www.johnsparrtavern.com/
192.124.249.70301 Moved Permanently 162 B IP 192.124.249.70:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: Sucuri/Cloudproxy
Date: Wed, 09 Nov 2022 15:17:28 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
X-Sucuri-ID: 19020
Location: https://www.johnsparrtavern.com/
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aabe410b4bbe4d8beb0e4561d3aa158e
e1788632902ddea62cdd9e7ad6009a75ffb69788
ad535e27b201e92670770b2b868c58f7c05633ec66490a41ef4592f062834c1f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AD535E27B201E92670770B2B868C58F7C05633EC66490A41EF4592F062834C1F"
Last-Modified: Wed, 09 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7034
Expires: Wed, 09 Nov 2022 17:14:42 GMT
Date: Wed, 09 Nov 2022 15:17:28 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4c6e4047ec266b87485610e26a85bb6f
cd543757597609d7309d02652318359078a965c2
d8aff7a24f3274782b4f41d6dbd181ba817f5a562d992a3a82966481c91f8a90
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6184
Cache-Control: max-age=161800
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 15:17:28 GMT
Etag: "636b8168-1d7"
Expires: Fri, 11 Nov 2022 12:14:08 GMT
Last-Modified: Wed, 09 Nov 2022 10:31:04 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4c6e4047ec266b87485610e26a85bb6f
cd543757597609d7309d02652318359078a965c2
d8aff7a24f3274782b4f41d6dbd181ba817f5a562d992a3a82966481c91f8a90
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6184
Cache-Control: max-age=161800
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 15:17:28 GMT
Etag: "636b8168-1d7"
Expires: Fri, 11 Nov 2022 12:14:08 GMT
Last-Modified: Wed, 09 Nov 2022 10:31:04 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2b57492bf85f4ae6abbd1641b17dc9ab
008e71ec05d47bf025ca64e17da2ea1bd8e71111
17894427c471f7fa02ca274795dc55df1bfc99d7bd83f9ee36249394035110fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "17894427C471F7FA02CA274795DC55DF1BFC99D7BD83F9EE36249394035110FD"
Last-Modified: Wed, 09 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11266
Expires: Wed, 09 Nov 2022 18:25:14 GMT
Date: Wed, 09 Nov 2022 15:17:28 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: AseaKnFywMIq0V7YGPHBXpaqDIWQ37synNiruqqYwF+5k89iIyPt6HaZR6Spe2a/LjJjPAA3D0TkpaTDpWfgpQ==
x-amz-request-id: F860BM1SNB4S6SE6
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 09 Nov 2022 15:11:46 GMT
age: 342
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:28 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash fc4d8189ac57f764956426615e2c13e3
8754914aa8e4981f5ab1682ef9e39d0f82602301
157e53c3fa01c371a459af39869eaeff83607604ca71c0fb7f8e58131c36b018
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 09 Nov 2022 15:17:28 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 08 Nov 2022 22:25:08 GMT
Expires: Wed, 09 Nov 2022 22:25:08 GMT
ETag: "8754914aa8e4981f5ab1682ef9e39d0f82602301"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
www.johnsparrtavern.com/
192.124.249.70200 OK 7.4 kB IP 192.124.249.70:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4557), with CRLF, LF line terminators
Hash f8e0377b55ada666eeb6912f4619dc74
58e41f7a8fb93579288f3f8c7e6fd2914c6e39c0
7cd6a4ebf9d14de50909045f5cbca92eff36d0e9157e56d600971984636ab8b7
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:29 GMT
content-type: text/html; charset=UTF-8
content-length: 7390
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
x-pingback: https://www.johnsparrtavern.com/xmlrpc.php
link: <https://www.johnsparrtavern.com/wp-json/>; rel="https://api.w.org/", <https://www.johnsparrtavern.com/wp-json/wp/v2/pages/367>; rel="alternate"; type="application/json", <https://www.johnsparrtavern.com/>; rel=shortlink
vary: Accept-Encoding
content-encoding: br
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c59d06092401e375df491b06ee8e6dbc
2e27b8ff7c08a5349e27969bc2a08e5e19d0c1da
23ee4ab633fcf67dc5d4d1931450e365cec8d436ef1f9ba5f46b6bab974724c4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5851
Cache-Control: max-age=156411
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 15:17:29 GMT
Etag: "636b6da9-1d7"
Expires: Fri, 11 Nov 2022 10:44:20 GMT
Last-Modified: Wed, 09 Nov 2022 09:06:49 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
www.johnsparrtavern.com/wp-content/themes/enfold/css/grid.css?ver=4.8.7.1
192.124.249.70200 OK 2.2 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/css/grid.css?ver=4.8.7.1
IP 192.124.249.70:0
Hash cc4d77955139fc5baac77322dba63f0d
e07ddd09b38278205d4ecbb140d956e5d790dce3
1e4bba586d459635e1f94119193a10dc935e6b7bbfbe489e097056a0a7ef15a0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/css/grid.css?ver=4.8.7.1 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:29 GMT
content-type: text/css
content-length: 2210
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:39:18 GMT
etag: "3a214bf-29bb-5e9ecaa0bb180-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 2cc2a9c89cbd9d2da1fd4a79a7d8b1d8
b2a4971855e26ff842f71d5dd4fff2596a83bd59
3bdf6aea6d003d0b087c13a74034f422cb09a59fd5c97b2b48ce590dfca6109a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 15:17:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/audio-player/audio-player.css?ver=6.0.3
192.124.249.70200 OK 331 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/audio-player/audio-player.css?ver=6.0.3
IP 192.124.249.70:0
Hash b9409cab3041a5fbd874e729cd2e9af7
ea291df24e0a988d96dbc107ba5d325ecd8e65fa
8f46088e16771cb45e3986699f15cd26dcfd5292fdf884bcf7cd228932138c2d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/audio-player/audio-player.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 331
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:46 GMT
etag: "3a2127a-5d7-5e9eca8236980-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/buttonrow/buttonrow.css?ver=6.0.3
192.124.249.70200 OK 127 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/buttonrow/buttonrow.css?ver=6.0.3
IP 192.124.249.70:0
Hash 4d3da85862d7583872e55c37424fec1c
798cf17900b92c083c26a73a6fbe9b57e893308b
6983177892d6a809c9df1e7afcb33dfd8454feda95254de4458ec523bd84d4ae
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/buttonrow/buttonrow.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 127
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:46 GMT
etag: "3a21281-1d8-5e9eca8236980-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/catalogue/catalogue.css?ver=6.0.3
192.124.249.70200 OK 431 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/catalogue/catalogue.css?ver=6.0.3
IP 192.124.249.70:0
Hash 409c19ce00dcc814c88b7dc7c84c16a3
b9f3f9957797b7200c0ea9616449d74129d19e79
a1f2360c0ad79ea9c76e148be2bd5b5d950385cd22d2c08a33adbad420ecf540
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/catalogue/catalogue.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 431
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:48 GMT
etag: "3a21288-598-5e9eca841ee00-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/blog/blog.css?ver=6.0.3
192.124.249.70200 OK 4.0 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/blog/blog.css?ver=6.0.3
IP 192.124.249.70:0
File type assembler source, ASCII text
Hash 40e2be9894ce32a2c11e07914e238b91
e4137346eb6550fdeb546650a97d0a8bd1c43486
bce130ebd66a6ae432a560909bebbae2d12a4831cc9bcf274894405acece3862
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/blog/blog.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 3969
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:50 GMT
etag: "3a2127f-5525-5e9eca8607280-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/css/base.css?ver=4.8.7.1
192.124.249.70200 OK 5.2 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/css/base.css?ver=4.8.7.1
IP 192.124.249.70:0
File type ASCII text, with very long lines (492)
Hash dfd9c055466475d9d98038dbbc021e13
15e172b8982c5e308c33c6f8a5ef0edfd7cb75e4
1fe37419a2c0c03c63d8e4aac4c6c0dc9320290b7765825dea75d3dbc1a82637
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/css/base.css?ver=4.8.7.1 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 5161
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:39:20 GMT
etag: "3a214c2-4a60-5e9ecaa2a3600-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/postslider/postslider.css?ver=6.0.3
192.124.249.70200 OK 1.0 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/postslider/postslider.css?ver=6.0.3
IP 192.124.249.70:0
Hash 84d0ddc9ef8fbe20bb824b83471b580e
7f33b04b4ddeffd275cbee135efc6be7a812d230
9afe854b39a6c3f48fd86e1fd6880f96cb18f5c3c28183e4de82a48a822583d3
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/postslider/postslider.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 1001
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:50 GMT
etag: "3a212ff-f7c-5e9eca8607280-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/comments/comments.css?ver=6.0.3
192.124.249.70200 OK 1.5 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/comments/comments.css?ver=6.0.3
IP 192.124.249.70:0
Hash 5efe7e6d49a34e71456f52676ced2eef
38eea34ab6469794a93281dfcea8acd0066c742f
fef8b91a87aa26f4c89a4c995613620f57035d936dedc4da673cf6cec6940bba
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/comments/comments.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 1502
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:50 GMT
etag: "3a21290-160a-5e9eca8607280-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/buttons_fullwidth/buttons_fullwidth.css?ver=6.0.3
192.124.249.70200 OK 348 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/buttons_fullwidth/buttons_fullwidth.css?ver=6.0.3
IP 192.124.249.70:0
Hash cff1c0454fe6d90237c93ed177a2aa6e
803da6f16fd9be1431fe925a290269bee82bfb0f
a3c2d30cdc9edaf5764b0aeb2a5a8fb2e1762e7b50fc94ee84cea72cc6d9e53b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/buttons_fullwidth/buttons_fullwidth.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 348
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:48 GMT
etag: "3a21286-517-5e9eca841ee00-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/contact/contact.css?ver=6.0.3
192.124.249.70200 OK 2.7 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/contact/contact.css?ver=6.0.3
IP 192.124.249.70:0
File type ASCII text, with very long lines (494)
Hash 9de29718e614e4f624e9f4a82eb903b3
39097756cfcfba32fd0b0281a777fa1b45cd9164
1008e275151ad16d91672f7b4683cc2dfabb99b9556fa493f965c83ebd416c96
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/contact/contact.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 2719
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:50 GMT
