r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0c17f530e6db706fa5f9eb36a6cca4a4
446b60a425aae47b0adf5abd7e18e9f90f52c0bc
ccf1a90e945a18fb951654d29f128acdb3916d4dca315b0fad44ae8cc95be48e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CCF1A90E945A18FB951654D29F128ACDB3916D4DCA315B0FAD44AE8CC95BE48E"
Last-Modified: Mon, 03 Apr 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20055
Expires: Tue, 04 Apr 2023 14:03:28 GMT
Date: Tue, 04 Apr 2023 08:29:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1965860f5630f7dda817a236cb72ea24
beec8147d48911a007287014564ce544d296a5fd
00b4aafe530f6ceb3d6d4de42fffdaee0cb4e0a60834c85b1d21e42e5db2ef91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "00B4AAFE530F6CEB3D6D4DE42FFFDAEE0CB4E0A60834C85B1D21E42E5DB2EF91"
Last-Modified: Mon, 03 Apr 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11352
Expires: Tue, 04 Apr 2023 11:38:25 GMT
Date: Tue, 04 Apr 2023 08:29:13 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 7f03faaba3392caae6dae54467bfdf6d
57ea1f14e8bfbcca8190c706d708c9fda12442c1
02ac551ba61fcbc6b04f244df065948b181a8a258db5c2e197aae66fdfcea8ee
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 04 Apr 2023 08:16:37 GMT
content-type: application/json
age: 756
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 903ed2d58f1f33d069b70c4b53f1cb1f
0ef89cd6eb79a2ddd74434f9233cf486fffc1142
d8c984b50f04fcdb1ebc99d982502d85193302c85239ee7497666247edfc0061
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8C984B50F04FCDB1EBC99D982502D85193302C85239EE7497666247EDFC0061"
Last-Modified: Sun, 02 Apr 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15086
Expires: Tue, 04 Apr 2023 12:40:39 GMT
Date: Tue, 04 Apr 2023 08:29:13 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-05-20-17-04-38.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-05-20-17-04-38.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 95f61d351f5fc9533cc78e255ce9bc06
fba284117f347782ac23c51d141d7e3ec15a867e
7fcc5f9e52e389d8d7c6df7f1f2a1291ae0aaae8e554f3022239ab092b2ef3c3
GET /chains/remote-settings.content-signature.mozilla.org-2023-05-20-17-04-38.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: mpdoaDGHJsNEFWC8mxn8f2Hq/fA/NU0QM/dotB3uROB8Op6HVQahfYe0X8ZoeRC1Ktr7lIPMYrM=
x-amz-request-id: X7RQAD9VC903R0Q1
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 04 Apr 2023 07:53:04 GMT
age: 2169
last-modified: Fri, 31 Mar 2023 17:04:39 GMT
etag: "95f61d351f5fc9533cc78e255ce9bc06"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
rotarybloodbank.org/?page_id=247
184.95.46.59301 Moved Permanently 248 B URL HTTP/1.1 rotarybloodbank.org/?page_id=247
IP 184.95.46.59:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 29831a039374659a7360eed1e34a9286
edd4b18e50f784ddd479723d637d556b707dd7bc
110a484c2205cc60b3dd2471d4aa1299cc10478b04d5ed265b7fb70dbcc380ff
Analyzer Verdict Alert urlquery suspicious Suspicious - JavaScript obfusction
urlquery suspicious Suspicious - JavaScript obfusction
GET /?page_id=247 HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 04 Apr 2023 08:29:13 GMT
Server: Apache
Location: https://rotarybloodbank.org/?page_id=247
Content-Length: 248
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 04 Apr 2023 08:29:13 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Backoff, Last-Modified, Alert, Content-Length, Pragma, Cache-Control, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 04 Apr 2023 08:17:29 GMT
age: 704
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a5635b262d88185784a1e761f1e468b9
04abaa2eb8563d5ecc5af1be8ebd5092b21a0ee3
1048edfb3f99a8de32297a94e4f0ab83e76c5eb3138eedbc44c3e1561bf1db5b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1048EDFB3F99A8DE32297A94E4F0AB83E76C5EB3138EEDBC44C3E1561BF1DB5B"
Last-Modified: Sun, 02 Apr 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 04 Apr 2023 14:29:14 GMT
Date: Tue, 04 Apr 2023 08:29:14 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2820ca2dae3aed6a76736f236502749b
d2e4995fdd0fbb64d9051f50be93023a752ef449
0ac73659b8f464575a3596da96a94fc6dbc26a4d5a90bec1331a5df5ad796006
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0AC73659B8F464575A3596DA96A94FC6DBC26A4D5A90BEC1331A5DF5AD796006"
Last-Modified: Mon, 03 Apr 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13807
Expires: Tue, 04 Apr 2023 12:19:21 GMT
Date: Tue, 04 Apr 2023 08:29:14 GMT
Connection: keep-alive
push.services.mozilla.com/
54.201.249.32101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.201.249.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: BkPhMhHSWUfoUTkMTgFAoQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: IAt4cJd8IsdRN6IC2xIgyMnSUoE=
rotarybloodbank.org/?page_id=247
184.95.46.59200 OK 6.5 kB URL HTTP/2 rotarybloodbank.org/?page_id=247
IP 184.95.46.59:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1111), with CRLF, LF line terminators
Hash 3fe8f02d4de92e61628f3b5ec9cabd6b
0836d234b44ab573f18d52e9ff2983b16b0e0aab
5c0d9e20e0b0f9207a5d695ce55854f11650ffd49a92d437f72893ae1dd7c711
Analyzer Verdict Alert urlquery suspicious Suspicious - JavaScript obfusction
urlquery suspicious Suspicious - JavaScript obfusction
GET /?page_id=247 HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/5.3.29
x-pingback: https://rotarybloodbank.org/xmlrpc.php
link: <https://rotarybloodbank.org/?p=247>; rel=shortlink
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6516
content-type: text/html; charset=UTF-8
date: Tue, 04 Apr 2023 08:29:14 GMT
server: Apache
X-Firefox-Spdy: h2
rotarybloodbank.org/wp-content/plugins/meteor-slides/css/meteor-slides.css?ver=1.0
184.95.46.59200 OK 1.2 kB URL HTTP/2 rotarybloodbank.org/wp-content/plugins/meteor-slides/css/meteor-slides.css?ver=1.0
IP 184.95.46.59:0
File type ASCII text, with CRLF line terminators
Hash 81a21e8ceddbff38386b8e5914d998cf
006a6769ebe885d07c9fa374ba97ba5489106a5c
c05b47f9af599ef579d870414931c16b97e28edbe9aa65aa52f92b795a8cbc84
GET /wp-content/plugins/meteor-slides/css/meteor-slides.css?ver=1.0 HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rotarybloodbank.org/?page_id=247
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 07 Aug 2014 10:46:20 GMT
etag: "12d2-50007cc8b3700-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1234
content-type: text/css
date: Tue, 04 Apr 2023 08:29:14 GMT
server: Apache
X-Firefox-Spdy: h2
rotarybloodbank.org/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=3.9.1
184.95.46.59200 OK 469 B URL HTTP/2 rotarybloodbank.org/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=3.9.1
