karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
89.117.188.39301 Moved Permanently 707 B URL HTTP/1.1 karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
IP 89.117.188.39:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Sat, 28 Jan 2023 15:31:58 GMT
server: LiteSpeed
location: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
platform: hostinger
content-security-policy: upgrade-insecure-requests
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2405562765b49b2782ebd2e2994851d5
be7ac8e558f7875bb1fb86ab5ec674424a5ff269
422cfa907461cb7b93b9089d600052f9e94951e5e0c93d97651905002e48ad3e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "422CFA907461CB7B93B9089D600052F9E94951E5E0C93D97651905002E48AD3E"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7328
Expires: Sat, 28 Jan 2023 17:34:06 GMT
Date: Sat, 28 Jan 2023 15:31:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3911
Expires: Sat, 28 Jan 2023 16:37:09 GMT
Date: Sat, 28 Jan 2023 15:31:58 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 28 Jan 2023 14:35:30 GMT
content-type: application/json
age: 3388
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 69f73ac59327cd9ad7d99816ccfcc03e
c54844f82dbee0d5ee4c8ce344eb0139373e6c6b
e81c685b2d8f0e31b89e5cfc911a2c5a99a556646830ac5a8468d991b5e871a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E81C685B2D8F0E31B89E5CFC911A2C5A99A556646830AC5A8468D991B5E871A3"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15488
Expires: Sat, 28 Jan 2023 19:50:06 GMT
Date: Sat, 28 Jan 2023 15:31:58 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 0PGqbUtH1SKFwjkzjPdc7cNPaGZRBA6ZUFNbRCTqxbmxUjmkaKMHNFz3+z2K3GD6jckaQe1Ci5I=
x-amz-request-id: 6ZKAG38JNBN0FCR5
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 28 Jan 2023 15:21:01 GMT
age: 657
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 15:31:58 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 28 Jan 2023 14:49:03 GMT
age: 2576
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5747
Expires: Sat, 28 Jan 2023 17:07:46 GMT
Date: Sat, 28 Jan 2023 15:31:59 GMT
Connection: keep-alive
push.services.mozilla.com/
52.88.218.181101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.88.218.181:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Zb8USFlppX09xoBd5LCtrw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: qvkFOMqgmhKPEHHOLZadmUUkA4c=
karthikestatecottages.com/wp-content/litespeed/ucss/81b9239853fbd6be8e74b15e317445e9.css?ver=3ff62
89.117.188.39200 OK 1.2 kB URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/ucss/81b9239853fbd6be8e74b15e317445e9.css?ver=3ff62
IP 89.117.188.39:0
File type ASCII text, with very long lines (4830), with no line terminators
Hash f4a52cbca05dc4410c02d7c2df381001
84395bc1d3fadb0c969b172a0fddbf45e08ebba5
d5e387a006a6be5ea6821335c821607d9d6c536ac2f60e855ce1fa06fb62899f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/ucss/81b9239853fbd6be8e74b15e317445e9.css?ver=3ff62 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 21:31:59 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 14:54:52 GMT
etag: "12de-638228bc-cc55c0f8db0eb4fa;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1188
date: Sat, 28 Jan 2023 15:31:59 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
89.117.188.39404 Not Found 28 kB URL HTTP/2 karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
IP 89.117.188.39:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (33542)
Hash 295052b38a6e58e67e074a48928037c7
fbf087b69f4ab3f9e687befe957a86fc1add07d9
3bf9a10b46c625aa25695193ecd1f4099ff60566aab1c905a65e3cf15c72cd87
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 404 Not Found
x-powered-by: PHP/8.1.13
x-dns-prefetch-control: on
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <https://karthikestatecottages.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache-control: public,max-age=3600
x-litespeed-tag: 3b5_HTTP.404,3b5_404,3b5_URL.b6de0f9110116d4720466419964978fe,3b5_guest,3b5_,3b5_CCSS.7befda9636ba492231eff827c679fbce,3b5_MIN.81b9239853fbd6be8e74b15e317445e9.css,3b5_MIN.0a746710db3e9f31836ee0803b5d618a.js
x-litespeed-cache: miss
content-encoding: br
vary: Accept-Encoding
date: Sat, 28 Jan 2023 15:31:59 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/themes/Divi/core/admin/fonts/modules/social/modules.ttf
