r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2d2e7649ce9e9ba6fc8b68aa89352e3c
0153d1d3d830a457043e16bb40d48a0b9ddef4b8
8eed57c91b42ef7b2d5eff1309e306e23e13c3de21219af24a693cbf3e8977fc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8026
Expires: Tue, 29 Nov 2022 10:45:28 GMT
Date: Tue, 29 Nov 2022 08:31:42 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9408cc0694fcbea57966c3a3ba906092
fddcee1fdcf3209298e41a4b1b5560357fa165f0
6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5933
Cache-Control: max-age=99512
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 08:31:42 GMT
Etag: "63848df9-1d7"
Expires: Wed, 30 Nov 2022 12:10:14 GMT
Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 08:17:52 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 830
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6d9d34c96b9a826ae5676640c966469c
8052a16d41a637e420478b7de1ff5a2dc951fccd
f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11015
Expires: Tue, 29 Nov 2022 11:35:17 GMT
Date: Tue, 29 Nov 2022 08:31:42 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: bcwWbLiYHSjDatbp0ukyUPDW9GWKQvCn4MBxvdaQYLta+pPOARDB9zNGZlinThksGTR4kBAtAc63r+s6jI7CJg==
x-amz-request-id: 7AH01D692DYK2ZTG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 29 Nov 2022 07:45:22 GMT
age: 2780
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:31:42 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 29 Nov 2022 08:11:13 GMT
cache-control: public,max-age=3600
age: 1229
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7ab2ef968cb6a3078f4b9cb2dda813d4
e669116047ca058a2c1b2999ff0ea8682719162c
6ddecf0b21c44f3851da8efeb6ecdc6c8e9b83d7681153c31952b4ec8c23c940
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3992
Cache-Control: max-age=92504
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 08:31:43 GMT
Etag: "63847a2f-1d7"
Expires: Wed, 30 Nov 2022 10:13:27 GMT
Last-Modified: Mon, 28 Nov 2022 09:06:55 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
dimech.com.au/
116.0.23.239301 Moved Permanently 0 B IP 116.0.23.239:0
ASN #38719 Dreamscape Networks Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: dimech.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 29 Nov 2022 08:31:42 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 Phusion_Passenger/6.0.7
X-Powered-By: PHP/7.4.33
Expires: Tue, 29 Nov 2022 09:31:43 GMT
Cache-Control: max-age=3600
X-Redirect-By: WordPress
Location: https://dimech.com.au/
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
push.services.mozilla.com/
54.71.202.2101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.71.202.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: eYENVz5FSuZFPj8Q1pWY9Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: a8NSNsmznhUM1VQSpK6b2U0dc2A=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 08:31:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f50fd635895870df33a17fe377a6a038
dd65dfbbc810b095432cfd59f971af04a9e31ab7
ebd9b6c3f67865c297d08802839c940994424000df3bf8a3f1316b8e13666e94
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 08:31:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-31924801-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-31924801-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash cbcf795bab8e797c9a7aee046d42bc98
5da023a786d5969a06337a8273873bddac41810f
5cec1998c9e263c9ba366059b2838b2c6887ed5e6841c78658b566f149b6cac1
GET /gtag/js?id=UA-31924801-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dimech.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 29 Nov 2022 08:31:44 GMT
expires: Tue, 29 Nov 2022 08:31:44 GMT
cache-control: private, max-age=900
last-modified: Tue, 29 Nov 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43724
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 08:31:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f50fd635895870df33a17fe377a6a038
dd65dfbbc810b095432cfd59f971af04a9e31ab7
ebd9b6c3f67865c297d08802839c940994424000df3bf8a3f1316b8e13666e94
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 08:31:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2495
Expires: Tue, 29 Nov 2022 09:13:19 GMT
Date: Tue, 29 Nov 2022 08:31:44 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F306bb762-e2a8-4771-9a39-086c46f94b11.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F306bb762-e2a8-4771-9a39-086c46f94b11.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 415b1b1d5a29fc17b4114bb3df1d1c22
600859401c885cc2cdd1f199cccc198eb41d6a04
abfbf4ecf2423736a29686859f6a8f2b77204b48f3f60d208f6d491e80611e7f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F306bb762-e2a8-4771-9a39-086c46f94b11.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7549
x-amzn-requestid: bb37235a-8c7d-47fe-abb6-6cc633560165
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP-7lHmsoAMF9lA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638311e3-1f2a4abc40119f3e026dc393;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:29:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ds96jURZ0epaXMg2oTUETRQCpHwlVJrl5hTqvpUAWEGVa5rbDve1FA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:46:42 GMT
age: 38702
etag: "600859401c885cc2cdd1f199cccc198eb41d6a04"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1172c72b-d329-4446-80cb-92b8cf104425.jpeg
