Overview

URL colours-of.com/
IP188.212.35.248
ASNNetConnex Broadband Ltd.
Location United Kingdom
Report completed2022-09-26 23:30:02 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-26 2 colours-of.com/ Phishing
2022-09-26 2 colours-of.com/ Phishing
2022-09-26 2 colours-of.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6 Phishing
2022-09-26 2 colours-of.com/wp-content/themes/salient/css/style.css?ver=13.0.6 Phishing
2022-09-26 2 colours-of.com/wp-content/themes/salient/css/ascend.css?ver=13.0.6 Phishing
2022-09-26 2 colours-of.com/wp-content/themes/salient/css/fonts/icomoon.woff?v=1.1 Phishing
2022-09-26 2 colours-of.com/wp-content/themes/salient/css/fonts/fontawesome-webfont.woff (...) Phishing
2022-09-26 2 colours-of.com/wp-content/themes/salient/css/fonts/iconsmind.ttf?qnd6ae Phishing
2022-09-26 2 colours-of.com/wp-content/themes/salient/js/third-party/jquery.easing.js?ver=1.3 Phishing
2022-09-26 2 colours-of.com/wp-content/themes/salient/js/third-party/hoverintent.js?ver=1.9 Phishing
2022-09-26 2 colours-of.com/wp-content/plugins/js_composer_salient/assets/js/dist/js_com (...) Phishing
2022-09-26 2 colours-of.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 Phishing
2022-09-26 2 colours-of.com/wp-content/plugins/salient-social/js/salient-social.js?ver=1.0 Phishing
2022-09-26 2 colours-of.com/wp-content/themes/salient/js/third-party/jquery.mousewheel.j (...) Phishing
2022-09-26 2 colours-of.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 Phishing
2022-09-26 2 colours-of.com/wp-content/themes/salient/css/iconsmind.css?ver=12.5 Phishing
2022-09-26 2 colours-of.com/wp-content/themes/salient/js/init.js?ver=13.0.6 Phishing
2022-09-26 2 colours-of.com/wp-content/plugins/salient-core/js/third-party/touchswipe.mi (...) Phishing
2022-09-26 2 colours-of.com/wp-content/themes/salient/css/off-canvas/core.css?ver=13.0.6 Phishing
2022-09-26 2 colours-of.com/wp-content/themes/salient/js/third-party/magnific.js?ver=7.0.1 Phishing
2022-09-26 2 colours-of.com/wp-content/plugins/js_composer_salient/assets/css/js_compose (...) Phishing
2022-09-26 2 colours-of.com/wp-content/themes/salient/css/grid-system-legacy.css?ver=13.0.6 Phishing
2022-09-26 2 colours-of.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 Phishing
2022-09-26 2 colours-of.com/wp-content/plugins/translatepress-multilingual/assets/css/tr (...) Phishing
2022-09-26 2 colours-of.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6 Phishing
2022-09-26 2 colours-of.com/wp-content/themes/salient/js/priority.js?ver=13.0.6 Phishing
2022-09-26 2 colours-of.com/wp-content/themes/salient/js/third-party/transit.js?ver=0.9.9 Phishing
2022-09-26 2 colours-of.com/wp-content/plugins/wpforms-lite/assets/css/wpforms-full.min. (...) Phishing
2022-09-26 2 colours-of.com/wp-content/themes/salient/css/font-awesome-legacy.min.css?ve (...) Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (13)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS fonts.googleapis.com (2) 8877 2013-06-10 20:14:26 UTC 2022-09-26 16:59:48 UTC 142.250.74.10
mnemonic passive DNS fonts.gstatic.com (3) 0 2014-08-29 13:43:22 UTC 2022-09-26 04:26:58 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-26 04:28:07 UTC 34.117.237.239
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-26 22:11:41 UTC 93.184.220.29
mnemonic passive DNS img-getpocket.cdn.mozilla.net (7) 1631 2017-09-01 03:40:57 UTC 2022-09-26 12:15:18 UTC 34.120.237.76
mnemonic passive DNS colours-of.com (49) 0 2018-01-25 09:46:56 UTC 2022-09-26 13:00:03 UTC 188.212.35.248 Unknown ranking
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-26 05:45:55 UTC 52.13.69.101
mnemonic passive DNS ocsp.pki.goog (4) 175 2017-06-14 07:23:31 UTC 2022-09-26 04:27:13 UTC 142.250.74.3
mnemonic passive DNS www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-09-26 04:27:27 UTC 142.250.74.72
mnemonic passive DNS www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-09-26 19:55:31 UTC 142.250.74.174
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-28 17:26:30 UTC 2022-09-26 12:59:20 UTC 143.204.55.27
mnemonic passive DNS r3.o.lencr.org (5) 344 2020-12-02 08:52:13 UTC 2022-09-26 04:35:11 UTC 23.36.77.32
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-26 04:26:56 UTC 34.160.144.191