89.117.188.39200 OK 5.9 kB URL HTTP/2 karthikestatecottages.com/wp-content/themes/Divi/core/admin/fonts/modules/social/modules.ttf
IP 89.117.188.39:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, ETmodules \012- data
Hash fd819149ea6e2074186c600086745092
9a99fabb54aa10741aef7014d53ae3ef0ec5e130
fee6b82cb48a3d100510e520c0e59011e0124679127034b05a736b4b9d5e63c4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/core/admin/fonts/modules/social/modules.ttf HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/litespeed/ucss/81b9239853fbd6be8e74b15e317445e9.css?ver=3ff62
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 21:32:00 GMT
content-type: application/x-font-ttf
last-modified: Sat, 26 Nov 2022 14:52:15 GMT
etag: "289c-6382281f-c9c3a87062d82317;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5918
date: Sat, 28 Jan 2023 15:32:00 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10713
Expires: Sat, 28 Jan 2023 18:30:33 GMT
Date: Sat, 28 Jan 2023 15:32:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10713
Expires: Sat, 28 Jan 2023 18:30:33 GMT
Date: Sat, 28 Jan 2023 15:32:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10713
Expires: Sat, 28 Jan 2023 18:30:33 GMT
Date: Sat, 28 Jan 2023 15:32:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10713
Expires: Sat, 28 Jan 2023 18:30:33 GMT
Date: Sat, 28 Jan 2023 15:32:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10713
Expires: Sat, 28 Jan 2023 18:30:33 GMT
Date: Sat, 28 Jan 2023 15:32:00 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 131eb343c5abd61939457d69bd371348
ffb2035cf64fc83f01db5c6f26ffa264b6aac95b
8486eb9dc6325018f8721bc6f37408f260b6e652b145280f2d778d860d3ec2d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7538
x-amzn-requestid: 113924cc-a196-4dbd-91d9-68c213265afe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3fobF-ZoAMFjjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61302-6b24941a642b22cf21e47dc0;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2P09wOtKPDHjxxAuzcLFMQJwmGN1zNJcH9LA6IJpeaGiaPVRF4y-TA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 05:20:03 GMT
age: 36717
etag: "ffb2035cf64fc83f01db5c6f26ffa264b6aac95b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a2033b2-0708-4731-82a4-5bbc9f000ae2.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a2033b2-0708-4731-82a4-5bbc9f000ae2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a2881cea3ae511d3dfd2f6b7cd598a4e
105d8d675aaafce5602e4015aee2d1659553d1b1
0993ef71c2af9e07ed09e0e2ba40a4d9fdd01444154c2f39f8fc48a4dfef1730
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a2033b2-0708-4731-82a4-5bbc9f000ae2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10863
x-amzn-requestid: db873091-be76-4276-aa3e-f9bd44051508
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fbAMbHCMoAMFsYg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4471c-57f14d6a3ebcc8a1788bae80;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:50:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 00zN6NcdSHaq-4mWQeizXw9SDgUZJOFnB_6dTo6skjlytfBuz8ud3w==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:57:22 GMT
age: 63278
etag: "105d8d675aaafce5602e4015aee2d1659553d1b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33ce0741-fcf6-4205-8b3a-016953553eaf.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33ce0741-fcf6-4205-8b3a-016953553eaf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 195316042e7f798eeeb7993fecb3a383
4aeca24ad4702f87feaf9674ea0c1ff6d71826a3
b7e0a61060455241fce844d2c91eca500d409804361063ddb61053cbc9c7b1c1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33ce0741-fcf6-4205-8b3a-016953553eaf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13376
x-amzn-requestid: 64d0092e-1f1a-4183-a4a6-805e0bf37d32
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-DvHIyoAMF6fA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443b1-6387770232ddca74531bce91;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Jqb6G21QeTDiI0HWT9Fd87D-HkAOiesyfN9vr7vMxrOUADBxV-_Fug==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:55:42 GMT
age: 63378
etag: "4aeca24ad4702f87feaf9674ea0c1ff6d71826a3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ea24bcba583bd8bd139559448a343e68