34.120.237.76200 OK 3.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1172c72b-d329-4446-80cb-92b8cf104425.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9cd333c474420e235831d96ed881167e
5008d7344dd85ae61a598c17e7baf427def3e25d
2178a96e120661e43d8e8ed0df1fcf500caf4c58db9e1bedaf0706af0a80b286
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1172c72b-d329-4446-80cb-92b8cf104425.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3944
x-amzn-requestid: 8a6732c1-72da-4a73-ba51-8533c6a01a9c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNmfFgeIAMFjLw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6385295c-0c807d93277bfb7f6b13c2ee;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:20 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oW4xFfsPp-Jmf28Uc88iZ2jLgtMRjn2gW0orrJ4K201r6Y6OlHkacQ==
via: 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:46:51 GMT
age: 38693
etag: "5008d7344dd85ae61a598c17e7baf427def3e25d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2495
Expires: Tue, 29 Nov 2022 09:13:19 GMT
Date: Tue, 29 Nov 2022 08:31:44 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg
34.120.237.76200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a2a5c8d4113d282600462749315f2c4f
e2b4d2e15bb7c086333c0da438873e4c139ba931
9b5d0e5dd11d4cbf1c78a71730cd63544170c91ab635bf3cf917827ac84874e6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4417
x-amzn-requestid: 01de83c2-51d2-4329-98f6-09a0edf46942
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNnGEcRIAMFaXA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852960-34583b6c588a0e937fcfaa46;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wqEe45jzMOryT-E-vThc39-cLiZudKF4gn6cS3LBmeaJ2amJF5GPIA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:46:54 GMT
age: 38690
etag: "e2b4d2e15bb7c086333c0da438873e4c139ba931"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2495
Expires: Tue, 29 Nov 2022 09:13:19 GMT
Date: Tue, 29 Nov 2022 08:31:44 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 03014221d7f49b50ffc2d1b0a0e75457
772d86ad983042a728ee3490630a9cf1134ad0dd
81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10176
x-amzn-requestid: c2231955-5c78-4073-8399-b8b90f1add78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMo3oHpSoAMF5Qw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bb63-55a1cb004ac73c8b02f2fb8d;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:08:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uGocx-Lv8ieJVvICjnTGQZyzaQzjVdICX2RZaNyBTQvUKeIcNxaCJQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 04:49:50 GMT
age: 13314
etag: "772d86ad983042a728ee3490630a9cf1134ad0dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2495
Expires: Tue, 29 Nov 2022 09:13:19 GMT
Date: Tue, 29 Nov 2022 08:31:44 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9fRfgj9_S00P8fI_T-tVt7khJ1kYZux_55K_yLYUsiyVEoiWRM9QAw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 22:07:26 GMT
age: 37458
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2495
Expires: Tue, 29 Nov 2022 09:13:19 GMT
Date: Tue, 29 Nov 2022 08:31:44 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3527eb28-888e-447d-90fd-1226d5b94433.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3527eb28-888e-447d-90fd-1226d5b94433.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 823e92f62ff7b3c2093828817d7f2866
c501de9eaa581a10b0b5fce40b54bb10f57f7c29
7d89669e23682f167b2fe1eff9edc5939112ec66b6b4e6389ef8aec78ccbdfe5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3527eb28-888e-447d-90fd-1226d5b94433.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8921
x-amzn-requestid: 98baf100-c007-4c44-89aa-b9cf55fa3f94
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNnwFYToAMFoWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852964-1227b5a9100c206e0c64f4b2;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ivu6pzZ6dbt3I4tuFMg4oHcuPVdyNS-F3k_lQdmKoXFkdCfSseAEwQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:46:55 GMT
age: 38689
etag: "c501de9eaa581a10b0b5fce40b54bb10f57f7c29"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Raleway%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2Citalic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A500%2C700%2C400%2C600%7COpen%20Sans%3A600%7CArimo%3A400%7CMontserrat%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CAbril%2BFatface%3Aregular%7CArimo%3A700&display=swap
142.250.74.10200 OK 2.3 kB URL HTTP/2 fonts.googleapis.com/css?family=Raleway%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2Citalic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A500%2C700%2C400%2C600%7COpen%20Sans%3A600%7CArimo%3A400%7CMontserrat%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CAbril%2BFatface%3Aregular%7CArimo%3A700&display=swap
IP 142.250.74.10:0
Hash c7857a4911046cd642d69d53aeac500a
c2906f0ddfa388ba0c40e639fe659feb85b8dc6e
27505ba530a6a859966304e051e45b9fc63fd2c28b71342afa358838b5c84024
GET /css?family=Raleway%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2Citalic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A500%2C700%2C400%2C600%7COpen%20Sans%3A600%7CArimo%3A400%7CMontserrat%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CAbril%2BFatface%3Aregular%7CArimo%3A700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dimech.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 08:31:44 GMT