etag: "3a21292-328b-5e9eca8607280-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/post_metadata/post_metadata.css?ver=6.0.3
192.124.249.70200 OK 274 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/post_metadata/post_metadata.css?ver=6.0.3
IP 192.124.249.70:0
Hash d4768442e804db00c45c3b8c2fcbc177
c19fb057ea64bfa2d354fa8a22bab96095b563bb
3977857d370685fac9a3ec0d5581d87a1eefd05c0e3013d027b15fa4cc5a1c32
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/post_metadata/post_metadata.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 274
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:50 GMT
etag: "3a21301-55f-5e9eca8607280-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/hr/hr.css?ver=6.0.3
192.124.249.70200 OK 634 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/hr/hr.css?ver=6.0.3
IP 192.124.249.70:0
Hash bb8d0c1929734f8457334d491fc3c9c5
6a1492f2f53c283b11c4e0a1fe9f9dcf5182f4e9
17f220b9191467bfdcf9ae295ec17fffa1c7bafebd9a028d1847f1fe1f46962e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/hr/hr.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 634
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:48 GMT
etag: "3a212bc-8d9-5e9eca841ee00-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/countdown/countdown.css?ver=6.0.3
192.124.249.70200 OK 520 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/countdown/countdown.css?ver=6.0.3
IP 192.124.249.70:0
Hash 1f9b381ef5dca901253b57d660684ec9
aef903d8d64137d8aa248d39e9aa7de1d1b85124
53db97353ac0a1f4b75dd31c2d99401727a2f22536135bc51564a0e5d67482b8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/countdown/countdown.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 520
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:50 GMT
etag: "3a2129a-84c-5e9eca8607280-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/icon/icon.css?ver=6.0.3
192.124.249.70200 OK 781 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/icon/icon.css?ver=6.0.3
IP 192.124.249.70:0
Hash dea6dcb434a266230a88fb8c32c5d6d3
f3c2db07cf4ba57076d1ab5bfe707c7507da12e7
c2b7f04f1375a94a53a7fb6c73f544134a528a5f9e966d967960adade5cf1527
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/icon/icon.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 781
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:48 GMT
etag: "3a212be-a11-5e9eca841ee00-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/notification/notification.css?ver=6.0.3
192.124.249.70200 OK 941 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/notification/notification.css?ver=6.0.3
IP 192.124.249.70:0
Hash 38d341c12d4f07f0dd8dcbc654ef84ba
177d910d36413b06be29a9e892fad434932bee2a
dd2312442454a8f12467085fc69a9dab4885f42a286680cd1ae84681d2c6de60
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/notification/notification.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 941
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:46 GMT
etag: "3a212ec-ddb-5e9eca8236980-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/search/search.css?ver=6.0.3
192.124.249.70200 OK 1.0 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/search/search.css?ver=6.0.3
IP 192.124.249.70:0
Hash d1a484b06d28c1bc422df17f3318f1d7
bdd3eac6746b3fb4539be88e04f76794d75021b3
08a7dc3ecfe36440a72037d51000e7601342157616787aebdf1d12e4a134a7f2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/search/search.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 1047
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:50 GMT
etag: "3a21317-1494-5e9eca8607280-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/gallery/gallery.css?ver=6.0.3
192.124.249.70200 OK 766 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/gallery/gallery.css?ver=6.0.3
IP 192.124.249.70:0
Hash 276ffe5f93d0e254c2e26255e2c4220e
bed9f830ec582e72c4e3c8e3a0dc2a56adfa8ddf
a4271b9d6bf9c30c6e3394b28e8f107eff622816d165de961581666801532ff1
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/gallery/gallery.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 766
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:48 GMT
etag: "3a212a4-b05-5e9eca841ee00-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/progressbar/progressbar.css?ver=6.0.3
192.124.249.70200 OK 1.3 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/progressbar/progressbar.css?ver=6.0.3
IP 192.124.249.70:0
Hash 1aeac15823a8c9466f08d0a5d95d4bef
abcdb213dff6690d807fadf63fe94f24b5c44cd6
6385b55534d5af6f7160e5dda52ecadeee8b142cf7892b9a519db7b27bfba63b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/progressbar/progressbar.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 1250
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:48 GMT
etag: "3a2130f-1ed6-5e9eca841ee00-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/heading/heading.css?ver=6.0.3
192.124.249.70200 OK 1.0 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/heading/heading.css?ver=6.0.3
IP 192.124.249.70:0
Hash 652c2b5384810d75ae7dc928a97bbb82
6ecc939c749e8d195927b630a3e69f4ee3946bff
454b2856f66c3461d3b0127849a221c8f9cebe9cd8f941d4b3d15dee338a075f
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/heading/heading.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 1021
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:46 GMT
etag: "3a212b1-1246-5e9eca8236980-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/iconbox/iconbox.css?ver=6.0.3
192.124.249.70200 OK 856 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/iconbox/iconbox.css?ver=6.0.3
IP 192.124.249.70:0
Hash d4d04c2897f5e8d529abf60e079efad9
07cf68c3e01e2b4b79aaf716a2e41e0e52e18c40
deb735a0b3932bab9bdd2f88a9d7b64afc9fd9eaa1bd2412c54592c039ea75e3
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/iconbox/iconbox.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 856
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:46 GMT
etag: "3a212c0-c40-5e9eca8236980-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/magazine/magazine.css?ver=6.0.3
192.124.249.70200 OK 985 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/magazine/magazine.css?ver=6.0.3
IP 192.124.249.70:0
Hash 09009607df9655ed65bfd6243d284724
26d22ea975037c4f1f68113f50f50942c93c8cc3
83c44d3979db10765323981cd820a8776c007e1c252d3a4f3fbf229b7e085727
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/magazine/magazine.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 985
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:50 GMT
etag: "3a212db-f98-5e9eca8607280-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/promobox/promobox.css?ver=6.0.3
192.124.249.70200 OK 565 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/promobox/promobox.css?ver=6.0.3
IP 192.124.249.70:0
Hash 3e0778f0bcba516de78d8931d0ff1891
db72db2b67a27448918f6dc14d5114ef77e30940
4adf0ecf62e819752894637b8b6bf182a0cf728ba816f06088d5f61336c0b355
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/promobox/promobox.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 565
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:50 GMT
etag: "3a21312-736-5e9eca8607280-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/headline_rotator/headline_rotator.css?ver=6.0.3
192.124.249.70200 OK 513 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/headline_rotator/headline_rotator.css?ver=6.0.3
IP 192.124.249.70:0
Hash 790ba03a74627b7d39e61110ca3a96dd
1c2c9f50b0f888455cc05ae673269dc4397f9de9
1a656bc3038b962742a4f996fb487a7fe996ce41b343657beec98ec8a169560f
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/headline_rotator/headline_rotator.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 513
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:50 GMT
etag: "3a212b9-780-5e9eca8607280-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/grid_row/grid_row.css?ver=6.0.3
192.124.249.70200 OK 514 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/grid_row/grid_row.css?ver=6.0.3
IP 192.124.249.70:0
File type ASCII text, with CRLF line terminators
Hash ea44c6d5cc515bd66a88b63779cc02a6
b1ad05f5044bcf760548ff6127edd491352d9fa7
eda9e0be7b24ea98381fa9bd314f7d4e7449f7c4507f1a9a59df17f01bf27886
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/grid_row/grid_row.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 514
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:48 GMT
etag: "3a212b2-810-5e9eca841ee00-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/image_hotspots/image_hotspots.css?ver=6.0.3
192.124.249.70200 OK 1.1 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/image_hotspots/image_hotspots.css?ver=6.0.3
IP 192.124.249.70:0
Hash c6503eb8920fd1c8c0467461b05a5e0a
4ddfaff0ab708456eff6859173a37c5784124f8c
3441aac82e5ef580557b2584768348c2c40ff876741268a3055da8aba7293243
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/image_hotspots/image_hotspots.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 1105
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:46 GMT
etag: "3a212cf-115c-5e9eca8236980-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/numbers/numbers.css?ver=6.0.3
192.124.249.70200 OK 825 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/numbers/numbers.css?ver=6.0.3
IP 192.124.249.70:0
File type ASCII text, with very long lines (361)
Hash 9321a4537bf9f911937cb17fb75a6001
ddfa55a46e5c4c19c6107393cc584f9e955af573
08f4e870a2641ef9615b94b8b378975165670356072e01673b46035e5c83b2ac
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/numbers/numbers.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 825
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:48 GMT
etag: "3a212ef-bb6-5e9eca841ee00-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
push.services.mozilla.com/
44.237.163.41101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.237.163.41:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 8jPp5Pk4sgdOD9A38WC+6g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: he3FhKLBCn4ta469DpRKgFh3Suk=
fonts.googleapis.com/css?family=Lato:300,400,700
142.250.74.10200 OK 859 B URL HTTP/2 fonts.googleapis.com/css?family=Lato:300,400,700
IP 142.250.74.10:0
Hash cf0ed4066b4f00fa7616a89b1b51fc55
59045f7a50f5419e417eb83759b1b617724e41f1
23002ccb57d2dc5eee31575086bd06d430e909267ae68cb8e6507811395491e1
GET /css?family=Lato:300,400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 09 Nov 2022 15:17:29 GMT
date: Wed, 09 Nov 2022 15:17:29 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/image/image.css?ver=6.0.3
192.124.249.70200 OK 1.3 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/image/image.css?ver=6.0.3
IP 192.124.249.70:0
Hash 663933a2aa0c15b2a0968daa2d97c06b
bfe3ce1a812d1db3c73cdaf8270aac61a620aa38
82a8752e376a2ed414b71fb5ee55ade781e35297e062d11c0d31465c0d15ac36
