r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a5daf4dc99951793ae2315d4795e8146
4427507ca4d3a5632cc8f598afbc85e2195d00bd
94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13818
Expires: Thu, 01 Dec 2022 12:51:33 GMT
Date: Thu, 01 Dec 2022 09:01:15 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9fce5679881bf302a8978a0b462f01a9
b699fe030ea13ac73813e655c42ed9b531925e2b
a3ec545a8f9364ac9062eddb41279e1465687a1b60f9c1dec6b3a3df8b033eb3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16795
Expires: Thu, 01 Dec 2022 13:41:10 GMT
Date: Thu, 01 Dec 2022 09:01:15 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash f3cf023c797da81728c0ac84c8759331
fa07c5e39e4b0741ea484101cccb2202acea9d9c
5206a0bac8bf78d6b84322519271a1ece2c1039a0090e583de6d6192d88873d0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4154
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 09:01:15 GMT
Etag: "638730f7-1d7"
Last-Modified: Thu, 01 Dec 2022 07:52:01 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: V9IzFcBPANAvCjkGOxWAhdRQqJEE9t/5Z3UtrI/i9Xz4bJXtidYAS9zyLmQMdgBxAPYP050OfEE=
x-amz-request-id: X5MV5G5X488SG73S
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 08:45:36 GMT
age: 939
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 01 Dec 2022 08:19:46 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2489
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 09:01:15 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 01 Dec 2022 08:11:15 GMT
cache-control: public,max-age=3600
age: 3000
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash cfdd00e67ee6ca21712b867eb5288ab6
b61d5d6ec3b7ad71619e13e32c87f2d01871b88a
f740cac6dfedc1bf0f82efb10dac4f6ffb22f9bb5d4a9b68a4cd971dd2f65793
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4152
Cache-Control: max-age=90888
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 09:01:15 GMT
Etag: "63871d2b-1d7"
Expires: Fri, 02 Dec 2022 10:16:03 GMT
Last-Modified: Wed, 30 Nov 2022 09:06:51 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: HJ/pKnSJ2Tw0G+4Q9zAtzA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: PqtDx7/c9YcbBwaIe+zXVr6LyHE=
ppsspasbl.org/
301 Moved Permanently 110 B IP
File type HTML document, ASCII text
Hash c84a728d0ad6c4a0536d4ae44cdff21d
06b35ae1c321bb30fe845cb7cc97f6f1a4cb6900
56e9f874dd0a58ee9d3c2d036f9cb53b66deb46b443276f12bf803d7ad4c68b6
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 01 Dec 2022 09:01:15 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Redirect-By: WordPress
Location: http://www.ppsspasbl.org/
Vary: User-Agent
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3341
Expires: Thu, 01 Dec 2022 09:56:58 GMT
Date: Thu, 01 Dec 2022 09:01:17 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3341
Expires: Thu, 01 Dec 2022 09:56:58 GMT
Date: Thu, 01 Dec 2022 09:01:17 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3341
Expires: Thu, 01 Dec 2022 09:56:58 GMT
Date: Thu, 01 Dec 2022 09:01:17 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3341
Expires: Thu, 01 Dec 2022 09:56:58 GMT
Date: Thu, 01 Dec 2022 09:01:17 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3341
Expires: Thu, 01 Dec 2022 09:56:58 GMT
Date: Thu, 01 Dec 2022 09:01:17 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 820cf89fcab8380adff42982c9fb11ed
84241ddddbbfd7de30118307fb1a62800d0a4cb3
0d051495f06ac84de934283b40cbfee7a042d32153a73486dd7c017430e882d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12898
x-amzn-requestid: 9b594c3c-6b8c-4589-8fcb-b3d7518b46f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cQZBNFxToAMF_9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63833ba1-767f510d72eef86d0cc892df;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 10:27:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gsn5uUFEzDZDOMPTvW9UQxtccvRfJKUM4eJ8U99jvUGzNIKkF9SzeA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:49:20 GMT
age: 40317
etag: "84241ddddbbfd7de30118307fb1a62800d0a4cb3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CJiSRzIK7-rQE81gaP2We0LhgKX1YmuJKEGYEqW34Bm1KMx6NB8yhQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 04:29:19 GMT
age: 16318
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ffd12f9c423ffc627d9e3b3145944fe4
5cf9a7a784952e1bb0cbe499104f1774b1269d08
a25f1b752d9af599aefd73073c105853130f1759905269de3d582d2eb35fe167
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16038
x-amzn-requestid: 9d34c42b-ba0c-498f-8f99-d4ab527ffa89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbzMdHXNIAMFgaw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cbe9-376846f31dc9b995797cbd18;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:32:25 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: DngCuOTO9fQAwWe_ip6EtBcgruigZN6Bl1_v5BHM2dsWlhqCXCL3gg==
via: 1.1 efcf7b9d0f917f9ebf314db03e52d9b6.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:45:33 GMT
age: 40544
etag: "5cf9a7a784952e1bb0cbe499104f1774b1269d08"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg
200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e1e6b6ba4f82221b41c3d9129008c76d
2f9532d698b4c28df23e18bbb66399ec776d5b9f
218c6f41a16e6087c611d4db5784a7cc1d027084d0bf2bd6dc3843ee5dfd560f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9459
x-amzn-requestid: c08f55b2-7ac6-4dec-b53c-fd3f4533f9c9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMpBiGoHIAMFR2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bba3-69c2c2d05e55fd745caf1dce;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:09:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w_Mb-0pBwp-pUyU2bdJ8MhrGHkk6VQgJmcGV9MfHwj_yGUMIYZkyrg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 10:53:00 GMT
age: 79697
etag: "2f9532d698b4c28df23e18bbb66399ec776d5b9f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 26d6dffbf400da4803a2e76e2a8ef2f8
2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8
04c6e31623fe48cbe83dc91635bfa47b337590f18919995b08d5bde27e929e03
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8740
x-amzn-requestid: 4823cf63-98eb-40d3-bb8b-e09cd2262f36
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7SqHjYIAMF8xw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830c10-316b213c33ce9bc2355c0900;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:04:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tK4wl-g5kcUhVFE3iZGILhZhZSsaMzQD9JTBHj1JXV95yXs_e3gMGw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 13:21:34 GMT
age: 70783
etag: "2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc2c1d47-fc4a-4f23-a6f7-5ac8f3a68490.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc2c1d47-fc4a-4f23-a6f7-5ac8f3a68490.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash acffcb88ce68b2d70c9c046a7b5a4aa8
cd016e6c0bf5c6eef06e933c9a5257ff4fca9bc1
692d782ac1d812de6dadbcfe46034b6b5d8bbd586e56beedd96dc4d65445dd4c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc2c1d47-fc4a-4f23-a6f7-5ac8f3a68490.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12035
x-amzn-requestid: eef7d417-c6ca-4e3f-ac00-1425f3d5c4a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb0TSGHDIAMF_jA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cdae-467c79a805dfb5622687f628;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:39:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: haFJ2LZecbT4HRbkvcaZxR4SAIx5cGxNyghKiDOJVX6xDkPwzc2wNQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:45:34 GMT
age: 40543
etag: "cd016e6c0bf5c6eef06e933c9a5257ff4fca9bc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.ppsspasbl.org/
301 Moved Permanently 110 B IP
File type HTML document, ASCII text
Hash c84a728d0ad6c4a0536d4ae44cdff21d
06b35ae1c321bb30fe845cb7cc97f6f1a4cb6900
56e9f874dd0a58ee9d3c2d036f9cb53b66deb46b443276f12bf803d7ad4c68b6
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 01 Dec 2022 09:01:16 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Redirect-By: WordPress
Location: https://www.ppsspasbl.org/
Vary: User-Agent
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.sectigo.com/
200 OK 471 B IP
Hash 987e65a9d4e741b646ca6fc83ef9edb0
467016c03c519f4fb6d0adb551ce04e482099278
7f8da3c0fad6445b5cf513634b6525aaad4d0a6e928271eaef97f5ddfede31ac
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 09:01:18 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 04:44:22 GMT
Expires: Tue, 06 Dec 2022 04:44:21 GMT
Etag: "467016c03c519f4fb6d0adb551ce04e482099278"
Cache-Control: max-age=415982,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 772aa32baf6eb4f1-OSL
ocsp.digicert.com/
200 OK 279 B IP
Hash 2f1d1e0007d1ba038ac919cc334dca7d
4f3c8cf53099b4a2844ce33d927d2f637d568ff0
d34a6d2d4672091f991673b5cf5e89dd224ff90ff20360db8493241ad1e31fde
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4173
Cache-Control: max-age=169782
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 09:01:20 GMT
Etag: "63885149-117"
Expires: Sat, 03 Dec 2022 08:11:02 GMT
Last-Modified: Thu, 01 Dec 2022 07:01:29 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 188c50963e7939b1f26a31dbcb8c8200
859416e6148ea6618584e53604efcf072bb989cc
3a313cd3c1693a886bfbf6ffc6fbac78f87e6ded2b9a7749553444ada65ce36e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 09:01:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 09:01:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.ppsspasbl.org/wp-content/plugins/compact-wp-audio-player/css/player.css?ver=5.5.11
200 OK 311 B URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/compact-wp-audio-player/css/player.css?ver=5.5.11
IP
File type ASCII text, with CRLF line terminators
Hash 2c616618af82a5c2c61ab6bbae350bce
db29652273f62b41ae15b909a51137e1fee417c3
08ae007ba503fafd95e50e510474da034cd2f20c7735425222ee151bd855ea64
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/compact-wp-audio-player/css/player.css?ver=5.5.11 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 18 Aug 2021 14:04:26 GMT
etag: "464-5c9d5e9869050-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 311
content-type: text/css
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/compact-wp-audio-player/css/flashblock.css?ver=5.5.11
200 OK 1.3 kB URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/compact-wp-audio-player/css/flashblock.css?ver=5.5.11
IP
File type ASCII text, with CRLF line terminators
Hash cf879dda588993d2a3abaadf0ecc2fd6
d57026c460228751bc0b1541543c79f4895b9641
de8b3ae36f8741ead340c4f3eb0a6007a97dfabcc68a578dab78dfb3334b3e2f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/compact-wp-audio-player/css/flashblock.css?ver=5.5.11 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 18 Aug 2021 14:04:26 GMT
etag: "e5f-5c9d5e98682ef-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1270
content-type: text/css
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/wp-miniaudioplayer/css/miniplayer.css?ver=1.9.6
200 OK 2.6 kB URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/wp-miniaudioplayer/css/miniplayer.css?ver=1.9.6
IP
Hash 231d20eeacd5c112416b64c1ed78a7be
ac010c7919880738a1b6cfd1f61954d4d0d46ba0
97f96a07fa0e64b5e85d50b8152331a22f540b8e30ae7cf9b020ffdb65e676eb
GET /wp-content/plugins/wp-miniaudioplayer/css/miniplayer.css?ver=1.9.6 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Jun 2021 08:20:32 GMT
etag: "3ad0-5c4b587ec9dd8-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2608
content-type: text/css
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-183781583-1
200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-183781583-1
IP
File type ASCII text, with very long lines (1921)
Hash 6acd91e654bf6cdc8e0bf78ff8315b38
d506b2effa0f6d382f689b04ed0f3f6a66d33001
9f71905e644af0f9665abbbe1a32b6a7160402d38e1277a718dbbe8c1acbbdec
GET /gtag/js?id=UA-183781583-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 01 Dec 2022 09:01:20 GMT