date: Tue, 29 Nov 2022 08:31:44 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dimech.com.au/
116.0.23.239200 OK 150 kB IP 116.0.23.239:0
ASN #38719 Dreamscape Networks Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (55924)
Size 150 kB (150067 bytes)
Hash 34e4abc82edaab35ab7d785840d7ed19
01f62955d7b91f036c66c488fc0ac72ddfe96bc4
03ca86cf9f42ed01c72d42db7602441cee9530d4dd87b69e9c77a3b4ed7febae
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: dimech.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 08:31:44 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 Phusion_Passenger/6.0.7
X-Powered-By: PHP/7.4.33
Last-Modified: Wed, 23 Nov 2022 23:03:00 GMT
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
dimech.com.au/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/css/styles-1c6d48102e2d400cdc5949a811750802.css
116.0.23.239200 OK 2.2 kB URL HTTP/1.1 dimech.com.au/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/css/styles-1c6d48102e2d400cdc5949a811750802.css
IP 116.0.23.239:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (2237), with no line terminators
Hash 9bc9e91e52ac4d22155d90e951b59751
e683513eb7515ff7a25e01cefc721d593bad4907
01ef6ebd6eb1681f764ebaaca655e0fb590967176f2df5b3fd9e67e1bd525ebe
GET /wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/css/styles-1c6d48102e2d400cdc5949a811750802.css HTTP/1.1
Host: dimech.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dimech.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 08:31:45 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 Phusion_Passenger/6.0.7
Last-Modified: Tue, 08 Nov 2022 21:43:30 GMT
ETag: "c037872e-8bd-5ecfc6e56ff10"
Accept-Ranges: bytes
Content-Length: 2237
Connection: close
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a0fe20d41a043db700a84924cd9793f3
c0da481fef6cd00558f6e68b074acb34bef8292f
03caeb65ab9e22f6d6fe0d344d327950d20ee9ed144e2da0e5e062943a03fc56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 08:31:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?render=6Lei5K8UAAAAAKRQlt3L8wjfV0R6pO6HSWWRRrc0&ver=3.0
142.250.74.164200 OK 584 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6Lei5K8UAAAAAKRQlt3L8wjfV0R6pO6HSWWRRrc0&ver=3.0
IP 142.250.74.164:0
File type ASCII text, with very long lines (884), with no line terminators
Hash c4e79c5bceec39f34fe0f93b12b2a556
dd1b4e7bfe8f236f205ef8a6168e2e77b6639825
818f811cc789368dd53f275f234c7daa953621d37ba8325ae7338e90450a67e0
GET /recaptcha/api.js?render=6Lei5K8UAAAAAKRQlt3L8wjfV0R6pO6HSWWRRrc0&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dimech.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Tue, 29 Nov 2022 08:31:45 GMT
date: Tue, 29 Nov 2022 08:31:45 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 584
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash abd55ecd24d357a9f02612558f723a90
6a1e6963864f0b53ddc6205d35225e6cf0bcbeec
195fa531e0462be58d5c62ebbe6060e147c94bdb1d38ff46c341c74e0ab2671a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 08:31:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dimech.com.au/wp-content/cache/min/1/wp-content/themes/fixology/css/servicebox-animation-76612fabe04a16c04ff68e358bd35b7f.css
116.0.23.239200 OK 9.2 kB URL HTTP/1.1 dimech.com.au/wp-content/cache/min/1/wp-content/themes/fixology/css/servicebox-animation-76612fabe04a16c04ff68e358bd35b7f.css
IP 116.0.23.239:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (9240), with no line terminators
Hash 7cf0c55607293a6958e8a9050690608e
04eb862140671bf0f4380e731529fae8335b42a9
b60c2693c9900b573ab4bb73df7fd6078405a046dd34c0e8bebe4c271da9cafe
GET /wp-content/cache/min/1/wp-content/themes/fixology/css/servicebox-animation-76612fabe04a16c04ff68e358bd35b7f.css HTTP/1.1
Host: dimech.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dimech.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 08:31:45 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 Phusion_Passenger/6.0.7
Last-Modified: Wed, 23 Nov 2022 23:03:00 GMT
ETag: "877f60cf-2418-5ee2b4a459ecd"
Accept-Ranges: bytes
Content-Length: 9240
Connection: close
Content-Type: text/css
dimech.com.au/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
116.0.23.239200 OK 95 kB URL HTTP/1.1 dimech.com.au/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 116.0.23.239:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (47826)
Hash 71d925864153f0edf91037f3d31048e8
cc16a0524ac63b5ce29f703a66412224f0dd771a
c324ef26b20264369e4568dc9ef1c5cb1f325f6bc4e8b7c01f7fe93fa353276a
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: dimech.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dimech.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 08:31:44 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 Phusion_Passenger/6.0.7
Last-Modified: Tue, 29 Nov 2022 02:03:04 GMT
ETag: "4643ae1-172a9-5ee92636b4377"
Accept-Ranges: bytes
Content-Length: 94889
Connection: close
Content-Type: text/css
dimech.com.au/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/font-awesome.min.css?ver=5.4.7