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/image/image.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 1276
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:46 GMT
etag: "3a212cb-18f2-5e9eca8236980-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/slideshow/slideshow.css?ver=6.0.3
192.124.249.70200 OK 2.8 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/slideshow/slideshow.css?ver=6.0.3
IP 192.124.249.70:0
Hash 8d15934e62c90dda90a21bca090b3af3
38b3c6911581cf0fece7245b9ca8a5b03a7acf9d
d3c5b41fd5a57985210961ff1f909fc574ced36eb4fb2c4cfea224234f7c057a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/slideshow/slideshow.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 2768
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:46 GMT
etag: "3a2131c-2e76-5e9eca8236980-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/menu/menu.css?ver=6.0.3
192.124.249.70200 OK 1.2 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/menu/menu.css?ver=6.0.3
IP 192.124.249.70:0
Hash 67d889686344ed402e0d01f3a58fb915
617bbb01e483918f9324bcdb6c141142e2ccf684
d0b2447c2f13497fd5b5f12ccc2272aa33727378310a86a5749ca89cb9fa2637
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/menu/menu.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 1169
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:46 GMT
etag: "3a212e6-22f4-5e9eca8236980-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/gallery_horizontal/gallery_horizontal.css?ver=6.0.3
192.124.249.70200 OK 875 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/gallery_horizontal/gallery_horizontal.css?ver=6.0.3
IP 192.124.249.70:0
Hash 8b453510d1944ba1aff8beaba98c515a
8364dac96ddceb3df4ca153ed75add1baca248e7
d45e987cd10974af62df4b28cfa1c4bd4392c3b0b2dc31c36aebccf1cb5e8d2c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/gallery_horizontal/gallery_horizontal.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 875
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:46 GMT
etag: "3a212a8-fa6-5e9eca8236980-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/iconlist/iconlist.css?ver=6.0.3
192.124.249.70200 OK 1.1 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/iconlist/iconlist.css?ver=6.0.3
IP 192.124.249.70:0
Hash 506d95af6ba92f3ea74eb5bfb0b78968
56bde9d9a9d0734e5ee443d804294d5830f86e36
270e9c9805f34fb09b4a1ad5537acbbc5c64fd37f0884218a7828a5542090dc9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/iconlist/iconlist.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 1079
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:48 GMT
etag: "3a212c8-1096-5e9eca841ee00-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/contentslider/contentslider.css?ver=6.0.3
192.124.249.70200 OK 643 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/contentslider/contentslider.css?ver=6.0.3
IP 192.124.249.70:0
Hash 40dd638b3ab7c0b544f7d14cf6824dde
b37bc9aecc4beda68a0c64e3fa567f4e9fcb07a5
fee8574c68a523dcda4104d6691b2eb84910f9bb2d9fd1917e136534bf81f7f4
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/contentslider/contentslider.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 643
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:50 GMT
etag: "3a21295-aa1-5e9eca8607280-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/google_maps/google_maps.css?ver=6.0.3
192.124.249.70200 OK 635 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/google_maps/google_maps.css?ver=6.0.3
IP 192.124.249.70:0
File type ASCII text, with CRLF line terminators
Hash e74a8f0038a727c6722926e332046847
cdc87ac0aa846b83d244fab1199fcdd237004df2
dace4c3c1995d3794950e93db9a24f6fdf4b3071db203b5692200d36ba9a3d86
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/google_maps/google_maps.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 635
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:48 GMT
etag: "3a212ac-912-5e9eca841ee00-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/portfolio/portfolio.css?ver=6.0.3
192.124.249.70200 OK 2.1 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/portfolio/portfolio.css?ver=6.0.3
IP 192.124.249.70:0
Hash ede1d80d28f5a422fdfc7703ff18c9da
4c343920d1d29bf8f79cd0ac549255c3f012fbc0
c26bc01e6c93dea92c49777e0e24a872571ed5c033aba4226152374b581ff08f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/portfolio/portfolio.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 2068
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:48 GMT
etag: "3a212f6-2652-5e9eca841ee00-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/buttons/buttons.css?ver=6.0.3
192.124.249.70200 OK 1.5 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/buttons/buttons.css?ver=6.0.3
IP 192.124.249.70:0
Hash 62c0d1c289fdaafc7a730f6c206c79d5
21aa620b726fe4820d2196a93cf75cadfe4ec60a
e5709c511f1f27857124c0d4cedf735006f064c288155ee9c50bda3086224efe
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/buttons/buttons.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 1452
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:48 GMT
etag: "3a21322-1ae8-5e9eca841ee00-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/icongrid/icongrid.css?ver=6.0.3
192.124.249.70200 OK 2.1 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/icongrid/icongrid.css?ver=6.0.3
IP 192.124.249.70:0
Hash 46cad9d9fbcb854a0215a5032c57e9e4
0985b4b7cc6fc56456045f24ec82f836789771bf
f6f4cb484a60f1eca77211fd8e6cb98b2a00b5da2678fe9a1a6f309f396f9280
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/icongrid/icongrid.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 2119
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:50 GMT
etag: "3a212c3-4257-5e9eca8607280-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/slideshow_feature_image/slideshow_feature_image.css?ver=6.0.3
192.124.249.70200 OK 560 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/slideshow_feature_image/slideshow_feature_image.css?ver=6.0.3
IP 192.124.249.70:0
Hash af5bb07a014c0772e0ef50255c585428
c3ae3d0d919fec9f191fbf3f9f65cdb24ecb1a91
b327b3d5e3c46b55d836ef6f8b2dba3bb4c87522af99d04653f522cc3be699b5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/slideshow_feature_image/slideshow_feature_image.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 560
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:50 GMT
etag: "3a21328-81e-5e9eca8607280-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/slideshow_fullsize/slideshow_fullsize.css?ver=6.0.3
192.124.249.70200 OK 1.0 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/slideshow_fullsize/slideshow_fullsize.css?ver=6.0.3
IP 192.124.249.70:0
Hash b5a08e567a033b47fea6aceaefd750dc
365766b81dcc398d0936c24b29c680a053b6b14c
1b97b18ebe034b7123e2fc3b6bb47807dd944e0a8a3fac9b5ad43032f86e659c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/slideshow_fullsize/slideshow_fullsize.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 1011
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:48 GMT
etag: "3a2132e-1613-5e9eca841ee00-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/slideshow_layerslider/slideshow_layerslider.css?ver=6.0.3
192.124.249.70200 OK 1.1 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/slideshow_layerslider/slideshow_layerslider.css?ver=6.0.3
IP 192.124.249.70:0
Hash 036179d9b63d7a9dde5b91b92e0c54f6
36975090ff28a5dfc6f0bdba139ad33ddd268684
b3f490c6626b45adc69b25e8c33cefea92824abef9d37a0c6fc64338ec0548fb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/slideshow_layerslider/slideshow_layerslider.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 1129
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:50 GMT
etag: "3a21330-141e-5e9eca8607280-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/css/avia-snippet-site-preloader.css?ver=6.0.3
192.124.249.70200 OK 668 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/css/avia-snippet-site-preloader.css?ver=6.0.3
IP 192.124.249.70:0
Hash 9507eba54342ca3966752b0cf408a4ea
54bb5eb50272a7c257da007cef8d11b1f44a8e75
029d5c6ea6f1898162851de16827aba56df969cc8cc77ae08759735de02ff4c3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/css/avia-snippet-site-preloader.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 668
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:39:20 GMT
etag: "3a214bb-882-5e9ecaa2a3600-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/table/table.css?ver=6.0.3
192.124.249.70200 OK 1.4 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/table/table.css?ver=6.0.3
IP 192.124.249.70:0
Hash 5d94f5e8ceca5f4883c15924c7e527fc
090bb0f0d992fbe9cf80ea0d0a49b5ab4d54f982
34c1d7881a7aa0906929c9371d244ab5dbe4c8dd73ce2c14b47512d940ff4687
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/table/table.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 1415
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:50 GMT
etag: "3a21339-1a24-5e9eca8607280-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/masonry_entries/masonry_entries.css?ver=6.0.3
192.124.249.70200 OK 3.3 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/masonry_entries/masonry_entries.css?ver=6.0.3
IP 192.124.249.70:0
Hash 71e393c55c16b5e86756a246e3ed2216
f10380528cdb6eecd8357b905c90887b48d6e869
0f5b90c5ac8e53f5cb7e0b886fa97ecefed5f74f730dbeba3fc47602e2f3264c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/masonry_entries/masonry_entries.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 3329
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:50 GMT
etag: "3a212e2-4788-5e9eca8607280-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/tabs/tabs.css?ver=6.0.3
192.124.249.70200 OK 881 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/tabs/tabs.css?ver=6.0.3
IP 192.124.249.70:0
Hash 4b525b2c5b77a5773f9bb1e3ad9f2c6a
060c6e82aa97232f1d88cd720d6ac669e8c4919b
958002aed39c094c24265fce7ac0e91c47a4752552590fa3a2812248408cef3a
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/tabs/tabs.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 881
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:46 GMT
etag: "3a2133c-e6b-5e9eca8236980-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/tab_section/tab_section.css?ver=6.0.3
192.124.249.70200 OK 1.2 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/tab_section/tab_section.css?ver=6.0.3
IP 192.124.249.70:0
File type ASCII text, with CRLF line terminators
Hash 8ce7316e69554f6ee75657bdd3d38959
4b10fd173d389013908e684dac7e587e00181bb1
a9d517c1acdf020624d2f6a8659a988e054eafcf0f1755bac1d8696617ecbeec
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/tab_section/tab_section.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 1197