expires: Thu, 01 Dec 2022 09:01:20 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43538
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 2f1d1e0007d1ba038ac919cc334dca7d
4f3c8cf53099b4a2844ce33d927d2f637d568ff0
d34a6d2d4672091f991673b5cf5e89dd224ff90ff20360db8493241ad1e31fde
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4173
Cache-Control: max-age=169782
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 09:01:20 GMT
Etag: "63885149-117"
Expires: Sat, 03 Dec 2022 08:11:02 GMT
Last-Modified: Thu, 01 Dec 2022 07:01:29 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279
www.ppsspasbl.org/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4.1
200 OK 929 B URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4.1
IP
Hash f069aa048101cd828628f5ef6e7fd60f
45ce2d439404b49292176edce876aae25a421969
c702548246e82f02d9a9157faf989f6272fb49685f17da47796ae7c9400d1518
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4.1 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Jun 2021 08:20:14 GMT
etag: "a50-5c4b586e2f3d0-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 929
content-type: text/css
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-includes/css/dist/block-library/theme.min.css?ver=5.5.11
200 OK 729 B URL HTTP/2 www.ppsspasbl.org/wp-includes/css/dist/block-library/theme.min.css?ver=5.5.11
IP
File type ASCII text, with very long lines (2218), with no line terminators
Hash 1c594ff3d841fb2905c8d41ac7a1e453
5f96285b7a75449dc5d32bdfc44ed15997a16b1f
7c1f38e4bf49405241edc00e50cdb4d0609b162b31c9cc0cbb1ebd74ebb5367a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/theme.min.css?ver=5.5.11 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Sep 2020 07:10:48 GMT
etag: "8aa-5afb96ef04279-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 729
content-type: text/css
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/final-tiles-grid-gallery-lite/scripts/ftg.css?ver=3.5.1
200 OK 2.9 kB URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/final-tiles-grid-gallery-lite/scripts/ftg.css?ver=3.5.1
IP
File type ASCII text, with CRLF line terminators
Hash f15739cac312a1d5d618f9eb65d22777
f9883da3e94ee13dca1878dcecbe54beaaf956ee
ed30432c9a508304d16f9948074c05319f5ca7d1f4e72b68475464ff09fafeda
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/final-tiles-grid-gallery-lite/scripts/ftg.css?ver=3.5.1 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 11 Jun 2021 06:59:08 GMT
etag: "405f-5c4780b557cff-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2897
content-type: text/css
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/wp-whatsapp/assets/dist/css/style.css?ver=5.5.11
200 OK 5.5 kB URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/wp-whatsapp/assets/dist/css/style.css?ver=5.5.11
IP
File type ASCII text, with very long lines (42417), with no line terminators
Hash 4cd66bd891d63ca1fa25296e9ba480ae
5a761c25d6c44c87dae959914bd35b9854998d47
b23c5dcab06699a244a031c2840004d2398feeea8da91f77a3df3c96816a1a54
GET /wp-content/plugins/wp-whatsapp/assets/dist/css/style.css?ver=5.5.11 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 17 Jun 2022 14:26:10 GMT
etag: "a5b1-5e1a5892d8e0b-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5480
content-type: text/css
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/advanced-page-visit-counter/public/css/advanced-page-visit-counter-public.css?ver=5.0.3
200 OK 260 B URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/advanced-page-visit-counter/public/css/advanced-page-visit-counter-public.css?ver=5.0.3
IP
Hash fd962c4bac9399815683d3669527d0d9
2b3480f8f3a928e8190f70c35fa7ef4904213c26
73fea90f7370c130618f3813a8018002e7fbf6308605c03daf794d2648fe2551
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/advanced-page-visit-counter/public/css/advanced-page-visit-counter-public.css?ver=5.0.3 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 16 Aug 2021 13:21:26 GMT
etag: "1cf-5c9ad140a71a2-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 260
content-type: text/css
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-includes/css/dist/block-library/style.min.css?ver=5.5.11
200 OK 7.8 kB URL HTTP/2 www.ppsspasbl.org/wp-includes/css/dist/block-library/style.min.css?ver=5.5.11
IP
File type ASCII text, with very long lines (27100)
Hash 30620510336ae37aa9fb6b588ebcaa43
14175edd851d576ef970d2cb60e2d8c16fd0c88d
4321d7ab39404809b04460a52fe76170b2d3cb8ad88d8b31d70dedd3800affd9
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.5.11 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Sep 2020 07:10:48 GMT
etag: "d293-5afb96ef07d13-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7842
content-type: text/css
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/eelv-newsletter/css/newsletter.min.css?ver=4.8
200 OK 822 B URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/eelv-newsletter/css/newsletter.min.css?ver=4.8
IP
File type ASCII text, with very long lines (2214)
Hash 7bbe6d53c7082cb1235027a7048ac3cb
3d8483ae818248497fde2970147255f7786478e4
859af04719e462a4d66c5b1a307f2d4caf6f1f8d2004e8c1f6a68fd61af5d04f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/eelv-newsletter/css/newsletter.min.css?ver=4.8 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Sep 2020 07:10:32 GMT
etag: "8a7-5afb96dfdb833-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 822
content-type: text/css
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 188c50963e7939b1f26a31dbcb8c8200
859416e6148ea6618584e53604efcf072bb989cc
3a313cd3c1693a886bfbf6ffc6fbac78f87e6ded2b9a7749553444ada65ce36e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 09:01:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.ppsspasbl.org/wp-content/plugins/post-views-counter/css/frontend.css?ver=1.3.4
200 OK 201 B URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/post-views-counter/css/frontend.css?ver=1.3.4
IP
File type ASCII text, with CR line terminators
Hash defa99f71ec3ae214e291b8538bc3312
979abd43365a35b2e2cfd9e50d434d785ed4e13f
a30f387093fbab843cf9d43be1e3b80320060196a16b6fa78c81726a15bbb1b2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/post-views-counter/css/frontend.css?ver=1.3.4 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 16 Aug 2021 13:25:16 GMT
etag: "121-5c9ad21c42ff1-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 201
content-type: text/css
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 09:01:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.ppsspasbl.org/wp-content/themes/supermag/style.css?ver=1.4.9
200 OK 10 kB URL HTTP/2 www.ppsspasbl.org/wp-content/themes/supermag/style.css?ver=1.4.9
IP
File type assembler source, ASCII text, with very long lines (1011), with CRLF line terminators
Hash c57e846ef8419d0336f60413e07979a7
1a2033a272c3e8321068c75506e97ff4b8a062da
e156505da018b4edfb05bf8bcec4d848096b2e062a14b60560cbf0e8545f91fb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/supermag/style.css?ver=1.4.9 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Sep 2020 07:10:44 GMT
etag: "be9c-5afb96eac4498-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 10308
content-type: text/css
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/reading-progress-bar/public/css/rp-public.css?ver=5.5.11
200 OK 187 B URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/reading-progress-bar/public/css/rp-public.css?ver=5.5.11
IP
Hash 1e42be2fa111bb1f5061f2f238a2caf2
d58e32c33b85a59d0a9e4e61f5a1e84f23b66257
b69a2fcc7eb2f090116e2e20a181b19d4034d3ca34212ec7dfc4d4296caef48d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/reading-progress-bar/public/css/rp-public.css?ver=5.5.11 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Jun 2021 08:20:52 GMT
etag: "101-5c4b5892a780e-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 187
content-type: text/css
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/slider-images/Style/Rich-Web-Slider-Widget.css?ver=5.5.11
200 OK 2.2 kB URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/slider-images/Style/Rich-Web-Slider-Widget.css?ver=5.5.11
IP
File type ASCII text, with very long lines (1332), with CRLF line terminators
Hash e1ceddfa1fabb8c1086e9dbc11c3ddb8
3af916654d1bb3b7ce3695415dad0f7a1c25a85f
56bf4d069000b9637f3ed7fbd24adac85803156564d5b2f9a38c0c601b4fee85
GET /wp-content/plugins/slider-images/Style/Rich-Web-Slider-Widget.css?ver=5.5.11 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Jun 2021 08:21:01 GMT
etag: "2a4d-5c4b589b39967-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2222
content-type: text/css
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/themes/supermag/assets/library/bxslider/css/jquery.bxslider.min.css?ver=4.2.5
200 OK 671 B URL HTTP/2 www.ppsspasbl.org/wp-content/themes/supermag/assets/library/bxslider/css/jquery.bxslider.min.css?ver=4.2.5
IP
File type ASCII text, with very long lines (2212), with no line terminators
Hash 2be3799e6cf9695c5d89a6ce7e2a596c
6ac3c313daf928cbc874082ae83c35ec8ddc1367
657165ff2904b230a9c63f866921075323d967d20107f7c3774d8e9c756ae104
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/supermag/assets/library/bxslider/css/jquery.bxslider.min.css?ver=4.2.5 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Sep 2020 07:10:44 GMT
etag: "8a4-5afb96eafd42b-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 671
content-type: text/css
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/wp-brand-logo-slider/css/wpbls.css?ver=5.5.11
200 OK 551 B URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/wp-brand-logo-slider/css/wpbls.css?ver=5.5.11
IP
File type ASCII text, with CRLF line terminators
Hash 3c6c2ec54a8a6df8c29b429857dba8d5
484852a69fd4affb1edd2ded75d8797c8e93626d
22493b30565952c73caa64aaf205a2e178f366c07d5451f4cb33782d28ac7262
GET /wp-content/plugins/wp-brand-logo-slider/css/wpbls.css?ver=5.5.11 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 10 Nov 2020 09:30:00 GMT
etag: "625-5b3bd52aa0c18-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 551
content-type: text/css
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/themes/supermag/acmethemes/gutenberg/gutenberg-front.css?ver=1.0
200 OK 412 B URL HTTP/2 www.ppsspasbl.org/wp-content/themes/supermag/acmethemes/gutenberg/gutenberg-front.css?ver=1.0
IP
File type ASCII text, with CRLF line terminators
Hash 9df638a95d7217768863b92c24716d16
21f7953698a7de5792d477b44a7cd0e0d56903ac
7cd79127bea2338316f6f9ff3e174a9d94dfa5f0d92b9eb30822d504dbadd0b2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/supermag/acmethemes/gutenberg/gutenberg-front.css?ver=1.0 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Sep 2020 07:10:44 GMT
etag: "47f-5afb96eaa46b1-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 412
content-type: text/css
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/responsive-lightbox/assets/swipebox/swipebox.min.css?ver=2.3.2
200 OK 1.2 kB URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/responsive-lightbox/assets/swipebox/swipebox.min.css?ver=2.3.2
IP
File type ASCII text, with very long lines (4224), with no line terminators
Hash a80207fa1fe30ab1f9b8ca0c55bedaf1
abf506ad2ff5f882a5b3e315f894c7bd8afe845b
80dd22f96d253ed1b051f037686718a61cd72e55cbf3f9e052faece0e686ebb3
GET /wp-content/plugins/responsive-lightbox/assets/swipebox/swipebox.min.css?ver=2.3.2 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Jun 2021 08:20:57 GMT
etag: "1080-5c4b5896ab34d-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1151
content-type: text/css
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/3d-flipbook-dflip-lite/assets/css/themify-icons.min.css?ver=1.7.6.3
200 OK 2.8 kB URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/3d-flipbook-dflip-lite/assets/css/themify-icons.min.css?ver=1.7.6.3
IP
File type ASCII text, with very long lines (13829), with no line terminators