116.0.23.239200 OK 30 kB URL HTTP/1.1 dimech.com.au/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/font-awesome.min.css?ver=5.4.7
IP 116.0.23.239:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (30308)
Hash 4110af76ca2faaef93f91e1b77279b18
03826c6a3754d5cc787d8c01407e9f2fac8e90b8
b719e8b64d94bf16d44b5a331b9028f738286b49d00844a122a1f854ca9c1c2c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/font-awesome.min.css?ver=5.4.7 HTTP/1.1
Host: dimech.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dimech.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 08:31:45 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 Phusion_Passenger/6.0.7
Last-Modified: Sat, 02 Feb 2019 01:35:46 GMT
ETag: "845a47aa-7706-580df474f6080"
Accept-Ranges: bytes
Content-Length: 30470
Connection: close
Content-Type: text/css
dimech.com.au/wp-content/cache/min/1/wp-content/themes/fixology/css/responsive-7fd1c5968b188e39595d9c6944834fab.css
116.0.23.239200 OK 20 kB URL HTTP/1.1 dimech.com.au/wp-content/cache/min/1/wp-content/themes/fixology/css/responsive-7fd1c5968b188e39595d9c6944834fab.css
IP 116.0.23.239:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (20002), with no line terminators
Hash 68cc5821b7280f50d2a01680840e43b3
e692ac8ecfe34bac7064fa8b497ec489e698603d
948bf933daa9ecd5bae77f57e550a7808abaa8ba5e97bf36c1039ec66ed1a750
GET /wp-content/cache/min/1/wp-content/themes/fixology/css/responsive-7fd1c5968b188e39595d9c6944834fab.css HTTP/1.1
Host: dimech.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dimech.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 08:31:45 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 Phusion_Passenger/6.0.7
Last-Modified: Wed, 23 Nov 2022 23:03:00 GMT
ETag: "873c63a1-4e22-5ee2b4a46239e"
Accept-Ranges: bytes
Content-Length: 20002
Connection: close
Content-Type: text/css
dimech.com.au/wp-content/themes/fixology/assets/perfect-scrollbar/perfect-scrollbar.min.css?ver=6.1.1
116.0.23.239200 OK 4.6 kB URL HTTP/1.1 dimech.com.au/wp-content/themes/fixology/assets/perfect-scrollbar/perfect-scrollbar.min.css?ver=6.1.1
IP 116.0.23.239:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (4596)
Hash 1d70207a75af1ddcefcc7cf4006dea73
537e87bf0f66f0c031369bc8431507b708c040b3
0974d5da65373f9848c8ef02ab0b9c906ed85724e2d24f7bc9938be23221990e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/fixology/assets/perfect-scrollbar/perfect-scrollbar.min.css?ver=6.1.1 HTTP/1.1
Host: dimech.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dimech.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 08:31:45 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 Phusion_Passenger/6.0.7
Last-Modified: Sat, 02 Feb 2019 01:35:49 GMT
ETag: "328b6c2-1215-580df477d2740"
Accept-Ranges: bytes
Content-Length: 4629
Connection: close
Content-Type: text/css
dimech.com.au/wp-includes/css/dashicons.min.css?ver=6.1.1
116.0.23.239200 OK 59 kB URL HTTP/1.1 dimech.com.au/wp-includes/css/dashicons.min.css?ver=6.1.1
IP 116.0.23.239:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (58981)
Hash d68d6bf519169d86e155bad0bed833f8
27ba9c67d0e775fc4e6dd62011daf4c3902698fc
c21e5a2b32c47bc5f9d9efc97bc0e29fd081946d1d3ebffc5621cfafb1d3960e
GET /wp-includes/css/dashicons.min.css?ver=6.1.1 HTTP/1.1
Host: dimech.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dimech.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 08:31:45 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 Phusion_Passenger/6.0.7
Last-Modified: Tue, 29 Nov 2022 02:03:04 GMT
ETag: "c1d15392-e688-5ee92636bb0d8"
Accept-Ranges: bytes
Content-Length: 59016
Connection: close
Content-Type: text/css
dimech.com.au/wp-content/themes/fixology/assets/chrisbracco-tooltip/chrisbracco-tooltip.min.css?ver=6.1.1
116.0.23.239200 OK 3.6 kB URL HTTP/1.1 dimech.com.au/wp-content/themes/fixology/assets/chrisbracco-tooltip/chrisbracco-tooltip.min.css?ver=6.1.1
IP 116.0.23.239:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (3512)
Hash 9a6e65e09aea574df54ebf5d7d3b4fcf
71a78ff6950b277b068e6bf87cb18b5528da3acf
48666c03c347486fb736ed1d485327bb4aba5bb28c032d21791e58c7a08004a3
GET /wp-content/themes/fixology/assets/chrisbracco-tooltip/chrisbracco-tooltip.min.css?ver=6.1.1 HTTP/1.1
Host: dimech.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dimech.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 08:31:46 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 Phusion_Passenger/6.0.7
Last-Modified: Sat, 02 Feb 2019 01:35:49 GMT
ETag: "87178157-e07-580df477d2740"
Accept-Ranges: bytes
Content-Length: 3591
Connection: close
Content-Type: text/css
dimech.com.au/wp-content/cache/min/1/wp-content/themes/fixology/css/multi-columns-row-6a132f03a3f2ba1ee7d612d8b9322c74.css
116.0.23.239200 OK 2.5 kB URL HTTP/1.1 dimech.com.au/wp-content/cache/min/1/wp-content/themes/fixology/css/multi-columns-row-6a132f03a3f2ba1ee7d612d8b9322c74.css
IP 116.0.23.239:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (2545), with no line terminators
Hash 342d2bba7cacd7f7f7ae1826e30de912
602f9f932bc9dde196eb0b68b620d25eb241f197
cb8f2d54a084923fc32e6937567e34425b41cb4763313b21c8fc72f8038c31a3
GET /wp-content/cache/min/1/wp-content/themes/fixology/css/multi-columns-row-6a132f03a3f2ba1ee7d612d8b9322c74.css HTTP/1.1