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:48 GMT
etag: "3a21341-15b3-5e9eca841ee00-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/testimonials/testimonials.css?ver=6.0.3
192.124.249.70200 OK 1.3 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/testimonials/testimonials.css?ver=6.0.3
IP 192.124.249.70:0
Hash b903ffa907e9d992a627912b64883690
08e3e640da576c7df686393123e83a7b84fb11bd
872d2b8debed95fb076f866ecb3c845265cf5e46a19aa60de2e68e290333db63
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/testimonials/testimonials.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 1302
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:48 GMT
etag: "3a2134b-186b-5e9eca841ee00-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/css/custom.css?ver=4.8.7.1
192.124.249.70200 OK 265 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/css/custom.css?ver=4.8.7.1
IP 192.124.249.70:0
Hash 594b3eb580e6f1b154b8ce4d04e5ea99
27e8b630ca7ba0282c4eafeb3eb80d1729f59afd
2c17c29ffaa19340c592d1c38fe0a53e9b2cf10fffd0e70f62aa41da4c0d9327
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/css/custom.css?ver=4.8.7.1 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 265
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:39:20 GMT
etag: "3a214bd-2c3-5e9ecaa2a3600-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/slideshow_accordion/slideshow_accordion.css?ver=6.0.3
192.124.249.70200 OK 640 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/slideshow_accordion/slideshow_accordion.css?ver=6.0.3
IP 192.124.249.70:0
Hash cb60fe7458de9b1b9915a8da17e4ca54
399952b14ec7a5a3b228c67e59784dcbfe57e640
298665ce415a2637d0d8b8cf530e6ec3a6c6ba9ac98a2d6093cd2aee0faf2dac
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/slideshow_accordion/slideshow_accordion.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 640
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:48 GMT
etag: "3a21320-964-5e9eca841ee00-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/slideshow_fullscreen/slideshow_fullscreen.css?ver=6.0.3
192.124.249.70200 OK 526 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/slideshow_fullscreen/slideshow_fullscreen.css?ver=6.0.3
IP 192.124.249.70:0
Hash 7d720e4733fb1c72ed24f506601d2ce9
11f6dbc7af6107a21465aae57001e79cd1a7c475
315e21486df8dabf1e81a6396799380fb673576dbe1ffedb810eee27fe618684
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/slideshow_fullscreen/slideshow_fullscreen.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 526
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:46 GMT
etag: "3a213f4-816-5e9eca8236980-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/social_share/social_share.css?ver=6.0.3
192.124.249.70200 OK 1.2 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/social_share/social_share.css?ver=6.0.3
IP 192.124.249.70:0
Hash abc1714cf733bd51a8af28c4fadf8505
92b1b9831d638536f08f07f17d490399134eabd1
ec5026dcdc0ac5eedf42cf435dc720995adafc98ae2ea4b465d0f4f07c3098ec
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/social_share/social_share.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 1202
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:46 GMT
etag: "3a21337-25f4-5e9eca8236980-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/team/team.css?ver=6.0.3
192.124.249.70200 OK 974 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/team/team.css?ver=6.0.3
IP 192.124.249.70:0
Hash bbe2b6d2f3c17131d2a93282a696f338
2f2ce83405cf0ee20d437c2cd397c8146d058769
641d36ab32f516d17af59eadca5ccabd926925146f153e47e271a6bf6da01ae9
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/team/team.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 974
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:50 GMT
etag: "3a21345-d96-5e9eca8607280-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/css/layout.css?ver=4.8.7.1
192.124.249.70200 OK 15 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/css/layout.css?ver=4.8.7.1
IP 192.124.249.70:0
File type ASCII text, with very long lines (314)
Hash 3ecb7b809d9fb86079396c9243620971
24ef95818acdcf883d9cb955f1892a94c03e2dbb
7b33b8c4d8de812a73f0cc592af4a9c669d457010c6b0e5d73423c97ab20306e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/css/layout.css?ver=4.8.7.1 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 15362
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:39:20 GMT
etag: "3a214c0-14cea-5e9ecaa2a3600-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.3
192.124.249.70200 OK 982 B URL HTTP/2 www.johnsparrtavern.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.3
IP 192.124.249.70:0
File type ASCII text, with very long lines (4186), with no line terminators
Hash a43bf1705482324d06adb5d2b644a1a2
599069728988582dee8e5ec6a4a4b37c931adb96
78ae77841e94a99977ad8f5d7e7d6757ddf5b6e4da5b66ee6029ec39be4e2204
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 982
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 07 Jun 2019 20:45:02 GMT
etag: "3aa29d6-105a-58ac1e7924f80-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
192.124.249.70200 OK 2.4 kB URL HTTP/2 www.johnsparrtavern.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
IP 192.124.249.70:0
File type ASCII text, with very long lines (11256), with no line terminators
Hash 1d6e4a77fd29a54c63cacf31066fe58e
270a454d2b87b294ddbdb6594d491c7dda637363
46879cca8816e1802c35e96fb5d7d28519994fd9ae41a7b94299057e3f8c7f79
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 2397
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Tue, 29 Sep 2020 15:53:06 GMT
etag: "3aa29cf-2bf8-5b075c75d5c80-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/toggles/toggles.css?ver=6.0.3
192.124.249.70200 OK 1.2 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/toggles/toggles.css?ver=6.0.3
IP 192.124.249.70:0
Hash a374283f088a0e863448cdef9b2cc941
6e1722fa51edf12c9867fcbd6f35cb937d868964
6a1898bbcb5d1e656a94e1890b6eb8daa9deb16535adda616b593de0e64023fb
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/toggles/toggles.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 1223
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:46 GMT
etag: "3a21352-1397-5e9eca8236980-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/contact/contact.js?ver=6.0.3
192.124.249.70200 OK 2.0 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/contact/contact.js?ver=6.0.3
IP 192.124.249.70:0
Hash 51d600d0edfd009135b3512c972bdfe4
92c80e91f905ceba7ecd61c338901713a3d794a7
e62fc6c6ec17f485a20637d87445fc0d6e046029930e0ab702474bbb2b2ccb94
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/contact/contact.js?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 1995
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:50 GMT
etag: "3a21293-236c-5e9eca8607280-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/countdown/countdown.js?ver=6.0.3
192.124.249.70200 OK 1.5 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/countdown/countdown.js?ver=6.0.3
IP 192.124.249.70:0
Hash a0425c7b95bc5b491d530d0325d54015
878760cccf3f59cac119d7d06d5946ee52f5ed23
cea54efb796d93babdc7a741767cae974f130054a555077ab87dbd97a45659a4
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/countdown/countdown.js?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 1513
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:50 GMT
etag: "3a2129b-16e8-5e9eca8607280-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/timeline/timeline.css?ver=6.0.3
192.124.249.70200 OK 3.0 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/timeline/timeline.css?ver=6.0.3
IP 192.124.249.70:0
Hash 73f4ac97f1ee53a99efc38cd25c236d4
05ea6389b837f1a713730e8339f28b52936cda83
5312d3d758f8e2a3fe5665ebf69052a191b3cd6864e60961d4117c9e3ff7dd03
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/timeline/timeline.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 2975
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:50 GMT
etag: "3a2134f-7236-5e9eca8607280-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/gallery/gallery.js?ver=6.0.3
192.124.249.70200 OK 811 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/gallery/gallery.js?ver=6.0.3
IP 192.124.249.70:0
Hash 2b2b1726e7d882bf9947160281098dcc
069a32454320bd4b20ee251812193c22a7788aa1
c5d5e8c1f64f023acb97289b607c1a98fa3f836486bc9a7acb40c2e07a223519
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/gallery/gallery.js?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 811
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:48 GMT
etag: "3a212a6-a02-5e9eca841ee00-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/gallery_horizontal/gallery_horizontal.js?ver=6.0.3
192.124.249.70200 OK 1.5 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/gallery_horizontal/gallery_horizontal.js?ver=6.0.3
IP 192.124.249.70:0
Hash 5c0d0ab4a2a06b9a573dcf02508f4b8a
c5e1d57022ab1b8decf2503e1ce101123e2656f2
6c1fa9632eb8ba1a60b43995aafd3ff5ce515018bdf5579ba56ff39621db54e0
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/gallery_horizontal/gallery_horizontal.js?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 1482
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:46 GMT
etag: "3a212a9-1343-5e9eca8236980-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/audio-player/audio-player.js?ver=6.0.3
192.124.249.70200 OK 802 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/audio-player/audio-player.js?ver=6.0.3
IP 192.124.249.70:0
Hash 87104c32eaf83b2ff27b8c579c402089
6db2b768d9ea09e8596f5410c2eca6bcc6e9e1bf
e19b41673817c3c0a0955ef4157e34ce74e9ceb14a091ffc8305e98f9c9f8e45
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/audio-player/audio-player.js?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 802
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:46 GMT
etag: "3a2127b-938-5e9eca8236980-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/headline_rotator/headline_rotator.js?ver=6.0.3
192.124.249.70200 OK 1.4 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/headline_rotator/headline_rotator.js?ver=6.0.3
IP 192.124.249.70:0
Hash 4adb630244f17762e81b8f96a9efed77
315bed5be1fcdc063c48f699f2a558b23442735e
b6e91de85b53f826289867e10de0cd199fd41ce763bc9e975621e08c293c37c2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/headline_rotator/headline_rotator.js?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 1409
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:50 GMT
etag: "3a212ba-12ea-5e9eca8607280-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/video/video.css?ver=6.0.3
192.124.249.70200 OK 522 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/video/video.css?ver=6.0.3
IP 192.124.249.70:0