Hash 2ec73162be9c47da2ee8cf60295ca8b5
96dec78839e24d8514d7084753ec759388a6b870
56f6676b8033bc2fe760022ad0ee482838aa011f4520a7df13026781e52a955d
GET /wp-content/plugins/3d-flipbook-dflip-lite/assets/css/themify-icons.min.css?ver=1.7.6.3 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Jun 2021 08:19:51 GMT
etag: "3605-5c4b585887247-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2768
content-type: text/css
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/themes/supermag/assets/library/Font-Awesome/css/font-awesome.min.css?ver=4.7.0
200 OK 6.9 kB URL HTTP/2 www.ppsspasbl.org/wp-content/themes/supermag/assets/library/Font-Awesome/css/font-awesome.min.css?ver=4.7.0
IP
File type ASCII text, with very long lines (30837), with CRLF line terminators
Hash fbac1e3e0b6c84794ab64067b2f58666
d1f139993db9505f9c46b39523806764450a6051
88572da4555de593cdaa17b05630e7960506c99668aafaa68ec4086548e8e63f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/supermag/assets/library/Font-Awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Sep 2020 07:10:44 GMT
etag: "791c-5afb96eadc638-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6934
content-type: text/css
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/slider-images/Style/richwebicons.css?ver=5.5.11
200 OK 6.9 kB URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/slider-images/Style/richwebicons.css?ver=5.5.11
IP
File type ASCII text, with very long lines (412), with CRLF line terminators
Hash a459dbdf32b3ecb068ee9390309dd9d9
6d873fefaba892d0ae18d36a2485cfaa21af7c42
aef036a830824f076b7c5d05c92bbd09fac4906a21160298c30ef7cb944822d6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/slider-images/Style/richwebicons.css?ver=5.5.11 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Jun 2021 08:21:01 GMT
etag: "a337-5c4b589b3cbe7-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6860
content-type: text/css
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/3d-flipbook-dflip-lite/assets/css/dflip.min.css?ver=1.7.6.3
200 OK 5.3 kB URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/3d-flipbook-dflip-lite/assets/css/dflip.min.css?ver=1.7.6.3
IP
File type ASCII text, with very long lines (26247), with no line terminators
Hash acf488a89a52289d252d5dbf3a9ccc32
6bb746955005ab0af13f1e19d837e242bd440967
abd94faeb4c887ff51fdce6f1644629172b33a4b188801a7f07e45f49e81467b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/3d-flipbook-dflip-lite/assets/css/dflip.min.css?ver=1.7.6.3 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Jun 2021 08:19:51 GMT
etag: "6687-5c4b585885f42-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5296
content-type: text/css
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/slider-images/Scripts/Rich-Web-Slider-Widget.js?ver=5.5.11
200 OK 0 B URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/slider-images/Scripts/Rich-Web-Slider-Widget.js?ver=5.5.11
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/slider-images/Scripts/Rich-Web-Slider-Widget.js?ver=5.5.11 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Jun 2021 08:21:03 GMT
etag: "0-5c4b589c4b678"
accept-ranges: bytes
content-length: 0
vary: User-Agent
content-type: application/javascript
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/slider-images/Scripts/jquery.colorbox-min.js?ver=5.5.11
200 OK 4.3 kB URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/slider-images/Scripts/jquery.colorbox-min.js?ver=5.5.11
IP
File type ASCII text, with very long lines (9604)
Hash 31081d6f250cddee2f16c983d19a98d3
e2992939b45825fc8f545ffe103bdbf7f688f47b
91429bbcfa3ee45a76e78ba46533f2a87f2d19a75f7dce0ff596d480c7945782
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/slider-images/Scripts/jquery.colorbox-min.js?ver=5.5.11 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Jun 2021 08:21:02 GMT
etag: "2655-5c4b589b545af-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4311
content-type: application/javascript
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-includes/js/underscore.min.js?ver=1.8.3
200 OK 5.7 kB URL HTTP/2 www.ppsspasbl.org/wp-includes/js/underscore.min.js?ver=1.8.3
IP
File type ASCII text, with very long lines (16010)
Hash c52c8cd91f7eeca692cc23d32448640e
b016f5561900d7337d93f58cb215e5fe670f9d30
64b4dc55d286c859f00dc0382d159c42c4a92018c92811d297adceb3008bd70a
GET /wp-includes/js/underscore.min.js?ver=1.8.3 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Apr 2021 08:41:48 GMT
etag: "3ead-5bffed5899bde-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5655
content-type: application/javascript
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/responsive-lightbox/assets/infinitescroll/infinite-scroll.pkgd.min.js?ver=5.5.11
200 OK 7.0 kB URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/responsive-lightbox/assets/infinitescroll/infinite-scroll.pkgd.min.js?ver=5.5.11
IP
File type ASCII text, with very long lines (25581), with CRLF line terminators
Hash d8eea5d1b0bf34ed43005122d94a24c3
8a2957d025b5735f25a1a6f8ad93c64bab895699
b39321318d2fcdaca1558e1d9375cb3d4cf2d167a4c6b2bbf59d30c65180ba1e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/responsive-lightbox/assets/infinitescroll/infinite-scroll.pkgd.min.js?ver=5.5.11 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Jun 2021 08:20:57 GMT
etag: "64e6-5c4b589714063-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7004
content-type: application/javascript
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/reading-progress-bar/public/js/rp-public.js?ver=5.5.11
200 OK 695 B URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/reading-progress-bar/public/js/rp-public.js?ver=5.5.11
IP
File type HTML document, ASCII text
Hash cbf053e96ee405dee81b54811f07494e
e52f93b227daec1305af22fa1959a5ff9f8361c7
30595588c20389bbade096b7d7599ac49d7c08918abe25d1fe3606af4742fec3
GET /wp-content/plugins/reading-progress-bar/public/js/rp-public.js?ver=5.5.11 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Jun 2021 08:20:52 GMT
etag: "80b-5c4b5892a65d0-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 695
content-type: application/javascript
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/wp-miniaudioplayer/js/map_overwrite_default_me.js?ver=1.9.6
200 OK 1.4 kB URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/wp-miniaudioplayer/js/map_overwrite_default_me.js?ver=1.9.6
IP
Hash bcabaed6e51faa6ce4ff23551035f740
a2fff0d094036fd206fe2f5716798a87577e8567
10786be46df2bc6b2dfbe11d3c0c8ebbf7ba12fd7a80015ff5a344700904a353
GET /wp-content/plugins/wp-miniaudioplayer/js/map_overwrite_default_me.js?ver=1.9.6 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Jun 2021 08:20:32 GMT
etag: "1ba1-5c4b587ed8d00-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1435
content-type: application/javascript
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/advanced-page-visit-counter/public/js/advanced-page-visit-counter-public.js?ver=5.0.3
200 OK 672 B URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/advanced-page-visit-counter/public/js/advanced-page-visit-counter-public.js?ver=5.0.3
IP
Hash e0b19803c8ddd142e8f222354d93bc0d
acce168fc19797fefbd98bea77fcf7f8eb1002ae
6cd8c07503dbdb23923a2291e917edf471b42f973759032711bce8d90bf98179
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/advanced-page-visit-counter/public/js/advanced-page-visit-counter-public.js?ver=5.0.3 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 16 Aug 2021 13:21:26 GMT
etag: "4a6-5c9ad14099d65-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 672
content-type: application/javascript
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/wp-brand-logo-slider/js/jquery.flexisel.js?ver=5.5.11
200 OK 3.1 kB URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/wp-brand-logo-slider/js/jquery.flexisel.js?ver=5.5.11
IP
Hash a182e69eab45082274404bee0fd09be3
f795531f928c6adbc1e98e3973868c8c0d87f9af
26d35aa3d5fe4bd12a344572888a628a494d9f56ee1908c1a499a8a06e516687
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-brand-logo-slider/js/jquery.flexisel.js?ver=5.5.11 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 10 Nov 2020 09:30:00 GMT
etag: "42bb-5b3bd52aaddc7-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3125
content-type: application/javascript
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/compact-wp-audio-player/js/soundmanager2-nodebug-jsmin.js?ver=5.5.11
200 OK 12 kB URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/compact-wp-audio-player/js/soundmanager2-nodebug-jsmin.js?ver=5.5.11
IP
File type ASCII text, with very long lines (542), with CRLF, LF line terminators
Hash 3cca90961500e2e230ca6e4b2e2cedff
2add74fe25fc932d4afc2e60708fee7239b6a1c6
71dcf57f637a8955ef2fa5595443f620ba7a3e31e6b857b01e564ce329882740
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/compact-wp-audio-player/js/soundmanager2-nodebug-jsmin.js?ver=5.5.11 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 18 Aug 2021 14:04:26 GMT
etag: "8e7a-5c9d5e986a9ef-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 12430
content-type: application/javascript
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/nextgen_basic_gallery/static/slideshow/ngg_basic_slideshow.css?ver=3.11
200 OK 586 B URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/nextgen_basic_gallery/static/slideshow/ngg_basic_slideshow.css?ver=3.11
IP
Hash 89b1dd55d45800c70169282f8df85bf6
302d483a918187dab5239fd2363230862bec2c15
9c6929daaad4c4f9ef5aa70da7a4b2cd4be30565601e6c25e835960721b1be3b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/nextgen_basic_gallery/static/slideshow/ngg_basic_slideshow.css?ver=3.11 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Jun 2021 08:20:44 GMT
etag: "8a4-5c4b588a916e8-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 586
content-type: text/css
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/widget/static/widgets.css?ver=3.11
200 OK 243 B URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/widget/static/widgets.css?ver=3.11
IP
Hash ca3f5a5a9e43ea6465ffdd69ce781373
57d8a9476bf2554df7ee7127f967cf89f7e1b48b
c830e2a3c726d9bc7da4141e505198ebc50a8b65b602203031b6cf5cbbeccb53
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/widget/static/widgets.css?ver=3.11 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Jun 2021 08:20:42 GMT
etag: "18a-5c4b5888b42b9-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 243
content-type: text/css
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/nextgen_basic_gallery/static/thumbnails/nextgen_basic_thumbnails.css?ver=3.11
200 OK 1.4 kB URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/nextgen_basic_gallery/static/thumbnails/nextgen_basic_thumbnails.css?ver=3.11
IP
Hash ea2c2ec3fa7d14a12339f56fe42942e4
cb8ce480856e4157199c5fd188ff86225af34e17
8d85dbd8cabfc6988135d4782e2beafe6866f81ca620618383245058c072cf5c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/nextgen_basic_gallery/static/thumbnails/nextgen_basic_thumbnails.css?ver=3.11 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Jun 2021 08:20:44 GMT
etag: "1f88-5c4b588a3ba46-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1366
content-type: text/css
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/slider-images/Scripts/jquery.easing.1.2.js?ver=5.5.11
200 OK 869 B URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/slider-images/Scripts/jquery.easing.1.2.js?ver=5.5.11
IP
File type ASCII text, with very long lines (408)
Hash 6ca0f4b1d8026a1da300348227b140aa
6180dbf24f7d981034c57b1f3da21d6cf6695956
8a1735be9c814f7fa06edbcdd33de213fa239e3136f417031341cfa0ec1697b5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/slider-images/Scripts/jquery.easing.1.2.js?ver=5.5.11 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Jun 2021 08:21:02 GMT