Recent reports on same IP/ASN/Domain/Screenshot

Last 1 reports on IP: 188.212.35.248

Date UQ / IDS / BL URL IP
2022-09-26 23:30:02 +0000
0 - 0 - 29 colours-of.com/ 188.212.35.248

Last 5 reports on ASN: NetConnex Broadband Ltd.

Date UQ / IDS / BL URL IP
2022-10-24 09:43:30 +0000
0 - 0 - 1 www.ppmcare.co.uk/wp-content/plugins/super-fo (...) 93.114.184.162
2022-10-22 09:48:01 +0000
0 - 0 - 1 mindweave.co.uk/wp-content/plugins/super-form (...) 188.212.34.158
2022-10-08 20:12:02 +0000
0 - 0 - 2 brighterhealthcare.co.uk/wp-content/plugins/s (...) 188.212.35.230
2022-10-06 13:19:19 +0000
0 - 0 - 2 brighterhealthcare.co.uk/wp-content/plugins/s (...) 188.212.35.230
2022-09-27 21:39:13 +0000
0 - 0 - 2 brighterhealthcare.co.uk/wp-content/plugins/s (...) 188.212.35.230

Last 1 reports on domain: colours-of.com

Date UQ / IDS / BL URL IP
2022-09-26 23:30:02 +0000
0 - 0 - 29 colours-of.com/ 188.212.35.248

No other reports with similar screenshot



JavaScript

Executed Scripts (29)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (78)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 26 Sep 2022 23:15:28 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: E-BhltCHb2VbFUp6rQxUA8XlpR-rZfyJgpBVVopINM8i0uL3Clz9Wg==
Age: 862


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    1b3053fa528e28810f8a2cc9284cc921
Sha1:   cca9eb471d941881a6b9a1793aecb6c281908f6a
Sha256: a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7892
Expires: Tue, 27 Sep 2022 01:41:23 GMT
Date: Mon, 26 Sep 2022 23:29:51 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F35BB3A8C877DD8D3C5920F3C917722F12B157AFF398E2EC30FAB51FA6CAA2EF"
Last-Modified: Mon, 26 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3777
Expires: Tue, 27 Sep 2022 00:32:48 GMT
Date: Mon, 26 Sep 2022 23:29:51 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: OJejOzXwaZPEE6TBFv7I1Kt8R04I+7EwfPJ3+XSZSXOvQoJQBOV/RDRb2n+Eal4VI3X2vJbkboZOBTFMTNOSEA==
x-amz-request-id: KP7CG275NFK9XVAY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 26 Sep 2022 22:46:32 GMT
age: 2599
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:51 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Mon, 26 Sep 2022 23:10:46 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Mon, 26 Sep 2022 23:54:13 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ixkH0-WS4ubE3UyAJISPusSSGLel9CWkoUJzJMPYtrn161ES5i_lbw==
Age: 1145


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2996
Cache-Control: 'max-age=158059'
Date: Mon, 26 Sep 2022 23:29:51 GMT
Last-Modified: Mon, 26 Sep 2022 22:39:55 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         188.212.35.248
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Mon, 26 Sep 2022 23:29:51 GMT
Content-Length: 0
Connection: keep-alive
X-Redirect-By: WordPress
Set-Cookie: super_session=ce67217d9d302913fa12e6990fa04588%7C%7C1664236791%7C%7C1664236431; expires=Mon, 26-Sep-2022 23:59:51 GMT; Max-Age=1800; path=/
Location: https://colours-of.com/
X-Powered-By: NIMHOST
X-Served-By: 6042d9f78ec71b976c4ef57f8c975290


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: bP1ZyUxDL5DXXWO0ndGW8w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.13.69.101
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +i7Ndd/6V8+5ylhVuvWItUWeWWs=

                                        
                                            GET / HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:52 GMT
content-length: 14947
link: <https://colours-of.com/wp-json/>; rel="https://api.w.org/", <https://colours-of.com/wp-json/wp/v2/pages/15>; rel="alternate"; type="application/json", <https://colours-of.com/>; rel=shortlink
set-cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432; expires=Mon, 26-Sep-2022 23:59:52 GMT; Max-Age=1800; path=/
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Size:   14947
Md5:    74cef362658558354b3bc40f9600e5a1
Sha1:   f46cd1a79c814cc19a5c0ece4ac3204a99552d79
Sha256: 79172063f9f001fa0079a2f05690958bc8340a76b3d83e62571fe19e6d6624ac

