:10:40 GMT
Last-Modified: Thu, 25 May 2017 18:53:05 GMT
ETag: "88041de02e278ceedcd7de52bcdb8156"
x-goog-generation: 1495738385881388
x-goog-metageneration: 6
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 187
x-goog-hash: crc32c=P9yuOw==, md5=iAQd4C4njO7c195SvNuBVg==
x-goog-storage-class: STANDARD
Server: UploadServer
Content-Length: 187
Accept-Ranges: bytes
Date: Sat, 24 Sep 2022 05:36:18 GMT
Via: 1.1 varnish
Age: 188545
Connection: keep-alive
X-Served-By: cache-bma1624-BMA
X-Cache: HIT
X-Cache-Hits: 195
X-Timer: S1663997778.480567,VS0,VE0
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  GIF image data, version 89a, 25 x 13\012- data
Size:   187
Md5:    88041de02e278ceedcd7de52bcdb8156
Sha1:   775bf1f3464e006b3f644512e52477ecc9385222
Sha256: 00bd643d7b1cd928b72aa4b6d69df8d5838a8f07e26294fda69ab365fa454c3f
                                        
                                            GET /recaptcha/api.js?_=1663997777430 HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
expires: Sat, 24 Sep 2022 05:36:18 GMT
date: Sat, 24 Sep 2022 05:36:18 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 554
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (850), with no line terminators
Size:   554
Md5:    2311f1fa9653aad9f269b060d254e517
Sha1:   5616b0baad9134f8e12ab3fb911578740aa392fb
Sha256: 51f53051cf837a6d1e0de5e5db5bb5d5a2c1e4b23d4e7323ce306e24a80ba2b7
                                        
                                            GET /images/old/loading.gif HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn2.editmysite.com/css/old/slideshow/slideshow.css?1624479156

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
X-GUploader-UploadID: ADPycdsAPX9t63Z52N0sdiVUmM_grIUV0m5jmdEhedV_CNGUN3rWj7y_kDSks9iloJ6KseRswErEYSWd5x4rOSADBCmvfjSRvsI4
Cache-Control: public, max-age=86400, s-maxage=259200
Expires: Fri, 16 Sep 2022 03:29:09 GMT
Last-Modified: Thu, 25 May 2017 18:45:50 GMT
ETag: "0b0212ec4e07451700c88a335ebba854"
x-goog-generation: 1495737950396999
x-goog-metageneration: 6
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 2964
x-goog-hash: crc32c=F+8alw==, md5=CwIS7E4HRRcAyIozXruoVA==
x-goog-storage-class: STANDARD
Server: UploadServer
Content-Length: 2964
Accept-Ranges: bytes
Date: Sat, 24 Sep 2022 05:36:18 GMT
Via: 1.1 varnish
Age: 180287
Connection: keep-alive
X-Served-By: cache-bma1624-BMA
X-Cache: HIT
X-Cache-Hits: 232
X-Timer: S1663997778.499011,VS0,VE0
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  GIF image data, version 89a, 30 x 30\012- data
Size:   2964
Md5:    0b0212ec4e07451700c88a335ebba854
Sha1:   e62e40bbd31145dc64c0a555991a5dc5696d1943
Sha256: 37f5bf015ade9651005d72bcfdbb48838014c1c357f848585df731bc7eaff120
                                        
                                            GET /css/free-footer-v3.css?buildtime=1663971033 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Last-Modified: Fri, 23 Sep 2022 21:40:06 GMT
ETag: "632e27b6-a49"
Expires: Fri, 07 Oct 2022 22:16:10 GMT
Cache-Control: max-age=1209600
X-Host: blu30.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 886
Accept-Ranges: bytes
Date: Sat, 24 Sep 2022 05:36:18 GMT
Age: 26407
Connection: keep-alive
X-Served-By: cache-sjc10051-SJC, cache-bma1670-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 17
X-Timer: S1663997778.499850,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (2632)
Size:   886
Md5:    5c465ace654da8d0e367f91e7751ae62
Sha1:   f218f483eccbba5be90abf97eff819569329f8b7
Sha256: 0c91c8e311bc809644913a2ff023585ba587ecfc834ba3cd152544e75d422bd9
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 05:36:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /images/landing-pages/global/logotype.svg HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn2.editmysite.com/css/free-footer-v3.css?buildtime=1663971033