etag: "1076-5c4b589b576f4-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 869
content-type: application/javascript
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/team-with-skills-and-slider/assets/js/ajaxdata.js?ver=5.5.11
200 OK 725 B URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/team-with-skills-and-slider/assets/js/ajaxdata.js?ver=5.5.11
IP
File type ASCII text, with very long lines (1102)
Hash bc876ff6c2a59422c7085da0d2f6d6fe
18130a63c2b1cfc9bd62e93e9409649a2faf86a2
5eafafc37294056af6c872d772506f83916385a0aaab294126d82735a5f9218c
GET /wp-content/plugins/team-with-skills-and-slider/assets/js/ajaxdata.js?ver=5.5.11 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 10 Nov 2020 10:08:02 GMT
etag: "837-5b3bddaaa6e85-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 725
content-type: application/javascript
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/slider-images/Scripts/jquery.anythingslider.min.js?ver=5.5.11
200 OK 164 B URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/slider-images/Scripts/jquery.anythingslider.min.js?ver=5.5.11
IP
Hash eefe4beea7eb120b78215997b14c987d
f9612c2c5b49810ddeec43406bd414b01f55f4f6
9bf5294ea7d58e0a1577a63ccc31de0ddad3b78a7b57ef96ab2dbb89c5973fab
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/slider-images/Scripts/jquery.anythingslider.min.js?ver=5.5.11 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Jun 2021 08:21:02 GMT
etag: "bc-5c4b589b5e7b6-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 164
content-type: application/javascript
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4
200 OK 1.8 kB URL HTTP/2 www.ppsspasbl.org/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4
IP
File type ASCII text, with very long lines (3704)
Hash 8681c8c59fe450daeacc2f499e351dfe
1bedefb4c8fa62628816eaeea85677d637a6e4e0
d2160a6f66510d16512fd1fd387aee7d3763f0b4799273125faa777128dc5430
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Apr 2021 08:41:48 GMT
etag: "f59-5bffed58b7c2e-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1811
content-type: application/javascript
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/responsive-lightbox/assets/swipebox/jquery.swipebox.min.js?ver=2.3.2
200 OK 3.8 kB URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/responsive-lightbox/assets/swipebox/jquery.swipebox.min.js?ver=2.3.2
IP
File type ASCII text, with very long lines (12917), with no line terminators
Hash 4fbad921386febf059153b8f4b4fccfd
5016eb32dc11919a4e6bc4f17f55789b551133a6
d0dc25bbb191fdbde7e3f1ee6e78b541b6180a6fd016b4b94c670275980cc8ad
GET /wp-content/plugins/responsive-lightbox/assets/swipebox/jquery.swipebox.min.js?ver=2.3.2 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Jun 2021 08:20:57 GMT
etag: "3275-5c4b5896ac43d-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3821
content-type: application/javascript
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/flowpaper-lite-pdf-flipbook/assets/lity/lity.min.js
200 OK 2.9 kB URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/flowpaper-lite-pdf-flipbook/assets/lity/lity.min.js
IP
File type ASCII text, with very long lines (6524)
Hash cf9da87d3df373ba85ce0eb6cf5fea77
985934e2fec3d88773d9afeb91e9ae73659dc5c9
fc4270c64839a5886042e47b907e5a142a3c322bc026db679890d7dac3d5a402
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/flowpaper-lite-pdf-flipbook/assets/lity/lity.min.js HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 16 Feb 2021 08:59:26 GMT
etag: "19f0-5bb7051c43362-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2918
content-type: application/javascript
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-includes/js/wp-emoji-release.min.js?ver=5.5.11
200 OK 4.6 kB URL HTTP/2 www.ppsspasbl.org/wp-includes/js/wp-emoji-release.min.js?ver=5.5.11
IP
File type ASCII text, with very long lines (11272)
Hash 2b16c260facce83350d4bef8b2962e7d
346ac751ae36bee86cecc7c984dec2b0f86ecabe
ed5d13c8b4a68b7426a04f564017d10fbac4b87351848a3726e9930e6be68152
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.5.11 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Apr 2021 08:41:48 GMT
etag: "3795-5bffed589c5da-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4619
content-type: application/javascript
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/responsive-lightbox/js/front.js?ver=2.3.2
200 OK 5.7 kB URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/responsive-lightbox/js/front.js?ver=2.3.2
IP
File type Unicode text, UTF-8 text, with very long lines (641), with CRLF line terminators
Hash 54267d5b9d402ea840568a72fe0ed960
47466e688375375784faeb550052005dc596bf5f
702793c6306b729bf4fde139cb381a6cb5c5f8f9bc40df4a8e6382224561d537
GET /wp-content/plugins/responsive-lightbox/js/front.js?ver=2.3.2 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Jun 2021 08:20:57 GMT
etag: "68e8-5c4b5897358cb-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5650
content-type: application/javascript
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/uploads/2020/11/form-it-240x172.jpg
200 OK 13 kB URL HTTP/2 www.ppsspasbl.org/wp-content/uploads/2020/11/form-it-240x172.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 240x172, components 3\012- data
Hash b4b7201bee623c7733095f587c40c868
fc398e278cac2808cdac0a702b93d83401447334
870938e9fab7ec4fdfc103b95021ce48664bcdab8a447dbaf4e4db5b0f4f63e6
GET /wp-content/uploads/2020/11/form-it-240x172.jpg HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 23 Nov 2020 10:04:03 GMT
etag: "33be-5b4c350630b45"
accept-ranges: bytes
content-length: 13246
vary: User-Agent
content-type: image/jpeg
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/wp-miniaudioplayer/js/jquery.mb.miniAudioPlayer.js?ver=1.9.6
200 OK 31 kB URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/wp-miniaudioplayer/js/jquery.mb.miniAudioPlayer.js?ver=1.9.6
IP
File type ASCII text, with very long lines (19411)
Hash cf76b81ee2badc359fb66d638c20e76b
9e625e9fbe64fc5288b34bf23da4a9aed8f944a2
426e41e25479af6e2450e9ad5ff1dc3354ed098383fcd40ef9745926a2831d67
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-miniaudioplayer/js/jquery.mb.miniAudioPlayer.js?ver=1.9.6 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Jun 2021 08:20:32 GMT
etag: "1e832-5c4b587ed7318-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 31240
content-type: application/javascript
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
200 OK 34 kB URL HTTP/2 www.ppsspasbl.org/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
IP
File type ASCII text, with very long lines (31997)
Hash 25f89230aa720b048dfc5be98dd1b5b0
39c975ad6935eeeca921625cf1a092d9f1974850
c62b509dd071966ad430d13931cee9aa86b06bf48a160d7c6e8c48f391623135
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Sep 2020 07:10:46 GMT
etag: "17a69-5afb96ed0992e-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 33715
content-type: application/javascript
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/uploads/2022/09/IMG_6185-240x172.jpg
200 OK 10 kB URL HTTP/2 www.ppsspasbl.org/wp-content/uploads/2022/09/IMG_6185-240x172.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 240x172, components 3\012- data
Hash 7621488e91f31f34a06e658ffa3bbac2
5f93c3a34b56a3ba6e2390dc9a996d3d751dbab0
97f0b55344a3a0c135465909c6c9478724992f1a8801b9739ad2c38bfd2121e7
GET /wp-content/uploads/2022/09/IMG_6185-240x172.jpg HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 23 Sep 2022 11:30:26 GMT
etag: "2818-5e956811ada31"
accept-ranges: bytes
content-length: 10264
vary: User-Agent
content-type: image/jpeg
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/uploads/2022/11/WhatsApp-Image-2022-11-12-at-10.34.20-240x172.jpeg
200 OK 13 kB URL HTTP/2 www.ppsspasbl.org/wp-content/uploads/2022/11/WhatsApp-Image-2022-11-12-at-10.34.20-240x172.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 240x172, components 3\012- data
Hash de1f8c7d7e46f2bf089a68d96712003e
70ada8a5ab0630fe02f021c4e7c79c29e70c0145
3cede596d924dda8fb5456c2d65801025cc236f1b7af66b4a4ee7e5b25cd773e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/11/WhatsApp-Image-2022-11-12-at-10.34.20-240x172.jpeg HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 14:22:39 GMT
etag: "32c4-5ed6ef8c72535"
accept-ranges: bytes
content-length: 12996
vary: User-Agent
content-type: image/jpeg
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/uploads/2022/11/IMG-20221111-WA0011-1.jpg
200 OK 31 kB URL HTTP/2 www.ppsspasbl.org/wp-content/uploads/2022/11/IMG-20221111-WA0011-1.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 720x315, components 3\012- data
Hash 7453dd00ef7821df15e1cccf776603cc
7170aace099e69a77df700caa8f8f72ed0d14b0f
7dcbde4e68ca8425c823314a16ddd9f58ed64e6adc5d37248f4c17b494c183b0
GET /wp-content/uploads/2022/11/IMG-20221111-WA0011-1.jpg HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 11 Nov 2022 09:50:49 GMT
etag: "7772-5ed2ed3199b35"
accept-ranges: bytes
content-length: 30578
vary: User-Agent
content-type: image/jpeg
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/uploads/2022/09/IMG_6185-548x365.jpg
200 OK 31 kB URL HTTP/2 www.ppsspasbl.org/wp-content/uploads/2022/09/IMG_6185-548x365.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 548x365, components 3\012- data
Hash a8b5cb08f6032d058caa3170d0511078
f194af59f85b1819c1353fc5e07856f063351a45
c3f61c15d520d4608e2cda4cd936702fd447d6ce8dbde6931122ff7555f78a38
GET /wp-content/uploads/2022/09/IMG_6185-548x365.jpg HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 23 Sep 2022 11:30:22 GMT
etag: "7830-5e95680e99506"
accept-ranges: bytes
content-length: 30768
vary: User-Agent
content-type: image/jpeg
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/uploads/2022/11/WhatsApp-Image-2022-11-12-at-10.34.20-649x365.jpeg
200 OK 52 kB URL HTTP/2 www.ppsspasbl.org/wp-content/uploads/2022/11/WhatsApp-Image-2022-11-12-at-10.34.20-649x365.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 649x365, components 3\012- data
Hash ddfbd721b6e914b09092d4c80c4380c0
44cc65f40c3528de6fa6024c4d1b43f45b9425d5
e66c1844c225825e3a02d8c9df1eb3e547b249fa0d9f0cf303e31f83e4398e6b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/11/WhatsApp-Image-2022-11-12-at-10.34.20-649x365.jpeg HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 14:22:39 GMT
etag: "cb44-5ed6ef8c1e602"
accept-ranges: bytes
content-length: 52036
vary: User-Agent
content-type: image/jpeg
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/uploads/2020/11/form-it-649x365.jpg
200 OK 52 kB URL HTTP/2 www.ppsspasbl.org/wp-content/uploads/2020/11/form-it-649x365.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 649x365, components 3\012- data
Hash 41abeccb0835248d7701abb8b2750ca9
86fa2daf7d8da5d7dbe08fc57a4cc70f6aa834f7
2b33ef60daf5f02f3af98e390e0cc527798bee85048b7602d5bc0ad11edeec7d
GET /wp-content/uploads/2020/11/form-it-649x365.jpg HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 23 Nov 2020 10:04:03 GMT
etag: "cc98-5b4c350624e3b"
accept-ranges: bytes
content-length: 52376
vary: User-Agent
content-type: image/jpeg
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/uploads/2022/09/SUCCESS-STORY-240x172.png
200 OK 94 kB URL HTTP/2 www.ppsspasbl.org/wp-content/uploads/2022/09/SUCCESS-STORY-240x172.png
IP
File type PNG image data, 240 x 172, 8-bit/color RGBA, non-interlaced\012- data
Hash 36ba73c7ed806f1fe0eeb909d97ecaca
a2f29e85ad6580b7638beef757e21a4d709caa05
84384efeca7ea013ea59a3600c79921687507e47c8ef010b25b869d31871bfd6
GET /wp-content/uploads/2022/09/SUCCESS-STORY-240x172.png HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 21 Sep 2022 13:58:05 GMT
etag: "16e6b-5e930557627ea"
accept-ranges: bytes
content-length: 93803
vary: User-Agent
content-type: image/png
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/uploads/2022/09/SUCCESS-STORY-486x365.png