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
last-modified: Thu, 23 Jun 2022 12:52:44 GMT
vary: Accept-Encoding
etag: W/"62b4621c-aab"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1443
Md5:    9267c925378e2d18150fd7c4246452b1
Sha1:   98425bb2f1c42f86ddbb11e20a52e3dcc35d5361
Sha256: be1362ffd0751abb76f6dcc126a78950c6145967fce7d87284cccd3fe742b23f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 23:29:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 23:29:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /gtag/js?id=UA-149834147-1 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 26 Sep 2022 23:29:53 GMT
expires: Mon, 26 Sep 2022 23:29:53 GMT
cache-control: private, max-age=900
last-modified: Mon, 26 Sep 2022 22:12:40 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42205
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1720)
Size:   42205
Md5:    c23822c1c55a0bc821e1da49fe2806b5
Sha1:   02a12afa9d892bd0151941a1cb32b8c8c500c488
Sha256: 6492449a73945acf73974411d6d77749bc6880ce1018ee20c24b9354fd9c93a0
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 23:29:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 23:29:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/translatepress-multilingual/assets/images/flags/en_GB.png HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
content-length: 600
last-modified: Thu, 23 Jun 2022 12:52:59 GMT
etag: "62b4622b-258"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 18 x 12, 8-bit/color RGB, non-interlaced\012- data
Size:   600
Md5:    2878f64a0217a154e531853f6a822c65
Sha1:   ac7a53e9f53b9de8a344c38222e217d50d559b83
Sha256: 3f47c75fa68e49b1cdca50c61e9cd6603b57c521e5e6809df59a4a15e291a4ef
                                        
                                            GET /wp-content/plugins/translatepress-multilingual/assets/images/flags/nl_NL.png HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
content-length: 282
last-modified: Thu, 23 Jun 2022 12:52:59 GMT
etag: "62b4622b-11a"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 18 x 12, 8-bit/color RGB, non-interlaced\012- data
Size:   282
Md5:    94bdc9bc61af4de68ee3bcd24fb8962b
Sha1:   e41e8463a412b26d841f39773cafc15dd7222c4b
Sha256: 42495d821ccd0890cf42f1b7ff365069dfbbf2db6a7cd2f58cbff0724153c1a0
                                        