IP 184.95.46.59:0
Hash 3a276951fd6e5687fcb83e1e6ad282a8
1b52d8ba9ab523170026b7f9be3e95481a6f3e06
6d879f788b9990bcb3c7ad7a1fc5abd27e9f417078a3f678b91e08ba8d57a671
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=3.9.1 HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rotarybloodbank.org/?page_id=247
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Aug 2014 05:39:05 GMT
etag: "44f-5006816f05040-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 469
content-type: text/css
date: Tue, 04 Apr 2023 08:29:14 GMT
server: Apache
X-Firefox-Spdy: h2
rotarybloodbank.org/wp-content/plugins/symple-shortcodes/includes/css/symple_shortcodes_styles.css?ver=3.9.40
184.95.46.59200 OK 5.5 kB URL HTTP/2 rotarybloodbank.org/wp-content/plugins/symple-shortcodes/includes/css/symple_shortcodes_styles.css?ver=3.9.40
IP 184.95.46.59:0
File type ASCII text, with very long lines (1103)
Hash 5d47e0691f84370f74e3459df5fadaaf
d8820552553267eb143143709ed0650564a8a65d
bb10271fd9afe863d3598d311b2830c7299ade2657c33058dea0f3bcdb8045b1
GET /wp-content/plugins/symple-shortcodes/includes/css/symple_shortcodes_styles.css?ver=3.9.40 HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rotarybloodbank.org/?page_id=247
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Jul 2014 09:52:26 GMT
etag: "928e-4feed6a010a80-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5491
content-type: text/css
date: Tue, 04 Apr 2023 08:29:14 GMT
server: Apache
X-Firefox-Spdy: h2
rotarybloodbank.org/wp-content/plugins/symple-shortcodes/includes/css/font-awesome.min.css.css?ver=3.9.40
184.95.46.59200 OK 4.0 kB URL HTTP/2 rotarybloodbank.org/wp-content/plugins/symple-shortcodes/includes/css/font-awesome.min.css.css?ver=3.9.40
IP 184.95.46.59:0
File type ASCII text, with very long lines (17600)
Hash 033d30c289f34a4f3b7ddebd6e8f3e52
651c0870eb3b79f66b959063f38a9016a6a3fbc3
eac7272799874cc87fad116083dec8a02b1d4ac6a7be98dcea9e7ce282d043b9
GET /wp-content/plugins/symple-shortcodes/includes/css/font-awesome.min.css.css?ver=3.9.40 HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rotarybloodbank.org/?page_id=247
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Jul 2014 09:52:26 GMT
etag: "4610-4feed6a010a80-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4021
content-type: text/css
date: Tue, 04 Apr 2023 08:29:14 GMT
server: Apache
X-Firefox-Spdy: h2
rotarybloodbank.org/wp-content/themes/rahul/style.css?ver=3.9.40
184.95.46.59200 OK 8.7 kB URL HTTP/2 rotarybloodbank.org/wp-content/themes/rahul/style.css?ver=3.9.40
IP 184.95.46.59:0
File type assembler source, ASCII text, with very long lines (1358), with CRLF line terminators
Hash fe34d9f506af37e37f16f84d1f919bf0
05df9e8ed7cffdc12220dc0d4a5257deb2be886f
fb3c94ce0c64dadf82bde0babf5a5df354bd31eb691992d8289aceafc1b53379
GET /wp-content/themes/rahul/style.css?ver=3.9.40 HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rotarybloodbank.org/?page_id=247
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 27 Aug 2014 05:30:25 GMT
etag: "9d66-50195b7905e40-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 8653
content-type: text/css
date: Tue, 04 Apr 2023 08:29:14 GMT
server: Apache
X-Firefox-Spdy: h2
rotarybloodbank.org/wp-includes/js/swfobject.js?ver=2.2-20120417
184.95.46.59200 OK 3.9 kB URL HTTP/2 rotarybloodbank.org/wp-includes/js/swfobject.js?ver=2.2-20120417
IP 184.95.46.59:0
File type ASCII text, with very long lines (10082)
Hash 45952b378736692e1ca5cef76dd76a9b
980b575a952432f78ec206ce64ea4a3b611ba381
84761803b30eed4a2ef0157e02ed30a2b245d4179af71a511bb3e861dcf9de04
GET /wp-includes/js/swfobject.js?ver=2.2-20120417 HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rotarybloodbank.org/?page_id=247
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Jul 2014 08:36:15 GMT
etag: "27f7-4feec598d1dc0-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3949
content-type: application/javascript
date: Tue, 04 Apr 2023 08:29:14 GMT
server: Apache
X-Firefox-Spdy: h2
rotarybloodbank.org/wp-content/plugins/easy-fancybox/fancybox/jquery.fancybox-1.3.6.pack.css?ver=1.5.6
184.95.46.59200 OK 1.0 kB URL HTTP/2 rotarybloodbank.org/wp-content/plugins/easy-fancybox/fancybox/jquery.fancybox-1.3.6.pack.css?ver=1.5.6
IP 184.95.46.59:0
Hash 89850e8df0179b4ae9013b2772405388
9542dabb71777691c013deb55f5f9316e1045669
d5813ba1f53afb37ca60fd412fbf0d55c47259926d538429bd3859f8263bb786
GET /wp-content/plugins/easy-fancybox/fancybox/jquery.fancybox-1.3.6.pack.css?ver=1.5.6 HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rotarybloodbank.org/?page_id=247
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 14 Aug 2014 08:04:34 GMT
etag: "105c-500925ae90880-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1039
content-type: text/css
date: Tue, 04 Apr 2023 08:29:14 GMT
server: Apache
X-Firefox-Spdy: h2
rotarybloodbank.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1
184.95.46.59200 OK 3.1 kB URL HTTP/2 rotarybloodbank.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1
IP 184.95.46.59:0
File type ASCII text, with very long lines (7085)
Hash e1084a25976d8b8999acadc7350ffb48
99b723d38b78d8347e8dfa60193b12864a370227
b98359c65420aa3864d5b86ef94c4c9a5fb8c772a905884a5ba4ce55319a3d13
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rotarybloodbank.org/?page_id=247
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Jul 2014 08:38:01 GMT
etag: "1c1f-4feec5fde8c40-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3063
content-type: application/javascript
date: Tue, 04 Apr 2023 08:29:14 GMT
server: Apache
X-Firefox-Spdy: h2
rotarybloodbank.org/wp-content/uploads/2014/08/localcircles.jpg
184.95.46.59301 Moved Permanently 279 B URL HTTP/1.1 rotarybloodbank.org/wp-content/uploads/2014/08/localcircles.jpg
IP 184.95.46.59:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 405d905340dafa671ef15553259ef2e5
c668d82b2488bf795db40257ddd3ab82aac701cc
14e3ab872a25b05547a4a277a27b5177e97afd1ddca69d725acc4ba6f95bf6f3
GET /wp-content/uploads/2014/08/localcircles.jpg HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Tue, 04 Apr 2023 08:29:15 GMT
Server: Apache
Location: https://rotarybloodbank.org/wp-content/uploads/2014/08/localcircles.jpg
Content-Length: 279
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
rotarybloodbank.org/wp-content/uploads/2014/08/youtube1.jpg
184.95.46.59301 Moved Permanently 275 B URL HTTP/1.1 rotarybloodbank.org/wp-content/uploads/2014/08/youtube1.jpg