Hash fc3f5c951a5b98667dbbf32a77f741d6
4993d1f94658c90bbf1edc148c6bde94ea5e3d49
60d170e7fcd15d4c96eb8c005dd53d8437dec23c38272f3db60f2cc37f3de9e6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/video/video.css?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 522
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:50 GMT
etag: "3a21453-785-5e9eca8607280-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/js/shortcodes.js?ver=4.8.7.1
192.124.249.70200 OK 10 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/js/shortcodes.js?ver=4.8.7.1
IP 192.124.249.70:0
Hash d7d1d154acc7e49aeb01a01c9be82c63
3df1ba1c6f8edcd58b565c8ec3bf13bfc8d352c8
0d32d80dc14e4a62b3ef00624266df56c6b6b5e81d2cc05cc7202c486edf78e6
GET /wp-content/themes/enfold/js/shortcodes.js?ver=4.8.7.1 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 10026
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:34 GMT
etag: "3a21639-a08a-5e9eca76c4e80-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/js/avia.js?ver=4.8.7.1
192.124.249.70200 OK 16 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/js/avia.js?ver=4.8.7.1
IP 192.124.249.70:0
File type Unicode text, UTF-8 text, with very long lines (8869)
Hash 81ba726dc79292ae2e18a7df9467fcaa
4957c488ef1b18db50c90db607a3ae1963ea0c55
73bf00a342f2937ffb89010aa2fb8a26637a1f26df6034fe3a625d5ae071558d
GET /wp-content/themes/enfold/js/avia.js?ver=4.8.7.1 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 16471
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:34 GMT
etag: "3a21636-f124-5e9eca76c4e80-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16
192.124.249.70200 OK 36 kB URL HTTP/2 www.johnsparrtavern.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16
IP 192.124.249.70:0
File type ASCII text, with very long lines (65266)
Hash 7204ebed6f104585c281e528b070478f
ebd05ae28110ade913d05be324f26f770998a1ba
bfd7c71bfc74664bb5613fa9afb1443ed67c0c1ca57402dc8ecb121ae1c50cb4
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 35851
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Tue, 29 Sep 2020 15:53:06 GMT
etag: "3aa29e0-267aa-5b075c75d5c80-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/iconlist/iconlist.js?ver=6.0.3
192.124.249.70200 OK 252 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/iconlist/iconlist.js?ver=6.0.3
IP 192.124.249.70:0
Hash a4c8b5b2bd952a67c7155846519f9f53
c0cf549d744a3bbd2134f54ac2845ebd216a7eaf
95fa1c55cd85da92d911b74bc10d26803470e5915d85f29ed1dda8a009539c20
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/iconlist/iconlist.js?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 252
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:48 GMT
etag: "3a212c9-2b3-5e9eca841ee00-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/image_hotspots/image_hotspots.js?ver=6.0.3
192.124.249.70200 OK 287 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/image_hotspots/image_hotspots.js?ver=6.0.3
IP 192.124.249.70:0
Hash e96826cace2cf59b6548c7d8b08a4a2b
5dc94cb94cc8bf6f8d19cfbbf75200946e5f30ef
b128d17d0775aea29a97c4680211b292e880a1a569f2abf8f375de73e0f9dfed
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/image_hotspots/image_hotspots.js?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 287
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:46 GMT
etag: "3a212d0-315-5e9eca8236980-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/menu/menu.js?ver=6.0.3
192.124.249.70200 OK 1.2 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/menu/menu.js?ver=6.0.3
IP 192.124.249.70:0
Hash 093c322c54260dc5c375a6d44ddd9e17
73c74f794d204dc2ce6bc57b971910219e809654
43cd2d073c3cb0b21a8989832aa80c13d09669df73ee4009e85e3fde7e47c1bc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/menu/menu.js?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 1183
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:46 GMT
etag: "3a212e7-fd4-5e9eca8236980-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/numbers/numbers.js?ver=6.0.3
192.124.249.70200 OK 1.2 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/numbers/numbers.js?ver=6.0.3
IP 192.124.249.70:0
Hash 82c3f1818d5446d29a7dddfe3bd3a128
9e53684e7ac2b421cbee46a82022199950306dd4
fd9ad296b64fb46c6df58e4287464356af090e3a960fb8d3d44cfe250c552e0c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/numbers/numbers.js?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 1154
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:48 GMT
etag: "3a212f0-e79-5e9eca841ee00-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/masonry_entries/masonry_entries.js?ver=6.0.3
192.124.249.70200 OK 2.2 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/masonry_entries/masonry_entries.js?ver=6.0.3
IP 192.124.249.70:0
Hash a0bddb9645908f8c9865d3a24c64e24f
c6ce8ff3ce669e246d6effa52150368baba49638
ccf61080dc7827d5e559900741aacace9d987f369ad2e8da99db04e3c46067b6
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/masonry_entries/masonry_entries.js?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 2201
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:50 GMT
etag: "3a212e3-1e97-5e9eca8607280-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/notification/notification.js?ver=6.0.3
192.124.249.70200 OK 752 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/notification/notification.js?ver=6.0.3
IP 192.124.249.70:0
Hash 23ac75e498e259d5f0e6dfd262cab76b
32df671010323bad035a447a463c01a131bdde31
7aa19af9a5259f09de39395b0613597f0d2966264e9ff29185a859f8f4f17723
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/notification/notification.js?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 752
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:46 GMT
etag: "3a212ed-95c-5e9eca8236980-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/slideshow_layerslider/slideshow_layerslider.js?ver=6.0.3
192.124.249.70200 OK 345 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/slideshow_layerslider/slideshow_layerslider.js?ver=6.0.3
IP 192.124.249.70:0
Hash d043799cab0f0eb53a571b747c757ad7
e358e16ed66b4080cef864346eb76d711e4715d5
9ebcc5eb51fdb9e8cf602c8d5eb9056663606cae48fb7cb1c83635cfa20f644f
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/slideshow_layerslider/slideshow_layerslider.js?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 345
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:50 GMT
etag: "3a21331-380-5e9eca8607280-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/progressbar/progressbar.js?ver=6.0.3
192.124.249.70200 OK 318 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/progressbar/progressbar.js?ver=6.0.3
IP 192.124.249.70:0
Hash d6455dd501fd2c3bb2587e808735e8c9
bb90842884c59c50e4f0daf16f50d7adb0eda92d
0d7f5a53d1b7653a76c4df6e987edb3a430a8a6ca9fa8ccb4529c8131c710ed5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/progressbar/progressbar.js?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 318
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:48 GMT
etag: "3a21310-378-5e9eca841ee00-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/slideshow/slideshow.js?ver=6.0.3
192.124.249.70200 OK 8.0 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/slideshow/slideshow.js?ver=6.0.3
IP 192.124.249.70:0
Hash dd28d2792afe6fc603bc8f6afe099dae
df283f3d562d5a3d82df71e59f373d68bf272045
1864de35fb6c97a0d8156d811490a95eea927167125479399f248b3e9b68c4ed
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/slideshow/slideshow.js?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 7977
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:46 GMT
etag: "3a2131d-7adf-5e9eca8236980-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/portfolio/portfolio.js?ver=6.0.3
192.124.249.70200 OK 3.0 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/portfolio/portfolio.js?ver=6.0.3
IP 192.124.249.70:0
Hash 7d8f2fdddb0a8dd2d6951800ad4cb8fc
48e1bc35e684290774ab3080e2dd02296a85859e
3d58b6e96fadf807a4c2d7ad9d5e94799e25b9af3f6e209d02c4bda9bbea0827
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/portfolio/portfolio.js?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 3035
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:48 GMT
etag: "3a212f7-2c02-5e9eca841ee00-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/slideshow_accordion/slideshow_accordion.js?ver=6.0.3
192.124.249.70200 OK 2.3 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/slideshow_accordion/slideshow_accordion.js?ver=6.0.3
IP 192.124.249.70:0
Hash 33517f6a4180fbcd6f738faf4a673996
23f6ec3a64a14e021e099e7f87090a33777b1758
00b35fa516c749c91f05d6599cfb4bf6dc5ed791d3e487f947dd2b25a8d54ff5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/slideshow_accordion/slideshow_accordion.js?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 2346
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:48 GMT
etag: "3a21321-1fd8-5e9eca841ee00-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/slideshow_fullscreen/slideshow_fullscreen.js?ver=6.0.3
192.124.249.70200 OK 1.7 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/slideshow_fullscreen/slideshow_fullscreen.js?ver=6.0.3
IP 192.124.249.70:0
Hash fbd5e2fd25e86c753fc9408d030af7e1
6f0443818c1a94e823b1c054e35afbe6f15cce46
e38c36dd96ffcdcde671f9d630151e197d5a2164f8c9da26aba7bc25d9041f5b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/slideshow_fullscreen/slideshow_fullscreen.js?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 1655
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:46 GMT
etag: "3a2132a-1514-5e9eca8236980-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/video/video.js?ver=6.0.3
192.124.249.70200 OK 775 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/video/video.js?ver=6.0.3
IP 192.124.249.70:0
Hash 3c06063289c4dba8894b41147e66d7fb
7a1712d1edd547e9db208a3ba50a4b2d26591f9f
8d95f650eee43423848931cca90a0fa2baced5dcde05bd94972fbac3a8c8007c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/video/video.js?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 775
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:50 GMT
etag: "3a21454-8f9-5e9eca8607280-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/portfolio/isotope.js?ver=6.0.3
192.124.249.70200 OK 13 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/portfolio/isotope.js?ver=6.0.3
IP 192.124.249.70:0
File type ASCII text, with very long lines (32019)
Hash 1a73bb7f60d50cd0ba60fb84d657d01f
ede0b56ad35b63b9ce5a3ae68e20ff06ec735972
70c54cbcab5f56316436bb3de13a8085fd7f51ba1b5cb0f2f1486dae0b819bcd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/portfolio/isotope.js?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 13116
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:48 GMT