                                            GET /wp-content/uploads/2018/09/Eindontwerp-Colours-Transparant-1.png HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
content-length: 133567
last-modified: Mon, 10 Sep 2018 13:22:35 GMT
etag: "5b96701b-209bf"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1951 x 774, 8-bit colormap, interlaced\012- data
Size:   133567
Md5:    044956f7fa401a0dd36e7e2e8ce88a34
Sha1:   628026f55866b61a57250c89dc54db9db3c10f70
Sha256: 648c1db3747a6460c959dbb46402d83b9c57cf6635e8f025825b1180aff660a9
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10354
Expires: Tue, 27 Sep 2022 02:22:27 GMT
Date: Mon, 26 Sep 2022 23:29:53 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10354
Expires: Tue, 27 Sep 2022 02:22:27 GMT
Date: Mon, 26 Sep 2022 23:29:53 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10354
Expires: Tue, 27 Sep 2022 02:22:27 GMT
Date: Mon, 26 Sep 2022 23:29:53 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff092f2d0-abd6-40d2-ad33-9fb0ded1ec0a.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11881
x-amzn-requestid: 4562e550-9c0f-407b-be2a-3c5d8901d444
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y2apSEPuIAMF5TA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632c0b08-5c5f052f146d25a7190412d1;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 07:13:12 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EAiLlHN2h6EPX0idrlQG4TIyGBMt_In0_Tpy79foal99j4xoRasO-A==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 22:23:49 GMT
age: 3964
etag: "3b660de9902fbfcf2efb477f40480b08545ebc5f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11881
Md5:    91d97447a6a35813e57d942f685544c4
Sha1:   3b660de9902fbfcf2efb477f40480b08545ebc5f
Sha256: 08c1ea19c4918273da12c9a2e962edf4463c486a30f60c8a279a45e5edcf972a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F35b718e0-3d37-4447-a38f-12fa37aeae57.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6487
x-amzn-requestid: cd11b94b-24be-4e6d-bce3-a480b2c1cc23
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZDWDQEYAIAMFetw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633136e1-5fcb76b5408fdfa20ec55dd8;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 05:21:37 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: GcEH02ZlJM-8wUvNf7K7rK7f1cs6_m4i9UYUNxXUGzcDTEz74JH3cA==
via: 1.1 79880188a81becf1687ba18c0e064230.cloudfront.net (CloudFront), 1.1 ddaf46a95abcfc80e8eae76235e2127c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:59:28 GMT
age: 5425
etag: "edff303440c5972381295b4b2602bd3f77f6702a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6487
Md5:    e88b78ede0e4583585d6bb805fb39470
Sha1:   edff303440c5972381295b4b2602bd3f77f6702a
Sha256: ce55a1ff5c71ec43884b74a08cd32ef75cb0632a91f3fe8b150f5ead499375a4
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a2c481a-abce-43aa-89a3-95cd7559102c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6518
x-amzn-requestid: d4a26d13-5318-4491-8aec-4c5c738d3254
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y_HlsHzmoAMFl3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f8624-1baed38e2c89933e66870f2f;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 22:35:16 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: FoSurbU0rYpw1-0snI2b3EC_t2HkfMZpoYnKX6KqFosBv23z4BJCLg==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 13:32:27 GMT
age: 35846
etag: "1b5f002272083d5e19b5bd18d503f49635b771e5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6518
Md5:    b1f571f5fdf5233ffa70132a4504d4fe
Sha1:   1b5f002272083d5e19b5bd18d503f49635b771e5
Sha256: 4563ffe63e1d043c159648a72d9f4c59a3b0fe40379254848a52c11a4f1a6511
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3823d156-2245-40a3-a9a3-7cb4a5c4a14d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7716
x-amzn-requestid: 1cf0b1c7-4611-40bf-b72a-412ebd03ef79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y2KguFL7IAMFzKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632bf137-2b7c15d3071e0266586fd17d;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 05:23:03 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5XZZKUgjmv2njI3xAPo57u0fBKEGqPmMUcWxHYzoSAaVjIIA2Oi0Aw==
via: 1.1 d042f60a962591f741406f28a8170c5a.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 22:03:16 GMT
age: 5197
etag: "2b53c4f836970501a682dae07235215c487d35cc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7716
Md5:    8ef8d9284ebd57a7cf76ceb762291356
Sha1:   2b53c4f836970501a682dae07235215c487d35cc
Sha256: 3529ab97ab2214ee9c67ee234beac96cd40f0bd6092b92b71c60956ed5710b41
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06b0646c-a8d3-4b51-ba84-a3c3dff2883c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7128
x-amzn-requestid: 5806782b-498e-427b-be73-a94695e3cacf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlPfFn4IAMFwMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321bfc-07a420d631e463286c1dafa0;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:39:08 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: dVs6mb-XGvvd4DXu8yFwO11iheR3QU3O3jFpxjcHZnWCc6jlXpx0Rg==
via: 1.1 6c90b631453c435bd0022caa657b67e8.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:51:54 GMT
age: 5879
etag: "4dbd2da7f7c45a97e3f6f6544ed428e892227cc3"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7128
Md5:    4197a8a505b360b0c43142faf8cb7f48
Sha1:   4dbd2da7f7c45a97e3f6f6544ed428e892227cc3
Sha256: 434039a91ec37c8ff827c78f7613aa4f6416ded182b01140048a52654a2de4ce
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F14ab4d12-a7de-4708-a657-df4600198640.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8255
x-amzn-requestid: 3bf29c4a-406a-4645-ad18-44cd6f05d457
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4VnFEV-IAMFQMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632ccfc6-3eaa337d1e1c1b6d5e951419;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:12:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qkOlqM6tJ90H9572YLE0J-s79edBSceM5hLbJtyyuH86xdW8juoktA==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 13:28:31 GMT
age: 36082
etag: "04a0665f771562c3e56ac3542abe5bd3c4c1a6b5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8255
Md5:    fa70ece15044b7318cb11ae5e37a64e7
Sha1:   04a0665f771562c3e56ac3542abe5bd3c4c1a6b5
Sha256: 8c974283b2ba0058114404af3e4818daa8cc56f270cb8a46f5f2f54de9d2f0e1
                                        