Host: dimech.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dimech.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 08:31:46 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 Phusion_Passenger/6.0.7
Last-Modified: Wed, 23 Nov 2022 23:02:59 GMT
ETag: "873aad85-9f1-5ee2b4a375a53"
Accept-Ranges: bytes
Content-Length: 2545
Connection: close
Content-Type: text/css
dimech.com.au/wp-content/cache/min/1/wp-content/themes/fixology/assets/slick/slick-theme-3a66628f381bb20e9cc587da78103e33.css
116.0.23.239200 OK 2.8 kB URL HTTP/1.1 dimech.com.au/wp-content/cache/min/1/wp-content/themes/fixology/assets/slick/slick-theme-3a66628f381bb20e9cc587da78103e33.css
IP 116.0.23.239:0
ASN #38719 Dreamscape Networks Limited
File type Unicode text, UTF-8 text, with very long lines (2768), with no line terminators
Hash 0c73d0bc09f08c02023c90420f524dc0
ed1976b6be80494257ae3c2f19dd80b65f00ccc2
4ca0a0ee078ac7ba6194f9f87f2fe047390547f69b54adc6bce334d0e417726a
GET /wp-content/cache/min/1/wp-content/themes/fixology/assets/slick/slick-theme-3a66628f381bb20e9cc587da78103e33.css HTTP/1.1
Host: dimech.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dimech.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 08:31:46 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 Phusion_Passenger/6.0.7
Last-Modified: Wed, 23 Nov 2022 23:02:59 GMT
ETag: "873c6397-ada-5ee2b4a37fe65"
Accept-Ranges: bytes
Content-Length: 2778
Connection: close
Content-Type: text/css
dimech.com.au/wp-content/plugins/js_composer/assets/lib/bower/flexslider/flexslider.min.css?ver=5.4.7
116.0.23.239200 OK 3.4 kB URL HTTP/1.1 dimech.com.au/wp-content/plugins/js_composer/assets/lib/bower/flexslider/flexslider.min.css?ver=5.4.7
IP 116.0.23.239:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (3361), with no line terminators
Hash 70eae60ff3a635dc4bb6bdc4bd0a0047
cb118b5f47c5b3b6fe7ff881e35dfd3b5cd2a1da
140000e09548dd2c9397b0b95767d09a05edd53249a1b4ed1a727efd77e05023
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/bower/flexslider/flexslider.min.css?ver=5.4.7 HTTP/1.1
Host: dimech.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dimech.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 08:31:46 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 Phusion_Passenger/6.0.7
Last-Modified: Sat, 02 Feb 2019 01:35:46 GMT
ETag: "c1224865-d21-580df474f6080"
Accept-Ranges: bytes
Content-Length: 3361
Connection: close
Content-Type: text/css
dimech.com.au/wp-content/themes/fixology/assets/select2/select2.min.css?ver=6.1.1
116.0.23.239200 OK 15 kB URL HTTP/1.1 dimech.com.au/wp-content/themes/fixology/assets/select2/select2.min.css?ver=6.1.1
IP 116.0.23.239:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (15195)
Hash d44571114a90b9226cd654d3c7d9442c
83b595db66fbf173436fbca475b8b695ef48eb8e
c493991dfa712d1fee861d41c18152e5f8663807484506a23ae97917f6fbbf7b
GET /wp-content/themes/fixology/assets/select2/select2.min.css?ver=6.1.1 HTTP/1.1
Host: dimech.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dimech.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 08:31:46 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 Phusion_Passenger/6.0.7
Last-Modified: Sat, 02 Feb 2019 01:35:49 GMT
ETag: "87178195-3b5c-580df477d2740"
Accept-Ranges: bytes
Content-Length: 15196
Connection: close
Content-Type: text/css
dimech.com.au/wp-content/plugins/js_composer/assets/lib/prettyphoto/css/prettyPhoto.min.css?ver=5.4.7
116.0.23.239200 OK 21 kB URL HTTP/1.1 dimech.com.au/wp-content/plugins/js_composer/assets/lib/prettyphoto/css/prettyPhoto.min.css?ver=5.4.7
IP 116.0.23.239:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (20683), with no line terminators
Hash 636df934ff7ee5f7dd543cfbbcb56d84
90319aba683022773d6bcf9c1d29e63e5ee14390
621f468d7eaedbc506c59504cad2ce157d8ed0e59ac70ce73d48b9b744460fd4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/prettyphoto/css/prettyPhoto.min.css?ver=5.4.7 HTTP/1.1
Host: dimech.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dimech.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 08:31:46 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 Phusion_Passenger/6.0.7
Last-Modified: Sat, 02 Feb 2019 01:35:46 GMT
ETag: "845a47b0-50cb-580df474f6080"
Accept-Ranges: bytes
Content-Length: 20683
Connection: close
Content-Type: text/css
dimech.com.au/wp-content/cache/min/1/3498236e17734f68c4ad3a402fbbb2aa.js
116.0.23.239200 OK 399 kB URL HTTP/1.1 dimech.com.au/wp-content/cache/min/1/3498236e17734f68c4ad3a402fbbb2aa.js
IP 116.0.23.239:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (40696)
Size 399 kB (399305 bytes)
Hash bd6d1f12a23ee709131fe7d6aa77bed1
70e819bcc3c3cb65350f4ef9a44c9db79103850c
b32ae58400a5b6a867bc910e4206e0830722a446e8dd5080d9e0b633fc7e12d8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/cache/min/1/3498236e17734f68c4ad3a402fbbb2aa.js HTTP/1.1
Host: dimech.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dimech.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 08:31:45 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 Phusion_Passenger/6.0.7
Last-Modified: Tue, 08 Nov 2022 21:43:30 GMT
ETag: "86fa6fee-617c9-5ecfc6e56a91f"
Accept-Ranges: bytes
Content-Length: 399305
Connection: close
Content-Type: application/javascript