etag: "3a212f5-bfb9-5e9eca841ee00-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/timeline/timeline.js?ver=6.0.3
192.124.249.70200 OK 1.2 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/timeline/timeline.js?ver=6.0.3
IP 192.124.249.70:0
Hash 1ea1824aefd5f3524ed76d7f98d5f3c5
5f8a3049bdb0c13ac650e69b3e9f8ed03256b7d1
4b2a43ee45fcb14def787d994a7bbcd61badcde3c585c2a2cb970ec3e9137ed6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/timeline/timeline.js?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 1232
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:50 GMT
etag: "3a21350-11db-5e9eca8607280-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/tabs/tabs.js?ver=6.0.3
192.124.249.70200 OK 1.2 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/tabs/tabs.js?ver=6.0.3
IP 192.124.249.70:0
Hash cc7b4186b796584d7c8ea79e23277ba5
eff25e10692058787e9cf7c40563848ad25def94
baff24ed1b5f6fdb782db1c391a7ff233ff0f2c558c451e610b9f19bcd1c895c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/tabs/tabs.js?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 1152
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:46 GMT
etag: "3a2133d-ea3-5e9eca8236980-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/css/shortcodes.css?ver=4.8.7.1
192.124.249.70200 OK 6.9 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/css/shortcodes.css?ver=4.8.7.1
IP 192.124.249.70:0
File type ASCII text, with very long lines (1454)
Hash dff682e25ae61cc7a6daf00409f7b388
a83321d77008edf2e5c180a5828f1be69cb6e872
016ca222b56e967afa7989b17485bd1ebb14d59d67ebb54993eee1a8287b9308
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/css/shortcodes.css?ver=4.8.7.1 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 6917
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:39:18 GMT
etag: "3a214c3-89ca-5e9ecaa0bb180-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/js/avia-compat.js?ver=4.8.7.1
192.124.249.70200 OK 865 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/js/avia-compat.js?ver=4.8.7.1
IP 192.124.249.70:0
Hash 66de1fcefd717d1d6469295c1ed84d96
b98915e4de4615070d55f3bc9335766c71d30d0a
29fca75d981bbf86541cafc8f2d2d93e1d4b02cdbc6b316c4735ece13152f7fe
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/js/avia-compat.js?ver=4.8.7.1 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 865
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:34 GMT
etag: "3a2162c-85f-5e9eca76c4e80-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/js/avia-snippet-sticky-header.js?ver=4.8.7.1
192.124.249.70200 OK 1.1 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/js/avia-snippet-sticky-header.js?ver=4.8.7.1
IP 192.124.249.70:0
Hash df078ac934d49db87cfae2cb5eb5ccd1
c0c774ad9d2fff60de076c6e0d7bcfa622cbb6c9
ccd2d63c2e9176b6a6da4ea902001652364f2150d289be4bd5fa4766ebf8bf36
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/js/avia-snippet-sticky-header.js?ver=4.8.7.1 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 1084
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:34 GMT
etag: "3a21634-e66-5e9eca76c4e80-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/toggles/toggles.js?ver=6.0.3
192.124.249.70200 OK 1.3 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/toggles/toggles.js?ver=6.0.3
IP 192.124.249.70:0
Hash 6bb63408b816c809c6e979439218903d
63c8edd030802374510ae507ae41ba87f1416d56
642b7c988a02fb3c934479d7a88b9099c80e1124c2f998fb5dff2913c6259649
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/toggles/toggles.js?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 1262
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:46 GMT
etag: "3a2144c-10c2-5e9eca8236980-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/magazine/magazine.js?ver=6.0.3
192.124.249.70200 OK 694 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/magazine/magazine.js?ver=6.0.3
IP 192.124.249.70:0
Hash d53cbd7ef0e0ff4943351d8ed786cb2e
3b463095ac5c37bf4d4a500e23bbe946f847a8b5
c7d6f471bc0c8f1a325474488d443903e0bcedd9f7f3524ad34b5db45beb34db
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/magazine/magazine.js?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 694
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:50 GMT
etag: "3a212dc-884-5e9eca8607280-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/testimonials/testimonials.js?ver=6.0.3
192.124.249.70200 OK 253 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/testimonials/testimonials.js?ver=6.0.3
IP 192.124.249.70:0
Hash 3de3177f56b858303a992a83c73128fe
17c64d8c55385dd5487038e8b526b8ede5254067
d7ca42baad1e3137d6431491539ef9851935ef57d360d42a0b3dbcdd8da6da32
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/testimonials/testimonials.js?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 253
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:46 GMT
etag: "3a2134c-2c4-5e9eca8236980-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/js/avia-snippet-site-preloader.js?ver=4.8.7.1
192.124.249.70200 OK 818 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/js/avia-snippet-site-preloader.js?ver=4.8.7.1
IP 192.124.249.70:0
Hash 0dfbbd14414f3e9252fe3f5bb358a978
9a61b0fd06f76dc5ce27f3f38b5755529d89bc0f
ef472dd012105b9e859105c440332bf2dc79aaca74989aac2794572dc5ea5802
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/js/avia-snippet-site-preloader.js?ver=4.8.7.1 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 818
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:34 GMT
etag: "3a21633-809-5e9eca76c4e80-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/tab_section/tab_section.js?ver=6.0.3
192.124.249.70200 OK 2.2 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/tab_section/tab_section.js?ver=6.0.3
IP 192.124.249.70:0
File type ASCII text, with CRLF line terminators
Hash c166047ffa88d6b83d1b059ad146e562
af1a48f2c080e31adf1a2e285e0939895b21d523
6c9896cdef70e4773fa6d889fee1adc6c7618498ab69d7a6977d244434b16bb2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/tab_section/tab_section.js?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 2175
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:48 GMT
etag: "3a21342-21b9-5e9eca841ee00-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/js/avia-snippet-hamburger-menu.js?ver=4.8.7.1
192.124.249.70200 OK 4.5 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/js/avia-snippet-hamburger-menu.js?ver=4.8.7.1
IP 192.124.249.70:0
Hash 589bae7c0f581683e6936f9ecfb44b54
301b7e92084c3049e9ced9c230072445d4ab0e50
4567f4b9b7ea19b4038b42cabe8d9081b3aa8261a757655ec227d18a3e75a3a5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/js/avia-snippet-hamburger-menu.js?ver=4.8.7.1 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 4522
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:34 GMT
etag: "3a2162f-3f7c-5e9eca76c4e80-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.3
192.124.249.70200 OK 479 B URL HTTP/2 www.johnsparrtavern.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.3
IP 192.124.249.70:0
File type ASCII text, with very long lines (1191), with no line terminators
Hash cc6e4bb0d08a7af642fb5d7d360b2417
81f2d45689b987e71e986648e1a0547cd62dee88
04e59d9a464d53fecbccadfb29b17f093d9495c32fc6fb2c4f0ec4c4d9300038
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 479
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
etag: "3aa29ce-4a7-5dc2a2438e980-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-gutenberg/js/avia_blocks_front.js?ver=4.8.7.1
192.124.249.70200 OK 660 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-gutenberg/js/avia_blocks_front.js?ver=4.8.7.1
IP 192.124.249.70:0
Hash 4d7c84b47e3832e593ab5134fdbd0727
944e8c564e0e1872c0043ee6efa032ace095c44f
e7eb0010423d57c84e4475f363a7474456250d919e5cfdd1c1314a21d2d342d1
GET /wp-content/themes/enfold/config-gutenberg/js/avia_blocks_front.js?ver=4.8.7.1 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 660
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:44 GMT
etag: "3a20e1d-a29-5e9eca804e500-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/uploads/2018/06/jst_logo_03_Use.png
192.124.249.70200 OK 31 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/uploads/2018/06/jst_logo_03_Use.png
IP 192.124.249.70:0
File type PNG image data, 305 x 275, 8-bit/color RGBA, non-interlaced\012- data
Hash 2d4bd83288f7e6874c3ac2053b580184
17070cffc48b3eca7e77086ce8b749906aa1edf0
615571b1f76861c5faa05aeec28c1215153f90954787a73f884b4e3a704b337a
GET /wp-content/uploads/2018/06/jst_logo_03_Use.png HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: image/png
content-length: 31107
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:00 GMT
etag: "3a619a3-7983-5e9eca5658200"
accept-ranges: bytes
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
192.124.249.70200 OK 30 kB URL HTTP/2 www.johnsparrtavern.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 192.124.249.70:0
File type ASCII text, with very long lines (65447)
Hash d5935cacfd471ce64891335a0e163f0f
883b406801168b978994e8d8c7f252a31321cf61
caea13ed31fcdedf7f54e2383e8a64c1d86d6767c11f227c046ab2952a7d3ce9
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 30310
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 10 Mar 2021 15:07:24 GMT
etag: "3aa1e35-15db1-5bd3006388300-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/framework/js/conditional_load/avia_google_maps_front.js?ver=4.8.7.1
192.124.249.70200 OK 1.4 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/framework/js/conditional_load/avia_google_maps_front.js?ver=4.8.7.1
IP 192.124.249.70:0
Hash dfafe6528a79acb8761d6a6342598bf6
1d6806333340278ec5bdef13337850b58af22bbc
ead5efd7165855ffff5a215837eb529cda1f83bafd01b5eb632bb2652d758558
GET /wp-content/themes/enfold/framework/js/conditional_load/avia_google_maps_front.js?ver=4.8.7.1 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 1417
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:40 GMT
etag: "3a21590-123a-5e9eca7c7dc00-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/uploads/dynamic_avia/enfold.css?ver=61ce9cda20fc7
192.124.249.70200 OK 14 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/uploads/dynamic_avia/enfold.css?ver=61ce9cda20fc7
IP 192.124.249.70:0
File type ASCII text, with very long lines (65532), with CRLF line terminators
Hash 0332a436a5f7649d26b42dd46ff13728
6aa3173b83c4ba3cbcb3c37e3da3d2241a2a9f74
ac3f50e4363e27fd75fc6927fea63aa647ac830047421333ebec9679d9f3fb8c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/dynamic_avia/enfold.css?ver=61ce9cda20fc7 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: text/css
content-length: 14455