IP 184.95.46.59:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f7ed32976f5af699b0080ce7774db4be
54f3584fe35f53de891c97eca6ccb7d07111b837
9d59cddc916d85143553316a12db71907d8607e259f1bf15865a33210cb39659
GET /wp-content/uploads/2014/08/youtube1.jpg HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Tue, 04 Apr 2023 08:29:15 GMT
Server: Apache
Location: https://rotarybloodbank.org/wp-content/uploads/2014/08/youtube1.jpg
Content-Length: 275
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
rotarybloodbank.org/wp-content/uploads/2014/08/imageedit_1_9096349116.gif
184.95.46.59301 Moved Permanently 289 B URL HTTP/1.1 rotarybloodbank.org/wp-content/uploads/2014/08/imageedit_1_9096349116.gif
IP 184.95.46.59:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash cb939bbf1fd0d734647f19ddc413a245
0defeeda0bbe988cbf18744bce10d9c709f688bd
19692a95ca46c013f58b6a580dd57f32921636c44767ab64bb486e0fd8e1bd64
GET /wp-content/uploads/2014/08/imageedit_1_9096349116.gif HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Tue, 04 Apr 2023 08:29:15 GMT
Server: Apache
Location: https://rotarybloodbank.org/wp-content/uploads/2014/08/imageedit_1_9096349116.gif
Content-Length: 289
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
rotarybloodbank.org/wp-content/uploads/2014/08/twitter1.jpg
184.95.46.59301 Moved Permanently 275 B URL HTTP/1.1 rotarybloodbank.org/wp-content/uploads/2014/08/twitter1.jpg
IP 184.95.46.59:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 1b73fb14d2aa670e35a6ea6e42c37422
9bf5372aa561a02f986907791b1a895d3b78223e
174ce2e2f4a4bb6b1b2d161a2d5c68641b15ceb4ddd076478ace3d5e31f715b2
GET /wp-content/uploads/2014/08/twitter1.jpg HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Tue, 04 Apr 2023 08:29:15 GMT
Server: Apache
Location: https://rotarybloodbank.org/wp-content/uploads/2014/08/twitter1.jpg
Content-Length: 275
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
rotarybloodbank.org/wp-content/uploads/2014/08/imageedit_4_4060360707.gif
184.95.46.59301 Moved Permanently 289 B URL HTTP/1.1 rotarybloodbank.org/wp-content/uploads/2014/08/imageedit_4_4060360707.gif
IP 184.95.46.59:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 31cf4329c74b40cb3c2eee9bafaea7a9
91e31cb3c1cc2e14de5117c60f14cfeb4928de4a
2333d16f9261e6aab4dd16a314399e7c45d44a1baa184509b3925167c11441cd
GET /wp-content/uploads/2014/08/imageedit_4_4060360707.gif HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Tue, 04 Apr 2023 08:29:15 GMT
Server: Apache
Location: https://rotarybloodbank.org/wp-content/uploads/2014/08/imageedit_4_4060360707.gif
Content-Length: 289
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
rotarybloodbank.org/wp-content/uploads/2014/08/fb1.jpg
184.95.46.59301 Moved Permanently 270 B URL HTTP/1.1 rotarybloodbank.org/wp-content/uploads/2014/08/fb1.jpg
IP 184.95.46.59:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 4fc4c785aa71e6c7711809643854f3ef
2e901ee756bcc49f5ddb0632537e715131d79cb0
b54e46e9d612878f583accd5c32c7f10bf7c8891e1b614fff046c458ce09581c
GET /wp-content/uploads/2014/08/fb1.jpg HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Tue, 04 Apr 2023 08:29:15 GMT
Server: Apache
Location: https://rotarybloodbank.org/wp-content/uploads/2014/08/fb1.jpg
Content-Length: 270
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
rotarybloodbank.org/wp-content/plugins/meteor-slides/js/jquery.cycle.all.js?ver=3.9.40
184.95.46.59200 OK 14 kB URL HTTP/2 rotarybloodbank.org/wp-content/plugins/meteor-slides/js/jquery.cycle.all.js?ver=3.9.40
IP 184.95.46.59:0
Hash 5662ab0e9fd3b368123ae9210f97c679
22829fc8f94a05ed0aadc998c6696827cd0a0c02
3d8393a056a4b022dda77f08af6c261e1ed5613b03ba6b8abb7f90214214236c
GET /wp-content/plugins/meteor-slides/js/jquery.cycle.all.js?ver=3.9.40 HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rotarybloodbank.org/?page_id=247
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 07 Aug 2014 10:46:18 GMT
etag: "cbe2-50007cc6cb280-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 13802
content-type: application/javascript
date: Tue, 04 Apr 2023 08:29:14 GMT
server: Apache
X-Firefox-Spdy: h2
rotarybloodbank.org/wp-includes/js/jquery/jquery.js?ver=1.11.0
184.95.46.59200 OK 33 kB URL HTTP/2 rotarybloodbank.org/wp-includes/js/jquery/jquery.js?ver=1.11.0
IP 184.95.46.59:0
File type ASCII text, with very long lines (32341)
Hash 97a1ca3e73017e6b9624e6c84ec2d7e7
9e185e5c4b2b5364c810890f1033676ee863c121
3aea685e59d801f1ce77df7939b23898d46a1180dbd9a9a5fa0f76cc1a420542
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.js?ver=1.11.0 HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rotarybloodbank.org/?page_id=247
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Jul 2014 08:38:09 GMT
etag: "17892-4feec60589e40-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 33375
content-type: application/javascript
date: Tue, 04 Apr 2023 08:29:14 GMT
server: Apache
X-Firefox-Spdy: h2
rotarybloodbank.org/wp-content/uploads/2014/08/imageedit_6_2326041653.gif
184.95.46.59301 Moved Permanently 289 B URL HTTP/1.1 rotarybloodbank.org/wp-content/uploads/2014/08/imageedit_6_2326041653.gif
IP 184.95.46.59:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 10351fc65edf6ca7ab51291c13f3b31a
d5e40dd6c1da3ed306922b6e6ba145299a20797c
7599400c6bfbd03a353219e842e572efd993220fd080f2292ed2e36aa7662603
GET /wp-content/uploads/2014/08/imageedit_6_2326041653.gif HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Tue, 04 Apr 2023 08:29:15 GMT
Server: Apache
Location: https://rotarybloodbank.org/wp-content/uploads/2014/08/imageedit_6_2326041653.gif
Content-Length: 289
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
rotarybloodbank.org/wp-content/uploads/2014/07/need_blood.jpg
184.95.46.59301 Moved Permanently 277 B URL HTTP/1.1 rotarybloodbank.org/wp-content/uploads/2014/07/need_blood.jpg
IP 184.95.46.59:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 80d75e832cc92f9d6bf559bcf252b1aa
2071550f91bd4f6e5c5e1855a2ba1765b059d1ba
429a57fe74bb254a6e1916a178eb76467524e6b987f9723689c54b0907cec9e9
GET /wp-content/uploads/2014/07/need_blood.jpg HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Tue, 04 Apr 2023 08:29:15 GMT
Server: Apache
Location: https://rotarybloodbank.org/wp-content/uploads/2014/07/need_blood.jpg
Content-Length: 277
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
rotarybloodbank.org/wp-content/uploads/2014/08/support.jpg
184.95.46.59301 Moved Permanently 274 B URL HTTP/1.1 rotarybloodbank.org/wp-content/uploads/2014/08/support.jpg