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
X-GUploader-UploadID: ADPycduITtRhv_5h862549JhDllw6e8s6BnV_OXwumpJRf4tFUCeyTwCkktV2dvyagvDEGSph_ZPdebwS4sUYTbNDwxM4yW9wl-L
Cache-Control: public, max-age=86400, s-maxage=259200
Expires: Sat, 17 Sep 2022 00:08:57 GMT
Last-Modified: Wed, 10 Oct 2018 21:37:00 GMT
ETag: "bc61dcb431a14c508075eeff4f74523a"
x-goog-generation: 1539207420450301
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 3507
x-goog-hash: crc32c=vgUlyw==, md5=vGHctDGhTFCAde7/T3RSOg==
x-goog-storage-class: STANDARD
Server: UploadServer
Content-Encoding: gzip
Content-Length: 1488
Accept-Ranges: bytes
Date: Sat, 24 Sep 2022 05:36:18 GMT
Via: 1.1 varnish
Age: 106008
Connection: keep-alive
X-Served-By: cache-bma1624-BMA
X-Cache: HIT
X-Cache-Hits: 235
X-Timer: S1663997779.571840,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2858)
Size:   1488
Md5:    0d1c9fb7005532e7b245cfdf1280d805
Sha1:   2466421992f1fb0e44829833aaee7afc0e5ac7cc
Sha256: 8691b92eed1360903b2182d81e491c80141d0cd051366ce3e8c4f359538eb1ff
                                        
                                            GET /fonts/SQ_Market/sqmarket-medium.woff2 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.keystoneturnerhall.com
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Server: nginx
Last-Modified: Thu, 08 Sep 2022 17:37:45 GMT
ETag: "631a2869-7830"
Expires: Wed, 28 Sep 2022 08:35:40 GMT
Cache-Control: max-age=1209600
X-Host: blu74.sf2p.intern.weebly.net
Via: 1.1 varnish, 1.1 varnish
Content-Length: 30768
Accept-Ranges: bytes
Date: Sat, 24 Sep 2022 05:36:18 GMT
Age: 853238
Connection: keep-alive
X-Served-By: cache-sjc10054-SJC, cache-bma1641-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 12, 2403
X-Timer: S1663997779.571833,VS0,VE0
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 30768, version 1.393\012- data
Size:   30768
Md5:    2344124773c71bf4fa4ad407e7c3a467
Sha1:   3394a43ab1efab8a22a1f07222f7f02a9e12cbb8
Sha256: bd4d2e29f503390e4951af9232fc43780b43d349647188d8f3f600835f16afb7
                                        
                                            OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 
Host: ec.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://www.keystoneturnerhall.com/
Origin: http://www.keystoneturnerhall.com
Connection: keep-alive

                                         
                                         35.82.13.103
HTTP/1.1 200 OK
                                        
Date: Sat, 24 Sep 2022 05:36:18 GMT
Content-Length: 0
Connection: keep-alive
Server: nginx
Access-Control-Allow-Origin: http://www.keystoneturnerhall.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type, SP-Anonymous
Access-Control-Max-Age: 5

                                        
                                            GET /files/theme/fonts/Unite_500.otf?1624499758 HTTP/1.1 
Host: www.keystoneturnerhall.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/files/main_style.css?1624499758
Cookie: is_mobile=0; language=en