200 OK 356 kB URL HTTP/2 www.ppsspasbl.org/wp-content/uploads/2022/09/SUCCESS-STORY-486x365.png
IP
File type PNG image data, 486 x 365, 8-bit/color RGBA, non-interlaced\012- data
Size 356 kB (355878 bytes)
Hash 12c9f9d291db0764300e4fc7da0c5857
2f652c9bbf8e7641d471a2901f6ca7b45aea7b5d
8c327ca1e9e6e7c2be835ee7f2e0a7d9f20ca8252cc284a210f5b908b814b7a9
GET /wp-content/uploads/2022/09/SUCCESS-STORY-486x365.png HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 21 Sep 2022 13:58:04 GMT
etag: "56e26-5e930557296d1"
accept-ranges: bytes
content-length: 355878
vary: User-Agent
content-type: image/png
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/uploads/2020/09/IMG_20200501_112541_9-300x225.jpg
200 OK 47 kB URL HTTP/2 www.ppsspasbl.org/wp-content/uploads/2020/09/IMG_20200501_112541_9-300x225.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2019:08:29 11:45:35], baseline, precision 8, 720x405, components 3\012- data
Hash 2c14365edde5014d926e8afd42e0327d
92f7022723deef737c6e80a70175ba693124ed33
418945a5e44e7f68832017bc26f05c10a9ee0328a0decd913e754cf884a12df0
GET /wp-content/uploads/2020/09/IMG_20200501_112541_9-300x225.jpg HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Sep 2020 07:10:42 GMT
etag: "369a-5afb96e9a5e32"
accept-ranges: bytes
content-length: 13978
vary: User-Agent
content-type: image/jpeg
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/uploads/2020/09/imaD.jpg
200 OK 35 kB URL HTTP/2 www.ppsspasbl.org/wp-content/uploads/2020/09/imaD.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2019:08:29 11:37:56], baseline, precision 8, 720x405, components 3\012- data
Hash b352a40ab4548368af1f3ce103f88d32
e79dd6ed444710a715f4bb74f251fe554730aa12
8f0cccde7bf98a67106661f4a65796202191e2021759268e4f55a6a1f4d7c737
GET /wp-content/uploads/2020/09/imaD.jpg HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Sep 2020 07:10:43 GMT
etag: "8820-5afb96e9b4731"
accept-ranges: bytes
content-length: 34848
vary: User-Agent
content-type: image/jpeg
date: Thu, 01 Dec 2022 09:01:21 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/uploads/2020/09/unicefS.jpg
200 OK 38 kB URL HTTP/2 www.ppsspasbl.org/wp-content/uploads/2020/09/unicefS.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2019:08:29 11:47:40], baseline, precision 8, 720x405, components 3\012- data
Hash 3386c254231d227aeca46a958bb14f2b
33f627dadb0e379715306ae919dbabac33b84d64
08a8a36e90eaafffdc7d305c4c49b41bf8dbb80f1246397f549be7abc4a722e0
GET /wp-content/uploads/2020/09/unicefS.jpg HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Sep 2020 07:10:42 GMT
etag: "95ef-5afb96e927cec"
accept-ranges: bytes
content-length: 38383
vary: User-Agent
content-type: image/jpeg
date: Thu, 01 Dec 2022 09:01:21 GMT
server: Apache
X-Firefox-Spdy: h2
netdna.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.css?ver=5.5.11
200 OK 52 kB URL HTTP/2 netdna.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.css?ver=5.5.11
IP
File type troff or preprocessor input, ASCII text, with very long lines (372)
Hash 1243d5ae2740b90b709c89ede81bff99
b9b1db235294bbd2870f75885d67e219f871d945
2231c3002798b3fac378707cf395d5f0acc9378749a91e80a972911761f06b89
GET /font-awesome/4.7.0/css/font-awesome.css?ver=5.5.11 HTTP/1.1
Host: netdna.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Dec 2022 09:01:20 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"c495654869785bc3df60216616814ad1"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 08/20/2022 03:13:51
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 722
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 1c8cda8684154ee5d9f680be2e132f20
cdn-cache: HIT
cf-cache-status: HIT
age: 3835380
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 772aa33bca7b0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/uploads/2020/09/logo-pnud1.png
200 OK 144 kB URL HTTP/2 www.ppsspasbl.org/wp-content/uploads/2020/09/logo-pnud1.png
IP
File type PNG image data, 672 x 370, 8-bit/color RGBA, non-interlaced\012- data
Size 144 kB (143869 bytes)
Hash c08aceb2778d35e6682ca5f442ec655c
7c9c33e36c264613ac5a345c936ca4454e996120
5363b24ea193b6b725899ca2ece92b2168ea8a42bcb8a8d145d9619e77a58efc
GET /wp-content/uploads/2020/09/logo-pnud1.png HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Sep 2020 07:10:42 GMT
etag: "231fd-5afb96e9878e3"
accept-ranges: bytes
content-length: 143869
vary: User-Agent
content-type: image/png
date: Thu, 01 Dec 2022 09:01:21 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 533f66ef53706466ce20dc9aebf11812
0c0d713d538eb224deeb9241917a117205f16cb2
8ce7b68022c847b59b9a132ada3a75eea73bb57bae4683901c8df08fa255ba79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 09:01:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.ppsspasbl.org/wp-content/uploads/2022/09/SUCCESS-STORY-45x45.png
200 OK 5.4 kB URL HTTP/2 www.ppsspasbl.org/wp-content/uploads/2022/09/SUCCESS-STORY-45x45.png
IP
File type PNG image data, 45 x 45, 8-bit/color RGBA, non-interlaced\012- data
Hash c97f602212d58277f0eb872912b6ac45
9e93ecb5bac1ca1e6adf40ebed6f3c23789e7bd8
705e0f5f8d30574436cb0b1e678c78e5fb4177f5ff35ac59388e4e1194cfd845
GET /wp-content/uploads/2022/09/SUCCESS-STORY-45x45.png HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 21 Sep 2022 13:58:05 GMT
etag: "1502-5e93055766ad7"
accept-ranges: bytes
content-length: 5378
vary: User-Agent
content-type: image/png
date: Thu, 01 Dec 2022 09:01:21 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 09:01:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.ppsspasbl.org/wp-content/uploads/2020/11/form-it-45x45.jpg
200 OK 1.7 kB URL HTTP/2 www.ppsspasbl.org/wp-content/uploads/2020/11/form-it-45x45.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 45x45, components 3\012- data
Hash b2f6ef8e7862c83f005e2f4a89563d2e
162b9038d27a04aa0e1c391c3dc884d1406a93b7
b5edc959a8c64597840182805567831d738a5a7e9220ebd77edb1da71d4ea65b
GET /wp-content/uploads/2020/11/form-it-45x45.jpg HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 23 Nov 2020 10:04:03 GMT
etag: "6b2-5b4c350632b98"
accept-ranges: bytes
content-length: 1714
vary: User-Agent
content-type: image/jpeg
date: Thu, 01 Dec 2022 09:01:21 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/uploads/2020/11/four-bu-500x280.jpg
200 OK 36 kB URL HTTP/2 www.ppsspasbl.org/wp-content/uploads/2020/11/four-bu-500x280.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 500x280, components 3\012- data
Hash e1c437430a661d8d0195d1e7169d7222
c6ed70c923b7d9e0f6ce3e9f9230f4d50241e027
ce35113241d88e8cfd18b61c0c0099b3ca694a8698919276e052496bf2770d7f
GET /wp-content/uploads/2020/11/four-bu-500x280.jpg HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 23 Nov 2020 10:04:11 GMT
etag: "8e51-5b4c350def9d3"
accept-ranges: bytes
content-length: 36433
vary: User-Agent
content-type: image/jpeg
date: Thu, 01 Dec 2022 09:01:21 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/uploads/2022/06/WhatsApp-Image-2022-06-20-at-16.13.16.jpeg
200 OK 79 kB URL HTTP/2 www.ppsspasbl.org/wp-content/uploads/2022/06/WhatsApp-Image-2022-06-20-at-16.13.16.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 875x875, components 3\012- data
Hash a12adcc6d92ab19487a1459b36a1839c
c48a5fa6c72e86a4ad8aa4edd18ee5635ec29b0b
986fc2140c88c3e18319d0447c545033f0b5af130d89f5aaf7bcde2cc273ce81
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/06/WhatsApp-Image-2022-06-20-at-16.13.16.jpeg HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 20 Jun 2022 14:21:21 GMT
etag: "134d4-5e1e1d16f47cc"
accept-ranges: bytes
content-length: 79060
vary: User-Agent
content-type: image/jpeg
date: Thu, 01 Dec 2022 09:01:21 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 09:01:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.ppsspasbl.org/wp-content/uploads/2021/06/IMG_7438-500x280.jpg
200 OK 36 kB URL HTTP/2 www.ppsspasbl.org/wp-content/uploads/2021/06/IMG_7438-500x280.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 500x280, components 3\012- data
Hash 000e74270cc32ee9cce667973578e4d1
09d56d279b24e0316329d91d4743c331dbbb2026
9fd4e2f5e705c834567b46bef4658af761dcfdb94594b69fb8c09bec04134785
GET /wp-content/uploads/2021/06/IMG_7438-500x280.jpg HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 11 Jun 2021 10:31:08 GMT
etag: "8b6c-5c47b017bbccb"
accept-ranges: bytes
content-length: 35692
vary: User-Agent
content-type: image/jpeg
date: Thu, 01 Dec 2022 09:01:21 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/uploads/2022/09/IMG_6185-scaled-45x45.jpg
200 OK 1.6 kB URL HTTP/2 www.ppsspasbl.org/wp-content/uploads/2022/09/IMG_6185-scaled-45x45.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 45x45, components 3\012- data
Hash 8a98b286fb9a1b55defa9f5642fe81a6
dcd54d211f7638da5f0b63c6c656fe82d656f93c
760ddce5fb90315c41b369cd340a0934bb640ccf6f9daf4fc712b9f7985afa30
GET /wp-content/uploads/2022/09/IMG_6185-scaled-45x45.jpg HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 23 Sep 2022 11:48:15 GMT
etag: "65d-5e956c0d53847"
accept-ranges: bytes
content-length: 1629
vary: User-Agent
content-type: image/jpeg
date: Thu, 01 Dec 2022 09:01:21 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 09:01:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 09:01:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.ppsspasbl.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:56 GMT
expires: Thu, 30 Nov 2023 19:33:56 GMT
cache-control: public, max-age=31536000
age: 48445
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/uploads/2020/09/IMG_20200501_112541_9-scaled-45x45.jpg
200 OK 1.3 kB URL HTTP/2 www.ppsspasbl.org/wp-content/uploads/2020/09/IMG_20200501_112541_9-scaled-45x45.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 45x45, components 3\012- data
Hash 5e35f8ef9f290ea46fbc8d7338de8ae8
ef9282170d1d8fda214a89eb8e63288ae644bc44
e330fb9b67f281d9fa647dc0ce7e891dc4a86b63eed259ac5f6951eb9fb1ed07
GET /wp-content/uploads/2020/09/IMG_20200501_112541_9-scaled-45x45.jpg HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 21 Sep 2022 14:02:25 GMT
etag: "534-5e93064f49c65"
accept-ranges: bytes
content-length: 1332
vary: User-Agent
content-type: image/jpeg
date: Thu, 01 Dec 2022 09:01:21 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.ppsspasbl.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:52:41 GMT
expires: Tue, 28 Nov 2023 18:52:41 GMT
cache-control: public, max-age=31536000
age: 223720
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.ppsspasbl.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:54 GMT
expires: Thu, 30 Nov 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 48447
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.ppsspasbl.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:34:15 GMT
expires: Thu, 30 Nov 2023 19:34:15 GMT
cache-control: public, max-age=31536000
age: 48426
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 09:01:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 533f66ef53706466ce20dc9aebf11812
0c0d713d538eb224deeb9241917a117205f16cb2
8ce7b68022c847b59b9a132ada3a75eea73bb57bae4683901c8df08fa255ba79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 09:01:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/s/player/d75422b4/www-player.css
200 OK 50 kB URL HTTP/2 www.youtube.com/s/player/d75422b4/www-player.css
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 3e4178f2a6616105992b334a69698e47
2b137808b51c5c513321992cf3abeed31047e512
d6f34a1edfc56a13003d4c7ef64ac1b12eb79d4e69668e02c7a692631df254d8
GET /s/player/d75422b4/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/s7eZLsJ8miE
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 49841
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 16:08:30 GMT
expires: Thu, 30 Nov 2023 16:08:30 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 30 Nov 2022 01:20:28 GMT