                                            GET /css?family=Open+Sans%3A300%2C400%2C600%2C700&subset=latin%2Clatin-ext HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 26 Sep 2022 23:29:53 GMT
date: Mon, 26 Sep 2022 23:29:53 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1199
Md5:    602c321b15eb28dbf964648b798d3827
Sha1:   a525c0c459566f195dfbc6d1f524eb14022ff0cc
Sha256: a76244548b61ea818a51de8129d04074a59dcbd2d9bd9ead36e538f920cfa9db
                                        
                                            GET /wp-content/themes/salient/css/style.css?ver=13.0.6 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
last-modified: Tue, 31 Aug 2021 16:30:05 GMT
vary: Accept-Encoding
etag: W/"612e590d-4b455"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   49851
Md5:    1b43601e4776e12740c357b1929d6edc
Sha1:   35692bb72a33cfe0bc3bcfb7586e79dca3c702ee
Sha256: f535b6414cb6c560ea80aca7d9af03cc7425c39c274363c69b5fa119ac46d921

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/salient/css/ascend.css?ver=13.0.6 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
last-modified: Tue, 31 Aug 2021 16:30:04 GMT
vary: Accept-Encoding
etag: W/"612e590c-efd2"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   8482
Md5:    122153269af26c1115ed2376ec0331ec
Sha1:   14bf595d4756ce26bfb24cbc451dd09229ecf537
Sha256: 48c592d557b658addc5e7901f94ada063dcf571dfd0814dc2f273706c0ebe32e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /s/actor/v17/wEOzEBbCkc5cO0ejVSk.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://colours-of.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 22:39:14 GMT
expires: Wed, 20 Sep 2023 22:39:14 GMT
cache-control: public, max-age=31536000
age: 521439
last-modified: Tue, 19 Apr 2022 19:22:29 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 21976, version 1.0\012- data
Size:   21976
Md5:    7ee7f470152787952958d6adfa07b2ac
Sha1:   14a09075b2cbec9ff65302de9d634f9011f70e53
Sha256: b31aaefa522d67846638fa4181bbb22375bd0cb1beb37d514609c3821953161a
                                        
                                            GET /wp-content/uploads/2019/01/bg5.jpg HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
content-length: 580407
last-modified: Mon, 21 Jan 2019 14:18:45 GMT
etag: "5c45d4c5-8db37"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop Elements 10.0 Macintosh, datetime=2019:01:21 14:16:48], progressive, precision 8, 1170x658, components 3\012- data
Size:   580407
Md5:    2154dcda4a5605c58ba2dcbf2ed20ef4
Sha1:   a59036913a12b28ba2413ca69ca2352a734ef2d7
Sha256: 0c4454b6e0d7a8d71619126bb0c79bf55fbdcab673ddc2585ce60c8cd1412b60
                                        
                                            GET /wp-content/themes/salient/css/plugins/magnific.css?ver=8.6.0 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
last-modified: Tue, 31 Aug 2021 16:30:05 GMT
vary: Accept-Encoding
etag: W/"612e590d-2add"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   2962
Md5:    9c8f2aa33add132c9f34d24634963680
Sha1:   d6c7fc311cbac1ad73e543b3847319d2f8c00045
Sha256: e5d58c8a6efc470f2c5df151af108bc12cdfefea43f538206b4f3cf011be993c
                                        
                                            GET /s/sourcecodepro/v22/HI_SiYsKILxRpg3hIP6sJ7fM7PqlPevW.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://colours-of.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19680
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 00:13:52 GMT
expires: Thu, 21 Sep 2023 00:13:52 GMT
cache-control: public, max-age=31536000
age: 515761
last-modified: Tue, 23 Aug 2022 18:25:36 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 19680, version 1.0\012- data
Size:   19680
Md5:    0628e64d7cdd00a4c6c41b7554ecf8b1
Sha1:   0dee04b143193572e8421021f5fe03b006fa4530
Sha256: 1c2e64053b56afdcc933af75555920cf89c08b8ca04961f4815abdbd0bdcdbc3
                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://colours-of.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 18:14:12 GMT
expires: Mon, 25 Sep 2023 18:14:12 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
age: 105341
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Size:   15920
Md5:    3a44e06eb954b96aa043227f3534189d
Sha1:   23cef6993ddb2b2979e8e7647fc3763694e2ba7d
Sha256: b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
                                        
                                            GET /wp-content/themes/salient/css/fonts/icomoon.woff?v=1.1 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://colours-of.com/wp-content/themes/salient/css/style.css?ver=13.0.6
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: application/font-woff
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
content-length: 20052
last-modified: Tue, 31 Aug 2021 16:30:05 GMT
etag: "612e590d-4e54"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 20052, version 0.0\012- data
Size:   20052
Md5:    19a156a507cc772a449104778b66e649
Sha1:   7b4fdf314f51eb0767849349872c3e0097e69a01
Sha256: 2af6ccbee0a1b6080db4aa581b1cec2d6d41d53daeee65280afc061ba77009e7