                                         
                                         199.34.228.76
HTTP/1.1 200 OK
Content-Type: font/otf
                                        
Server: nginx
Date: Sat, 24 Sep 2022 05:36:18 GMT
Content-Length: 86528
Connection: keep-alive
Last-Modified: Fri, 08 May 2020 19:36:11 GMT
x-rgw-object-type: Normal
ETag: "1f55925e52b9e71fd57108874184060d"
x-amz-request-id: tx000000000000001aeaa82-0062847950-b9fbc20-sfo1
X-Storage-Bucket: zf02b
X-Storage-Object: f02b5750f291a5bd474f7cdbcb7b3fa79f2016c6af20d661b490b9bf945d41fc
X-Host: blu81.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  OpenType font data\012- data
Size:   86528
Md5:    1f55925e52b9e71fd57108874184060d
Sha1:   e8acc9022336f58bb5ee2e2d4d98b51bebf45990
Sha256: f02b5750f291a5bd474f7cdbcb7b3fa79f2016c6af20d661b490b9bf945d41fc

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /files/theme/fonts/Unite_700.otf?1624499758 HTTP/1.1 
Host: www.keystoneturnerhall.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/files/main_style.css?1624499758
Cookie: is_mobile=0; language=en

                                         
                                         199.34.228.76
HTTP/1.1 200 OK
Content-Type: font/otf
                                        
Server: nginx
Date: Sat, 24 Sep 2022 05:36:18 GMT
Content-Length: 89928
Connection: keep-alive
Last-Modified: Fri, 08 May 2020 19:36:11 GMT
ETag: "fa11c3ca7b2301d6b8da51b04985fb05"
x-amz-request-id: tx0000000000000001ea383-0061629352-1ff9432-las
X-Storage-Bucket: z3690
X-Storage-Object: 36906b2b3f6a199b3c59e6d862bfb36ed52d5c8de14ce46da8a8c5890250eb17
X-Host: grn46.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  OpenType font data\012- data
Size:   89928
Md5:    fa11c3ca7b2301d6b8da51b04985fb05
Sha1:   a9b9dae4568883ef65d130a8237343185d463f2a
Sha256: 36906b2b3f6a199b3c59e6d862bfb36ed52d5c8de14ce46da8a8c5890250eb17

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 
Host: ec.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json; charset=UTF-8
Content-Length: 1779
Origin: http://www.keystoneturnerhall.com
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/

                                         
                                         35.82.13.103
HTTP/1.1 200 OK
Content-Type: text/plain; charset=UTF-8
                                        
Date: Sat, 24 Sep 2022 05:36:18 GMT
Content-Length: 2
Connection: keep-alive
Server: nginx
Set-Cookie: sp=55803990-824b-4ea6-8101-e512af162666; Expires=Sun, 24 Sep 2023 05:36:18 GMT; Domain=; Path=/; Secure; SameSite=None
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
Access-Control-Allow-Origin: http://www.keystoneturnerhall.com
Access-Control-Allow-Credentials: true


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   2
Md5:    444bcb3a3fcf8389296c49467f27e1d6
Sha1:   7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
Sha256: 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
                                        
                                            GET /uploads/3/9/6/4/39648161/49690779-10157218941770572-6231851062341402624-n_1_orig.jpg HTTP/1.1 
Host: www.keystoneturnerhall.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/
Cookie: is_mobile=0; language=en

                                         
                                         199.34.228.76
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Sat, 24 Sep 2022 05:36:18 GMT
Content-Length: 80308
Connection: keep-alive
Last-Modified: Sun, 03 Nov 2019 20:39:54 GMT
x-rgw-object-type: Normal
ETag: "94724ead59e33e0a35dae5e7a8bd6681"
x-amz-request-id: tx00000000000000ab75ca1-0062d0da0d-c033918-sfo1
X-Storage-Bucket: z1c47
X-Storage-Object: 1c475c6b347be421928135b6de3389cfae57ba1e4d83cb5f8cfcae29a76b1962
X-Host: blu41.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, progressive, precision 8, 960x720, components 3\012- data
Size:   80308
Md5:    94724ead59e33e0a35dae5e7a8bd6681
Sha1:   55dcccb142433fac4743546cbad7ba5048c46fe2
Sha256: 1c475c6b347be421928135b6de3389cfae57ba1e4d83cb5f8cfcae29a76b1962
                                        