IP 184.95.46.59:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b86153d7acaa1eebb76ee11f810f8bd2
89084a1225c2df3b4743c0bd9db80a9b9a8192b3
74f68f8d93594fa1576ab5f54fec0b1eb57cd2ddca87537a673d358dac56f656
GET /wp-content/uploads/2014/08/support.jpg HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Tue, 04 Apr 2023 08:29:15 GMT
Server: Apache
Location: https://rotarybloodbank.org/wp-content/uploads/2014/08/support.jpg
Content-Length: 274
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
rotarybloodbank.org/wp-content/uploads/2023/02/bannernew3.gif
184.95.46.59200 OK 24 kB URL HTTP/2 rotarybloodbank.org/wp-content/uploads/2023/02/bannernew3.gif
IP 184.95.46.59:0
File type GIF image data, version 89a, 1024 x 175\012- data
Hash f0432544bab12f137b6b30e1a490050c
8f1454ee831987cbc92be41d03743bbe7f9a95e9
92523ffc7154bb995577cf9924119a9efc6167164e3e36d5f5b88a03197ac8da
GET /wp-content/uploads/2023/02/bannernew3.gif HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rotarybloodbank.org/?page_id=247
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Feb 2023 06:30:27 GMT
etag: "5f7b-5f5bcbb3efe6f"
accept-ranges: bytes
content-length: 24443
content-type: image/gif
date: Tue, 04 Apr 2023 08:29:15 GMT
server: Apache
X-Firefox-Spdy: h2
rotarybloodbank.org/wp-content/themes/rahul/js/prettyphoto-init.js?ver=1.0
184.95.46.59200 OK 247 B URL HTTP/2 rotarybloodbank.org/wp-content/themes/rahul/js/prettyphoto-init.js?ver=1.0
IP 184.95.46.59:0
Hash 56c23c11ce8cded80159945c21bbac86
a9f0ad0118f05ee2d9951de7ccfefc22e88c1651
f33210637e2c1bac6256700ed03b05efe64ffe9064af74c1b366a6ff2e216047
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/rahul/js/prettyphoto-init.js?ver=1.0 HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rotarybloodbank.org/?page_id=247
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Jul 2014 09:14:06 GMT
etag: "214-4feece0e9d380-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 247
content-type: application/javascript
date: Tue, 04 Apr 2023 08:29:15 GMT
server: Apache
X-Firefox-Spdy: h2
rotarybloodbank.org/wp-content/themes/rahul/js/global.js?ver=1.0
184.95.46.59200 OK 379 B URL HTTP/2 rotarybloodbank.org/wp-content/themes/rahul/js/global.js?ver=1.0
IP 184.95.46.59:0
Hash 748da4f086f7b699913ee698a0107f0f
4616b5e765364f8a998384caf09c34656904c63e
4ce47ae4cc7257409a737afc53e839c684133c5a6d408b03302c02ad456eb308
GET /wp-content/themes/rahul/js/global.js?ver=1.0 HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rotarybloodbank.org/?page_id=247
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Jul 2014 09:14:06 GMT
etag: "2ab-4feece0e9d380-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 379
content-type: application/javascript
date: Tue, 04 Apr 2023 08:29:15 GMT
server: Apache
X-Firefox-Spdy: h2
rotarybloodbank.org/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=3.9.1
184.95.46.59200 OK 2.7 kB URL HTTP/2 rotarybloodbank.org/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=3.9.1
IP 184.95.46.59:0
Hash 463b145d4c2620bf6dc62cc76937e299
9f58d49d0e08f0bdf5fb2c5c16d8236e0c055c6c
16218591f56a9638406542a7bb410d66b28888bd503a8bec341e31b34fb10167
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=3.9.1 HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rotarybloodbank.org/?page_id=247
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Aug 2014 05:39:05 GMT
etag: "25ba-5006816f05040-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2716
content-type: application/javascript
date: Tue, 04 Apr 2023 08:29:15 GMT
server: Apache
X-Firefox-Spdy: h2
rotarybloodbank.org/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20
184.95.46.59200 OK 5.9 kB URL HTTP/2 rotarybloodbank.org/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20
IP 184.95.46.59:0
File type ASCII text, with very long lines (14900)
Hash ebcf9ad4a94d5c31649dd4515ad0c7c0
e219102aa3fe113876fd76b578f9ea142d67d967
5af8e42123fc03e9a53e6fe91d95c64591e63d3c1f27703a24966154d7784747
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20 HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rotarybloodbank.org/?page_id=247
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Aug 2014 05:39:05 GMT
etag: "3b90-5006816f05040-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5860
content-type: application/javascript
date: Tue, 04 Apr 2023 08:29:15 GMT
server: Apache
X-Firefox-Spdy: h2
rotarybloodbank.org/wp-content/plugins/meteor-slides/js/jquery.metadata.v2.js?ver=3.9.40
184.95.46.59200 OK 1.7 kB URL HTTP/2 rotarybloodbank.org/wp-content/plugins/meteor-slides/js/jquery.metadata.v2.js?ver=3.9.40
IP 184.95.46.59:0
File type HTML document, Unicode text, UTF-8 text
Hash fa702167598e2707162d9b1c88f5543b
1f3d2d1f378d8dd19b2e78b16b1d3d2620c5b279
74ca38d36bb844d041820906c2c526d8a963a831f128b4fb9f1861a9ecc510da
GET /wp-content/plugins/meteor-slides/js/jquery.metadata.v2.js?ver=3.9.40 HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rotarybloodbank.org/?page_id=247
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 07 Aug 2014 10:46:18 GMT
etag: "13f8-50007cc6cb280-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1749
content-type: application/javascript
date: Tue, 04 Apr 2023 08:29:15 GMT
server: Apache
X-Firefox-Spdy: h2
rotarybloodbank.org/wp-content/themes/rahul/js/prettyphoto.js?ver=3.1.4
184.95.46.59200 OK 6.5 kB URL HTTP/2 rotarybloodbank.org/wp-content/themes/rahul/js/prettyphoto.js?ver=3.1.4
IP 184.95.46.59:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (3572)
Hash 9857d9c9ac51a12f47b0c7a47bae730f
72de0bd8a7e44e506f4e271222a3dafb987f7dd1
49b9b39b876e4e62b5d213e25b9f39f5a3235dbbd0b2b3744778f488e7597385
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/rahul/js/prettyphoto.js?ver=3.1.4 HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rotarybloodbank.org/?page_id=247
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Jul 2014 09:14:06 GMT
etag: "6280-4feece0e9d380-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6537
content-type: application/javascript
date: Tue, 04 Apr 2023 08:29:15 GMT
server: Apache
X-Firefox-Spdy: h2
rotarybloodbank.org/wp-content/plugins/meteor-slides/js/slideshow.js?ver=3.9.40
184.95.46.59200 OK 863 B URL HTTP/2 rotarybloodbank.org/wp-content/plugins/meteor-slides/js/slideshow.js?ver=3.9.40
IP 184.95.46.59:0
File type ASCII text, with CRLF line terminators
Hash 7524c7bf554f584617a9b826ab9b74db
802c12bfbd06bf62fd39039b03ba4861977f0374
0d7e07df55ccbe71b1a61776afda546e100b695c277042b349178deb230201f5