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.6.0 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
last-modified: Thu, 23 Jun 2022 12:52:47 GMT
vary: Accept-Encoding
etag: W/"62b4621f-2e7a"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   48102
Md5:    a57f56c110225b075ed31314468e0207
Sha1:   f640937c6082fca9634e0c54f61d55ef28ae3606
Sha256: 3ffd733057b13008df1964b6a363a1c520c34796bd1c1e294f8d110852674c95
                                        
                                            GET /wp-content/themes/salient/js/third-party/superfish.js?ver=1.5.8 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
last-modified: Tue, 31 Aug 2021 16:30:04 GMT
vary: Accept-Encoding
etag: W/"612e590c-2760"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   3519
Md5:    420e929e06266b784b64c33b29478700
Sha1:   27077ea6666af839bfa05fc097ae9e1752347653
Sha256: a813553830b3ecd4adb886441a0836a7e047b52e8cd872c5c7d0db5fa9cc13d4
                                        
                                            GET /wp-content/uploads/2018/10/visit-the-arqueological-site-with-an-arqueologist.png HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
content-length: 1150073
last-modified: Mon, 15 Oct 2018 14:56:54 GMT
etag: "5bc4aab6-118c79"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 847 x 581, 8-bit/color RGBA, non-interlaced\012- data
Size:   1150073
Md5:    1dbe62a6f2c3e89cb1e3f8a1a9021105
Sha1:   be9f21cee0e99136331f151ef08c8903a45ee682
Sha256: c03dd24703e6cc619b33122f13533bb7fe596a14db7c169b549b57278e8ad2f7
                                        
                                            GET /wp-content/themes/salient/css/fonts/fontawesome-webfont.woff?v=4.2 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://colours-of.com/wp-content/themes/salient/css/font-awesome-legacy.min.css?ver=4.7.1
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: application/font-woff
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
content-length: 98024
last-modified: Tue, 31 Aug 2021 16:30:05 GMT
etag: "612e590d-17ee8"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 98024, version 4.7\012- data
Size:   98024
Md5:    fee66e712a8a08eef5805a46892932ad
Sha1:   28b782240b3e76db824e12c02754a9731a167527
Sha256: ba0c59deb5450f5cb41b3f93609ee2d0d995415877ddfa223e8a8a7533474f07

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2018/12/Screenshot-2018-12-07-at-14.25.28.png HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
content-length: 1140838
last-modified: Fri, 07 Dec 2018 14:25:43 GMT
etag: "5c0a82e7-116866"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 889 x 591, 8-bit/color RGBA, non-interlaced\012- data
Size:   1140838
Md5:    66977b6a96409159ae095d1cb2503b05
Sha1:   849abae95b07ee9b8b2dddec1c94695011d44425
Sha256: 10f56d2813a22d50acb8506bfc3311d6b3322d970bf26677c46e6d1558562d4f
                                        
                                            GET /wp-content/uploads/2018/11/IMG-20160104-WA0017.jpg HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
content-length: 220090
last-modified: Wed, 21 Nov 2018 17:44:52 GMT
etag: "5bf59994-35bba"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, resolution (DPI), density 150x150, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop Elements 10.0 Macintosh, datetime=2018:11:21 17:22:03], baseline, precision 8, 1200x900, components 3\012- data
Size:   220090
Md5:    f1a64a1f4f6129d513f5c8875b3cf298
Sha1:   caaa9b6e1ce50127130fb0d1f6c2e7d2a3fdb514
Sha256: dbfc625020d87cea3b89b07576f374829e1c592cd9b68b43a39ecc96b0c67de6
                                        
                                            GET /wp-content/themes/salient/css/fonts/iconsmind.ttf?qnd6ae HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/wp-content/themes/salient/css/iconsmind.css?ver=12.5
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: application/octet-stream
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
content-length: 927440
last-modified: Tue, 31 Aug 2021 16:30:05 GMT
etag: "612e590d-e26d0"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data
Size:   927440
Md5:    935d29b4c26546840dc6bfc2105498cf
Sha1:   f708d966a676e5e64b0a92f604e5de8f3c838e53
Sha256: ea2bad93d2add75de9adfafc8705c838f4e48c98d4ddf378cc44644b7fa8a182