                                            GET /uploads/3/9/6/4/39648161/49199572-10157218940970572-7163451149838712832-n_1_orig.jpg HTTP/1.1 
Host: www.keystoneturnerhall.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/
Cookie: is_mobile=0; language=en

                                         
                                         199.34.228.76
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Sat, 24 Sep 2022 05:36:18 GMT
Content-Length: 117399
Connection: keep-alive
Last-Modified: Sun, 03 Nov 2019 20:39:58 GMT
x-rgw-object-type: Normal
ETag: "b1e5f13d743b53b8ba2ce0c9676b117d"
x-amz-request-id: tx000000000000024a010c1-0062fb8225-c033918-sfo1
X-Storage-Bucket: z16c7
X-Storage-Object: 16c7b00fc418cc1d23d4a03ccf54ae45e42f1214c1f38100ba2c131aa734f59e
X-Host: grn74.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, progressive, precision 8, 960x720, components 3\012- data
Size:   117399
Md5:    b1e5f13d743b53b8ba2ce0c9676b117d
Sha1:   f3b4376fb4ddc9ff160c3d36288452db65ff0a64
Sha256: 16c7b00fc418cc1d23d4a03ccf54ae45e42f1214c1f38100ba2c131aa734f59e
                                        
                                            GET /uploads/3/9/6/4/39648161/49614573-10157218952205572-8434527277772963840-n_1_orig.jpg HTTP/1.1 
Host: www.keystoneturnerhall.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/
Cookie: is_mobile=0; language=en

                                         
                                         199.34.228.76
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Sat, 24 Sep 2022 05:36:19 GMT
Content-Length: 56449
Connection: keep-alive
Last-Modified: Sun, 03 Nov 2019 20:40:03 GMT
x-rgw-object-type: Normal
ETag: "e5ab6d0bbcc433390cb20c9bd010f713"
x-amz-request-id: tx00000000000001ef417bd-0062b221b7-b9fbc20-sfo1
X-Storage-Bucket: z757c
X-Storage-Object: 757c5f878d0bdbc3f6726f20c57d7082f1e4736f16e689cd9d1a660b017f6203
X-Host: blu137.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x960, components 3\012- data
Size:   56449
Md5:    e5ab6d0bbcc433390cb20c9bd010f713
Sha1:   61a1633ad3ddf36ee91ba8a77bbbada257c49816
Sha256: 757c5f878d0bdbc3f6726f20c57d7082f1e4736f16e689cd9d1a660b017f6203
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3716
Expires: Sat, 24 Sep 2022 06:38:15 GMT
Date: Sat, 24 Sep 2022 05:36:19 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3716
Expires: Sat, 24 Sep 2022 06:38:15 GMT
Date: Sat, 24 Sep 2022 05:36:19 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3716
Expires: Sat, 24 Sep 2022 06:38:15 GMT
Date: Sat, 24 Sep 2022 05:36:19 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10032
x-amzn-requestid: 521c4012-9834-4100-a7ed-30093502f1a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sPBHGYoAMFh-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e272c-77b03c321240d76a572d603a;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:48 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: N7TwxCLUL8qnvm3YuZ6CGyJquVerc266VvZ1g8j5RxGpQXoUJwhULg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:51:16 GMT
age: 27903
etag: "ed04f74fbb4c77b21e2babc51a82857f5e23d169"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10032
Md5:    aa150280eb113504d61a25935c0f0127
Sha1:   ed04f74fbb4c77b21e2babc51a82857f5e23d169
Sha256: 07df17fffb391aa82efb09e30d97e88fa4dbe6df00e37bb90304f69179f4848e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d9363e8-7e74-47d0-b49b-ac648ebf58c9.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7829
x-amzn-requestid: 79add9b6-6cde-48a3-9c42-1205931f6114
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7t9_FXhoAMFUJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e29f2-6d0d600139ae5be33989e303;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:49:38 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: IvhIsub3cPBuVbyQzV1vfgtR71W-m47YCeaeFVduPm-MotECuZhyBg==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 22:08:01 GMT
age: 26898
etag: "058909341bf245c24fd86fc076acf2a3c246a96c"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7829
Md5:    d84c4ddafb066f0340a6108644e18e6b
Sha1:   058909341bf245c24fd86fc076acf2a3c246a96c
Sha256: ca9019fab30635e3548e05e088ff5a5d612ffe7c01f29465c4133710a41c0245
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1500786-3bbf-46d0-b16e-4aff6d48a585.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 14579
x-amzn-requestid: bce2c126-0883-4255-9246-d8055860f898
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YcCj6FYCoAMF9Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63217e18-66ba2e5d64b6a5b32b7ab36b;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 07:09:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: igIWZ2IhMA_GIovp4HgIHtGeDt5xoX0iThoQFKjnNJUYP_uMdO7FHw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 22:11:52 GMT
age: 26667
etag: "16e42ba7b20555bf5a8615e5f4bb561204aeeb5a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   14579
Md5:    f10a12719b387d176497669ba75f0acc
Sha1:   16e42ba7b20555bf5a8615e5f4bb561204aeeb5a
Sha256: 0cb2231817387d43a490565b61e24ea7a3cfcff3281f4ab4379a882cc5c3173f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd81dd9e4-90be-4864-999a-d4ef740cdc24.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8675
x-amzn-requestid: c2c6ccda-cf20-4d53-a4b4-7068fe823495
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7tTlGRzoAMFfpg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e28e3-1f557a8563267dde615c0610;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:45:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: wSQLIWHxcGPx-dNgIo9v9BBNlm6CZZNY228d8gFo6eZ-vNGbCavniA==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:47:32 GMT
age: 28127
etag: "d355033b77ce3f76f800f8c90ddd624f1fda9005"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8675
Md5:    37139ae1fd49662f05b8e3a0925f31b4
Sha1:   d355033b77ce3f76f800f8c90ddd624f1fda9005
Sha256: 0d76bfa4c37391d08e5f354e7a927b9216f06b8d5e90d7a5cfb3e08df00dcf94
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F860e3a33-2946-4ad5-9687-6cc6953b920d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5179
x-amzn-requestid: 57451c31-0b96-4aa5-ae63-54f949ab3d68
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sQlGrRIAMFklA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2736-0bd483e47d880a837c7316ce;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:58 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OEBChdfqreTTNtWpSQfl4Eqsjj--P1EoJsFESumBcVJHdFNGSpN7gQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:48:26 GMT
age: 28073
etag: "a7a6043178f05f547a08808ea8b34a6703154b42"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5179
Md5:    b4a034f8a3f2e69e852a69075d20b0e3
Sha1:   a7a6043178f05f547a08808ea8b34a6703154b42
Sha256: 8f1a045214d7049cb9f9a1ab2c55b6753907741b7cbfcb2e02f916f95a56ddcc
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5039669-74cb-4d54-9208-94257c765b35.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9935
x-amzn-requestid: 9eb8463d-172a-40a2-8eed-3c97b1260afe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sQ5FARoAMFXQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2738-3709a2f22ecc033532223b26;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:38:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: e5eETCL5yFnoG4HPx0Qv8hjGnlXx5vOL4syMx9uato8nuIHkSvMezg==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:58:23 GMT
age: 27476
etag: "a30f9044330824e70dde0dcc785890d981e6fdf5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9935
Md5:    55d224ac83a417772c98bc5080fb6689
Sha1:   a30f9044330824e70dde0dcc785890d981e6fdf5
Sha256: b2ea4dea200109019a65834b98e31e8fac718a199513810a2819858be2b4470a
                                        