GET /wp-content/plugins/meteor-slides/js/slideshow.js?ver=3.9.40 HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rotarybloodbank.org/?page_id=247
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 07 Aug 2014 10:46:18 GMT
etag: "95d-50007cc6cb280-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 863
content-type: application/javascript
date: Tue, 04 Apr 2023 08:29:15 GMT
server: Apache
X-Firefox-Spdy: h2
rotarybloodbank.org/wp-content/plugins/meteor-slides/js/jquery.touchwipe.1.1.1.js?ver=3.9.40
184.95.46.59200 OK 864 B URL HTTP/2 rotarybloodbank.org/wp-content/plugins/meteor-slides/js/jquery.touchwipe.1.1.1.js?ver=3.9.40
IP 184.95.46.59:0
Hash fdf04ff62b49dbd6bd507158dcc8d7cf
f4c84e1af84dc2eb007f4fb111b2d54dd36aefd8
ba156e77c032ec6ddfbfb10ed84227c15365b2fdcf73a2abf580a51144bf9503
GET /wp-content/plugins/meteor-slides/js/jquery.touchwipe.1.1.1.js?ver=3.9.40 HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rotarybloodbank.org/?page_id=247
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 07 Aug 2014 10:46:18 GMT
etag: "87e-50007cc6cb280-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 864
content-type: application/javascript
date: Tue, 04 Apr 2023 08:29:15 GMT
server: Apache
X-Firefox-Spdy: h2
rotarybloodbank.org/wp-content/plugins/easy-fancybox/jquery.easing.pack.js?ver=1.3
184.95.46.59200 OK 1.0 kB URL HTTP/2 rotarybloodbank.org/wp-content/plugins/easy-fancybox/jquery.easing.pack.js?ver=1.3
IP 184.95.46.59:0
File type Unicode text, UTF-8 text, with very long lines (3328)
Hash 641c787f5ace505ed85fc5c56463a195
27f4e7c3204d34f8757643c267f7a3ea1cdda279
8957447f4166b38dd38ba1a673067cd70c7430ee74dd3a81307c0bc56ff97b22
GET /wp-content/plugins/easy-fancybox/jquery.easing.pack.js?ver=1.3 HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rotarybloodbank.org/?page_id=247
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 14 Aug 2014 08:04:33 GMT
etag: "e41-500925ad9c640-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1013
content-type: application/javascript
date: Tue, 04 Apr 2023 08:29:15 GMT
server: Apache
X-Firefox-Spdy: h2
rotarybloodbank.org/wp-content/plugins/easy-fancybox/jquery.mousewheel.pack.js?ver=3.1.3
184.95.46.59200 OK 871 B URL HTTP/2 rotarybloodbank.org/wp-content/plugins/easy-fancybox/jquery.mousewheel.pack.js?ver=3.1.3
IP 184.95.46.59:0
File type ASCII text, with very long lines (1417)
Hash a4eb9d06246c90ad35099417b4417e10
f0a5a5a05969f764d2bf75f2c7b0493d61e94ecd
d7484e6489a2ef688f93b4242c8e489ff09808d9d3192a99d81f47b9c2054835
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/easy-fancybox/jquery.mousewheel.pack.js?ver=3.1.3 HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rotarybloodbank.org/?page_id=247
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 14 Aug 2014 08:04:33 GMT
etag: "6df-500925ad9c640-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 871
content-type: application/javascript
date: Tue, 04 Apr 2023 08:29:15 GMT
server: Apache
X-Firefox-Spdy: h2
rotarybloodbank.org/wp-content/plugins/easy-fancybox/fancybox/jquery.fancybox-1.3.6.pack.js?ver=1.5.6
184.95.46.59200 OK 5.9 kB URL HTTP/2 rotarybloodbank.org/wp-content/plugins/easy-fancybox/fancybox/jquery.fancybox-1.3.6.pack.js?ver=1.5.6
IP 184.95.46.59:0
File type ASCII text, with very long lines (15589)
Hash 25588ad878a7d95ff2e0b30ad3afc856
6e812290da0c37e7f6e378c61cc1729109dc08d4
eee3b93c71c07a76ca38569ee160e858ceb28dd0410218cb19308e050728945f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/easy-fancybox/fancybox/jquery.fancybox-1.3.6.pack.js?ver=1.5.6 HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rotarybloodbank.org/?page_id=247
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 14 Aug 2014 08:04:34 GMT
etag: "4105-500925ae90880-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5893
content-type: application/javascript
date: Tue, 04 Apr 2023 08:29:15 GMT
server: Apache
X-Firefox-Spdy: h2
rotarybloodbank.org/wp-content/uploads/2014/08/localcircles.jpg
184.95.46.59200 OK 5.4 kB URL HTTP/2 rotarybloodbank.org/wp-content/uploads/2014/08/localcircles.jpg
IP 184.95.46.59:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 179x53, components 3\012- data
Hash 414a6202ae99eadbadd8bceeb63afadf
5eb8b372f979f22e2cbccd2ad575bfe27e2b8f06
74989a0941726a77f7e57ffed47f9325b1ccb97f491387ca4e6b08c448a46e2c
GET /wp-content/uploads/2014/08/localcircles.jpg HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 22 Aug 2014 12:31:39 GMT
etag: "14fa-5013704ce20c0"
accept-ranges: bytes
content-length: 5370
content-type: image/jpeg
date: Tue, 04 Apr 2023 08:29:15 GMT
server: Apache
X-Firefox-Spdy: h2
rotarybloodbank.org/wp-content/uploads/2014/08/youtube1.jpg
184.95.46.59200 OK 3.7 kB URL HTTP/2 rotarybloodbank.org/wp-content/uploads/2014/08/youtube1.jpg
IP 184.95.46.59:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 78x78, components 3\012- data
Hash 8fb94f4c1e2815349994ec311b6a32f4
fe485705da134d8459adf253b910b93d6d8c174f
67fca3a0fa8e54001fc514f7430d43dada1c52d46ac1a1402d856e1e752f516b
GET /wp-content/uploads/2014/08/youtube1.jpg HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 22 Aug 2014 12:30:00 GMT
etag: "e9d-50136fee78200"
accept-ranges: bytes
content-length: 3741
content-type: image/jpeg
date: Tue, 04 Apr 2023 08:29:15 GMT
server: Apache
X-Firefox-Spdy: h2
rotarybloodbank.org/wp-content/uploads/2014/08/imageedit_1_9096349116.gif
184.95.46.59200 OK 4.6 kB URL HTTP/2 rotarybloodbank.org/wp-content/uploads/2014/08/imageedit_1_9096349116.gif
IP 184.95.46.59:0
File type GIF image data, version 89a, 122 x 82\012- data
Hash ad738ba6c053f4f526e82b0b34b4270a
25eafb3559c396f88acb628ac26d22128a785b68
3f0878b0f7a9bf4631b6bd08f4f9189ce70ce7b404e6088958461fe4062f17fb
GET /wp-content/uploads/2014/08/imageedit_1_9096349116.gif HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 Aug 2014 06:45:24 GMT
etag: "1216-500e1b7274900"
accept-ranges: bytes
content-length: 4630
content-type: image/gif
date: Tue, 04 Apr 2023 08:29:15 GMT
server: Apache
X-Firefox-Spdy: h2
rotarybloodbank.org/wp-content/uploads/2014/08/twitter1.jpg
184.95.46.59200 OK 4.1 kB URL HTTP/2 rotarybloodbank.org/wp-content/uploads/2014/08/twitter1.jpg
IP 184.95.46.59:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 78x78, components 3\012- data
Hash 35cf4a7401d2a72d62a8da1dc6c42fbe
2bca8ae60631266497ac9f25c99f50c6093f7ee5
ef535f648178e9516b3a96774895668b6110f1b0c8048a3432f9f261bc8dc25e
GET /wp-content/uploads/2014/08/twitter1.jpg HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 22 Aug 2014 12:26:55 GMT
etag: "100e-50136f3e0a1c0"
accept-ranges: bytes
content-length: 4110
content-type: image/jpeg
date: Tue, 04 Apr 2023 08:29:15 GMT
server: Apache
X-Firefox-Spdy: h2
rotarybloodbank.org/wp-content/uploads/2014/08/imageedit_4_4060360707.gif
184.95.46.59200 OK 1.8 kB URL HTTP/2 rotarybloodbank.org/wp-content/uploads/2014/08/imageedit_4_4060360707.gif
IP 184.95.46.59:0
File type GIF image data, version 89a, 123 x 82\012- data
Hash 0794d4384b47144b28ebf5c4c8797678
f12a0b83dea4bbb120015d805805940802311b7f
f100504cefb74b313b81e614c5d8f55f824ff871ae8c8aa0da9d139184b77384
GET /wp-content/uploads/2014/08/imageedit_4_4060360707.gif HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 Aug 2014 06:52:29 GMT
etag: "718-500e1d07c4540"
accept-ranges: bytes
content-length: 1816
content-type: image/gif
date: Tue, 04 Apr 2023 08:29:15 GMT
server: Apache
X-Firefox-Spdy: h2
rotarybloodbank.org/wp-content/uploads/2014/08/fb1.jpg
184.95.46.59200 OK 4.9 kB URL HTTP/2 rotarybloodbank.org/wp-content/uploads/2014/08/fb1.jpg
IP 184.95.46.59:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 78x78, components 3\012- data
Hash 5ee779f7dddd3bca8f34a15595be051b
8ffc440be50c6511c6bd47546c5b56f1b3de12f0
6a08c33e62b63034903ce3de985d7bc69610c5bfe7d1ef3a5c98151bf69b2c4c
GET /wp-content/uploads/2014/08/fb1.jpg HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 22 Aug 2014 12:27:55 GMT
etag: "12fc-50136f77428c0"
accept-ranges: bytes
content-length: 4860
content-type: image/jpeg
date: Tue, 04 Apr 2023 08:29:15 GMT
server: Apache
X-Firefox-Spdy: h2
rotarybloodbank.org/wp-content/uploads/2014/07/need_blood.jpg
184.95.46.59200 OK 53 kB URL HTTP/2 rotarybloodbank.org/wp-content/uploads/2014/07/need_blood.jpg
IP 184.95.46.59:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2013:08:08 14:44:17], progressive, precision 8, 245x150, components 3\012- data
Hash 227103e5cdf97845afdebdc0fabb9454
7028b66b51f159f45b5f07a1de9826a372c985e9
ba9efe3ccb43e876c2fc924d05d5636154be227b061b9b9477bce4379352a62b
GET /wp-content/uploads/2014/07/need_blood.jpg HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 30 Jul 2014 10:52:53 GMT
etag: "ce9a-4ff66f53ceb40"
accept-ranges: bytes
content-length: 52890
content-type: image/jpeg
date: Tue, 04 Apr 2023 08:29:15 GMT
server: Apache
X-Firefox-Spdy: h2
rotarybloodbank.org/wp-content/uploads/2014/08/support.jpg
184.95.46.59200 OK 72 kB URL HTTP/2 rotarybloodbank.org/wp-content/uploads/2014/08/support.jpg
IP 184.95.46.59:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2013:08:08 15:18:45], baseline, precision 8, 245x250, components 3\012- data
Hash bc544b3807509b17b2c424fc311ffbf1
ba0c657da26a3ef6fabeb02b1a3b7567bd6f9da9
b281f4378e86a5bdb6d9fafeb27321a129478b176de0b6423c9f13c943db458b
GET /wp-content/uploads/2014/08/support.jpg HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Aug 2014 10:48:53 GMT
etag: "119ae-5001bf3812f40"
accept-ranges: bytes
content-length: 72110
content-type: image/jpeg
date: Tue, 04 Apr 2023 08:29:15 GMT
server: Apache
X-Firefox-Spdy: h2
rotarybloodbank.org/wp-content/uploads/2014/08/imageedit_6_2326041653.gif
184.95.46.59200 OK 4.9 kB URL HTTP/2 rotarybloodbank.org/wp-content/uploads/2014/08/imageedit_6_2326041653.gif
IP 184.95.46.59:0
File type GIF image data, version 89a, 122 x 82\012- data
Hash c9ca46bf5655b35877ff4c41012954e6
204fd8253e738c86e14b705e82b73fd4f1ab11fe
e8e3d4eb2c9d491403661aff7aa40ce7acc9122b8597da803db3a498370ad3d6
GET /wp-content/uploads/2014/08/imageedit_6_2326041653.gif HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 Aug 2014 07:07:55 GMT
etag: "1319-500e207ade8c0"
accept-ranges: bytes
content-length: 4889
content-type: image/gif
date: Tue, 04 Apr 2023 08:29:15 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3e18ab4ca97f7339957b43db660cfd1a
762deec33262d66e27a74faa8e4c894f56204559
492dc3540f5c32f203158d75df28bf7da92b30f650307d6756ad11a44126752a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Apr 2023 08:29:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 869fe4a8dc549ffa1023d3adc184e4f2
37b95d88dd3f6f251bb651b130e09b202850033f
9387d0291fa66cc98248bae7724ec34f884c766302d2a99e734585cc591ad304
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9387D0291FA66CC98248BAE7724EC34F884C766302D2A99E734585CC591AD304"
Last-Modified: Mon, 03 Apr 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21405
Expires: Tue, 04 Apr 2023 14:26:00 GMT
Date: Tue, 04 Apr 2023 08:29:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 869fe4a8dc549ffa1023d3adc184e4f2
37b95d88dd3f6f251bb651b130e09b202850033f
9387d0291fa66cc98248bae7724ec34f884c766302d2a99e734585cc591ad304
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9387D0291FA66CC98248BAE7724EC34F884C766302D2A99E734585CC591AD304"
Last-Modified: Mon, 03 Apr 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21405
Expires: Tue, 04 Apr 2023 14:26:00 GMT
Date: Tue, 04 Apr 2023 08:29:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 869fe4a8dc549ffa1023d3adc184e4f2
37b95d88dd3f6f251bb651b130e09b202850033f
9387d0291fa66cc98248bae7724ec34f884c766302d2a99e734585cc591ad304
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9387D0291FA66CC98248BAE7724EC34F884C766302D2A99E734585CC591AD304"
Last-Modified: Mon, 03 Apr 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21405
Expires: Tue, 04 Apr 2023 14:26:00 GMT
Date: Tue, 04 Apr 2023 08:29:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 869fe4a8dc549ffa1023d3adc184e4f2
37b95d88dd3f6f251bb651b130e09b202850033f
9387d0291fa66cc98248bae7724ec34f884c766302d2a99e734585cc591ad304
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9387D0291FA66CC98248BAE7724EC34F884C766302D2A99E734585CC591AD304"
Last-Modified: Mon, 03 Apr 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21405
Expires: Tue, 04 Apr 2023 14:26:00 GMT
Date: Tue, 04 Apr 2023 08:29:15 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa5f70c40-8b38-48db-b482-a5cc8f1580ef.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa5f70c40-8b38-48db-b482-a5cc8f1580ef.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9d1360ec3cb182322e0a0c445f57e5b7
9f71e3cd002ca8116d917c3b7fb57291099269d1
e3d216e879d771bf2507928ba1b26465c87a4202a4cdc03483f002c2826a81b2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa5f70c40-8b38-48db-b482-a5cc8f1580ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6912