content-type: text/css
age: 60771
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 21:48:03 GMT
expires: Fri, 24 Nov 2023 21:48:03 GMT
cache-control: public, max-age=31536000
age: 558798
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/d75422b4/www-embed-player.vflset/www-embed-player.js
200 OK 99 kB URL HTTP/2 www.youtube.com/s/player/d75422b4/www-embed-player.vflset/www-embed-player.js
IP
File type ASCII text, with very long lines (679)
Hash dcab709b2fb7e5b2b0ce72e82db0f0dd
5d1f5457969d0f95fc0a5617f71bbe7e3900457d
233b10984971f40d72b0910e0dd32585640a752c5cf3e1ec1d7685883e6e1ce4
GET /s/player/d75422b4/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/s7eZLsJ8miE
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 99383
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 16:08:30 GMT
expires: Thu, 30 Nov 2023 16:08:30 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 30 Nov 2022 01:20:28 GMT
content-type: text/javascript
age: 60771
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 16:40:43 GMT
expires: Fri, 24 Nov 2023 16:40:43 GMT
cache-control: public, max-age=31536000
age: 577238
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/d75422b4/fetch-polyfill.vflset/fetch-polyfill.js
200 OK 2.8 kB URL HTTP/2 www.youtube.com/s/player/d75422b4/fetch-polyfill.vflset/fetch-polyfill.js
IP
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (555)
Hash 80fe2d229007996c8397073b00755dc7
121f82c77bcf2a297a1085e3b092415c463fcafe
033dfa8941482c82d4f1aaa4a9172fb379b9e46a02d5b36297c5476bbbfdea2c
GET /s/player/d75422b4/fetch-polyfill.vflset/fetch-polyfill.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/s7eZLsJ8miE
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2786
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 16:08:30 GMT
expires: Thu, 30 Nov 2023 16:08:30 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 30 Nov 2022 01:20:28 GMT
content-type: text/javascript
age: 60771
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/themes/supermag/assets/library/Font-Awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
200 OK 77 kB URL HTTP/2 www.ppsspasbl.org/wp-content/themes/supermag/assets/library/Font-Awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /wp-content/themes/supermag/assets/library/Font-Awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.ppsspasbl.org/wp-content/themes/supermag/assets/library/Font-Awesome/css/font-awesome.min.css?ver=4.7.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Sep 2020 07:10:44 GMT
etag: "12d68-5afb96eae4720"
accept-ranges: bytes
content-length: 77160
vary: User-Agent
date: Thu, 01 Dec 2022 09:01:21 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/uploads/2022/01/IMG-20220128-WA0130-274x365.jpg
200 OK 28 kB URL HTTP/2 www.ppsspasbl.org/wp-content/uploads/2022/01/IMG-20220128-WA0130-274x365.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 274x365, components 3\012- data
Hash 92e3e9709bc24151f0fe524bd7509867
c2bc8fcc27906c9b2a6342910c0cafb30e08ac34
adf934d1582ce4c2920f2360a82698709598e0a5e4b30d376b18efe08e93e8cf
GET /wp-content/uploads/2022/01/IMG-20220128-WA0130-274x365.jpg HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Jan 2022 09:34:05 GMT
etag: "6ec5-5d6dd7c522caa"
accept-ranges: bytes
content-length: 28357
vary: User-Agent
content-type: image/jpeg
date: Thu, 01 Dec 2022 09:01:21 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/uploads/2022/03/MOTIVATION-DE-365x365.jpeg
200 OK 32 kB URL HTTP/2 www.ppsspasbl.org/wp-content/uploads/2022/03/MOTIVATION-DE-365x365.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 365x365, components 3\012- data
Hash f89efc8f2fcf507c32505faad5b0fbd8
cb09a5d42ea74d375f81452605672a341161c67f
b702a221ca55289f695e52455634099b38ed64346b398a3b5982f6efa7398c64
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/03/MOTIVATION-DE-365x365.jpeg HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Mar 2022 13:17:11 GMT
etag: "7c45-5d9a0aea72810"
accept-ranges: bytes
content-length: 31813
vary: User-Agent
content-type: image/jpeg
date: Thu, 01 Dec 2022 09:01:21 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/uploads/2021/04/unnamed-1-660x330.jpg
200 OK 52 kB URL HTTP/2 www.ppsspasbl.org/wp-content/uploads/2021/04/unnamed-1-660x330.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 660x330, components 3\012- data
Hash 8dd58ebfc518a1fa182401a9c5b82069
00ad50257ac0c8b60ef9c80502624d9611246e91
159bb53028affb16bbc33e860ddc52a823053e08cb3a52a13e83be21ad8dcaf9
GET /wp-content/uploads/2021/04/unnamed-1-660x330.jpg HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Apr 2021 07:24:14 GMT
etag: "c933-5bf5cd165194c"
accept-ranges: bytes
content-length: 51507
vary: User-Agent
content-type: image/jpeg
date: Thu, 01 Dec 2022 09:01:21 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 920992c4818e7d17517e3dfef67a22c1
407b7e56fbb4faacca123af367b6cfdf0b7b2d99
527197c1e55e0b319d64e59070906d60084827233a6d7498cf63145ab665c424
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 09:01:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 51d5484b700426c5612c309bbf14b114
026994960bfaaa4e2604b66cb795b2787fe300a2
e3e30a64f2e4fc59120c46b320d104f1b9d9a8af90106ab78715d14e49e11ae0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 09:01:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 08:51:04 GMT
expires: Thu, 01 Dec 2022 09:06:04 GMT
cache-control: public, max-age=900
age: 618
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Thu, 01 Dec 2022 09:01:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 01 Dec 2022 09:01:22 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 16c3ad4a2bc7f419fb354b37778f8b2f
d193a1336556dcf6b4975a057e7c849037eef0ff
5993deb5a53b2e844b9027a6b6906c718f6e9f69c27388199c4343a80ef067f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 09:01:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 980e662afc055aadc6c872843ced9697
15a8cf1781a4282a355e043ee27ec1d4d6835897
c72fc109f7dbdeb960b1f1c444ea560f446f6880c5675f364c94dec8d355199a
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 01 Dec 2022 09:01:22 GMT
server: ESF
cache-control: private
content-length: 31038
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 920992c4818e7d17517e3dfef67a22c1
407b7e56fbb4faacca123af367b6cfdf0b7b2d99
527197c1e55e0b319d64e59070906d60084827233a6d7498cf63145ab665c424
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 09:01:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 51d5484b700426c5612c309bbf14b114
026994960bfaaa4e2604b66cb795b2787fe300a2
e3e30a64f2e4fc59120c46b320d104f1b9d9a8af90106ab78715d14e49e11ae0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 09:01:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js
200 OK 14 kB URL HTTP/2 www.google.com/js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js
IP
File type ASCII text, with very long lines (36106)
Hash 7fc7e22ecccb0cfd0ae897bb40a58efe
5d46470a711120793c362235105836fe49e699a4
1907005cab41fbd6d1d67df3b25586f3232e053a261c9e2b2503459f4980b1c5
GET /js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14302
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 27 Nov 2022 10:09:03 GMT
expires: Mon, 27 Nov 2023 10:09:03 GMT
cache-control: public, max-age=31536000
age: 341539
last-modified: Thu, 03 Nov 2022 10:00:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash d1ebc694c20ec150aad9e485dcdb35f4
1fae3fbe9fecff6ca2fc6dfa620d5193669fa3db
e2f7b273bed2605b18a008d13310bd022b46b8b2b8d82bf18128315f5af7111e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 09:01:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash e7e19607943d3a3770dd76e619af315d
78a4ef394f6fcbaa6b5abaa41f80eb9bce6bf06e
bafb86050e74ea34fc7206ec495f56d82f536245a1f23502eef3f3b7871ffea3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 09:01:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash d1ebc694c20ec150aad9e485dcdb35f4
1fae3fbe9fecff6ca2fc6dfa620d5193669fa3db
e2f7b273bed2605b18a008d13310bd022b46b8b2b8d82bf18128315f5af7111e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 09:01:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/xX-l0ykw1h8Cehf9LkDgURkZ81WgUoD9_kghrFlgZpERocc86Tk11SOjbQI5HQgu2pvgIEy8nAo=s68-c-k-c0x00ffffff-no-rj
200 OK 6.2 kB URL HTTP/2 yt3.ggpht.com/xX-l0ykw1h8Cehf9LkDgURkZ81WgUoD9_kghrFlgZpERocc86Tk11SOjbQI5HQgu2pvgIEy8nAo=s68-c-k-c0x00ffffff-no-rj
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data
Hash 03e1080b06046a27d5992d7092f6d3a0
fc62b48ad1fd6ad9de278a815511159900e30a7b
5046587635c588ced863624d33b3a2008e1387658ab897c2167e85c2335aebb6
GET /xX-l0ykw1h8Cehf9LkDgURkZ81WgUoD9_kghrFlgZpERocc86Tk11SOjbQI5HQgu2pvgIEy8nAo=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 6181
x-xss-protection: 0
date: Thu, 01 Dec 2022 09:01:22 GMT
expires: Sun, 27 Nov 2022 15:15:05 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 01 Dec 2022 09:01:22 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
200 OK 110 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash be8433669ffe08a720a4e4b7a3200b05
f02bd33a8b16e28127f4d925e186733e7a63b8d1
5966179264618d9b958d6ef5fa86b86d4f251fdc323dbfd73ce6b532fb2bfdc6
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1023
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 01 Dec 2022 09:01:22 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash e7e19607943d3a3770dd76e619af315d
78a4ef394f6fcbaa6b5abaa41f80eb9bce6bf06e
bafb86050e74ea34fc7206ec495f56d82f536245a1f23502eef3f3b7871ffea3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 09:01:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.ppsspasbl.org/wp-content/uploads/2022/09/CARBURANT-ET-PIECES-45x45.jpg
200 OK 1.6 kB URL HTTP/2 www.ppsspasbl.org/wp-content/uploads/2022/09/CARBURANT-ET-PIECES-45x45.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 45x45, components 3\012- data
Hash 820b4e2972980f5a02627aacc4ae9e33
cf9b26d5f4fc36eff5c95b2781144ed2351fc718
d26a82216d6fe5ff92950f2874ebc8db8ad6102e12e9b6fa58e877450c86c58f
GET /wp-content/uploads/2022/09/CARBURANT-ET-PIECES-45x45.jpg HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Sep 2022 11:46:40 GMT
etag: "65e-5e8c9ea50f31e"
accept-ranges: bytes
content-length: 1630
vary: User-Agent
content-type: image/jpeg
date: Thu, 01 Dec 2022 09:01:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/uploads/2022/09/CDT-45x45.jpg
200 OK 1.4 kB URL HTTP/2 www.ppsspasbl.org/wp-content/uploads/2022/09/CDT-45x45.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 45x45, components 3\012- data
Hash 7bc3c9ec4c39b86679242a05af43dc36
6a54b5c2bbfda6119eb8f2e9979a07c03529ee11
063a26b25267f73bb08eae04ca78195b9e8b77763a80e724b1eb97414fa96d4e
GET /wp-content/uploads/2022/09/CDT-45x45.jpg HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 09 Sep 2022 13:23:49 GMT
etag: "54f-5e83e74dae847"
accept-ranges: bytes
content-length: 1359
vary: User-Agent
content-type: image/jpeg
date: Thu, 01 Dec 2022 09:01:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/uploads/2022/09/SUP-NMF3-45x45.jpg
200 OK 1.5 kB URL HTTP/2 www.ppsspasbl.org/wp-content/uploads/2022/09/SUP-NMF3-45x45.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 45x45, components 3\012- data
Hash 9a6ef4eef6ba77a584ad85b00c9777ff
b125c39436cd0dfea01eb87712ed9e4b9c64d102
c3424d201db1a8ad1da5c187c25417de7710a2955e0af17f715935d8f9ceb56e
GET /wp-content/uploads/2022/09/SUP-NMF3-45x45.jpg HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Sep 2022 11:50:40 GMT
etag: "5fd-5e8c9f897c64b"
accept-ranges: bytes
content-length: 1533
vary: User-Agent
content-type: image/jpeg
date: Thu, 01 Dec 2022 09:01:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/uploads/2022/06/IMG_4954-scaled-45x45.jpg
200 OK 1.6 kB URL HTTP/2 www.ppsspasbl.org/wp-content/uploads/2022/06/IMG_4954-scaled-45x45.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 45x45, components 3\012- data