b9d37c2b14f890d41983a59f352e8f7caa9c94bb
e5ef5975eec964ae1684deb424f00833f2d217bdc7e6c385320ed3adeb6bc1c4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7585
x-amzn-requestid: bfb52acb-e0d7-482d-8be9-be5db1c16cac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_vkE5roAMF0Hw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d44663-2d38d314177e0ac40d4c8240;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:47:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1WE1zQwrCGVy8HLT9_BFkAr6rQE_ROyttMOByR32KeT0w2Hd_ylvYQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:16:00 GMT
age: 62160
etag: "b9d37c2b14f890d41983a59f352e8f7caa9c94bb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cadb8fa-5527-46cd-92dd-6316ac84a7d5.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cadb8fa-5527-46cd-92dd-6316ac84a7d5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 57b73886cbbb719eda5f733c018eedfb
b84ed40973f8a0d3c10529e34f9466746cfdaf0c
4ba11c23e0bbd2aed53b04ad0b3d22161af1971ddcfb75ae55734de9a49af207
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cadb8fa-5527-46cd-92dd-6316ac84a7d5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7028
x-amzn-requestid: c1743fed-205a-431b-8648-474facde6d09
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-CwFtboAMF9rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443ab-5b94864c707c42fc36fbc63a;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 35sWCIsACAhQvXkJvBn0LGf2m9OTklgDprONw5CDUoXD97TUpJ9j5Q==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:55:35 GMT
age: 63385
etag: "b84ed40973f8a0d3c10529e34f9466746cfdaf0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:46 GMT
age: 63314
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
89.117.188.39200 OK 30 kB URL HTTP/2 karthikestatecottages.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 89.117.188.39:0
File type ASCII text, with very long lines (65447)
Hash cdbbc979b5a5de31a3ac8296e0ef489e
b83000eb74956c3404fb58c87e95aed5bab2ed19
48a6489945365cddb4c75af60f1e6a8a15d6598a1596ef18eb1b4aaad33e96f3
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 21:32:00 GMT
content-type: application/x-javascript
last-modified: Tue, 15 Nov 2022 23:40:32 GMT
etag: "15e54-63742370-f3ebf00da111caa3;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30075
date: Sat, 28 Jan 2023 15:32:00 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 86352d15c37831cf9bf1e41325029224
ac8b28bcc1e6dd026e1f62d1ef8b9f80a42eee21
154f5f5e116df41f5d3bd414c671138b2afc198071529a0f3573109277566cd8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 15:32:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bab8a4c1e6bb2e6c9cc00222eef1235d
1a5dd108e9f9aaf33bc048b0097a9f510d295cad
fd182297a143655a9142e3ee5bbafefd76ca974094f43fb695611f6876f3ab63
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 15:32:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?render=6LcdJQMaAAAAANjL3YJ44n3_iMZptQK1omgxuuPh&ver=3.0
216.58.211.4400 Bad Request 119 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LcdJQMaAAAAANjL3YJ44n3_iMZptQK1omgxuuPh&ver=3.0
IP 216.58.211.4:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 96612d2b1b529ecfcf09798c3eb100bf
4f32d5d3ccf4d44ae71309dfa8d6f9d396614a27
7c58bfa17d0c600b7455e6bfb3d8371fbf93da20a7a53ed1efad37d692f1cba0
GET /recaptcha/api.js?render=6LcdJQMaAAAAANjL3YJ44n3_iMZptQK1omgxuuPh&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 400 Bad Request
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Sat, 28 Jan 2023 15:32:01 GMT
expires: Sat, 28 Jan 2023 15:32:01 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 119
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-M8Z9SK2
142.250.74.168200 OK 64 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-M8Z9SK2
IP 142.250.74.168:0
File type ASCII text, with very long lines (14989)
Hash 55298aae2de4815e9560423101fd4d2a
48947643bf018572eba87005d80c70ca6addcc87
3f9362ff2c886460d1c16c3af5de949923a8efab07059ff5e8b67d1c12c8f817
GET /gtm.js?id=GTM-M8Z9SK2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 28 Jan 2023 15:32:01 GMT
expires: Sat, 28 Jan 2023 15:32:01 GMT
cache-control: private, max-age=900
last-modified: Sat, 28 Jan 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 63914
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ab04da9bc46246cc0001464e7f6b5e19
01ce4f7004aec7a24d4545a1e742ab6a1e639b48
22e519a39cb2e7e5f6da23d35f4498aa7a2d00e06613fd3bbf8de8a62ed2d354
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 15:32:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 36147c185553851c38547798733a9fb2
912ec40237eae2ed558d09103c86c41f87896eca
a4fd9090983c75e1b7faf5ea9439532f51d747faf1853138ac13bdaafa490246
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 15:32:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pixel.wp.com/g.gif?v=ext&blog=214677232&post=0&tz=0&srv=karthikestatecottages.com&j=1%3A11.6&host=karthikestatecottages.com&ref=&fcp=1744&rand=0.6922133900194372
192.0.76.3200 OK 50 B URL HTTP/2 pixel.wp.com/g.gif?v=ext&blog=214677232&post=0&tz=0&srv=karthikestatecottages.com&j=1%3A11.6&host=karthikestatecottages.com&ref=&fcp=1744&rand=0.6922133900194372
IP 192.0.76.3:0
File type GIF image data, version 89a, 6 x 5\012- data
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?v=ext&blog=214677232&post=0&tz=0&srv=karthikestatecottages.com&j=1%3A11.6&host=karthikestatecottages.com&ref=&fcp=1744&rand=0.6922133900194372 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 15:32:01 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.woff
89.117.188.39200 OK 92 kB URL HTTP/2 karthikestatecottages.com/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.woff
IP 89.117.188.39:0
File type Web Open Font Format, TrueType, length 92476, version 2.4\012- data
Hash 7d04c782e3ec7b655cb15e50245c4c49
6ac6c03ebcebc29f36f09525ae9564f12240776d
88795f28bb66a45f9c32245dd21d6319ed5d26a45bf5afa31d91a0f83ee855f7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/core/admin/fonts/modules/all/modules.woff HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/et-cache/notfound/et-divi-dynamic-tb-306-tb-275-late.css
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 21:32:00 GMT
content-type: application/font-woff
last-modified: Sat, 26 Nov 2022 14:52:15 GMT
etag: "1693c-6382281f-1ee45ad66ca4aa3c;;;"
accept-ranges: bytes
content-length: 92476
date: Sat, 28 Jan 2023 15:32:00 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/js/0a746710db3e9f31836ee0803b5d618a.js?ver=3ff62
89.117.188.39200 OK 98 kB URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/js/0a746710db3e9f31836ee0803b5d618a.js?ver=3ff62
IP 89.117.188.39:0
File type ASCII text, with very long lines (54313)
Hash 9c45ff0f76fc56399b5027f2aad356ca
f696245c92e3954ee04eed6df9c8fb3bc180ec75
1871b2531973263a58c2b5605c210d57edd374541477a2c564d5cadb8d0f902d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/0a746710db3e9f31836ee0803b5d618a.js?ver=3ff62 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 21:32:01 GMT
content-type: application/x-javascript
last-modified: Thu, 15 Dec 2022 09:55:09 GMT
etag: "6055e-639aeefd-9985c51900bde609;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 97912
date: Sat, 28 Jan 2023 15:32:01 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
216.239.34.178200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.239.34.178:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sat, 28 Jan 2023 13:46:59 GMT
expires: Sat, 28 Jan 2023 15:46:59 GMT
cache-control: public, max-age=7200
age: 6302
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e7ebbff54ced2c07469b302fc6d44078
f59983c844c398bd37705051ca685b2d07d85726
04eb3bd7658c1112bfc1d0098e8d7f5fafdb10459e3290c0d4e6a17e65a5494f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 15:32:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cbe94bc7052911313fffd1cdad964a74
a96a6606f1d20baeeb4040c9ced3ba2f7bd1aada
430d90ac0a39038dbb5336cf29baf6786ac29491c5a8e4dcce04e93d9fceb5e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 15:32:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/wcm/loader.js
142.250.74.35200 OK 1.3 kB URL HTTP/2 www.gstatic.com/wcm/loader.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (1123)
Hash 22300d54ba7faf32360c95915053014c
ea83f097bd99413f9d8fcb08d0312ba7ba1be99f
2c4c9c9d6af1ad12556ab11c8021eb5c254025ce04500bc885b69984dd562ce5
GET /wcm/loader.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1339
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 15:20:03 GMT
expires: Sat, 28 Jan 2023 16:20:03 GMT
cache-control: public, max-age=3600
age: 718
last-modified: Mon, 15 Mar 2021 16:45:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/11035497740/?random=1674919924328&cv=11&fst=1674919924328&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fkarthikestatecottages.com%2Fwp-content%2Fthemes%2Ftwentytwentytwo%2Ftelstra%2Fklnmnbe84765%2F43c13bc75b3e2794772e3b23e0a31ef3%2Fcc.php&tiba=Page%20not%20found%20-%20Homestay&auid=505509726.1674919924&rfmt=3&fmt=4
142.250.74.34200 OK 942 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/11035497740/?random=1674919924328&cv=11&fst=1674919924328&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fkarthikestatecottages.com%2Fwp-content%2Fthemes%2Ftwentytwentytwo%2Ftelstra%2Fklnmnbe84765%2F43c13bc75b3e2794772e3b23e0a31ef3%2Fcc.php&tiba=Page%20not%20found%20-%20Homestay&auid=505509726.1674919924&rfmt=3&fmt=4
IP 142.250.74.34:0
File type ASCII text, with very long lines (2039), with no line terminators
Hash 382f20b1976ba73028d819cc2b382fbc
a4991307310aaea354749928e4c0a5156cc3b252
ba1cb902367a776acb23b67f3df30f03cb38719604c1ddf6000a7d8507793f4f
GET /pagead/viewthroughconversion/11035497740/?random=1674919924328&cv=11&fst=1674919924328&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fkarthikestatecottages.com%2Fwp-content%2Fthemes%2Ftwentytwentytwo%2Ftelstra%2Fklnmnbe84765%2F43c13bc75b3e2794772e3b23e0a31ef3%2Fcc.php&tiba=Page%20not%20found%20-%20Homestay&auid=505509726.1674919924&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 15:32:01 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 942
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 28-Jan-2023 15:47:01 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cbe94bc7052911313fffd1cdad964a74
a96a6606f1d20baeeb4040c9ced3ba2f7bd1aada
430d90ac0a39038dbb5336cf29baf6786ac29491c5a8e4dcce04e93d9fceb5e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 15:32:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e7ebbff54ced2c07469b302fc6d44078
f59983c844c398bd37705051ca685b2d07d85726
04eb3bd7658c1112bfc1d0098e8d7f5fafdb10459e3290c0d4e6a17e65a5494f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 15:32:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
karthikestatecottages.com/wp-content/plugins/litespeed-cache/assets/js/webfontloader.min.js
89.117.188.39200 OK 4.6 kB URL HTTP/2 karthikestatecottages.com/wp-content/plugins/litespeed-cache/assets/js/webfontloader.min.js
IP 89.117.188.39:0
File type Unicode text, UTF-8 text, with very long lines (12075), with no line terminators
Hash e03020f95691b6e8f22ccf6a95273424
487f20ce26a53ce1520ce19205cb0e38b1917d26
b65d380786d26ecbba5b0bcaea54e57125e79fbbd94074050115293502aabcf1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/litespeed-cache/assets/js/webfontloader.min.js HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.505509726.1674919924; _ga_MXCGE16QRD=GS1.1.1674919924.1.0.1674919924.0.0.0; _ga=GA1.2.169443583.1674919924; _gid=GA1.2.249113175.1674919925; _gat_UA-207024867-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 21:32:01 GMT
content-type: application/x-javascript
last-modified: Thu, 15 Dec 2022 09:48:13 GMT
etag: "2f42-639aed5d-1bed499316c0f97c;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4638
date: Sat, 28 Jan 2023 15:32:01 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
89.117.188.39200 OK 30 kB URL HTTP/2 karthikestatecottages.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 89.117.188.39:0
File type ASCII text, with very long lines (65447)
Hash cdbbc979b5a5de31a3ac8296e0ef489e
b83000eb74956c3404fb58c87e95aed5bab2ed19
48a6489945365cddb4c75af60f1e6a8a15d6598a1596ef18eb1b4aaad33e96f3
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.505509726.1674919924; _ga_MXCGE16QRD=GS1.1.1674919924.1.0.1674919924.0.0.0; _ga=GA1.2.169443583.1674919924; _gid=GA1.2.249113175.1674919925; _gat_UA-207024867-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 21:32:01 GMT
content-type: application/x-javascript
last-modified: Tue, 15 Nov 2022 23:40:32 GMT
etag: "15e54-63742370-f3ebf00da111caa3;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30075
date: Sat, 28 Jan 2023 15:32:01 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7da8f9a23d8c05f64f248e4e3427c76e
e2d001c2909cd9403173cbb0e288d55fbc8e4d0a