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2018/09/Eindontwerp-Colours-Transparant.png HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
content-length: 28003
last-modified: Mon, 10 Sep 2018 13:09:44 GMT
etag: "5b966d18-6d63"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 314 x 320, 8-bit/color RGBA, interlaced\012- data
Size:   28003
Md5:    1f8359929d8e7b6227900f86152fb19b
Sha1:   998e166a415f0a00969992963dc502e9ae68656a
Sha256: 3f04352af562b5f40ab9523dbc628a16d6791db4cadb75ba90d0678305920e72
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Mon, 26 Sep 2022 22:41:09 GMT
expires: Tue, 27 Sep 2022 00:41:09 GMT
cache-control: public, max-age=7200
age: 2924
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   19826
Md5:    cae538dcce82598fbe43c0bf443e62dd
Sha1:   cc68ac6be9c5e0087a0000e5735b83270ace30f5
Sha256: 954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
                                        
                                            GET /wp-content/themes/salient/js/third-party/jquery.easing.js?ver=1.3 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
last-modified: Tue, 31 Aug 2021 16:30:04 GMT
vary: Accept-Encoding
etag: W/"612e590c-95b"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   815
Md5:    ba89c5880f3d0ddb78e847b04404f15f
Sha1:   1165972c8a05f83c69f0375dc436e8edc697cee3
Sha256: d3f20a975f18548e12aaceb52994ecc334855be8cf8cab39e3d8766e4349bd2f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe39ddaa9-a775-40b9-af3a-870507ff4d52.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5142
x-amzn-requestid: 5b86b092-ff60-476c-855a-d32d5f10f115
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yvz1CGInoAMF0Vw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63296686-79e9a4cb75289e1b0785d4fc;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 07:06:46 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5uKkOdNToKayXi19pWBWrEwBYSj3NzbjLeE1qjhr8qqCapb_pGRD8g==
via: 1.1 2a44ef7b9d28e74c78ffadeedcbb887c.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:50:22 GMT
age: 5978
etag: "8fbe2856a3e05ae7c45f4e35944d2835d47e4284"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5142
Md5:    e56f576ce4c320252cd028a38a1e4bde
Sha1:   8fbe2856a3e05ae7c45f4e35944d2835d47e4284
Sha256: dc5783e5d50e89d2b9c72dea55751a64157dbc9ec9be85383a6df10b5ec1a602
                                        