dimech.com.au/wp-content/themes/fixology/css/bootstrap-theme.min.css?ver=6.1.1
116.0.23.239200 OK 23 kB URL HTTP/1.1 dimech.com.au/wp-content/themes/fixology/css/bootstrap-theme.min.css?ver=6.1.1
IP 116.0.23.239:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (23220), with no line terminators
Hash 1a9aba7380bc383ac5959ec009055587
64c52e7407a44d2e30f594dd6d303162179cfd7b
a7b8d4b71955ba10bb2e7f446d84527bd37974cfd7c1ba577bc79f440b30fde1
GET /wp-content/themes/fixology/css/bootstrap-theme.min.css?ver=6.1.1 HTTP/1.1
Host: dimech.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dimech.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 08:31:47 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 Phusion_Passenger/6.0.7
Last-Modified: Sat, 02 Feb 2019 01:35:49 GMT
ETag: "871781a9-5ab4-580df477d2740"
Accept-Ranges: bytes
Content-Length: 23220
Connection: close
Content-Type: text/css
dimech.com.au/wp-content/themes/fixology/css/bootstrap.min.css?ver=6.1.1
116.0.23.239200 OK 117 kB URL HTTP/1.1 dimech.com.au/wp-content/themes/fixology/css/bootstrap.min.css?ver=6.1.1
IP 116.0.23.239:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (65536), with no line terminators
Size 117 kB (117009 bytes)
Hash 9cfaf05d27d9a0eb9ca47e682ea864d3
b8988e1d98c20cff20244047176d32dff6db1218
674cdcc4116eedf31bed51e12647b4fdefeb6dc08e7d024b92c25e6b9cfad0bf
GET /wp-content/themes/fixology/css/bootstrap.min.css?ver=6.1.1 HTTP/1.1
Host: dimech.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dimech.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 08:31:46 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 Phusion_Passenger/6.0.7
Last-Modified: Sat, 02 Feb 2019 01:35:49 GMT
ETag: "871781ab-1c911-580df477d2740"
Accept-Ranges: bytes
Content-Length: 117009
Connection: close
Content-Type: text/css
dimech.com.au/wp-content/themes/fixology/css/fixology-last-checkpoint.min.css?ver=6.1.1
116.0.23.239200 OK 0 B URL HTTP/1.1 dimech.com.au/wp-content/themes/fixology/css/fixology-last-checkpoint.min.css?ver=6.1.1
IP 116.0.23.239:0
ASN #38719 Dreamscape Networks Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/themes/fixology/css/fixology-last-checkpoint.min.css?ver=6.1.1 HTTP/1.1
Host: dimech.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dimech.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 08:31:48 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 Phusion_Passenger/6.0.7
Last-Modified: Sat, 02 Feb 2019 01:35:49 GMT
ETag: "871781b3-0-580df477d2740"
Accept-Ranges: bytes
Content-Length: 0
Connection: close
Content-Type: text/css
dimech.com.au/wp-content/plugins/dk-pricr-responsive-pricing-table/inc/css/rpt_style.min.css?ver=5.1.6
116.0.23.239200 OK 7.9 kB URL HTTP/1.1 dimech.com.au/wp-content/plugins/dk-pricr-responsive-pricing-table/inc/css/rpt_style.min.css?ver=5.1.6
IP 116.0.23.239:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (7847)
Hash 7cb0ca02e093f9bf30d25cb41de65cba
f18706150e5688bc61fb6292f806e73edaa12f69
081091118e8bd10a591b771435766141d34d981577c5061ab4ea75fd4786796c
GET /wp-content/plugins/dk-pricr-responsive-pricing-table/inc/css/rpt_style.min.css?ver=5.1.6 HTTP/1.1
Host: dimech.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dimech.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 08:31:48 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 Phusion_Passenger/6.0.7
Last-Modified: Tue, 08 Nov 2022 21:34:00 GMT
ETag: "3264963-1efa-5ecfc4c5c8d0d"
Accept-Ranges: bytes
Content-Length: 7930
Connection: close
Content-Type: text/css
dimech.com.au/wp-content/cache/min/1/wp-content/plugins/call-now-button/resources/style/modern-e80fa4586a1f049057f4bbe97434a2d4.css
116.0.23.239200 OK 2.9 kB URL HTTP/1.1 dimech.com.au/wp-content/cache/min/1/wp-content/plugins/call-now-button/resources/style/modern-e80fa4586a1f049057f4bbe97434a2d4.css
IP 116.0.23.239:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (2910), with no line terminators
Hash 3c4001505fdb4da50ce29eddfcaa0243
1d251ac899522a0906987311cccc985d2e1e9510
b5ec5b4ce718aa246ef1c854ed31c98e7c3c37f78c96057b8d47f5b38d520591
GET /wp-content/cache/min/1/wp-content/plugins/call-now-button/resources/style/modern-e80fa4586a1f049057f4bbe97434a2d4.css HTTP/1.1
Host: dimech.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dimech.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 08:31:48 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 Phusion_Passenger/6.0.7
Last-Modified: Tue, 08 Nov 2022 21:43:31 GMT
ETag: "86fb7ee4-b5e-5ecfc6e5e8101"
Accept-Ranges: bytes
Content-Length: 2910
Connection: close
Content-Type: text/css
dimech.com.au/wp-content/cache/min/1/wp-content/themes/fixology/assets/tm-fixology-icons/css/tm-fixology-icons-01db447dbe90f4b3dc0a6ab282fa9c1e.css
116.0.23.239200 OK 4.9 kB URL HTTP/1.1 dimech.com.au/wp-content/cache/min/1/wp-content/themes/fixology/assets/tm-fixology-icons/css/tm-fixology-icons-01db447dbe90f4b3dc0a6ab282fa9c1e.css
IP 116.0.23.239:0
ASN #38719 Dreamscape Networks Limited
File type Unicode text, UTF-8 text, with very long lines (4856), with no line terminators
Hash a0173eaf7798def237d77aa8bb5165bc
b48b6fd8ffb63bb4eda301a889742bd760f732d4
fcb321880838aba2a90f21983bc26fa0e2bd61e087ab074e0569d07467a649e2