Hash 926cf77e694e144bc57221c6e77729d9
a6c4887a1c1beed2557c260d11af081e188d5b82
070709c2e7aa19767cbd8d877a3a5eb5636b1ec4c4cecf2b71b3217217933468
GET /wp-content/uploads/2022/06/IMG_4954-scaled-45x45.jpg HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 17 Jun 2022 13:16:15 GMT
etag: "62e-5e1a48f18559e"
accept-ranges: bytes
content-length: 1582
vary: User-Agent
content-type: image/jpeg
date: Thu, 01 Dec 2022 09:01:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/uploads/2022/08/OFFRE-PSYCHOLOGUE-45x45.jpg
200 OK 1.5 kB URL HTTP/2 www.ppsspasbl.org/wp-content/uploads/2022/08/OFFRE-PSYCHOLOGUE-45x45.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 45x45, components 3\012- data
Hash f1dae898d1ad6d612ea2de605651adcf
5f1aa538f6e59b05997a315f656b6589a919a594
cf1a8ec7d22094d6d91c4de0d4b9205f1b802a13c0dab3ed9eabec41fbee75ce
GET /wp-content/uploads/2022/08/OFFRE-PSYCHOLOGUE-45x45.jpg HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Aug 2022 10:14:20 GMT
etag: "5ce-5e70e0f8fa7ee"
accept-ranges: bytes
content-length: 1486
vary: User-Agent
content-type: image/jpeg
date: Thu, 01 Dec 2022 09:01:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/uploads/2022/06/APPEL-OFFRE-45x45.jpg
200 OK 1.7 kB URL HTTP/2 www.ppsspasbl.org/wp-content/uploads/2022/06/APPEL-OFFRE-45x45.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 45x45, components 3\012- data
Hash 212b3eeef41d9897dfdf3d6b4d04f9c6
5713189914853fcbd108d5ab2e43948acf065f65
c2db2dc97a9a4c720ee426bf26ac6bf83f766fa6fbcad3a7171fad67dcf406e4
GET /wp-content/uploads/2022/06/APPEL-OFFRE-45x45.jpg HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 23 Jun 2022 09:37:41 GMT
etag: "6b6-5e21a347ef4b4"
accept-ranges: bytes
content-length: 1718
vary: User-Agent
content-type: image/jpeg
date: Thu, 01 Dec 2022 09:01:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/wpaudio-mp3-player/wpaudio.min.js?ver=4.0.2
200 OK 2.1 kB URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/wpaudio-mp3-player/wpaudio.min.js?ver=4.0.2
IP
File type HTML document, ASCII text, with very long lines (6024), with no line terminators
Hash 3bf2a909784dfd6ea0a5129325b79787
02b5f77dba13093fc9f1c8ef9aaab8b95a4acb39
d7dbceacaffdc1e88211660e5e0e6018e938a915ad7a58db813f88a862764f9b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wpaudio-mp3-player/wpaudio.min.js?ver=4.0.2 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 20 Feb 2021 09:57:57 GMT
etag: "1788-5bbc19a6d5425-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2069
content-type: application/javascript
date: Thu, 01 Dec 2022 09:01:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/html-social-share-buttons/iconset/default/style.css
200 OK 369 B URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/html-social-share-buttons/iconset/default/style.css
IP
File type ASCII text, with CRLF line terminators
Hash 2d75845fb9ea1a448b5d6a2b3bf5d387
d87e8d0a879bcfb3d478f10b4c516a481af919be
312718f992b11063ff95cc35ff6451347d0f00a02587005016d86a4838bfd49f
GET /wp-content/plugins/html-social-share-buttons/iconset/default/style.css HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 17 Jun 2022 14:21:05 GMT
etag: "3e3-5e1a576f90f0b-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 369
content-type: text/css
date: Thu, 01 Dec 2022 09:01:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4.1
200 OK 4.0 kB URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4.1
IP
File type ASCII text, with very long lines (13485), with no line terminators
Hash 96ff594c594d12684cc6098644179191
ad02b118123b5631854e59ab25b52bec31d0689a
44c82124075b03b967024940fbe06738dbb2ffa7e9ceaf9289e48f949667d07a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4.1 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Jun 2021 08:20:14 GMT
etag: "34ad-5c4b586e3deb0-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3998
content-type: application/javascript
date: Thu, 01 Dec 2022 09:01:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=7.4.4
200 OK 34 kB URL HTTP/2 www.ppsspasbl.org/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=7.4.4
IP
File type Unicode text, UTF-8 text, with very long lines (34729), with NEL line terminators
Hash e4a5052bc5dbc2c699186ee28704c7ad
aaa1bf245da83c18da11d53aec79efcace18f4c9
596f6f6bc8eb3797265089937ef4e469767579d4c5942043585ef0a1ecfa5171
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=7.4.4 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Sep 2020 07:10:46 GMT
etag: "183ee-5afb96eca4482-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 33945
content-type: application/javascript
date: Thu, 01 Dec 2022 09:01:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-includes/js/wp-embed.min.js?ver=5.5.11
200 OK 765 B URL HTTP/2 www.ppsspasbl.org/wp-includes/js/wp-embed.min.js?ver=5.5.11
IP
File type ASCII text, with very long lines (1391)
Hash fe875afb236ee8f0d50040fe58d848d4
e6b1b67093b429c95d5b9db07a7eba39e02cf0e5
328a6a072b91134f2802ae25e070f38ff156ceee2c6ec6a6253ae4b27af73b49
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-embed.min.js?ver=5.5.11 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Apr 2021 08:41:48 GMT
etag: "592-5bffed58dc711-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 765
content-type: application/javascript
date: Thu, 01 Dec 2022 09:01:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/html-social-share-buttons/iconset/default/square/pinterest.png
200 OK 4.5 kB URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/html-social-share-buttons/iconset/default/square/pinterest.png
IP
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 3df383292f66b4ee4dc7fda208050d70
f09e2a3908bec94bd6809c81e05e32b6cefa5a4e
4a238a83c5fe0f9594dc79c5e211bf06ddb7febb4a8dbd61944d9073cde8b8bc
GET /wp-content/plugins/html-social-share-buttons/iconset/default/square/pinterest.png HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 17 Jun 2022 14:21:05 GMT
etag: "11aa-5e1a576f8c547"
accept-ranges: bytes
content-length: 4522
vary: User-Agent
content-type: image/png
date: Thu, 01 Dec 2022 09:01:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/html-social-share-buttons/iconset/default/square/mail.png
200 OK 3.8 kB URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/html-social-share-buttons/iconset/default/square/mail.png
IP
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 0a8eb92f9c3526538ac51db8f1555725
1137997fa92555109b6618db9b8eea582a9f751c
fbb83ccf5309772a0762fe5c030d509c8ba03696863d941b3a46dae5f25f567e
GET /wp-content/plugins/html-social-share-buttons/iconset/default/square/mail.png HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 17 Jun 2022 14:21:05 GMT
etag: "eb4-5e1a576f8da1b"
accept-ranges: bytes
content-length: 3764
vary: User-Agent
content-type: image/png
date: Thu, 01 Dec 2022 09:01:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/html-social-share-buttons/iconset/default/square/twitter.png
200 OK 644 B URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/html-social-share-buttons/iconset/default/square/twitter.png
IP
File type PNG image data, 128 x 128, 4-bit colormap, non-interlaced\012- data
Hash a7813955c66f0c29e5ec2a84a0f7144c
2c7abc0d194579b484019d76a0e00bd7db8a3a20
502c078fc4cce000c3a7a811ee49ad0922882022077c77e5ecc93d203b9b07ed
GET /wp-content/plugins/html-social-share-buttons/iconset/default/square/twitter.png HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 17 Jun 2022 14:21:05 GMT
etag: "284-5e1a576f8cff8"
accept-ranges: bytes
content-length: 644
vary: User-Agent
content-type: image/png
date: Thu, 01 Dec 2022 09:01:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/wp-whatsapp/assets/js/whatsapp-button.js?ver=3.1.8
200 OK 451 B URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/wp-whatsapp/assets/js/whatsapp-button.js?ver=3.1.8
IP
Hash 2cbb2b431f51472b160ee5177f584f6a
0a7dc89f53c513fa63437a6d42e7612ef4072994
542ff8abd5797378bf66e504fbcd1ba9adb45e57369fe71ccc903d534ed13dc6
GET /wp-content/plugins/wp-whatsapp/assets/js/whatsapp-button.js?ver=3.1.8 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 17 Jun 2022 14:26:10 GMT
etag: "378-5e1a5892c2ff3-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 451
content-type: application/javascript
date: Thu, 01 Dec 2022 09:01:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/html-social-share-buttons/iconset/default/square/linkedin.png
200 OK 3.7 kB URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/html-social-share-buttons/iconset/default/square/linkedin.png
IP
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 32d427a147634ba17fee9ace5e31c8b3
6403b7392411ed2d6bf81baa4e7db6124426ad4c
9a8fab6aef1c2d5d80ca18dbfd4732e73f47348a7ff68aa818926145306340d8
GET /wp-content/plugins/html-social-share-buttons/iconset/default/square/linkedin.png HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 17 Jun 2022 14:21:05 GMT
etag: "e90-5e1a576f8fa18"
accept-ranges: bytes
content-length: 3728
vary: User-Agent
content-type: image/png
date: Thu, 01 Dec 2022 09:01:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/themes/supermag/assets/js/supermag-custom.js?ver=1.4.0
200 OK 4.6 kB URL HTTP/2 www.ppsspasbl.org/wp-content/themes/supermag/assets/js/supermag-custom.js?ver=1.4.0
IP
File type ASCII text, with CRLF line terminators
Hash 12ca2fb5fe1198cadbd7583652f19df8
f60caf45fe3bbf98d06e1840d6a2804942f1190d
fc5ef15c0e95fe0cbf4b0244d8eca4db19ce2ef67841b1ef33e4147861b14361
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/supermag/assets/js/supermag-custom.js?ver=1.4.0 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Sep 2020 07:10:44 GMT
etag: "4aa7-5afb96eb028aa-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4646
content-type: application/javascript
date: Thu, 01 Dec 2022 09:01:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/html-social-share-buttons/iconset/default/square/bookmark.png
200 OK 848 B URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/html-social-share-buttons/iconset/default/square/bookmark.png
IP
File type PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Hash ffcf06b86f2b104339be6abdc9afbb81
de43d113cdf99aec567dd57c08f811954f5a0928
b89a3f9898a92fa77a722f0bf0f241c62c1ad87f5dfb54c2eff6954c471d54fc
GET /wp-content/plugins/html-social-share-buttons/iconset/default/square/bookmark.png HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 17 Jun 2022 14:21:05 GMT
etag: "350-5e1a576f8ef06"
accept-ranges: bytes
content-length: 848
vary: User-Agent
content-type: image/png
date: Thu, 01 Dec 2022 09:01:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/
200 OK 31 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1820), with CRLF, LF line terminators
Hash 25a3bddaf88ec5b0a15a7abaa0f05efd
45fd721f7870804ab54d32218959494c0455a998
6fd2cde7faed62504695c446414547bac7bb0e9505d561f5c025a667989e4fff
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/5.6.40
strict-transport-security: max-age=31536000; includeSubDomains; preload
link: <https://www.ppsspasbl.org/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Thu, 01 Dec 2022 09:01:18 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/html-social-share-buttons/iconset/default/square/googlepluse.png
200 OK 3.5 kB URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/html-social-share-buttons/iconset/default/square/googlepluse.png
IP
File type PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Hash 483fd21eec0063eb531c885f1a492161
971aad8b81e332e2a69ae866d7eb81d49dd72161
654f2efd24bc0a740b12ad77e87c23db030fa0ad9cc9a49185d36de523dc8cb8
GET /wp-content/plugins/html-social-share-buttons/iconset/default/square/googlepluse.png HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 17 Jun 2022 14:21:05 GMT
etag: "ddc-5e1a576f8e4e8"
accept-ranges: bytes
content-length: 3548
vary: User-Agent
content-type: image/png
date: Thu, 01 Dec 2022 09:01:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/gutentor/assets/library/theia-sticky-sidebar/theia-sticky-sidebar.min.js?ver=4.0.1
200 OK 1.7 kB URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/gutentor/assets/library/theia-sticky-sidebar/theia-sticky-sidebar.min.js?ver=4.0.1
IP
File type HTML document, ASCII text, with very long lines (5370), with no line terminators
Hash aa8b892ae902b42f56463a87ede2cb6c
b4e125d9b8f9eccb531a2fa667d0a3ad3f2ad670
89ea016fb4e092a88dfb87519c94f9e01e2acda215a0f87f917a201da3c6579f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gutentor/assets/library/theia-sticky-sidebar/theia-sticky-sidebar.min.js?ver=4.0.1 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 09 Mar 2022 10:09:09 GMT
etag: "14fa-5d9c649d7e9c2-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1735
content-type: application/javascript
date: Thu, 01 Dec 2022 09:01:23 GMT
server: Apache
X-Firefox-Spdy: h2
i.ytimg.com/vi_webp/s7eZLsJ8miE/sddefault.webp
200 OK 11 kB URL HTTP/2 i.ytimg.com/vi_webp/s7eZLsJ8miE/sddefault.webp
IP
File type gzip compressed data, from Unix\012- data
Hash 77e543e4d4d29a6cc498b984d0c4729f
86cba3b695d6f1b1c2f63faea97c68d263365c87
f4b4318102408ff6954c116b6118022ecfa2bb46b3c0b7893e51bdd2770acb83
GET /vi_webp/s7eZLsJ8miE/sddefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 53776
date: Thu, 01 Dec 2022 09:01:22 GMT
expires: Thu, 01 Dec 2022 11:01:22 GMT
cache-control: public, max-age=7200
etag: "1662127526"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-json/apvc/v1/update_visit?ua=Mozilla%2F5.0+(Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0)+Gecko%2F20100101+Firefox%2F105.0&url=https%3A%2F%2Fwww.ppsspasbl.org%2F&referred=&cpt=post
401 Unauthorized 7.4 kB URL HTTP/2 www.ppsspasbl.org/wp-json/apvc/v1/update_visit?ua=Mozilla%2F5.0+(Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0)+Gecko%2F20100101+Firefox%2F105.0&url=https%3A%2F%2Fwww.ppsspasbl.org%2F&referred=&cpt=post
IP
Hash e7dc33e1749ff811eee2615b1df8dafa
ba4126a04676f81aa148dab8e9e1ea15e1b22758
500b3f312ed370ec82db9aff988b1d72c821323f625336f6acf0003f7617854b
GET /wp-json/apvc/v1/update_visit?ua=Mozilla%2F5.0+(Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0)+Gecko%2F20100101+Firefox%2F105.0&url=https%3A%2F%2Fwww.ppsspasbl.org%2F&referred=&cpt=post HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-WP-Nounce: 1597ba1118
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 401 Unauthorized
x-powered-by: PHP/5.6.40
x-robots-tag: noindex
link: <https://www.ppsspasbl.org/wp-json/>; rel="https://api.w.org/"
x-content-type-options: nosniff
access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link
access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
vary: Origin,User-Agent
content-type: application/json; charset=UTF-8
date: Thu, 01 Dec 2022 09:01:21 GMT
server: Apache
X-Firefox-Spdy: h2
www.youtube.com/s/player/d75422b4/player_ias.vflset/en_US/base.js
200 OK 40 kB URL HTTP/2 www.youtube.com/s/player/d75422b4/player_ias.vflset/en_US/base.js
IP
Hash 38e47b7eb0170770cc18bb4f72c14287
2b7c08d4b822d74480312ae20f64d1a522917240
a21f4794f40af52ac6e5a23dc572db98b2d21464e31d381cb01722c6993f2d78
GET /s/player/d75422b4/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/s7eZLsJ8miE
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding, Origin
content-encoding: br
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 593973
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 16:09:35 GMT
expires: Thu, 30 Nov 2023 16:09:35 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 30 Nov 2022 01:20:28 GMT
content-type: text/javascript
age: 60706
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/themes/supermag/assets/library/bxslider/js/jquery.bxslider.js?ver=4.2.5.1.2
200 OK 14 kB URL HTTP/2 www.ppsspasbl.org/wp-content/themes/supermag/assets/library/bxslider/js/jquery.bxslider.js?ver=4.2.5.1.2
IP
File type ASCII text, with CRLF line terminators
Hash d83312263c4f7e94a3d75750939fbd34
b0f56373b3d554d22096a2ce5fd37ded23574d59
6552be9185e5eccc6874e04093fde6e0b691a5fba48065e60b9c6377890da196
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/supermag/assets/library/bxslider/js/jquery.bxslider.js?ver=4.2.5.1.2 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Sep 2020 07:10:44 GMT
etag: "1061b-5afb96eaf8213-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 14160
content-type: application/javascript
date: Thu, 01 Dec 2022 09:01:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/eelv-newsletter/js/newsletter.min.js?ver=4.8
200 OK 182 B URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/eelv-newsletter/js/newsletter.min.js?ver=4.8
IP
File type ASCII text, with very long lines (444)
Hash 914a51f118c5806ef41a12900cf4f955
9c91e321257e29ece9ac3da1de86fad8da1243bd
0bbf9a29d88a96244fe571a45a455a04d3bd0ec4a9cfab2bab819a91ce72710f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/eelv-newsletter/js/newsletter.min.js?ver=4.8 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Sep 2020 07:10:32 GMT
etag: "1bd-5afb96e014945-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 182
content-type: application/javascript
date: Thu, 01 Dec 2022 09:01:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/html-social-share-buttons/iconset/default/square/facebook.png
200 OK 351 B URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/html-social-share-buttons/iconset/default/square/facebook.png
IP
File type PNG image data, 128 x 128, 4-bit colormap, non-interlaced\012- data
Hash 3728e46851b80b4e5416dbb76c590ffe
c78517de525df35c23fd13d930395b81ae2b2407
9909569d3b4b5bbeb1298c86ba5d41a659f29a68e15df3d28c874f4e25b56bab
GET /wp-content/plugins/html-social-share-buttons/iconset/default/square/facebook.png HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 17 Jun 2022 14:21:05 GMT
etag: "15f-5e1a576f8bbb1"
accept-ranges: bytes
content-length: 351
vary: User-Agent
content-type: image/png
date: Thu, 01 Dec 2022 09:01:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/wpaudio-mp3-player/wpaudio-play.png
200 OK 258 B URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/wpaudio-mp3-player/wpaudio-play.png
IP
File type PNG image data, 30 x 26, 8-bit/color RGB, non-interlaced\012- data
Hash 8a43128503e42ecd327232e477cf4846
12b1e50f5fbe8e4cf603d27ca41bb941592baa19
abe8ccc4f20b62cb65f8b3e61c6fed171a7c16390c29497d141d4fc79faa1d62
GET /wp-content/plugins/wpaudio-mp3-player/wpaudio-play.png HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 20 Feb 2021 09:57:57 GMT
etag: "102-5bbc19a6ce1e0"
accept-ranges: bytes
content-length: 258
vary: User-Agent
content-type: image/png
date: Thu, 01 Dec 2022 09:01:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/plugins/wpaudio-mp3-player/wpaudio-pause.png
200 OK 264 B URL HTTP/2 www.ppsspasbl.org/wp-content/plugins/wpaudio-mp3-player/wpaudio-pause.png
IP
File type PNG image data, 30 x 26, 8-bit/color RGB, non-interlaced\012- data
Hash 6036b621658855493a28363ba9d3b0f8
86b632b5de57d95e3ab24da32c0264be45a1139f
45637ab3a0967ba5161e306daef53f1fd42cd1abe0e80bedd1daedfc1c1bda75
GET /wp-content/plugins/wpaudio-mp3-player/wpaudio-pause.png HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 20 Feb 2021 09:57:57 GMT
etag: "108-5bbc19a6cec7d"
accept-ranges: bytes
content-length: 264
vary: User-Agent
content-type: image/png
date: Thu, 01 Dec 2022 09:01:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/uploads/2020/09/cropped-logoPP-192x192.png
200 OK 28 kB URL HTTP/2 www.ppsspasbl.org/wp-content/uploads/2020/09/cropped-logoPP-192x192.png
IP
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 6c5d946c44cfed385694ef21ef9e8ba4
eed0ec1b541907b96124505539ea9defa8d922b2
33d1c8d9f171c350c152a7c8d6acbcd0546784905b5406e8c4e383d59eb6bd44
GET /wp-content/uploads/2020/09/cropped-logoPP-192x192.png HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Sep 2020 08:20:49 GMT
etag: "6d6a-5afba695b2865"
accept-ranges: bytes
content-length: 28010
vary: User-Agent
content-type: image/png
date: Thu, 01 Dec 2022 09:01:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/uploads/2020/09/cropped-logoPP-180x180.png
200 OK 28 kB URL HTTP/2 www.ppsspasbl.org/wp-content/uploads/2020/09/cropped-logoPP-180x180.png
IP
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 78a5057982fa00b07a8a19ac8be94859
ffae3fcb61b7d8dc38b8f9406079eeaae0acfad7
b49b90d2b5e731df59e5c4ebb8566a23c6b33903b0e87688b82533d660035f64
GET /wp-content/uploads/2020/09/cropped-logoPP-180x180.png HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Sep 2020 08:20:49 GMT
etag: "6e96-5afba695c2379"
accept-ranges: bytes
content-length: 28310
vary: User-Agent
content-type: image/png
date: Thu, 01 Dec 2022 09:01:23 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F350e8884-8903-4779-8a0c-bb74e9168bfb.jpeg
200 OK 4.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F350e8884-8903-4779-8a0c-bb74e9168bfb.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4fd5f7a9e04d27654062b3e18b8aecca
07fafbd614cdb49f20bceea29d5e684725d3bdf6
0cb64a9a33f66b92eed5a591b6c368f3d74363941d8876e553a8ea6aaa547590
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F350e8884-8903-4779-8a0c-bb74e9168bfb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4199
x-amzn-requestid: d7983896-c4a5-4133-9b0e-51ac412cf732
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZttXFcZIAMFmJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6386f655-139cd6a82eaa934d5d411029;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 06:21:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 91_Pv2sUA4286BEZXTKFctgZOrzWy6VWFDGiUV3_p_QnyckRDFb-lw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:51:29 GMT
age: 40195
etag: "07fafbd614cdb49f20bceea29d5e684725d3bdf6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-content/uploads/2022/06/back.png
200 OK 0 B URL HTTP/2 www.ppsspasbl.org/wp-content/uploads/2022/06/back.png
IP
GET /wp-content/uploads/2022/06/back.png HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 17 Jun 2022 14:16:56 GMT
etag: "1ffd20-5e1a568213e4b"
accept-ranges: bytes
content-length: 2096416
vary: User-Agent
content-type: image/png
date: Thu, 01 Dec 2022 09:01:21 GMT
server: Apache
X-Firefox-Spdy: h2
www.youtube.com/embed/s7eZLsJ8miE
200 OK 0 B URL HTTP/2 www.youtube.com/embed/s7eZLsJ8miE
IP
GET /embed/s7eZLsJ8miE HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 01 Dec 2022 09:01:21 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=ktstknplfLg; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=i6Fg5isdzyE; Domain=.youtube.com; Expires=Tue, 30-May-2023 09:01:21 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+212; expires=Sat, 30-Nov-2024 09:01:21 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans%3A600%2C400%7CRoboto%3A300italic%2C400%2C500%2C700&ver=1.0.1
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A600%2C400%7CRoboto%3A300italic%2C400%2C500%2C700&ver=1.0.1
IP
GET /css?family=Open+Sans%3A600%2C400%7CRoboto%3A300italic%2C400%2C500%2C700&ver=1.0.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 09:01:20 GMT
date: Thu, 01 Dec 2022 09:01:20 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.ppsspasbl.org/wp-includes/css/dashicons.min.css?ver=5.5.11
200 OK 0 B URL HTTP/2 www.ppsspasbl.org/wp-includes/css/dashicons.min.css?ver=5.5.11
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dashicons.min.css?ver=5.5.11 HTTP/1.1
Host: www.ppsspasbl.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppsspasbl.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Apr 2021 08:41:49 GMT
etag: "e687-5bffed58e4ab3-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: text/css
date: Thu, 01 Dec 2022 09:01:20 GMT
server: Apache
X-Firefox-Spdy: h2
198.23.51.26
23.36.76.226
104.18.32.68
93.184.220.29