                                            GET /wp-content/themes/salient/js/third-party/hoverintent.js?ver=1.9 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
last-modified: Tue, 31 Aug 2021 16:30:04 GMT
vary: Accept-Encoding
etag: W/"612e590c-8ce"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/js_composer_salient/assets/js/dist/js_composer_front.min.js?ver=5.7 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
last-modified: Tue, 28 May 2019 08:09:46 GMT
vary: Accept-Encoding
etag: W/"5cececca-6a2c"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/salient-social/css/style.css?ver=1.0 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
last-modified: Tue, 28 May 2019 08:10:09 GMT
vary: Accept-Encoding
etag: W/"5cecece1-4abf"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
last-modified: Mon, 30 May 2022 15:28:38 GMT
vary: Accept-Encoding
etag: W/"6294e2a6-4ac6"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/salient-social/js/salient-social.js?ver=1.0 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
last-modified: Tue, 28 May 2019 08:10:09 GMT
vary: Accept-Encoding
etag: W/"5cecece1-2bf5"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/salient/js/third-party/jquery.mousewheel.js?ver=3.1.13 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
last-modified: Tue, 31 Aug 2021 16:30:04 GMT
vary: Accept-Encoding
etag: W/"612e590c-a9c"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
last-modified: Fri, 23 Apr 2021 10:14:42 GMT
vary: Accept-Encoding
etag: W/"60829e12-2bd8"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/salient/css/iconsmind.css?ver=12.5 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
last-modified: Tue, 31 Aug 2021 16:30:04 GMT
vary: Accept-Encoding
etag: W/"612e590c-16568"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
last-modified: Mon, 30 May 2022 15:28:38 GMT
vary: Accept-Encoding
etag: W/"6294e2a6-194b"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/salient-portfolio/js/third-party/imagesLoaded.min.js?ver=4.1.4 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
last-modified: Wed, 19 Jun 2019 12:22:20 GMT
vary: Accept-Encoding
etag: W/"5d0a28fc-15e0"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/themes/salient/js/init.js?ver=13.0.6 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
last-modified: Tue, 31 Aug 2021 16:30:04 GMT
vary: Accept-Encoding
etag: W/"612e590c-93449"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/salient-core/js/third-party/touchswipe.min.js?ver=1.0 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
last-modified: Wed, 19 Jun 2019 12:22:18 GMT
vary: Accept-Encoding
etag: W/"5d0a28fa-24a0"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/salient/css/off-canvas/core.css?ver=13.0.6 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
last-modified: Tue, 31 Aug 2021 16:30:05 GMT
vary: Accept-Encoding
etag: W/"612e590d-65f9"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/salient/js/third-party/magnific.js?ver=7.0.1 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
last-modified: Tue, 31 Aug 2021 16:30:04 GMT
vary: Accept-Encoding
etag: W/"612e590c-bdd0"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/js_composer_salient/assets/css/js_composer.min.css?ver=5.7 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
last-modified: Tue, 28 May 2019 08:09:46 GMT
vary: Accept-Encoding
etag: W/"5cececca-21fcf"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/salient/css/grid-system-legacy.css?ver=13.0.6 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
last-modified: Tue, 31 Aug 2021 16:30:04 GMT
vary: Accept-Encoding
etag: W/"612e590c-c0e7"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/salient/js/third-party/waypoints.js?ver=4.0.2 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
last-modified: Tue, 31 Aug 2021 16:30:04 GMT
vary: Accept-Encoding
etag: W/"612e590c-48bd"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
last-modified: Tue, 12 Jul 2022 21:39:41 GMT
vary: Accept-Encoding
etag: W/"62cdea1d-15b64"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/translatepress-multilingual/assets/css/trp-language-switcher.css?ver=2.2.9 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
last-modified: Thu, 23 Jun 2022 12:53:00 GMT
vary: Accept-Encoding
etag: W/"62b4622c-a6b"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/translatepress-multilingual/assets/css/trp-floater-language-switcher.css?ver=2.2.9 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
last-modified: Thu, 23 Jun 2022 12:53:00 GMT
vary: Accept-Encoding
etag: W/"62b4622c-131e"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/salient/css/salient-dynamic-styles.css?ver=67349 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
last-modified: Mon, 26 Sep 2022 23:29:52 GMT
vary: Accept-Encoding
etag: W/"633235f0-31a8a"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
last-modified: Tue, 31 Aug 2021 16:29:38 GMT
vary: Accept-Encoding
etag: W/"612e58f2-15db1"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
last-modified: Thu, 23 Jun 2022 12:52:44 GMT
vary: Accept-Encoding
etag: W/"62b4621c-553d"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/salient/js/priority.js?ver=13.0.6 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
last-modified: Tue, 31 Aug 2021 16:30:04 GMT
vary: Accept-Encoding
etag: W/"612e590c-1db1"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/salient/css/responsive.css?ver=13.0.6 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
last-modified: Tue, 31 Aug 2021 16:30:05 GMT
vary: Accept-Encoding
etag: W/"612e590d-109d7"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /css?family=Source+Code+Pro%3A600%2C400%7CRoboto%3A500%2C700%7CActor%3A400%7CAbel%3A400%7CDosis%3A300%2C700&subset=latin&ver=1623659928 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 26 Sep 2022 23:29:53 GMT
date: Mon, 26 Sep 2022 23:29:53 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/uploads/2018/09/white.png HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
content-length: 130916
last-modified: Wed, 05 Sep 2018 16:02:24 GMT
etag: "5b8ffe10-1ff64"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/themes/salient/js/third-party/transit.js?ver=0.9.9 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
last-modified: Tue, 31 Aug 2021 16:30:04 GMT
vary: Accept-Encoding
etag: W/"612e590c-1cff"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/wpforms-lite/assets/css/wpforms-full.min.css?ver=1.7.4.2 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
last-modified: Fri, 20 May 2022 10:30:38 GMT
vary: Accept-Encoding
etag: W/"62876dce-9be9"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/salient/css/font-awesome-legacy.min.css?ver=4.7.1 HTTP/1.1 
Host: colours-of.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://colours-of.com/
Cookie: super_session=dec76b3dbc32188dca568335ea6ae2ea%7C%7C1664236792%7C%7C1664236432
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         188.212.35.248
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Mon, 26 Sep 2022 23:29:53 GMT
last-modified: Tue, 31 Aug 2021 16:30:04 GMT
vary: Accept-Encoding
etag: W/"612e590c-c4a8"
content-security-policy: upgrade-insecure-requests
x-powered-by: NIMHOST
x-served-by: 6042d9f78ec71b976c4ef57f8c975290
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing