firefox.settings.services.mozilla.com/v1/
18.164.68.21200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 18.164.68.21:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 02 Oct 2022 11:03:10 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 8eb76cf20c60ae36d4b347142eaf1140.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P4
X-Amz-Cf-Id: MCM9EBnPu1rOwkpmrBQMKh0jDZUppiaU3i7YhP3g584urZiJnEzPDA==
Age: 3558
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 60e4edea7b5f4d19f3547a3bb2d5df57
3ee076bab4da3416c2c5808f730cb316c28baef7
763e2dadfdd286a51327cd2000ca335e30cd0b9b7267875d22ca33f7556ba200
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763E2DADFDD286A51327CD2000CA335E30CD0B9B7267875D22CA33F7556BA200"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5636
Expires: Sun, 02 Oct 2022 13:36:24 GMT
Date: Sun, 02 Oct 2022 12:02:28 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
108.156.28.51200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 108.156.28.51:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 02 Oct 2022 03:33:17 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 f793ce54a443ce6e9ca85f518dd4fd36.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: UBMBiYmQzFvfJVc4SeYyrO6BI9_5medOad0pgAgIai-YbbX5wO-oJA==
age: 30552
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 12:02:28 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
actp.com.au/public/okc3dtsfizmfwf2lahcdtbynd8htzfy1
116.0.23.145301 Moved Permanently 328 B URL HTTP/1.1 actp.com.au/public/okc3dtsfizmfwf2lahcdtbynd8htzfy1
IP 116.0.23.145:0
ASN #38719 Dreamscape Networks Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 1e03ec34c5dbda3bdd36f4df4e20bcb6
e7a42251f5e0c42d0c843a45447406511dee287e
619c9bbf6ff89123db9c2b73637be0f275e3c1dec1baad5f0c4052e767ea1736
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /public/okc3dtsfizmfwf2lahcdtbynd8htzfy1 HTTP/1.1
Host: actp.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 02 Oct 2022 12:02:28 GMT
Server: Apache
Location: https://actp.com.au/public/okc3dtsfizmfwf2lahcdtbynd8htzfy1
Content-Length: 328
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
18.164.68.21200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 18.164.68.21:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Sun, 02 Oct 2022 11:17:15 GMT
Expires: Sun, 02 Oct 2022 11:51:50 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 9f698c14e6527accab310c26bfca2030.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P4
X-Amz-Cf-Id: -1q7hxXEl5ERY76ToCDfNQavnTgV4DINoTLP3pOqVQUUh6qtI4nZdA==
Age: 2713
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4eb30b4a4234809cf7d5f89fa1f6ceeb
797242aab2f13c820050aa9accd11b7b950cd177
ce9d833a0ac321a908184b655d6632c481f758a04a9c936a7c303bb253444146
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4505
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 12:02:29 GMT
Last-Modified: Sun, 02 Oct 2022 10:47:24 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
44.238.202.79101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.238.202.79:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: zlgnMVVD8CHL1ib7uV1mQw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: uQvYZYFATX+9baq6TzFpkjdeJ8g=
actp.com.au/public/okc3dtsfizmfwf2lahcdtbynd8htzfy1
116.0.23.145302 Found 350 B URL HTTP/1.1 actp.com.au/public/okc3dtsfizmfwf2lahcdtbynd8htzfy1
IP 116.0.23.145:0
ASN #38719 Dreamscape Networks Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ee28c74231c5f157aa7750e3329cad60
753f74c52ed0bd32a2e755ca5cb13b758d9d789a
31e323b2c7596bb5ef6c05487170eb74227b56dae6dd017fa85acd4d80a46df4
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /public/okc3dtsfizmfwf2lahcdtbynd8htzfy1 HTTP/1.1
Host: actp.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found
Date: Sun, 02 Oct 2022 12:02:29 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6Ing1OXo3UnhvYkRZa2FpYTNyZUxOZFE9PSIsInZhbHVlIjoiWTlIK24ydzVNNWtUYUZiWWJ2WTV2RXlqZFRSK2lYbXhjY2V6dFc2K09kbVRWMDRCSTQwb002WmRvM0cwUUVjMWh4UFNFV24wdWlSOWkvSnVNU09ibkxZOE5uaGdLZWdyMVdPemdIT0FZeEh6UkkwN21vckJqZEN4WXNtSm1YYzEiLCJtYWMiOiIwMzRhNzE2MzU0MDg5NzBhYzU1ODIxZTViYTc3M2UwZWExOTFmYzVlZWJmYjY1YzFiYWZhNjc1OGM5NjIwYjY4IiwidGFnIjoiIn0%3D; expires=Sun, 02-Oct-2022 14:02:29 GMT; Max-Age=7200; path=/; samesite=lax
laravel_session=eyJpdiI6ImtSQ2pWdE4vMzZzQ090QVFLTjdsUWc9PSIsInZhbHVlIjoiUEpmNkRrVE9QRWh4RzdMN3UvS3RTTEV2bDV2Qjh6MExBRHYxdXVKNkN3YmZiSVd0b1ErQm02NUo2R3ZyU1ppSnMvSmF2YmNmSTN2bFhQWXZ0a2NLQ2tERG5pSTFZb0pZaXpGYTlhOGxtcHN4UHBwTSswWjQzSHZ6VGEzWjkwNi8iLCJtYWMiOiJkMzA3YjZjZWNkZDhmYTc5ODEwYWZhNWI1MDNhMTY3YjUyZGYyZTVhMTRkNzc4MTIyYmM2ZmYyOTU1MmYwMWI4IiwidGFnIjoiIn0%3D; expires=Sun, 02-Oct-2022 14:02:29 GMT; Max-Age=7200; path=/; httponly; samesite=lax
Location: https://actp.com.au/public
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
actp.com.au/public
116.0.23.145301 Moved Permanently 297 B IP 116.0.23.145:0
ASN #38719 Dreamscape Networks Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 76c79e8c0606e3e43c559c7ebf4c0944
3e21fe54ee775d3e0dea6d15fb402229f610c0e9
7eee1245e16d3ae0e65479a6cab28eb506657142b6cc581a232374408ed67858
Analyzer Verdict Alert fortinet Phishing
GET /public HTTP/1.1
Host: actp.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6Ing1OXo3UnhvYkRZa2FpYTNyZUxOZFE9PSIsInZhbHVlIjoiWTlIK24ydzVNNWtUYUZiWWJ2WTV2RXlqZFRSK2lYbXhjY2V6dFc2K09kbVRWMDRCSTQwb002WmRvM0cwUUVjMWh4UFNFV24wdWlSOWkvSnVNU09ibkxZOE5uaGdLZWdyMVdPemdIT0FZeEh6UkkwN21vckJqZEN4WXNtSm1YYzEiLCJtYWMiOiIwMzRhNzE2MzU0MDg5NzBhYzU1ODIxZTViYTc3M2UwZWExOTFmYzVlZWJmYjY1YzFiYWZhNjc1OGM5NjIwYjY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImtSQ2pWdE4vMzZzQ090QVFLTjdsUWc9PSIsInZhbHVlIjoiUEpmNkRrVE9QRWh4RzdMN3UvS3RTTEV2bDV2Qjh6MExBRHYxdXVKNkN3YmZiSVd0b1ErQm02NUo2R3ZyU1ppSnMvSmF2YmNmSTN2bFhQWXZ0a2NLQ2tERG5pSTFZb0pZaXpGYTlhOGxtcHN4UHBwTSswWjQzSHZ6VGEzWjkwNi8iLCJtYWMiOiJkMzA3YjZjZWNkZDhmYTc5ODEwYWZhNWI1MDNhMTY3YjUyZGYyZTVhMTRkNzc4MTIyYmM2ZmYyOTU1MmYwMWI4IiwidGFnIjoiIn0%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 301 Moved Permanently
Date: Sun, 02 Oct 2022 12:02:29 GMT
Server: Apache
Location: https://actp.com.au/public/
Content-Length: 297
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8d59ee7b197f347e30ac793231158927
3316937f84c08ad1857d2f663dca353e250815f0
c17a343ceb786a421f8c3abfffae350e12c92271a69fc88eb8e8bab568877d6b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C17A343CEB786A421F8C3ABFFFAE350E12C92271A69FC88EB8E8BAB568877D6B"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2203
Expires: Sun, 02 Oct 2022 12:39:13 GMT
Date: Sun, 02 Oct 2022 12:02:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8d59ee7b197f347e30ac793231158927
3316937f84c08ad1857d2f663dca353e250815f0
c17a343ceb786a421f8c3abfffae350e12c92271a69fc88eb8e8bab568877d6b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C17A343CEB786A421F8C3ABFFFAE350E12C92271A69FC88EB8E8BAB568877D6B"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2203
Expires: Sun, 02 Oct 2022 12:39:13 GMT
Date: Sun, 02 Oct 2022 12:02:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8d59ee7b197f347e30ac793231158927
3316937f84c08ad1857d2f663dca353e250815f0
c17a343ceb786a421f8c3abfffae350e12c92271a69fc88eb8e8bab568877d6b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C17A343CEB786A421F8C3ABFFFAE350E12C92271A69FC88EB8E8BAB568877D6B"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2203
Expires: Sun, 02 Oct 2022 12:39:13 GMT
Date: Sun, 02 Oct 2022 12:02:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8d59ee7b197f347e30ac793231158927
3316937f84c08ad1857d2f663dca353e250815f0
c17a343ceb786a421f8c3abfffae350e12c92271a69fc88eb8e8bab568877d6b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C17A343CEB786A421F8C3ABFFFAE350E12C92271A69FC88EB8E8BAB568877D6B"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2203
Expires: Sun, 02 Oct 2022 12:39:13 GMT
Date: Sun, 02 Oct 2022 12:02:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8d59ee7b197f347e30ac793231158927
3316937f84c08ad1857d2f663dca353e250815f0
c17a343ceb786a421f8c3abfffae350e12c92271a69fc88eb8e8bab568877d6b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C17A343CEB786A421F8C3ABFFFAE350E12C92271A69FC88EB8E8BAB568877D6B"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2203
Expires: Sun, 02 Oct 2022 12:39:13 GMT
Date: Sun, 02 Oct 2022 12:02:30 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18b1ba6d-ca56-4474-afa8-cd3b53cce28e.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18b1ba6d-ca56-4474-afa8-cd3b53cce28e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6047192460abf4afd600948abb5e6ee1
6d6d52fb5024e7772dd45dd459bfe3ec90cb5ce4
d1fd21a5913f6831d2128c8e9e84767d9730bf9e779da5395dc31b82a10e32e9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18b1ba6d-ca56-4474-afa8-cd3b53cce28e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9340
x-amzn-requestid: e892265e-836d-4638-871f-0548eda57745
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWDf8FCEoAMFyow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b2cc-7f39bb92066a75a90868dd03;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:36:12 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Sk1Dahp1gliiBIghSCZselE7-Fy45svrCk7TdmunOwNefSNqY1P1jA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:47:23 GMT
age: 51307
etag: "6d6d52fb5024e7772dd45dd459bfe3ec90cb5ce4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63464d04-a2f9-451b-a399-53362af292c5.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63464d04-a2f9-451b-a399-53362af292c5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d99550eb468960005df780c03ab6ecfc
03111ce2048e8bc5be100ff3a746da2e664f8aab
9dcd18e02621fa95d846be7c951e7353f24aa68a282ee0b693e7e5da38c3cfcb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63464d04-a2f9-451b-a399-53362af292c5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10679
x-amzn-requestid: fae3b86e-6f85-485f-81e4-22b7b17f30f0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWRkYF2tIAMF-OQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338c94f-486c76da111696471e3905f2;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:12:15 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: CU4YQ3XmxAexkl1rn7BOCSyqyIB12Ff9gMMXqVta5JgIIwQZmUCVMg==
via: 1.1 73b60e9a9fd08eae9e034cedba707280.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 08:04:33 GMT
age: 14277
etag: "03111ce2048e8bc5be100ff3a746da2e664f8aab"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb5f775-a073-47ba-b076-ad1c96659b64.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb5f775-a073-47ba-b076-ad1c96659b64.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash edded48f558f739287a040151349ef67
d63b6ba630736d32c364b0e6a369274b2389b7ff
33b4a459df0ba7b36b907ba96d74e08660cc75640c42a5748b97d18ec2e9d533
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb5f775-a073-47ba-b076-ad1c96659b64.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11083
x-amzn-requestid: 53e2c961-bcc0-4977-8648-ee3c1aed9cde
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWEHRFWfIAMFhlA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b3c7-070212d7386d5efa1b4aa8d3;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:40:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Z1KmxHJh9QNfg5x0enkqOjbmiqHvg7nlQiMnuDuCRNWQUBFEiKELbw==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:53:35 GMT
etag: "d63b6ba630736d32c364b0e6a369274b2389b7ff"
content-type: image/jpeg
age: 50935
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d657f8a-70bc-42c6-9aae-1127c4403047.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d657f8a-70bc-42c6-9aae-1127c4403047.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 94d82ad8d70761f6ee1384b4183335f3
5d3389a965cfa45dab2202d89b40264368674e8a
ad495dc0ede3bfcbaebfd3bf2eb55fc5596cd7643a539e030ccce0b8a3bcf8dd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d657f8a-70bc-42c6-9aae-1127c4403047.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8602
x-amzn-requestid: 89329169-bc7a-46b1-85fc-20383a85cae8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWDf9GxzoAMFg0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b2cc-27952f8357fa25c956b1cd72;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:36:12 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: YDfn3Xd8m6jaBrj_M9hs4dePku_eEhJbYv3NJSHjCdAWifhBkiKUhw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:53:38 GMT
age: 50932
etag: "5d3389a965cfa45dab2202d89b40264368674e8a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd4280e4-6b15-45b7-9469-d13ba14c37db.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd4280e4-6b15-45b7-9469-d13ba14c37db.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9dddb9d84a16a3004821d89836b83dc3
087521979efd5936416fd7f030779fa5725f0a8f
a6251ac43958031d765b5743d43e14bc04b1e465bed81f757c3609ee6f2bea66
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd4280e4-6b15-45b7-9469-d13ba14c37db.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6871
x-amzn-requestid: e1fdb2ee-c0e7-4a0c-ae26-d968aef00503
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWEIOGp2IAMFxSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b3ce-24b26a8048ffd84071a2ad57;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:40:30 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: -svKnYBuiMSdWObzJyNah9TDIi6IuPP6VMzEJWmn0zxoZbFmwpzkJw==
via: 1.1 c07670802688417c8b871124c547eb0a.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:53:35 GMT
age: 50935
etag: "087521979efd5936416fd7f030779fa5725f0a8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 206fb65e75dbadf119512f71e0b78402
58ff0bf8ce7528b303d28bab01a80ad721705569
56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5sAzc5Ewv4g6Wqq6JJiLylG3Jyy_nlWrr5Oteeo6ebEgq7Rvss4XaQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 04:41:39 GMT
age: 26451
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
actp.com.au/public/
116.0.23.145200 OK 539 B IP 116.0.23.145:0
ASN #38719 Dreamscape Networks Limited
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 1310ff07772d338271edecf0b76f3de4
34ac0ec6e6878e4824346ee482c71814324ac7bb
a3dc60f47985f85854f3d9d6fcaf350df780ae67101d11f07de85b67479d33ce
Analyzer Verdict Alert fortinet Phishing
GET /public/ HTTP/1.1
Host: actp.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6Ing1OXo3UnhvYkRZa2FpYTNyZUxOZFE9PSIsInZhbHVlIjoiWTlIK24ydzVNNWtUYUZiWWJ2WTV2RXlqZFRSK2lYbXhjY2V6dFc2K09kbVRWMDRCSTQwb002WmRvM0cwUUVjMWh4UFNFV24wdWlSOWkvSnVNU09ibkxZOE5uaGdLZWdyMVdPemdIT0FZeEh6UkkwN21vckJqZEN4WXNtSm1YYzEiLCJtYWMiOiIwMzRhNzE2MzU0MDg5NzBhYzU1ODIxZTViYTc3M2UwZWExOTFmYzVlZWJmYjY1YzFiYWZhNjc1OGM5NjIwYjY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImtSQ2pWdE4vMzZzQ090QVFLTjdsUWc9PSIsInZhbHVlIjoiUEpmNkRrVE9QRWh4RzdMN3UvS3RTTEV2bDV2Qjh6MExBRHYxdXVKNkN3YmZiSVd0b1ErQm02NUo2R3ZyU1ppSnMvSmF2YmNmSTN2bFhQWXZ0a2NLQ2tERG5pSTFZb0pZaXpGYTlhOGxtcHN4UHBwTSswWjQzSHZ6VGEzWjkwNi8iLCJtYWMiOiJkMzA3YjZjZWNkZDhmYTc5ODEwYWZhNWI1MDNhMTY3YjUyZGYyZTVhMTRkNzc4MTIyYmM2ZmYyOTU1MmYwMWI4IiwidGFnIjoiIn0%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 12:02:29 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6IjB2VG9tRzBMMFRDTllvS3JFOHpPZUE9PSIsInZhbHVlIjoiNnBtSUVLblp6UlVHdW5sY3BaQTBzWTU4QVo0WFJROWlhSjd0bzZtTEkvTXdRVWtua2U4VHFTWjd3MUVwdGdWekhWeDFydG8zNnhaZW1XaW5QVmxRL09DN2w5TG1iRWNsN3p2Z3I5ak4zc3Q5YnhQY2RFOVNUQThidVZ5MGczcEUiLCJtYWMiOiIyODc3YjhjMzEwMWY1MTk1NWFkNDAyYTIxNjVhY2U5YWY4Yzk5ZWNhM2Q1MmM1MWI0ZGM5NzU1ZjEyZGJmYWFmIiwidGFnIjoiIn0%3D; expires=Sun, 02-Oct-2022 14:02:30 GMT; Max-Age=7200; path=/; samesite=lax
laravel_session=eyJpdiI6Ik1KZzEwekVEdm11UGFOQko2T2pmRGc9PSIsInZhbHVlIjoiWEdOcU9XaHpjVUN3ZzVBNEtEV2ZMMTMvQ1JSQkxNd3lqdVJaS3JodUNmRnUrTGFxNzFTN1I3VTgyamNJc3pJcEZidmhGVXhYQUtoY0xFbXpkLzJOZmhyd0ZYNU5sdmVUZmdHWitUMTduS2p4L2k1aTE5emJpeFJHM1Z2Si90R04iLCJtYWMiOiIzMmE3NzFjNjc1Yjk1ZDg4ZmE1Mzc0ZmQxZmVjYzlhMzJjZWNlY2IzM2Y0Njg0NDg0ZDFjZGNjNDJhNzRjMjgzIiwidGFnIjoiIn0%3D; expires=Sun, 02-Oct-2022 14:02:30 GMT; Max-Age=7200; path=/; httponly; samesite=lax
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
files.killbot.org/.cdn-cgi/killbot-security.js
172.67.166.105404 Not Found 429 B URL HTTP/2 files.killbot.org/.cdn-cgi/killbot-security.js
IP 172.67.166.105:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 6a80a77476c4335474133b25ba59cf9a
dd3127ef99c5b71b00d20cefc6ba6706e5c3ff62
de7dcec68a60640a6601efebd3edf1af2978eb81abd988fa0cd022bdb71e91be
GET /.cdn-cgi/killbot-security.js HTTP/1.1
Host: files.killbot.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actp.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Sun, 02 Oct 2022 12:02:31 GMT
content-type: text/html
content-security-policy: default-src 'self' http: https: data: blob: 'unsafe-inline' 'unsafe-eval'
cache-control: max-age=14400
cf-cache-status: HIT
age: 121
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FGAD5%2FwgOmdMCt5x6LvSum%2B0WW7bpW7V%2BlOWh53z13Cs2TLBMQlX5wnwH%2FhbVZsAeJ2ZoqICOzAsfFSUmKXsTL6vV8un893StoCTtEsxpi7tbO4tOA6a5W3FHZmV8RVlp%2BzIQg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753d4a204dc4b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ec57a9edaee540aefec9f68ea5c1d015
8d4c2f4bb56a5be4915acc7bab054f74d579a3bd
49994c62c7023844620385f9934ee9e4a88b177f5241a2c037d4205dfb6c2eaf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4901
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 12:02:32 GMT
Last-Modified: Sun, 02 Oct 2022 10:40:51 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
104.17.24.14200 OK 5.6 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (30837)
Hash 109d1ed85cd01f9cdab73a4cac5bf80d
d6c6498ad46de2d8e2008a8ff68e364ae7f16b32
8b3a74fe462f5b3c0635995fd721a60eb640e237680b0b532b96711f2823e8bc
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actp.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 12:02:32 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1518529
expires: Fri, 22 Sep 2023 12:02:32 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZRE9cRkmvr8T8tztFbpx3zKUVH%2B6oH%2B1IYX0S%2F6PQRj3kykBJrBNzeOjmzBPYROVveCbVHJ2HbBhAqYo%2FVF14ynvCAiEjHlkLap0jileEt9oOZdu6Z%2FMfYcvZMEqFmm4tLLNH9fh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 753d4a29bdc3b50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
actp.com.au/public/gy7FYYhmPZuJItvDWyJ17YomleOW2wT6
116.0.23.145200 OK 60 kB URL HTTP/1.1 actp.com.au/public/gy7FYYhmPZuJItvDWyJ17YomleOW2wT6
IP 116.0.23.145:0
ASN #38719 Dreamscape Networks Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- assembler source text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (39884)
Hash b45232a7ceea05ce4c103fbbce4cd7cb
0debf3c992d469629f8cabfad01d687caf60dfe7
83dc8230c060c585b0915c703482ffeca2e0ec5dcb44c3d0babe060d730df0ff
Analyzer Verdict Alert fortinet Phishing
GET /public/gy7FYYhmPZuJItvDWyJ17YomleOW2wT6 HTTP/1.1
Host: actp.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://actp.com.au/public/
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjB2VG9tRzBMMFRDTllvS3JFOHpPZUE9PSIsInZhbHVlIjoiNnBtSUVLblp6UlVHdW5sY3BaQTBzWTU4QVo0WFJROWlhSjd0bzZtTEkvTXdRVWtua2U4VHFTWjd3MUVwdGdWekhWeDFydG8zNnhaZW1XaW5QVmxRL09DN2w5TG1iRWNsN3p2Z3I5ak4zc3Q5YnhQY2RFOVNUQThidVZ5MGczcEUiLCJtYWMiOiIyODc3YjhjMzEwMWY1MTk1NWFkNDAyYTIxNjVhY2U5YWY4Yzk5ZWNhM2Q1MmM1MWI0ZGM5NzU1ZjEyZGJmYWFmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik1KZzEwekVEdm11UGFOQko2T2pmRGc9PSIsInZhbHVlIjoiWEdOcU9XaHpjVUN3ZzVBNEtEV2ZMMTMvQ1JSQkxNd3lqdVJaS3JodUNmRnUrTGFxNzFTN1I3VTgyamNJc3pJcEZidmhGVXhYQUtoY0xFbXpkLzJOZmhyd0ZYNU5sdmVUZmdHWitUMTduS2p4L2k1aTE5emJpeFJHM1Z2Si90R04iLCJtYWMiOiIzMmE3NzFjNjc1Yjk1ZDg4ZmE1Mzc0ZmQxZmVjYzlhMzJjZWNlY2IzM2Y0Njg0NDg0ZDFjZGNjNDJhNzRjMjgzIiwidGFnIjoiIn0%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 12:02:31 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6ImQ2b2g5VHN6bWhJUlNMaVlvR0x6RGc9PSIsInZhbHVlIjoiZ0Vxd0owRHN1WDRoRHhvdWVoRFdwSEJhZ1N4NER3ZDB0aUVrV05wQUN2QUVUOHRYUG5vS05FSVRHQTF5OFc3aWt2blZCY00rRFg5R2x3Ry9JTnNOQnArdEt6NStSV3lKZXBUbXUvRjlRM21ESDFaUzBoSmtzRmZuSExDNW40MlMiLCJtYWMiOiI4NjU4ODQxNjQ5OWUxOTlmNGVmODM4NGMxMWQ4ZWRiZGJiYWI1M2RjMTM2ZDk0OTdiZmYwZjljNTg4MDZmMzk3IiwidGFnIjoiIn0%3D; expires=Sun, 02-Oct-2022 14:02:32 GMT; Max-Age=7200; path=/; samesite=lax
laravel_session=eyJpdiI6ImRQSjdheElIQjN0dCswaE9mbm1mNVE9PSIsInZhbHVlIjoiSHdmWHBINDVFa3pXVUJTU1puVmpJR0orTURkT0NSbGV1T2hkYUpOakhxZFp3TVdzRWNGR2lETGl2eDl6eUlSTnB0NmlYZkR4Z1RYSkpVSTBkWThaODlTNUhzQi9QcXl3Mkh3WEwxLzl0QmpOcmtxUkJHaUFEUlphdkNOK2wva0YiLCJtYWMiOiJiZTM0ZTI5NzhmMzlhNzQ5NjBiYmU0YTUwZTljMTQ5NWQ4NTg2Y2JiOGJiMjE3Nzk0Y2EzYjVjOTVjM2ZmOTBmIiwidGFnIjoiIn0%3D; expires=Sun, 02-Oct-2022 14:02:32 GMT; Max-Age=7200; path=/; httponly; samesite=lax
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ka-f.fontawesome.com/releases/v6.2.0/css/free-v5-font-face.min.css?token=f7165dd215
172.64.202.28200 OK 45 kB URL HTTP/2 ka-f.fontawesome.com/releases/v6.2.0/css/free-v5-font-face.min.css?token=f7165dd215
IP 172.64.202.28:0
File type ASCII text, with very long lines (608)
Hash 652f48d6addc28cc180422da2a2e3942
4c6ff1ec1ba7e4af923a6de90bb1325d4fe5082e
817e0b9318c3400620d2dd49bd46aeb8f7f75ddfb7c3cad77fd26fbc966317bd
GET /releases/v6.2.0/css/free-v5-font-face.min.css?token=f7165dd215 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://actp.com.au/
Origin: https://actp.com.au
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 12:02:32 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 30 Aug 2022 16:04:58 GMT
etag: W/"e2e288c32f411dc30c0c399302a30654"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 05db36a4f9e4592d953909c305155656.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-C1
x-amz-cf-id: Uw5wn-8vn6xhHJByGfiY2--xUPrE0zMG26oqW26RobpOUxRfVLPv6g==
age: 312893
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HjYU8B63kvSsO7gJ2d6ddMPmIKkYWVmza59jBDc%2ByrmYQt%2FP30WvBRKX46odtwbcWxyiL1YX0Ro7Yc64wLGM59KYVBtCpjG%2FC8tnP5j5GTTjeH7oPJidi0h0XBqW5PwIeZ%2Fjs4eIOA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753d4a2a5fde891e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
actp.com.au/public/css/app.css
116.0.23.145200 OK 440 kB URL HTTP/1.1 actp.com.au/public/css/app.css
IP 116.0.23.145:0
ASN #38719 Dreamscape Networks Limited
Size 440 kB (439658 bytes)
Hash 181990cc2279e4cea65c9363fb37fee9
b85a7ba40043b0c48a034d8382629ef7ec6a1e24
36839348d4cd3d5ffcb15317bc5e8f32b77c644d0c6c0f8f19bdf216caf49293
GET /public/css/app.css HTTP/1.1
Host: actp.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actp.com.au/public/gy7FYYhmPZuJItvDWyJ17YomleOW2wT6
Cookie: XSRF-TOKEN=eyJpdiI6ImQ2b2g5VHN6bWhJUlNMaVlvR0x6RGc9PSIsInZhbHVlIjoiZ0Vxd0owRHN1WDRoRHhvdWVoRFdwSEJhZ1N4NER3ZDB0aUVrV05wQUN2QUVUOHRYUG5vS05FSVRHQTF5OFc3aWt2blZCY00rRFg5R2x3Ry9JTnNOQnArdEt6NStSV3lKZXBUbXUvRjlRM21ESDFaUzBoSmtzRmZuSExDNW40MlMiLCJtYWMiOiI4NjU4ODQxNjQ5OWUxOTlmNGVmODM4NGMxMWQ4ZWRiZGJiYWI1M2RjMTM2ZDk0OTdiZmYwZjljNTg4MDZmMzk3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImRQSjdheElIQjN0dCswaE9mbm1mNVE9PSIsInZhbHVlIjoiSHdmWHBINDVFa3pXVUJTU1puVmpJR0orTURkT0NSbGV1T2hkYUpOakhxZFp3TVdzRWNGR2lETGl2eDl6eUlSTnB0NmlYZkR4Z1RYSkpVSTBkWThaODlTNUhzQi9QcXl3Mkh3WEwxLzl0QmpOcmtxUkJHaUFEUlphdkNOK2wva0YiLCJtYWMiOiJiZTM0ZTI5NzhmMzlhNzQ5NjBiYmU0YTUwZTljMTQ5NWQ4NTg2Y2JiOGJiMjE3Nzk0Y2EzYjVjOTVjM2ZmOTBmIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 12:02:32 GMT
Server: Apache
Last-Modified: Tue, 29 Mar 2022 21:11:08 GMT
Accept-Ranges: bytes
Content-Length: 439658
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ka-f.fontawesome.com/releases/v6.2.0/css/free-v4-font-face.min.css?token=f7165dd215
172.64.202.28200 OK 78 kB URL HTTP/2 ka-f.fontawesome.com/releases/v6.2.0/css/free-v4-font-face.min.css?token=f7165dd215
IP 172.64.202.28:0
File type ASCII text, with very long lines (1560)
Hash 5c81758870b17cfa1d95184a77013ae2
07c8065faf8f31056d33799e2c54ea1ae6924a3c
7646601c1f0968ee8a9969629ebf1f29ac9a65444c39fc6c862b8e18db23a3ee
GET /releases/v6.2.0/css/free-v4-font-face.min.css?token=f7165dd215 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://actp.com.au/
Origin: https://actp.com.au
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 12:02:32 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 30 Aug 2022 16:04:58 GMT
etag: W/"a0adfe3c7bd1fa905b7f3b5ecea27889"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 00280e18dbb2b8d7b3cfa8b0e75bdcdc.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-C1
x-amz-cf-id: JcTa31o8lCjbUajysw0cWmBZ8wvNVXMIZeaxb0Wj_XRspXviRADGVA==
age: 312893
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7oGOEH6aE5F4AiF4eIUjb67F1XLkf3Eer51FG4amtLG5M8zsWJ9sx%2FqmkWv%2BXoDC62Uj21LaY%2BD1pOmR8PIUbmRUE52ZaC4bkK5jLfAF55ofVmWmuioGHcBWN0WNU2MdSOfVo0WNrA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 753d4a2a5fe1891e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
actp.com.au/images/logo.png
116.0.23.145200 OK 2.0 kB URL HTTP/1.1 actp.com.au/images/logo.png
IP 116.0.23.145:0
ASN #38719 Dreamscape Networks Limited
File type PNG image data, 214 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 5d14ab93691604e826e1319d53599eb9
78724360e9d25da584445b851e37bca05abe6b85
3f0c62b5ccdcdbf3b3ae3885f1e6959e2d937eba9b29dea9a6bdb98788041756
GET /images/logo.png HTTP/1.1
Host: actp.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actp.com.au/public/gy7FYYhmPZuJItvDWyJ17YomleOW2wT6
Cookie: XSRF-TOKEN=eyJpdiI6ImQ2b2g5VHN6bWhJUlNMaVlvR0x6RGc9PSIsInZhbHVlIjoiZ0Vxd0owRHN1WDRoRHhvdWVoRFdwSEJhZ1N4NER3ZDB0aUVrV05wQUN2QUVUOHRYUG5vS05FSVRHQTF5OFc3aWt2blZCY00rRFg5R2x3Ry9JTnNOQnArdEt6NStSV3lKZXBUbXUvRjlRM21ESDFaUzBoSmtzRmZuSExDNW40MlMiLCJtYWMiOiI4NjU4ODQxNjQ5OWUxOTlmNGVmODM4NGMxMWQ4ZWRiZGJiYWI1M2RjMTM2ZDk0OTdiZmYwZjljNTg4MDZmMzk3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImRQSjdheElIQjN0dCswaE9mbm1mNVE9PSIsInZhbHVlIjoiSHdmWHBINDVFa3pXVUJTU1puVmpJR0orTURkT0NSbGV1T2hkYUpOakhxZFp3TVdzRWNGR2lETGl2eDl6eUlSTnB0NmlYZkR4Z1RYSkpVSTBkWThaODlTNUhzQi9QcXl3Mkh3WEwxLzl0QmpOcmtxUkJHaUFEUlphdkNOK2wva0YiLCJtYWMiOiJiZTM0ZTI5NzhmMzlhNzQ5NjBiYmU0YTUwZTljMTQ5NWQ4NTg2Y2JiOGJiMjE3Nzk0Y2EzYjVjOTVjM2ZmOTBmIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 12:02:35 GMT
Server: Apache
Last-Modified: Sun, 17 Apr 2022 14:24:00 GMT
Accept-Ranges: bytes
Content-Length: 1998
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
kit.fontawesome.com/f7165dd215.js
104.18.22.52200 OK 40 kB URL HTTP/2 kit.fontawesome.com/f7165dd215.js
IP 104.18.22.52:0
Hash dcbc3506eb1d5854cf37d89c2534a742
49440fafd14c6f1bc469b7a10e56ab44334f9a44
178e9893874cce0a7f5fe5504b328b53dd7420fa4b65f958d8de9bd88627336d
GET /f7165dd215.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://actp.com.au
Connection: keep-alive
Referer: https://actp.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 12:02:32 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: Fxo-2ljx1ZpyuLQThL3C
cf-cache-status: HIT
age: 33
server: cloudflare
cf-ray: 753d4a29b99eb51e-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
actp.com.au/images/foo.png
116.0.23.145404 Not Found 6.7 kB URL HTTP/1.1 actp.com.au/images/foo.png
IP 116.0.23.145:0
ASN #38719 Dreamscape Networks Limited
Hash 4cdcc53162f5abba7e8a3bf29eddebfa
112fbdd3d973f69f6fa79ca1fd71d78d9de9e867
aa4e217aec6ea2661292a5d242c144bf3e23d760d985f08c9a5487dd728be137
GET /images/foo.png HTTP/1.1
Host: actp.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actp.com.au/public/gy7FYYhmPZuJItvDWyJ17YomleOW2wT6
Cookie: XSRF-TOKEN=eyJpdiI6ImQ2b2g5VHN6bWhJUlNMaVlvR0x6RGc9PSIsInZhbHVlIjoiZ0Vxd0owRHN1WDRoRHhvdWVoRFdwSEJhZ1N4NER3ZDB0aUVrV05wQUN2QUVUOHRYUG5vS05FSVRHQTF5OFc3aWt2blZCY00rRFg5R2x3Ry9JTnNOQnArdEt6NStSV3lKZXBUbXUvRjlRM21ESDFaUzBoSmtzRmZuSExDNW40MlMiLCJtYWMiOiI4NjU4ODQxNjQ5OWUxOTlmNGVmODM4NGMxMWQ4ZWRiZGJiYWI1M2RjMTM2ZDk0OTdiZmYwZjljNTg4MDZmMzk3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImRQSjdheElIQjN0dCswaE9mbm1mNVE9PSIsInZhbHVlIjoiSHdmWHBINDVFa3pXVUJTU1puVmpJR0orTURkT0NSbGV1T2hkYUpOakhxZFp3TVdzRWNGR2lETGl2eDl6eUlSTnB0NmlYZkR4Z1RYSkpVSTBkWThaODlTNUhzQi9QcXl3Mkh3WEwxLzl0QmpOcmtxUkJHaUFEUlphdkNOK2wva0YiLCJtYWMiOiJiZTM0ZTI5NzhmMzlhNzQ5NjBiYmU0YTUwZTljMTQ5NWQ4NTg2Y2JiOGJiMjE3Nzk0Y2EzYjVjOTVjM2ZmOTBmIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sun, 02 Oct 2022 12:02:35 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
actp.com.au/public/css/fonts/webfa-brands-400.woff2?d878b0a6a1144760244ff0665888404c
116.0.23.145404 Not Found 6.6 kB URL HTTP/1.1 actp.com.au/public/css/fonts/webfa-brands-400.woff2?d878b0a6a1144760244ff0665888404c
IP 116.0.23.145:0
ASN #38719 Dreamscape Networks Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5395)
Hash 307dca9c775906b8de45869cabe98fcd
2b80c3a2fd4a235b2cc9f89315a554d0721c0dd1
8437bd0ef46a19c9a7c294c53e0429b40e76ebbd5fe9fd73a9025752495ddb1c
Analyzer Verdict Alert fortinet Phishing
GET /public/css/fonts/webfa-brands-400.woff2?d878b0a6a1144760244ff0665888404c HTTP/1.1
Host: actp.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://actp.com.au/public/css/app.css
Cookie: XSRF-TOKEN=eyJpdiI6ImQ2b2g5VHN6bWhJUlNMaVlvR0x6RGc9PSIsInZhbHVlIjoiZ0Vxd0owRHN1WDRoRHhvdWVoRFdwSEJhZ1N4NER3ZDB0aUVrV05wQUN2QUVUOHRYUG5vS05FSVRHQTF5OFc3aWt2blZCY00rRFg5R2x3Ry9JTnNOQnArdEt6NStSV3lKZXBUbXUvRjlRM21ESDFaUzBoSmtzRmZuSExDNW40MlMiLCJtYWMiOiI4NjU4ODQxNjQ5OWUxOTlmNGVmODM4NGMxMWQ4ZWRiZGJiYWI1M2RjMTM2ZDk0OTdiZmYwZjljNTg4MDZmMzk3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImRQSjdheElIQjN0dCswaE9mbm1mNVE9PSIsInZhbHVlIjoiSHdmWHBINDVFa3pXVUJTU1puVmpJR0orTURkT0NSbGV1T2hkYUpOakhxZFp3TVdzRWNGR2lETGl2eDl6eUlSTnB0NmlYZkR4Z1RYSkpVSTBkWThaODlTNUhzQi9QcXl3Mkh3WEwxLzl0QmpOcmtxUkJHaUFEUlphdkNOK2wva0YiLCJtYWMiOiJiZTM0ZTI5NzhmMzlhNzQ5NjBiYmU0YTUwZTljMTQ5NWQ4NTg2Y2JiOGJiMjE3Nzk0Y2EzYjVjOTVjM2ZmOTBmIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sun, 02 Oct 2022 12:02:35 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
actp.com.au/fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.woff2?1551f4f60c37af51121f106501f69b80
116.0.23.145404 Not Found 6.6 kB URL HTTP/1.1 actp.com.au/fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.woff2?1551f4f60c37af51121f106501f69b80
IP 116.0.23.145:0
ASN #38719 Dreamscape Networks Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5395)
Hash 307dca9c775906b8de45869cabe98fcd
2b80c3a2fd4a235b2cc9f89315a554d0721c0dd1
8437bd0ef46a19c9a7c294c53e0429b40e76ebbd5fe9fd73a9025752495ddb1c
Analyzer Verdict Alert fortinet Phishing
GET /fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.woff2?1551f4f60c37af51121f106501f69b80 HTTP/1.1
Host: actp.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://actp.com.au/public/css/app.css
Cookie: XSRF-TOKEN=eyJpdiI6ImQ2b2g5VHN6bWhJUlNMaVlvR0x6RGc9PSIsInZhbHVlIjoiZ0Vxd0owRHN1WDRoRHhvdWVoRFdwSEJhZ1N4NER3ZDB0aUVrV05wQUN2QUVUOHRYUG5vS05FSVRHQTF5OFc3aWt2blZCY00rRFg5R2x3Ry9JTnNOQnArdEt6NStSV3lKZXBUbXUvRjlRM21ESDFaUzBoSmtzRmZuSExDNW40MlMiLCJtYWMiOiI4NjU4ODQxNjQ5OWUxOTlmNGVmODM4NGMxMWQ4ZWRiZGJiYWI1M2RjMTM2ZDk0OTdiZmYwZjljNTg4MDZmMzk3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImRQSjdheElIQjN0dCswaE9mbm1mNVE9PSIsInZhbHVlIjoiSHdmWHBINDVFa3pXVUJTU1puVmpJR0orTURkT0NSbGV1T2hkYUpOakhxZFp3TVdzRWNGR2lETGl2eDl6eUlSTnB0NmlYZkR4Z1RYSkpVSTBkWThaODlTNUhzQi9QcXl3Mkh3WEwxLzl0QmpOcmtxUkJHaUFEUlphdkNOK2wva0YiLCJtYWMiOiJiZTM0ZTI5NzhmMzlhNzQ5NjBiYmU0YTUwZTljMTQ5NWQ4NTg2Y2JiOGJiMjE3Nzk0Y2EzYjVjOTVjM2ZmOTBmIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sun, 02 Oct 2022 12:02:35 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
actp.com.au/fonts/vendor/@fontsource/roboto/files/roboto-latin-400-normal.woff2?4673b4537a84c7f7a130799aa6af329b
116.0.23.145404 Not Found 6.6 kB URL HTTP/1.1 actp.com.au/fonts/vendor/@fontsource/roboto/files/roboto-latin-400-normal.woff2?4673b4537a84c7f7a130799aa6af329b
IP 116.0.23.145:0
ASN #38719 Dreamscape Networks Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5395)
Hash 307dca9c775906b8de45869cabe98fcd
2b80c3a2fd4a235b2cc9f89315a554d0721c0dd1
8437bd0ef46a19c9a7c294c53e0429b40e76ebbd5fe9fd73a9025752495ddb1c
Analyzer Verdict Alert fortinet Phishing
GET /fonts/vendor/@fontsource/roboto/files/roboto-latin-400-normal.woff2?4673b4537a84c7f7a130799aa6af329b HTTP/1.1
Host: actp.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://actp.com.au/public/css/app.css
Cookie: XSRF-TOKEN=eyJpdiI6ImQ2b2g5VHN6bWhJUlNMaVlvR0x6RGc9PSIsInZhbHVlIjoiZ0Vxd0owRHN1WDRoRHhvdWVoRFdwSEJhZ1N4NER3ZDB0aUVrV05wQUN2QUVUOHRYUG5vS05FSVRHQTF5OFc3aWt2blZCY00rRFg5R2x3Ry9JTnNOQnArdEt6NStSV3lKZXBUbXUvRjlRM21ESDFaUzBoSmtzRmZuSExDNW40MlMiLCJtYWMiOiI4NjU4ODQxNjQ5OWUxOTlmNGVmODM4NGMxMWQ4ZWRiZGJiYWI1M2RjMTM2ZDk0OTdiZmYwZjljNTg4MDZmMzk3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImRQSjdheElIQjN0dCswaE9mbm1mNVE9PSIsInZhbHVlIjoiSHdmWHBINDVFa3pXVUJTU1puVmpJR0orTURkT0NSbGV1T2hkYUpOakhxZFp3TVdzRWNGR2lETGl2eDl6eUlSTnB0NmlYZkR4Z1RYSkpVSTBkWThaODlTNUhzQi9QcXl3Mkh3WEwxLzl0QmpOcmtxUkJHaUFEUlphdkNOK2wva0YiLCJtYWMiOiJiZTM0ZTI5NzhmMzlhNzQ5NjBiYmU0YTUwZTljMTQ5NWQ4NTg2Y2JiOGJiMjE3Nzk0Y2EzYjVjOTVjM2ZmOTBmIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sun, 02 Oct 2022 12:02:35 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
actp.com.au/fonts/vendor/@fortawesome/fontawesome-free/webfa-brands-400.woff?2285773e6b4b172f07d9b777c81b0775
116.0.23.145404 Not Found 6.6 kB URL HTTP/1.1 actp.com.au/fonts/vendor/@fortawesome/fontawesome-free/webfa-brands-400.woff?2285773e6b4b172f07d9b777c81b0775
IP 116.0.23.145:0
ASN #38719 Dreamscape Networks Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5395)
Hash 307dca9c775906b8de45869cabe98fcd
2b80c3a2fd4a235b2cc9f89315a554d0721c0dd1
8437bd0ef46a19c9a7c294c53e0429b40e76ebbd5fe9fd73a9025752495ddb1c
Analyzer Verdict Alert fortinet Phishing
GET /fonts/vendor/@fortawesome/fontawesome-free/webfa-brands-400.woff?2285773e6b4b172f07d9b777c81b0775 HTTP/1.1
Host: actp.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://actp.com.au/public/css/app.css
Cookie: XSRF-TOKEN=eyJpdiI6ImQ2b2g5VHN6bWhJUlNMaVlvR0x6RGc9PSIsInZhbHVlIjoiZ0Vxd0owRHN1WDRoRHhvdWVoRFdwSEJhZ1N4NER3ZDB0aUVrV05wQUN2QUVUOHRYUG5vS05FSVRHQTF5OFc3aWt2blZCY00rRFg5R2x3Ry9JTnNOQnArdEt6NStSV3lKZXBUbXUvRjlRM21ESDFaUzBoSmtzRmZuSExDNW40MlMiLCJtYWMiOiI4NjU4ODQxNjQ5OWUxOTlmNGVmODM4NGMxMWQ4ZWRiZGJiYWI1M2RjMTM2ZDk0OTdiZmYwZjljNTg4MDZmMzk3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImRQSjdheElIQjN0dCswaE9mbm1mNVE9PSIsInZhbHVlIjoiSHdmWHBINDVFa3pXVUJTU1puVmpJR0orTURkT0NSbGV1T2hkYUpOakhxZFp3TVdzRWNGR2lETGl2eDl6eUlSTnB0NmlYZkR4Z1RYSkpVSTBkWThaODlTNUhzQi9QcXl3Mkh3WEwxLzl0QmpOcmtxUkJHaUFEUlphdkNOK2wva0YiLCJtYWMiOiJiZTM0ZTI5NzhmMzlhNzQ5NjBiYmU0YTUwZTljMTQ5NWQ4NTg2Y2JiOGJiMjE3Nzk0Y2EzYjVjOTVjM2ZmOTBmIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sun, 02 Oct 2022 12:02:35 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
actp.com.au/fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.woff?eeccf4f66002c6f2ba24d3d22f2434c2
116.0.23.145404 Not Found 6.6 kB URL HTTP/1.1 actp.com.au/fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.woff?eeccf4f66002c6f2ba24d3d22f2434c2
IP 116.0.23.145:0
ASN #38719 Dreamscape Networks Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5395)
Hash 307dca9c775906b8de45869cabe98fcd
2b80c3a2fd4a235b2cc9f89315a554d0721c0dd1
8437bd0ef46a19c9a7c294c53e0429b40e76ebbd5fe9fd73a9025752495ddb1c
Analyzer Verdict Alert fortinet Phishing
GET /fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.woff?eeccf4f66002c6f2ba24d3d22f2434c2 HTTP/1.1
Host: actp.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://actp.com.au/public/css/app.css
Cookie: XSRF-TOKEN=eyJpdiI6ImQ2b2g5VHN6bWhJUlNMaVlvR0x6RGc9PSIsInZhbHVlIjoiZ0Vxd0owRHN1WDRoRHhvdWVoRFdwSEJhZ1N4NER3ZDB0aUVrV05wQUN2QUVUOHRYUG5vS05FSVRHQTF5OFc3aWt2blZCY00rRFg5R2x3Ry9JTnNOQnArdEt6NStSV3lKZXBUbXUvRjlRM21ESDFaUzBoSmtzRmZuSExDNW40MlMiLCJtYWMiOiI4NjU4ODQxNjQ5OWUxOTlmNGVmODM4NGMxMWQ4ZWRiZGJiYWI1M2RjMTM2ZDk0OTdiZmYwZjljNTg4MDZmMzk3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImRQSjdheElIQjN0dCswaE9mbm1mNVE9PSIsInZhbHVlIjoiSHdmWHBINDVFa3pXVUJTU1puVmpJR0orTURkT0NSbGV1T2hkYUpOakhxZFp3TVdzRWNGR2lETGl2eDl6eUlSTnB0NmlYZkR4Z1RYSkpVSTBkWThaODlTNUhzQi9QcXl3Mkh3WEwxLzl0QmpOcmtxUkJHaUFEUlphdkNOK2wva0YiLCJtYWMiOiJiZTM0ZTI5NzhmMzlhNzQ5NjBiYmU0YTUwZTljMTQ5NWQ4NTg2Y2JiOGJiMjE3Nzk0Y2EzYjVjOTVjM2ZmOTBmIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sun, 02 Oct 2022 12:02:35 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
actp.com.au/fonts/vendor/@fontsource/roboto/files/roboto-all-400-normal.woff?376ea5d93f71583052f65de4e0c6a92c
116.0.23.145404 Not Found 6.6 kB URL HTTP/1.1 actp.com.au/fonts/vendor/@fontsource/roboto/files/roboto-all-400-normal.woff?376ea5d93f71583052f65de4e0c6a92c
IP 116.0.23.145:0
ASN #38719 Dreamscape Networks Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5395)
Hash 307dca9c775906b8de45869cabe98fcd
2b80c3a2fd4a235b2cc9f89315a554d0721c0dd1
8437bd0ef46a19c9a7c294c53e0429b40e76ebbd5fe9fd73a9025752495ddb1c
Analyzer Verdict Alert fortinet Phishing
GET /fonts/vendor/@fontsource/roboto/files/roboto-all-400-normal.woff?376ea5d93f71583052f65de4e0c6a92c HTTP/1.1
Host: actp.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://actp.com.au/public/css/app.css
Cookie: XSRF-TOKEN=eyJpdiI6ImQ2b2g5VHN6bWhJUlNMaVlvR0x6RGc9PSIsInZhbHVlIjoiZ0Vxd0owRHN1WDRoRHhvdWVoRFdwSEJhZ1N4NER3ZDB0aUVrV05wQUN2QUVUOHRYUG5vS05FSVRHQTF5OFc3aWt2blZCY00rRFg5R2x3Ry9JTnNOQnArdEt6NStSV3lKZXBUbXUvRjlRM21ESDFaUzBoSmtzRmZuSExDNW40MlMiLCJtYWMiOiI4NjU4ODQxNjQ5OWUxOTlmNGVmODM4NGMxMWQ4ZWRiZGJiYWI1M2RjMTM2ZDk0OTdiZmYwZjljNTg4MDZmMzk3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImRQSjdheElIQjN0dCswaE9mbm1mNVE9PSIsInZhbHVlIjoiSHdmWHBINDVFa3pXVUJTU1puVmpJR0orTURkT0NSbGV1T2hkYUpOakhxZFp3TVdzRWNGR2lETGl2eDl6eUlSTnB0NmlYZkR4Z1RYSkpVSTBkWThaODlTNUhzQi9QcXl3Mkh3WEwxLzl0QmpOcmtxUkJHaUFEUlphdkNOK2wva0YiLCJtYWMiOiJiZTM0ZTI5NzhmMzlhNzQ5NjBiYmU0YTUwZTljMTQ5NWQ4NTg2Y2JiOGJiMjE3Nzk0Y2EzYjVjOTVjM2ZmOTBmIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sun, 02 Oct 2022 12:02:36 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
actp.com.au/fonts/vendor/@fortawesome/fontawesome-free/webfa-brands-400.ttf?527940b104eb2ea366c8630f3f038603
116.0.23.145404 Not Found 6.6 kB URL HTTP/1.1 actp.com.au/fonts/vendor/@fortawesome/fontawesome-free/webfa-brands-400.ttf?527940b104eb2ea366c8630f3f038603
IP 116.0.23.145:0
ASN #38719 Dreamscape Networks Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5395)
Hash 307dca9c775906b8de45869cabe98fcd
2b80c3a2fd4a235b2cc9f89315a554d0721c0dd1
8437bd0ef46a19c9a7c294c53e0429b40e76ebbd5fe9fd73a9025752495ddb1c
Analyzer Verdict Alert fortinet Phishing
GET /fonts/vendor/@fortawesome/fontawesome-free/webfa-brands-400.ttf?527940b104eb2ea366c8630f3f038603 HTTP/1.1
Host: actp.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actp.com.au/public/css/app.css
Cookie: XSRF-TOKEN=eyJpdiI6ImQ2b2g5VHN6bWhJUlNMaVlvR0x6RGc9PSIsInZhbHVlIjoiZ0Vxd0owRHN1WDRoRHhvdWVoRFdwSEJhZ1N4NER3ZDB0aUVrV05wQUN2QUVUOHRYUG5vS05FSVRHQTF5OFc3aWt2blZCY00rRFg5R2x3Ry9JTnNOQnArdEt6NStSV3lKZXBUbXUvRjlRM21ESDFaUzBoSmtzRmZuSExDNW40MlMiLCJtYWMiOiI4NjU4ODQxNjQ5OWUxOTlmNGVmODM4NGMxMWQ4ZWRiZGJiYWI1M2RjMTM2ZDk0OTdiZmYwZjljNTg4MDZmMzk3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImRQSjdheElIQjN0dCswaE9mbm1mNVE9PSIsInZhbHVlIjoiSHdmWHBINDVFa3pXVUJTU1puVmpJR0orTURkT0NSbGV1T2hkYUpOakhxZFp3TVdzRWNGR2lETGl2eDl6eUlSTnB0NmlYZkR4Z1RYSkpVSTBkWThaODlTNUhzQi9QcXl3Mkh3WEwxLzl0QmpOcmtxUkJHaUFEUlphdkNOK2wva0YiLCJtYWMiOiJiZTM0ZTI5NzhmMzlhNzQ5NjBiYmU0YTUwZTljMTQ5NWQ4NTg2Y2JiOGJiMjE3Nzk0Y2EzYjVjOTVjM2ZmOTBmIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sun, 02 Oct 2022 12:02:36 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ka-f.fontawesome.com/releases/v6.2.0/webfonts/free-fa-brands-400.woff2
172.64.202.28200 OK 108 kB URL HTTP/2 ka-f.fontawesome.com/releases/v6.2.0/webfonts/free-fa-brands-400.woff2
IP 172.64.202.28:0
File type Web Open Font Format (Version 2), TrueType, length 107464, version 770.256\012- data
Size 108 kB (107464 bytes)
Hash 740f84c3c3a55fb092b15a8165135c53
d59c9379d214480beece18124618b9b3d1192a40
c22aba3fb12027fa3dd7d0175af7ef8401839d9f78d6e1bc95bb8e6cff12702f
GET /releases/v6.2.0/webfonts/free-fa-brands-400.woff2 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://actp.com.au
Connection: keep-alive
Referer: https://actp.com.au/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 12:02:36 GMT
content-type: font/woff2
content-length: 107464
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 30 Aug 2022 16:15:00 GMT
etag: "740f84c3c3a55fb092b15a8165135c53"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 78c24f12c32901deb1cf3a6ac581e590.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-C1
x-amz-cf-id: ign2oYgzaRW_YbFVBDGNi7h5ARqP3ipjrXMfE4WuQyCf6JtlYd3b8Q==
age: 228676
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aS2DBEBQr1B3pt6L2Uzqx%2FFkeKdWyjaQB%2FB7ViJ8mTZZWlzIbDDSsj1yT3NuNAGebQgEHHY2vc9mEO5TbLgu2IzKEQs0YD1V9ek%2B%2FsJobYnb%2F%2FBykigJIgkMWqjFFiNH3siJ5QLPYA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753d4a436d3b891e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
actp.com.au/fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.ttf?be9ee23c0c6390141475d519c2c5fb8f
116.0.23.145404 Not Found 6.6 kB URL HTTP/1.1 actp.com.au/fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.ttf?be9ee23c0c6390141475d519c2c5fb8f
IP 116.0.23.145:0
ASN #38719 Dreamscape Networks Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5395)
Hash 307dca9c775906b8de45869cabe98fcd
2b80c3a2fd4a235b2cc9f89315a554d0721c0dd1
8437bd0ef46a19c9a7c294c53e0429b40e76ebbd5fe9fd73a9025752495ddb1c
GET /fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.ttf?be9ee23c0c6390141475d519c2c5fb8f HTTP/1.1
Host: actp.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actp.com.au/public/css/app.css
Cookie: XSRF-TOKEN=eyJpdiI6ImQ2b2g5VHN6bWhJUlNMaVlvR0x6RGc9PSIsInZhbHVlIjoiZ0Vxd0owRHN1WDRoRHhvdWVoRFdwSEJhZ1N4NER3ZDB0aUVrV05wQUN2QUVUOHRYUG5vS05FSVRHQTF5OFc3aWt2blZCY00rRFg5R2x3Ry9JTnNOQnArdEt6NStSV3lKZXBUbXUvRjlRM21ESDFaUzBoSmtzRmZuSExDNW40MlMiLCJtYWMiOiI4NjU4ODQxNjQ5OWUxOTlmNGVmODM4NGMxMWQ4ZWRiZGJiYWI1M2RjMTM2ZDk0OTdiZmYwZjljNTg4MDZmMzk3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImRQSjdheElIQjN0dCswaE9mbm1mNVE9PSIsInZhbHVlIjoiSHdmWHBINDVFa3pXVUJTU1puVmpJR0orTURkT0NSbGV1T2hkYUpOakhxZFp3TVdzRWNGR2lETGl2eDl6eUlSTnB0NmlYZkR4Z1RYSkpVSTBkWThaODlTNUhzQi9QcXl3Mkh3WEwxLzl0QmpOcmtxUkJHaUFEUlphdkNOK2wva0YiLCJtYWMiOiJiZTM0ZTI5NzhmMzlhNzQ5NjBiYmU0YTUwZTljMTQ5NWQ4NTg2Y2JiOGJiMjE3Nzk0Y2EzYjVjOTVjM2ZmOTBmIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sun, 02 Oct 2022 12:02:36 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
actp.com.au/public/js/app.js
116.0.23.145200 OK 0 B URL HTTP/1.1 actp.com.au/public/js/app.js
IP 116.0.23.145:0
ASN #38719 Dreamscape Networks Limited
Analyzer Verdict Alert fortinet Phishing
GET /public/js/app.js HTTP/1.1
Host: actp.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actp.com.au/public/gy7FYYhmPZuJItvDWyJ17YomleOW2wT6
Cookie: XSRF-TOKEN=eyJpdiI6ImQ2b2g5VHN6bWhJUlNMaVlvR0x6RGc9PSIsInZhbHVlIjoiZ0Vxd0owRHN1WDRoRHhvdWVoRFdwSEJhZ1N4NER3ZDB0aUVrV05wQUN2QUVUOHRYUG5vS05FSVRHQTF5OFc3aWt2blZCY00rRFg5R2x3Ry9JTnNOQnArdEt6NStSV3lKZXBUbXUvRjlRM21ESDFaUzBoSmtzRmZuSExDNW40MlMiLCJtYWMiOiI4NjU4ODQxNjQ5OWUxOTlmNGVmODM4NGMxMWQ4ZWRiZGJiYWI1M2RjMTM2ZDk0OTdiZmYwZjljNTg4MDZmMzk3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImRQSjdheElIQjN0dCswaE9mbm1mNVE9PSIsInZhbHVlIjoiSHdmWHBINDVFa3pXVUJTU1puVmpJR0orTURkT0NSbGV1T2hkYUpOakhxZFp3TVdzRWNGR2lETGl2eDl6eUlSTnB0NmlYZkR4Z1RYSkpVSTBkWThaODlTNUhzQi9QcXl3Mkh3WEwxLzl0QmpOcmtxUkJHaUFEUlphdkNOK2wva0YiLCJtYWMiOiJiZTM0ZTI5NzhmMzlhNzQ5NjBiYmU0YTUwZTljMTQ5NWQ4NTg2Y2JiOGJiMjE3Nzk0Y2EzYjVjOTVjM2ZmOTBmIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 12:02:33 GMT
Server: Apache
Last-Modified: Tue, 29 Mar 2022 20:35:56 GMT
Accept-Ranges: bytes
Content-Length: 1613806
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
cdn.lr-in.com/logger-1.min.js
172.67.206.254200 OK 0 B URL HTTP/2 cdn.lr-in.com/logger-1.min.js
IP 172.67.206.254:0
GET /logger-1.min.js HTTP/1.1
Host: cdn.lr-in.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actp.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 12:02:32 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=14400
cross-origin-resource-policy: cross-origin
etag: W/"18e0df825318508cb1e97bb7b255e092ea7264a6c91cafe765c76e93b2009e36"
last-modified: Fri, 30 Sep 2022 22:00:46 GMT
strict-transport-security: max-age=31556926
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664575511.658129,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 178
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dRdeEQqn%2Fq%2BQ6VdQyoGc2dZLSzpLZgKOBAkaOFEl4wUTN1AV1s2cv%2BtGKGAwtM1SuxWmAIl%2FehMloIaSoF8Adfeyc%2FA8ZVAVmPPglsyHiJPE4wsNjd%2BYDzLAMm5%2F4qXj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 753d4a29aa73b4eb-OSL
content-encoding: br
X-Firefox-Spdy: h2