GET /wp-content/cache/min/1/wp-content/themes/fixology/assets/tm-fixology-icons/css/tm-fixology-icons-01db447dbe90f4b3dc0a6ab282fa9c1e.css HTTP/1.1
Host: dimech.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dimech.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 08:31:49 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 Phusion_Passenger/6.0.7
Last-Modified: Wed, 23 Nov 2022 23:02:59 GMT
ETag: "4019b53b-12fb-5ee2b4a37db3d"
Accept-Ranges: bytes
Content-Length: 4859
Connection: close
Content-Type: text/css
dimech.com.au/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=5.4.7
116.0.23.239200 OK 462 kB URL HTTP/1.1 dimech.com.au/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=5.4.7
IP 116.0.23.239:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (65536), with no line terminators
Size 462 kB (462190 bytes)
Hash db26595fc53642e6094cc2d9da062c89
74c988a1a0baa8af05676080057b41975f9a4cdb
f46bb0aafc668b4a997c8f2bf2b9612722575d5123d728ee15924ae9b2b9e1b1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=5.4.7 HTTP/1.1
Host: dimech.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dimech.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 08:31:46 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 Phusion_Passenger/6.0.7
Last-Modified: Sat, 02 Feb 2019 01:35:46 GMT
ETag: "c1223a92-70d6e-580df474f6080"
Accept-Ranges: bytes
Content-Length: 462190
Connection: close
Content-Type: text/css
dimech.com.au/wp-content/cache/min/1/wp-content/themes/fixology/assets/slick/slick-fa129c5c2d7970499c557ddab319af71.css
116.0.23.239200 OK 1.3 kB URL HTTP/1.1 dimech.com.au/wp-content/cache/min/1/wp-content/themes/fixology/assets/slick/slick-fa129c5c2d7970499c557ddab319af71.css
IP 116.0.23.239:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (1297), with no line terminators
Hash 95693ccf6689c9751f16b3cce296f766
f49316134b8dd1cd53c924524b2a0d9eb1842c88
21b589bbc25d38fbf4c8168b0801ce4cf9d0aa1d372ae1ac773574aaeb10c08d
GET /wp-content/cache/min/1/wp-content/themes/fixology/assets/slick/slick-fa129c5c2d7970499c557ddab319af71.css HTTP/1.1
Host: dimech.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dimech.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 08:31:49 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 Phusion_Passenger/6.0.7
Last-Modified: Wed, 23 Nov 2022 23:02:59 GMT
ETag: "873c6396-511-5ee2b4a37eec5"
Accept-Ranges: bytes
Content-Length: 1297
Connection: close
Content-Type: text/css
dimech.com.au/wp-content/cache/min/1/wp-content/themes/fixology/css/main-bcaf5dfc6ec3bc507c24b7312067c0db.css
116.0.23.239200 OK 249 kB URL HTTP/1.1 dimech.com.au/wp-content/cache/min/1/wp-content/themes/fixology/css/main-bcaf5dfc6ec3bc507c24b7312067c0db.css
IP 116.0.23.239:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (65536), with no line terminators
Size 249 kB (249266 bytes)
Hash 6cd0cf2049b2a67eb92ec6c08c439f2e
f19c9de5a53be92803b780af04cc91ec1c2c88b5
f516138649f596504fbdbbb8caf917c8a836f816091fe46cf32ef71da3479bde
GET /wp-content/cache/min/1/wp-content/themes/fixology/css/main-bcaf5dfc6ec3bc507c24b7312067c0db.css HTTP/1.1
Host: dimech.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dimech.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 08:31:47 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 Phusion_Passenger/6.0.7
Last-Modified: Wed, 23 Nov 2022 23:03:00 GMT
ETag: "873c639b-3cdb2-5ee2b4a459315"
Accept-Ranges: bytes
Content-Length: 249266
Connection: close
Content-Type: text/css
dimech.com.au/wp-content/plugins/js_composer/assets/css/js_composer_tta.min.css?ver=6.1.1
116.0.23.239200 OK 316 kB URL HTTP/1.1 dimech.com.au/wp-content/plugins/js_composer/assets/css/js_composer_tta.min.css?ver=6.1.1
IP 116.0.23.239:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (65536), with no line terminators
Size 316 kB (316247 bytes)
Hash a36a9e9b3978dcd28f27710051587947
9c3e922860c608182dbe0fd217ffb299013d8f17
e6a6a0c2a744fc0d665244acab63b9ac3b43779414217bc62a7698e31d5471de
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/css/js_composer_tta.min.css?ver=6.1.1 HTTP/1.1
Host: dimech.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dimech.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 08:31:47 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 Phusion_Passenger/6.0.7
Last-Modified: Sat, 02 Feb 2019 01:35:46 GMT
ETag: "c1223a97-4d357-580df474f6080"
Accept-Ranges: bytes
Content-Length: 316247
Connection: close
Content-Type: text/css
dimech.com.au/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
116.0.23.239200 OK 90 kB URL HTTP/1.1 dimech.com.au/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 116.0.23.239:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (65447)
Hash 17738318d61d394f1de8890d589afaec
f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3
cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: dimech.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dimech.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 08:31:48 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 Phusion_Passenger/6.0.7
Last-Modified: Tue, 29 Nov 2022 02:03:04 GMT
ETag: "406bde7d-15e54-5ee926373c73b"
Accept-Ranges: bytes
Content-Length: 89684
Connection: close
Content-Type: application/javascript