x-amzn-requestid: 53fcdc8a-e064-4e81-b5ac-5d0ae4bcfdb9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: C0fpuEZ-IAMFxaA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642b463d-3b7b43f30dd66fae5dc9ea6a;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Mon, 03 Apr 2023 21:33:49 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: GZgHaJIuhgJevaSQVWPEZ-U5S-OGbnM_ZSvlcmim_e5Fsi6P_7TISA==
via: 1.1 59456abf79b201034ab5c9cfef7355e2.cloudfront.net (CloudFront), 1.1 29a825d8a219984d47bec4350779b558.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Apr 2023 21:33:50 GMT
etag: "9f71e3cd002ca8116d917c3b7fb57291099269d1"
content-type: image/jpeg
age: 39325
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81b22292-2571-4b3d-aeae-f84b72b36391.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81b22292-2571-4b3d-aeae-f84b72b36391.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0e87dbffda284dbb0008567a8d4dee30
8edeb9deea0d64ca580af16c44b99d37e918fd58
023247190546b5da51b52c452cf0ce7fe2c4a5b640d5ed682b27e80ee1b3f850
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81b22292-2571-4b3d-aeae-f84b72b36391.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6134
x-amzn-requestid: d72d8ddc-ed19-402a-b1e7-3392eacd9230
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: C0fpsGPIoAMFppA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642b463d-4099b9bc35b52bd3297c0bbb;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Mon, 03 Apr 2023 21:33:49 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: sGdeT2q8lkX5OCuHS456z_5v7gQ-TUwyLnp3e9bE7TmOjG6SsJjLxg==
via: 1.1 5502255f9557c1e2c098b94110b6151c.cloudfront.net (CloudFront), 1.1 ae06b19943a6bad1c1b12b79f7339498.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Apr 2023 21:33:50 GMT
etag: "8edeb9deea0d64ca580af16c44b99d37e918fd58"
content-type: image/jpeg
age: 39325
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.google.com/maps?q=address&z=14&t=m&hl=en&output=embed
142.250.74.164301 Moved Permanently 0 B URL HTTP/2 www.google.com/maps?q=address&z=14&t=m&hl=en&output=embed
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /maps?q=address&z=14&t=m&hl=en&output=embed HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rotarybloodbank.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
location: https://www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1saddress!5e0!6i14!3m1!1sen!5m1!1sen
vary: Origin, X-Origin, Referer
date: Tue, 04 Apr 2023 08:29:15 GMT
content-type: text/html
server: scaffolding on HTTPServer2
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5a64c6f-4f76-4a92-92c4-1fa8cb48142e.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5a64c6f-4f76-4a92-92c4-1fa8cb48142e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fde7605b95c3ac6b8de339dbd12e17b1
b44d521b31be7b3fe378a0e070c49379a6eab26e
5496cf7c705ccc67dd13f86a07d9a352424d58591aa67afe1e1361c640f8d510
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5a64c6f-4f76-4a92-92c4-1fa8cb48142e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6803
x-amzn-requestid: 6c78179f-0d11-4a23-8e86-e4f05d7c7f90
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: C0fq3HrioAMF7ww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642b4645-758850e07ef9b1512b684c35;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Mon, 03 Apr 2023 21:33:57 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: TvDTtH9ZqXuvomWMYiB8g8N0JKjRrHIXF1SxfCRJfwZS-7pGLAPrVw==
via: 1.1 ee32c7a76e2727d565413cc6c352ef48.cloudfront.net (CloudFront), 1.1 29a825d8a219984d47bec4350779b558.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Apr 2023 21:33:57 GMT
etag: "b44d521b31be7b3fe378a0e070c49379a6eab26e"
content-type: image/jpeg
age: 39318
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bfb42fa-a742-48e1-9e04-5a6dd253e7c3.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bfb42fa-a742-48e1-9e04-5a6dd253e7c3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aa38adb609929dd640969cf7fdac34e0
2f6376d861ae95e83cd65f47f0ad99f73ecc519b
f83c9e3dd084b6148accb41f7b234e93d4e53a12f0a92846a1a7234159f6567e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bfb42fa-a742-48e1-9e04-5a6dd253e7c3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8717
x-amzn-requestid: 18f7e80a-b9df-4ece-86f2-59330cbda055
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: C0fpsGk6IAMFbdw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642b463d-37906ba06871532364672b8a;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Mon, 03 Apr 2023 21:33:49 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: Xi_8Yg97BKFIwPUNBvWnQGvSntLzEmdJj_draypXTq0zRQ-QykfssQ==
via: 1.1 88a7ff956a5b49ec3a35abfc0027af12.cloudfront.net (CloudFront), 1.1 6af3b573d8970d5db2a4d03354335b84.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Apr 2023 21:33:50 GMT
etag: "2f6376d861ae95e83cd65f47f0ad99f73ecc519b"
content-type: image/jpeg
age: 39325
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86274a5c-15b7-49b6-a8ee-01546eb3817c.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86274a5c-15b7-49b6-a8ee-01546eb3817c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 968835dc12a7fcd43dd43ce155b857f4
a5d938ee5166c39a3cd73a2a85469f06338341e6
369095e1c0c06d202d9b4a199017193aa08d114eebe18dbe4192d28046f0b3ed
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86274a5c-15b7-49b6-a8ee-01546eb3817c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7652
x-amzn-requestid: d3a5499f-5194-4521-96d0-580f8582fb1e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: C0fpsHO_oAMFjEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642b463d-7ad0993b235ba1933683c3ae;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Mon, 03 Apr 2023 21:33:49 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: oSK-hWRWnv3UIko9BAlLkT_C6o6ndytXScYmDv57nXzaaChzUAmCag==
via: 1.1 ba490acb2ea716cd57876286ed686786.cloudfront.net (CloudFront), 1.1 ae06b19943a6bad1c1b12b79f7339498.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Apr 2023 21:33:50 GMT
etag: "a5d938ee5166c39a3cd73a2a85469f06338341e6"
content-type: image/jpeg
age: 39325
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd65dd010-da4c-41c5-b16e-d447c4d8deea.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd65dd010-da4c-41c5-b16e-d447c4d8deea.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c7a7cc54be45f71ff09257402a9e4d84
ac1f3a44ce912d4bda9f5cbd66a7f222b85aa94a
f139a2d27fdfeb4a28cd50d6f8f9fb5c96717b2893f9ac8452db90272d2c78bd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd65dd010-da4c-41c5-b16e-d447c4d8deea.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12548