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:37:34 GMT
etag: "3a20d9a-20916-5e9eca3d8c780-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/uploads/2018/06/jst_logo_04_Background.png
192.124.249.70200 OK 30 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/uploads/2018/06/jst_logo_04_Background.png
IP 192.124.249.70:0
File type PNG image data, 305 x 275, 8-bit/color RGBA, non-interlaced\012- data
Hash 26beb53f72e9a92fdece6b4413437a63
5ca0a43cd23c1e3fd79817b5b23054a8da6603fa
1dcc5bb596851ec23a25772b0b555f162bb9ffc77c6b78151b4d02c8ec65666c
GET /wp-content/uploads/2018/06/jst_logo_04_Background.png HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: image/png
content-length: 30510
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:37:48 GMT
etag: "3a619aa-772e-5e9eca4ae6700"
accept-ranges: bytes
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
192.124.249.70200 OK 4.6 kB URL HTTP/2 www.johnsparrtavern.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
IP 192.124.249.70:0
File type ASCII text, with very long lines (15660)
Hash a0083d25b89ea80ecd2393db9f865d62
24eaf2df7c722fb13f2b5bf77ada5ee446720c25
f7533cb93f2efbb9e3bccfa9ff4036a2cafa7dd1bd4d66bea4833306b321e957
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 4614
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Tue, 12 Apr 2022 05:56:23 GMT
etag: "3a21f6d-48b9-5dc6eb878efc0-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/slideshow/slideshow-video.js?ver=6.0.3
192.124.249.70200 OK 6.2 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/slideshow/slideshow-video.js?ver=6.0.3
IP 192.124.249.70:0
Hash f311c89a1bc112405b2bbdd82a3d606a
b2dc1432914acbc18fa64b31a6a4897cd8973801
3545d511afc6a5eda20af81c8b1a41dbeaf30ad51b958bd8868f0f7e090a3750
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/slideshow/slideshow-video.js?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 6220
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:46 GMT
etag: "3a2131b-5be2-5e9eca8236980-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/js/avia-snippet-footer-effects.js?ver=4.8.7.1
192.124.249.70200 OK 607 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/js/avia-snippet-footer-effects.js?ver=4.8.7.1
IP 192.124.249.70:0
Hash a56d83846ca6027731773cdbbda2f852
e5b88f644e9ff1d48a1381248628a5f8ca6a31b9
a7b7b832645c881a201a43594bc80edf9d8023e366e07ab4afbbc5072d2bd448
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/js/avia-snippet-footer-effects.js?ver=4.8.7.1 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 607
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:34 GMT
etag: "3a2162e-6d9-5e9eca76c4e80-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.0.3
192.124.249.70200 OK 393 B URL HTTP/2 www.johnsparrtavern.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.0.3
IP 192.124.249.70:0
File type HTML document, ASCII text, with very long lines (906), with no line terminators
Hash 104a34e1dc86769921861e29512bc5df
f17c92c5abd8400ded059ee5c8bc7436142d2411
45d10f6cf7538ffb41086d4d4d5d2fecae7f7f96feb53b964be084d9452c0426
GET /wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 393
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 20 Jan 2021 13:35:18 GMT
etag: "3aa29d8-38a-5b955069f1180-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/icongrid/icongrid.js?ver=6.0.3
192.124.249.70200 OK 839 B URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/icongrid/icongrid.js?ver=6.0.3
IP 192.124.249.70:0
Hash 9b8bbc6d1d6267892a58ea3b9e4aa647
e30e9c43b1293c3bbf6c33514e479ca934ada674
159f7b0f59543ad90f505653a39713b0a159abd921d736b74bd1485ebf9fd469
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-shortcodes/icongrid/icongrid.js?ver=6.0.3 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:30 GMT
content-type: application/javascript
content-length: 839
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:50 GMT
etag: "3a212c6-b74-5e9eca8607280-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 61a9432317cba5908c0a73266e8b8a62
c8bc872f016956cbb5569d7727bdfd46d64146c6
fafa5e76a4ed086616cce2f8e5af613630b11221ec9001d30cac72f6c1f350de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 15:17:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2
216.58.207.195200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23236, version 1.0\012- data
Hash 716309aab2bca045f9627f63ad79d0bf
38804233a29aaf975d557fe14e762c627bef76e0
115f6a626ca115d4ad5581b59275327e0e860b30330a52b0f785561332dd2429
GET /s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.johnsparrtavern.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 08 Nov 2022 17:17:27 GMT
expires: Wed, 08 Nov 2023 17:17:27 GMT
cache-control: public, max-age=31536000
age: 79203
last-modified: Tue, 26 Apr 2022 16:04:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 4dc4a177d25f666a9ba1cf6225354467
8975f2e5cc9cadc4a1e369da45471eb1f0830c5e
6c9e54a13abc265cac7bdee51c6fa49e5e7590fec7a1cc99096c384dabef31be
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 15:17:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 4dc4a177d25f666a9ba1cf6225354467
8975f2e5cc9cadc4a1e369da45471eb1f0830c5e
6c9e54a13abc265cac7bdee51c6fa49e5e7590fec7a1cc99096c384dabef31be
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 15:17:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
216.58.207.195200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.johnsparrtavern.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 08 Nov 2022 17:10:21 GMT
expires: Wed, 08 Nov 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 79629
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
216.58.207.195200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.johnsparrtavern.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 08 Nov 2022 17:10:21 GMT
expires: Wed, 08 Nov 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 79629
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 4dc4a177d25f666a9ba1cf6225354467
8975f2e5cc9cadc4a1e369da45471eb1f0830c5e
6c9e54a13abc265cac7bdee51c6fa49e5e7590fec7a1cc99096c384dabef31be
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 15:17:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-template-builder/assets/fonts/entypo-fontello.woff2
192.124.249.70200 OK 39 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/themes/enfold/config-templatebuilder/avia-template-builder/assets/fonts/entypo-fontello.woff2
IP 192.124.249.70:0
File type Web Open Font Format (Version 2), TrueType, length 39220, version 1.0\012- data
Hash 88bd94b6a31a73b5ee2b4a9799c7285e
59b220f616928d7baef57b681093c55c3f787abd
7f260ff280b2e54e84e6f9c2790da49cc9abadc457b77d1df4dea121a8c8ab6e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/enfold/config-templatebuilder/avia-template-builder/assets/fonts/entypo-fontello.woff2 HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:31 GMT
content-type: font/woff2
content-length: 39220
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:56 GMT
etag: "3a2138c-9934-5e9eca8bc0000"
accept-ranges: bytes
vary: Accept-Encoding
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1b6e55fb9c16b8ec503ca6fb935f650f
1e392159765235158a218248677dc21c46bc4f42
89cc50a881ff8fae94b7bfa2732d133df59bae06680f6d2147281ee7bf8ab00b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89CC50A881FF8FAE94B7BFA2732D133DF59BAE06680F6D2147281EE7BF8AB00B"
Last-Modified: Tue, 08 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12020
Expires: Wed, 09 Nov 2022 18:37:50 GMT
Date: Wed, 09 Nov 2022 15:17:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1b6e55fb9c16b8ec503ca6fb935f650f
1e392159765235158a218248677dc21c46bc4f42
89cc50a881ff8fae94b7bfa2732d133df59bae06680f6d2147281ee7bf8ab00b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89CC50A881FF8FAE94B7BFA2732D133DF59BAE06680F6D2147281EE7BF8AB00B"
Last-Modified: Tue, 08 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12020
Expires: Wed, 09 Nov 2022 18:37:50 GMT
Date: Wed, 09 Nov 2022 15:17:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1b6e55fb9c16b8ec503ca6fb935f650f
1e392159765235158a218248677dc21c46bc4f42
89cc50a881ff8fae94b7bfa2732d133df59bae06680f6d2147281ee7bf8ab00b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89CC50A881FF8FAE94B7BFA2732D133DF59BAE06680F6D2147281EE7BF8AB00B"
Last-Modified: Tue, 08 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12020
Expires: Wed, 09 Nov 2022 18:37:50 GMT
Date: Wed, 09 Nov 2022 15:17:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1b6e55fb9c16b8ec503ca6fb935f650f
1e392159765235158a218248677dc21c46bc4f42
89cc50a881ff8fae94b7bfa2732d133df59bae06680f6d2147281ee7bf8ab00b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89CC50A881FF8FAE94B7BFA2732D133DF59BAE06680F6D2147281EE7BF8AB00B"
Last-Modified: Tue, 08 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12020
Expires: Wed, 09 Nov 2022 18:37:50 GMT
Date: Wed, 09 Nov 2022 15:17:30 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8786d2a2-d21a-4bb6-916d-7fce27ea08f2.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8786d2a2-d21a-4bb6-916d-7fce27ea08f2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 39446652ee66d20bd73df20f1a29589c
349ea78f3ad0f2f7376ba22e417226b2e06806d7
655a00944a319ba167e99b43055044cb18bc48d53605ff0d1b6c8b1ba8ee8237
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8786d2a2-d21a-4bb6-916d-7fce27ea08f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4737
x-amzn-requestid: 3e45e647-43a6-43bf-b011-366e3899b400
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bQAvEEr7IAMF_JQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63697b2d-76f4e8dc345994823ef9ce4d;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 21:39:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: tgUANh-QVW5J4xKViYY6NCQYFLJBjXYoEupDzvKa2UJ9TZ-sBclIPQ==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Tue, 08 Nov 2022 21:56:11 GMT
age: 62479
etag: "349ea78f3ad0f2f7376ba22e417226b2e06806d7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e2853cc6ec6223160471401e6871f4b
f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c
bf4b9145ea043d87a30fd3aeeae21a1a0aa27004cd2467e7aa843bc894ae1f60
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10462
x-amzn-requestid: 43480a38-fd89-4c47-b8c4-e6ba90b1321c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aMF6oEz_oAMF8Hg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634e5043-6617fd2e59cab00135301cdd;Sampled=0
x-amzn-remapped-date: Tue, 18 Oct 2022 07:05:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: C7GYpM3mXSf0hVyGO9Zzlxa3IHXHdyPlXsvr3i0GoQnaPZF6lO-OwA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 09:08:58 GMT
age: 22112