                                            GET /uploads/3/9/6/4/39648161/49447832-10157218940980572-6003155581521625088-n_1_orig.jpg HTTP/1.1 
Host: www.keystoneturnerhall.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/
Cookie: is_mobile=0; language=en

                                         
                                         199.34.228.76
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Sat, 24 Sep 2022 05:36:19 GMT
Content-Length: 113349
Connection: keep-alive
Last-Modified: Sun, 03 Nov 2019 20:40:01 GMT
x-rgw-object-type: Normal
ETag: "e180c50c0f6e8c83d614506fff4835b6"
x-amz-request-id: tx00000000000000427865a-006286bebc-b9fbc20-sfo1
X-Storage-Bucket: z68a8
X-Storage-Object: 68a89d6d5b6f37fc99f38dfcf327b1a34d0fa456aad572d045504ad39f8eaf08
X-Host: blu74.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, progressive, precision 8, 960x720, components 3\012- data
Size:   113349
Md5:    e180c50c0f6e8c83d614506fff4835b6
Sha1:   caba1f0fd398b9ff499ad013542acb2343cb8257
Sha256: 68a89d6d5b6f37fc99f38dfcf327b1a34d0fa456aad572d045504ad39f8eaf08
                                        
                                            GET /uploads/3/9/6/4/39648161/49629760-10157218941090572-4493549386717986816-n_1_orig.jpg HTTP/1.1 
Host: www.keystoneturnerhall.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/
Cookie: is_mobile=0; language=en

                                         
                                         199.34.228.76
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Sat, 24 Sep 2022 05:36:18 GMT
Content-Length: 107896
Connection: keep-alive
Last-Modified: Sun, 03 Nov 2019 20:39:57 GMT
x-rgw-object-type: Normal
ETag: "54672ad48c6215c006836a2b9c0532dd"
x-amz-request-id: tx000000000000027c56af1-0063002636-c0351c8-sfo1
X-Storage-Bucket: zd008
X-Storage-Object: d008a2bd8462bbeb68126a8499c14a4c52de85a847bd8be91ca8111ce86cb146
X-Host: blu81.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, progressive, precision 8, 960x720, components 3\012- data
Size:   107896
Md5:    54672ad48c6215c006836a2b9c0532dd
Sha1:   97387203ffd53586327facefeabd5c95453bfa3f
Sha256: d008a2bd8462bbeb68126a8499c14a4c52de85a847bd8be91ca8111ce86cb146
                                        
                                            GET /uploads/3/9/6/4/39648161/49238924-10157218941400572-6200781565274882048-n_1_orig.jpg HTTP/1.1 
Host: www.keystoneturnerhall.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/
Cookie: is_mobile=0; language=en

                                         
                                         199.34.228.76
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Sat, 24 Sep 2022 05:36:18 GMT
Content-Length: 113921
Connection: keep-alive
Last-Modified: Sun, 03 Nov 2019 20:39:56 GMT
x-rgw-object-type: Normal
ETag: "475fcfc1d31c63462bc37e4aa24be94a"
x-amz-request-id: tx00000000000000c39596c-0062d2cc11-c0351b0-sfo1
X-Storage-Bucket: z73fa
X-Storage-Object: 73fa61120361815595d2a3c4099659058b44e2b0da16eb792df61b68f0c9ee9b
X-Host: blu70.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, progressive, precision 8, 960x720, components 3\012- data
Size:   113921
Md5:    475fcfc1d31c63462bc37e4aa24be94a
Sha1:   310610e8f419eafb9bf900297b71b6cba2f050a6
Sha256: 73fa61120361815595d2a3c4099659058b44e2b0da16eb792df61b68f0c9ee9b
                                        