x-amzn-requestid: b1a1ca64-3c21-48a9-8b76-6c00329d5925
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CyhPLGeWoAMF-3g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642a7bfa-03c540665ae850bc0a880e5c;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Mon, 03 Apr 2023 07:10:50 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: CBPM1TNfirOsf4AQNduJLyuhV9HnCm-jNF4l5Ikoz9iw3iP9AX2ADg==
via: 1.1 e92cc925fc8895560cd0628c67f58828.cloudfront.net (CloudFront), 1.1 0906d4887f6625f4a4467d8d4fd268d2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Apr 2023 13:19:39 GMT
age: 68976
etag: "ac1f3a44ce912d4bda9f5cbd66a7f222b85aa94a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d5ba0d24586872fbb887f9ace5b204a6
748b10c9a747a90adf10b8f8dedefe59a22ed072
5d50fe5859a98b867ef22fd65c4ab3652d46188813256d43ba7ac61e2b7c9a18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Apr 2023 08:29:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rotarybloodbank.org/wp-content/uploads/2014/08/rotary-16x16.jpg
184.95.46.59301 Moved Permanently 279 B URL HTTP/1.1 rotarybloodbank.org/wp-content/uploads/2014/08/rotary-16x16.jpg
IP 184.95.46.59:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b349ec66a16da69a4d4ef56e3c4c7ec7
bb1ee4f974ca9a6813f2fecf2dae1586375cf44c
1624787265f5c6a1aa3bfcd64ae2e6925ae7a7eae54e278160366b2351591cd5
GET /wp-content/uploads/2014/08/rotary-16x16.jpg HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Tue, 04 Apr 2023 08:29:15 GMT
Server: Apache
Location: https://rotarybloodbank.org/wp-content/uploads/2014/08/rotary-16x16.jpg
Content-Length: 279
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
rotarybloodbank.org/wp-content/uploads/2014/08/rotary-16x16.jpg
184.95.46.59200 OK 656 B URL HTTP/2 rotarybloodbank.org/wp-content/uploads/2014/08/rotary-16x16.jpg
IP 184.95.46.59:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 16x16, components 3\012- data
Hash 70b860eea673dec9d6bb4bac6ed57a45
8a890d6c709f925f6610c6e2d0ea317b1b45a54e
b71a2a6faca1675cc6965cb0ecad4da74f6acc98ae10f39853947bcd9358d603
GET /wp-content/uploads/2014/08/rotary-16x16.jpg HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 30 Aug 2014 07:08:02 GMT
etag: "290-501d36e313880"
accept-ranges: bytes
content-length: 656
content-type: image/jpeg
date: Tue, 04 Apr 2023 08:29:15 GMT
server: Apache
X-Firefox-Spdy: h2
www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1saddress!5e0!6i14!3m1!1sen!5m1!1sen
142.250.74.164200 OK 1.0 kB URL HTTP/2 www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1saddress!5e0!6i14!3m1!1sen!5m1!1sen
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1618)
Hash f49f60b0160347fae9e208c12f427a29
f82f33564320c554915b9e3d2fb4425884e0f791
b2f7cea1b959d05a6091003378363b607ab52493ef1942f934c0f495cce931a2
GET /maps/embed?origin=mfe&pb=!1m4!2m1!1saddress!5e0!6i14!3m1!1sen!5m1!1sen HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rotarybloodbank.org/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce--JN0dkSP0CRWYp_s3Wf_LQ' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 04 Apr 2023 08:29:16 GMT
server: scaffolding on HTTPServer2
content-length: 1013
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 30735a8260b9c875d42add2d33a9a6c0
ea1076f012420c6d3ae054f07a6948352c96a598
995b7ad71da6aa8933947de9bd441a5c4a366e143864ad4fc5a9af3c6f193aca
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Apr 2023 08:29:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en&callback=onApiLoad
142.250.74.106200 OK 58 kB URL HTTP/2 maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en&callback=onApiLoad
IP 142.250.74.106:0
File type ASCII text, with very long lines (2440)
Hash 5941b4cf2cbc007a09a1a969126a9bb3
967d7125604c86a4b174d5a621bd3d94a76058ae
fbeb5a2769389e5d6397a653d7aca995aa0690dbe1ae15d95cde345bb76779de
GET /maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en&callback=onApiLoad HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 57678
x-xss-protection: 0
x-frame-options: SAMEORIGIN
date: Tue, 04 Apr 2023 08:23:45 GMT
expires: Tue, 04 Apr 2023 08:53:45 GMT
cache-control: public, max-age=1800
content-type: text/javascript; charset=UTF-8
age: 331
server-timing: gfet4t7; dur=0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 30735a8260b9c875d42add2d33a9a6c0
ea1076f012420c6d3ae054f07a6948352c96a598
995b7ad71da6aa8933947de9bd441a5c4a366e143864ad4fc5a9af3c6f193aca
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Apr 2023 08:29:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c5855af789369a9b0da3ae3d0ff5b7f0
393f65405b0231d85849bb2de71f53e4a935e14b
216bda1ec06919da765b408640b1841f048a3ac507a3c25786f0ec8b938837fe
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Apr 2023 08:29:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.gstatic.com/maps-api-v3/embed/js/52/6/init_embed.js
142.250.74.131200 OK 66 kB URL HTTP/2 maps.gstatic.com/maps-api-v3/embed/js/52/6/init_embed.js
IP 142.250.74.131:0
File type ASCII text, with very long lines (2647)
Hash 3ef6dfbf3b57ddb1cffb291af4dffe5f
0dab8207dfa5a5fedeaa7a959028d574f0773542
15ca67d70d885130a772bff2c7dbc797d48f657e745871d8acedba5e46b12e59
GET /maps-api-v3/embed/js/52/6/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 66148
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 11:27:19 GMT
expires: Wed, 27 Mar 2024 11:27:19 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 20 Mar 2023 21:47:34 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 594117
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c5855af789369a9b0da3ae3d0ff5b7f0
393f65405b0231d85849bb2de71f53e4a935e14b
216bda1ec06919da765b408640b1841f048a3ac507a3c25786f0ec8b938837fe
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Apr 2023 08:29:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 10:31:23 GMT
expires: Wed, 27 Mar 2024 10:31:23 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 597474
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
rotarybloodbank.org/wp-content/uploads/2014/08/imageedit_8_2075780611.jpg
184.95.46.59200 OK 0 B URL HTTP/2 rotarybloodbank.org/wp-content/uploads/2014/08/imageedit_8_2075780611.jpg
IP 184.95.46.59:0
GET /wp-content/uploads/2014/08/imageedit_8_2075780611.jpg HTTP/1.1
Host: rotarybloodbank.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 Aug 2014 07:11:33 GMT
etag: "2d42-500e214ac5340"
accept-ranges: bytes
content-length: 11586
content-type: image/jpeg
date: Tue, 04 Apr 2023 08:29:15 GMT
server: Apache
X-Firefox-Spdy: h2