etag: "f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b197dc2-1415-4c19-8d36-1fa334168ba5.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b197dc2-1415-4c19-8d36-1fa334168ba5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 29429581f8dc762c69c5916009f70080
9265cae98aa663a5498925b70079abdd8e7031fd
c3deee74c80905a1e92b84868b9987cb30ad7a210dca066b97c325cc2c83872e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b197dc2-1415-4c19-8d36-1fa334168ba5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9313
x-amzn-requestid: be3f6b0f-cf61-4bec-ad1a-87abdbc45d73
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bTTTwF5AoAMFZAw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636acc17-5ca45b5b1065a4ea492f2ac6;Sampled=0
x-amzn-remapped-date: Tue, 08 Nov 2022 21:37:27 GMT
x-amz-cf-pop: SEA19-C3, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 9lVY7YgQQ0FAP3ItgCSWePY0Msd4RIyBz4eNPc-K51BtnWUjOObv6g==
via: 1.1 31dfa94142c6eaf975b0e5454c00340a.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 08 Nov 2022 21:43:43 GMT
etag: "9265cae98aa663a5498925b70079abdd8e7031fd"
content-type: image/jpeg
age: 63227
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F84109408-bbc7-4166-8974-df4b4fbbf1c1.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F84109408-bbc7-4166-8974-df4b4fbbf1c1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 11ef1d34ac2d42662fe53fc58c882fdf
16f1e048895ed1ee0c0c071e3939e741113e4969
61c42bae12654cf9bd1e7ca0f616164ff4139dc470fb6c1033176374444d6bda
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F84109408-bbc7-4166-8974-df4b4fbbf1c1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6272
x-amzn-requestid: 7287a2fe-853d-497f-a63e-1d521dd5326e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bG3dSGEIIAMF7Kg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6365d2bb-4c6803ad2d4ea46e68abd386;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 03:04:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: LDFjqTNKAf14q52-12SgdxG52y16CzeAmZFIIwxEnUFTYp8ZOTT4Ew==
via: 1.1 6a6653dfb47ccc5082f2a5b9d0d168ce.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 08 Nov 2022 18:20:46 GMT
age: 75404
etag: "16f1e048895ed1ee0c0c071e3939e741113e4969"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F609c6c88-4535-488a-8bf4-de0e93b9ae31.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F609c6c88-4535-488a-8bf4-de0e93b9ae31.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 86ec3f22045de1a100eccf27d91593ae
e26769d82108f89057b05096061f1276d34e223a
b863d19ab12945922b4d014c517f5ffe349cefe2bbe1c2f16661371f22378cbd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F609c6c88-4535-488a-8bf4-de0e93b9ae31.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10822
x-amzn-requestid: 1b1e2dfc-4096-45cf-adb3-58f0b1d614bc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bEAXHFhroAMF_Zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364adc6-7b94977b4143970a48bc1857;Sampled=0
x-amzn-remapped-date: Fri, 04 Nov 2022 06:14:30 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: vzUPLMO4CDywKUQvQ9gbltVLYlNher7ZTXYC9A00LfwycdEmG7m9wg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 04:21:46 GMT
age: 39344
etag: "e26769d82108f89057b05096061f1276d34e223a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff66bafec-6420-4aea-8b22-96b8fe0d292b.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff66bafec-6420-4aea-8b22-96b8fe0d292b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c69b19d2273c3ade32fd0797921c0459
8cafda5659f5b36c855a2bbcaeb03aa715ddeebd
d78b92e1175207b1179c85f9490f937e1647aeae3fe95cf8b3dc336db232945e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff66bafec-6420-4aea-8b22-96b8fe0d292b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8154
x-amzn-requestid: 1d9d6e13-69a4-473d-af4b-ef3d4382f3ca
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bTTU2EyZoAMF94w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636acc1e-0dec203434f42df01d9a1182;Sampled=0
x-amzn-remapped-date: Tue, 08 Nov 2022 21:37:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: GWFybdPyZxzujAi9urpfQ_1HZCiJpmxpzg6j7a2gwdZ5E89xfc1MXg==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 08 Nov 2022 21:54:55 GMT
age: 62555
etag: "8cafda5659f5b36c855a2bbcaeb03aa715ddeebd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/uploads/2017/06/IMG_0095.jpg
192.124.249.70200 OK 166 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/uploads/2017/06/IMG_0095.jpg
IP 192.124.249.70:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=10, manufacturer=Apple, model=iPhone 7, orientation=upper-left, xresolution=150, yresolution=158, resolutionunit=2, software=10.2.1, datetime=2017:04:14 12:45:36, GPS-Data], baseline, precision 8, 640x480, components 3\012- data
Size 166 kB (165899 bytes)
Hash af58a18356d444fa52abd926c1756e27
cb5ad940bcdede01c697403195fa184b1af08bce
6158e106ba885dd1d69fdbf52829e2c4777281018b4c1ecccc8c6000e1e77a40
GET /wp-content/uploads/2017/06/IMG_0095.jpg HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:31 GMT
content-type: image/jpeg
content-length: 165899
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:12 GMT
etag: "3ba17bf-2880b-5e9eca61c9d00"
accept-ranges: bytes
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/uploads/2017/06/20170505_192830-1500x844.jpg
192.124.249.70200 OK 238 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/uploads/2017/06/20170505_192830-1500x844.jpg
IP 192.124.249.70:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=2988, manufacturer=samsung, model=SM-N910V, orientation=upper-left, xresolution=188, yresolution=196, resolutionunit=2, software=N910VVRS2CQD1, datetime=2017:05:05 19:28:30, GPS-Data, width=5312], baseline, precision 8, 1500x844, components 3\012- data
Size 238 kB (237938 bytes)
Hash 5954c50d5227615c897be3c125dac341
8a58fed7c0f8df4af43002476e75d1b6c1e8b19c
e88ce535c382faf7ff060f703dbda459ea9688d5da439c8d4676c6053dab0844
GET /wp-content/uploads/2017/06/20170505_192830-1500x844.jpg HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:32 GMT
content-type: image/jpeg
content-length: 237938
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:06 GMT
etag: "3ba1742-3a172-5e9eca5c10f80"
accept-ranges: bytes
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/uploads/2014/09/jsgoodfood.jpg
192.124.249.70200 OK 45 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/uploads/2014/09/jsgoodfood.jpg
IP 192.124.249.70:0
File type JPEG image data, progressive, precision 8, 640x480, components 3\012- data
Hash 714ec046edd0e80786ae028b7179fd43
1258b33f3dc4472c0e383c0f26a7d4e2fd694c26
8d7f0e2a9bf73b57d892164ce2a7cfd2fa955b0dab56096b1be536efce98d2a4
GET /wp-content/uploads/2014/09/jsgoodfood.jpg HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:32 GMT
content-type: image/jpeg
content-length: 45230
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:24 GMT
etag: "3a20db3-b0ae-5e9eca6d3b800"
accept-ranges: bytes
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/uploads/2017/06/IMG_0128.jpg
192.124.249.70200 OK 117 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/uploads/2017/06/IMG_0128.jpg
IP 192.124.249.70:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=10, manufacturer=Apple, model=iPhone 7, orientation=upper-left, xresolution=150, yresolution=158, resolutionunit=2, software=10.3.1, datetime=2017:04:27 16:12:02, GPS-Data], baseline, precision 8, 640x480, components 3\012- data
Size 117 kB (116794 bytes)
Hash 6df24c1aead2cd15f7a8744f30250122
08c4298afdeb92fa63fc24fde62cbf148b06c66f
00468d94b0f2907d2cd2a4691fee85453299cb2d280d5f418174add087e4b8a8
GET /wp-content/uploads/2017/06/IMG_0128.jpg HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:32 GMT
content-type: image/jpeg
content-length: 116794
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:38:06 GMT
etag: "3ba1795-1c83a-5e9eca5c10f80"
accept-ranges: bytes
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/uploads/2018/06/JST_vid_02.png
192.124.249.70200 OK 340 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/uploads/2018/06/JST_vid_02.png
IP 192.124.249.70:0
File type PNG image data, 640 x 480, 8-bit/color RGB, non-interlaced\012- data
Size 340 kB (339944 bytes)
Hash 58ced96a0e3dcc9fe03802234f038648
bcf5d8382073d49c88f06ca5dce189eba80ca8da
134e416ca8319c718cd484d2d8e96ee222b3ddbb1a904a8754c47f5ea24c8d3b
GET /wp-content/uploads/2018/06/JST_vid_02.png HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:32 GMT
content-type: image/png
content-length: 339944
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:37:54 GMT
etag: "3a61629-52fe8-5e9eca509f480"
accept-ranges: bytes
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.johnsparrtavern.com/wp-content/uploads/2018/06/JST_vid_07.png
192.124.249.70200 OK 412 kB URL HTTP/2 www.johnsparrtavern.com/wp-content/uploads/2018/06/JST_vid_07.png
IP 192.124.249.70:0
File type PNG image data, 640 x 480, 8-bit/color RGB, non-interlaced\012- data
Size 412 kB (412302 bytes)
Hash 8e707254200a97b0c9ee3e993fa64f38
11ce9a643cea89f3b416abaf177096bdd3f736cb
c57859c69badc457597735f1b81eb21430c033c06277b06baf72a990e6214ed3
GET /wp-content/uploads/2018/06/JST_vid_07.png HTTP/1.1
Host: www.johnsparrtavern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.johnsparrtavern.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 15:17:33 GMT
content-type: image/png
content-length: 412302
x-sucuri-id: 19020
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 30 Sep 2022 22:37:36 GMT
etag: "3a615e3-64a8e-5e9eca3f74c00"
accept-ranges: bytes
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ae49d16-09cf-4def-b9d2-7463e61acc35.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ae49d16-09cf-4def-b9d2-7463e61acc35.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ee8f7d6daf8c20aeb6b71bc18225661f
17d67f22e69197701dd8e77aed0907007e444f26
3c42a717dab0144a05c23465af0bed25b76de574b2d8e62339ad2a2f2c41febd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ae49d16-09cf-4def-b9d2-7463e61acc35.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 14211
x-amzn-requestid: fd1004b0-95ea-4d28-9498-4882b4d7043e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bNeREHvnIAMFlFA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63687739-4abe287a66322b5f6422c58f;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 03:10:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: j027aaw3nm35HERuz2PJXxUJQGsb57_Pf3pJHnP28RzX-k5_CccoKA==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 04:22:01 GMT
age: 39336
etag: "17d67f22e69197701dd8e77aed0907007e444f26"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2