                                            GET /ga.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/

                                         
                                         216.239.36.178
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 17168
Date: Sat, 24 Sep 2022 04:31:01 GMT
Expires: Sat, 24 Sep 2022 06:31:01 GMT
Cache-Control: public, max-age=7200
Age: 3918
Last-Modified: Sun, 11 Sep 2022 13:50:09 GMT


--- Additional Info ---
Magic:  ASCII text, with very long lines (1305)
Size:   17168
Md5:    01d5892e6e243b52998310c2925b9f3a
Sha1:   58180151b6a6ee4af73583a214b68efb9e8844d4
Sha256: 7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 05:36:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/recaptcha__en.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.keystoneturnerhall.com
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158248
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 07:11:34 GMT
expires: Fri, 22 Sep 2023 07:11:34 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Sep 2022 04:01:43 GMT
age: 167085
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (826)
Size:   158248
Md5:    db1b5789e9915e9c82f5df92e5982980
Sha1:   2e193e502995501c85f45fd89d9f83707a7f9573
Sha256: db9c82b18117d7cff0f674de758f5bbb39bc6dee969cee679c741090968b9206
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 05:36:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.keystoneturnerhall.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/
Cookie: is_mobile=0; language=en; _snow_ses.2536=*; _snow_id.2536=33a7b8f3-45e5-4440-9a38-ef6f753c5859.1663997778.1.1663997778.1663997778.b4701fd3-b77a-43b7-ae0b-190cf35366d6

                                         
                                         199.34.228.76
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx
Date: Sat, 24 Sep 2022 05:36:19 GMT
Content-Length: 4286
Connection: keep-alive
Last-Modified: Fri, 24 Sep 2021 21:48:12 GMT
x-rgw-object-type: Normal
ETag: "4d27526198ac873ccec96935198e0fb9"
x-amz-request-id: tx000000000000000c7f3c4-0061a705d8-a9f6a62-sfo1
X-Storage-Bucket: z40a2
X-Storage-Object: 40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4
X-Host: grn40.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Size:   4286
Md5:    4d27526198ac873ccec96935198e0fb9
Sha1:   b98d8b73ad6a0f7477c3397561b4aab37bf262aa
Sha256: 40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4
                                        
                                            POST /ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] HTTP/1.1 
Host: www.keystoneturnerhall.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 83
Origin: http://www.keystoneturnerhall.com
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/
Cookie: is_mobile=0; language=en; _snow_ses.2536=*; _snow_id.2536=33a7b8f3-45e5-4440-9a38-ef6f753c5859.1663997778.1.1663997778.1663997778.b4701fd3-b77a-43b7-ae0b-190cf35366d6

                                         
                                         199.34.228.76
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Date: Sat, 24 Sep 2022 05:36:19 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn7.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 348
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (348), with no line terminators
Size:   348
Md5:    a944dd688c99d2901d6719be713271c0
Sha1:   4f5454d5d434829baf46671638610791758725d9
Sha256: adb97e1bc686c58b4286f1208d2bd969687c6cf3e2fc468697dfd956d260de49

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.42
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33593
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Sep 2022 09:37:50 GMT
expires: Sun, 17 Sep 2023 09:37:50 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 590307
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /js/site/main.js?buildTime=1624479156 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.keystoneturnerhall.com/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Last-Modified: Thu, 08 Sep 2022 20:49:09 GMT
ETag: "631a5545-74804"
Expires: Mon, 26 Sep 2022 14:19:49 GMT
Cache-Control: max-age=1209600
X-Host: grn57.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 146400
Accept-Ranges: bytes
Date: Sat, 24 Sep 2022 05:36:17 GMT
Age: 1005388
Connection: keep-alive
X-Served-By: cache-sjc10075-SJC, cache-bma1670-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 1
X-Timer: S1663997778.863569,VS0,VE2
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---