dimech.com.au/wp-content/cache/min/1/wp-content/themes/fixology/css/base-1e8549d5936a78810e6648bbaf4119a0.css
116.0.23.239200 OK 162 kB URL HTTP/1.1 dimech.com.au/wp-content/cache/min/1/wp-content/themes/fixology/css/base-1e8549d5936a78810e6648bbaf4119a0.css
IP 116.0.23.239:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (65536), with no line terminators
Size 162 kB (161780 bytes)
Hash 0549d40e5645701b8d5dbc76415a4cfe
f6cf7f121a6557fd66d26d452d940c65895cfeb8
7f777dab469288ac071d475af3fbc680815cf882156e09dca44ac94db34a0fb5
GET /wp-content/cache/min/1/wp-content/themes/fixology/css/base-1e8549d5936a78810e6648bbaf4119a0.css HTTP/1.1
Host: dimech.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dimech.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 08:31:49 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 Phusion_Passenger/6.0.7
Last-Modified: Wed, 23 Nov 2022 23:02:59 GMT
ETag: "873c6399-277f4-5ee2b4a3bb78e"
Accept-Ranges: bytes
Content-Length: 161780
Connection: close
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 08:31:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 08:31:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 08:31:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 08:31:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 08:31:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
216.58.207.195200 OK 46 kB URL HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Hash c1fd378f54921c75e4ae1821e7b8fff6
2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826
GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dimech.com.au
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 21:13:13 GMT
expires: Tue, 28 Nov 2023 21:13:13 GMT
cache-control: public, max-age=31536000
age: 40718
last-modified: Mon, 18 Jul 2022 19:58:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/arimo/v27/P5sMzZCDf9_T_10ZxCE.woff2
216.58.207.195200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/arimo/v27/P5sMzZCDf9_T_10ZxCE.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 18260, version 1.0\012- data
Hash 6dea752293556883fdae057d588b0bb1
e4d090e03bb920f5ddf7b09937428b2a0a2a9ee0
1ff84f1e03eb15dedc4668f0817372b734934076bc936e12c5c0bd3944dab0c0
GET /s/arimo/v27/P5sMzZCDf9_T_10ZxCE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dimech.com.au
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18260
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 17:03:36 GMT
expires: Fri, 24 Nov 2023 17:03:36 GMT
cache-control: public, max-age=31536000
age: 401295
last-modified: Mon, 11 Jul 2022 21:03:24 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.195200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dimech.com.au
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 16:40:18 GMT
expires: Fri, 24 Nov 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 402693
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 08:31:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dimech.com.au/wp-content/plugins/js_composer/assets/vc/exclamation.png
116.0.23.239200 OK 495 B URL HTTP/1.1 dimech.com.au/wp-content/plugins/js_composer/assets/vc/exclamation.png
IP 116.0.23.239:0
ASN #38719 Dreamscape Networks Limited
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 9bf11ae175d5ad949683e5f18c164025
0010960ccd2a3d48da0a0ce2ae2e7085e546bae2
e90936b81c8036c503778abc6635b0d5f778526ddaebaff5ebc0024b82c69929
GET /wp-content/plugins/js_composer/assets/vc/exclamation.png HTTP/1.1
Host: dimech.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dimech.com.au/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=5.4.7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 08:31:51 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 Phusion_Passenger/6.0.7
Last-Modified: Sat, 02 Feb 2019 01:35:46 GMT
ETag: "40623c65-1ef-580df474f6080"
Accept-Ranges: bytes
Content-Length: 495
Connection: close
Content-Type: image/png
www.clickcease.com/monitor/stat.js
54.230.111.123200 OK 0 B URL HTTP/2 www.clickcease.com/monitor/stat.js
IP 54.230.111.123:0
GET /monitor/stat.js HTTP/1.1
Host: www.clickcease.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dimech.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 22 Nov 2022 11:31:37 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 6Er2d0GJvgnFniPQXIH7h8kzG7dJBNJf
server: AmazonS3
content-encoding: gzip
date: Tue, 29 Nov 2022 08:31:50 GMT
etag: W/"1c27f449b067550681f23ad3e53988fa"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2gdwe36cb1dwWDXOJUAlZN8pf-yQ4Hb6Ilasw__jXo0HR-TBwE8nAA==
age: 1
X-Firefox-Spdy: h2
dimech.com.au/wp-content/uploads/2020/07/Dimech_Hero_CMYK.jpg
116.0.23.239200 OK 0 B URL HTTP/1.1 dimech.com.au/wp-content/uploads/2020/07/Dimech_Hero_CMYK.jpg
IP 116.0.23.239:0
ASN #38719 Dreamscape Networks Limited
GET /wp-content/uploads/2020/07/Dimech_Hero_CMYK.jpg HTTP/1.1
Host: dimech.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dimech.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 08:31:50 GMT
Server: Apache/2.4.54 (cPanel) OpenSSL/1.1.1q mod_bwlimited/1.4 Phusion_Passenger/6.0.7
Last-Modified: Wed, 01 Jul 2020 06:00:04 GMT
ETag: "40666666-1536b-5a95b00cb6100"
Accept-Ranges: bytes
Content-Length: 86891
Connection: close
Content-Type: image/jpeg