db8790004124a0eeb0676860170ad9c37250b2ba697a27dee62c99b64c67b4b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 15:32:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.wp.com/e-202304.js
192.0.76.3200 OK 3.0 kB IP 192.0.76.3:0
File type ASCII text, with very long lines (2690)
Hash 9f409cdc9d77b01eb7a8256278883970
98c47d838098cf7bd468fdad4b494f648bfc0388
e51981b99d804b5e7a722e4d174ed49df41a9383b0de74be8a55743072f70606
GET /e-202304.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 15:32:01 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"6197c5cf-3508"
content-encoding: br
expires: Mon, 11 Dec 2023 21:09:59 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/et-cache/275/et-core-unified-cpt-deferred-275.min.css?ver=1673179365
89.117.188.39200 OK 943 B URL HTTP/2 karthikestatecottages.com/wp-content/et-cache/275/et-core-unified-cpt-deferred-275.min.css?ver=1673179365
IP 89.117.188.39:0
File type ASCII text, with very long lines (9089), with no line terminators
Hash 73aae09117c847158f6b83c0cc9bb7bc
d672a6ee007db203d7292c0508a277ada5f6cdd2
35be656eeb7cb93aa0f41e2f03e514ccb39f50f770c8d159bcf280f1889c08b2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/et-cache/275/et-core-unified-cpt-deferred-275.min.css?ver=1673179365 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.505509726.1674919924; _ga_MXCGE16QRD=GS1.1.1674919924.1.0.1674919924.0.0.0; _ga=GA1.2.169443583.1674919924; _gid=GA1.2.249113175.1674919925; _gat_UA-207024867-1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 21:32:01 GMT
content-type: text/css
last-modified: Sun, 08 Jan 2023 12:02:45 GMT
etag: "2381-63bab0e5-6313e6152efb3e45;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 943
date: Sat, 28 Jan 2023 15:32:01 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7da8f9a23d8c05f64f248e4e3427c76e
e2d001c2909cd9403173cbb0e288d55fbc8e4d0a
db8790004124a0eeb0676860170ad9c37250b2ba697a27dee62c99b64c67b4b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 15:32:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.163200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 10:05:58 GMT
expires: Fri, 26 Jan 2024 10:05:58 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
age: 192363
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.163200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 10:05:58 GMT
expires: Fri, 26 Jan 2024 10:05:58 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
age: 192363
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.163200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 10:05:58 GMT
expires: Fri, 26 Jan 2024 10:05:58 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
age: 192363
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/css/72d99b64282f7c39a51a7dc056ef510d.css?ver=4783f
89.117.188.39200 OK 48 kB URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/css/72d99b64282f7c39a51a7dc056ef510d.css?ver=4783f
IP 89.117.188.39:0
File type ASCII text, with very long lines (11335), with no line terminators
Hash 653abc7430a40e22decd9832f580a594
6d345d309ba442324f84a36fcaefcdc2b6f95009
14df9d072a2a1957b7c213822c1e28c5b38dbdd720acf693ca7e5820307355a3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/72d99b64282f7c39a51a7dc056ef510d.css?ver=4783f HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.505509726.1674919924; _ga_MXCGE16QRD=GS1.1.1674919924.1.0.1674919924.0.0.0; _ga=GA1.2.169443583.1674919924; _gid=GA1.2.249113175.1674919925; _gat_UA-207024867-1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 21:32:01 GMT
content-type: text/css
last-modified: Sat, 28 Jan 2023 15:32:01 GMT
etag: "2c47-63d53ff1-6088d229be0b69a1;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 28 Jan 2023 15:32:01 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
142.250.74.163200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Hash 17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 09:56:13 GMT
expires: Sat, 27 Jan 2024 09:56:13 GMT
cache-control: public, max-age=31536000
age: 106548
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/css/8e1562a058441e964dd3d0daf182c272.css?ver=72e73
89.117.188.39200 OK 32 kB URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/css/8e1562a058441e964dd3d0daf182c272.css?ver=72e73
IP 89.117.188.39:0
File type ASCII text, with very long lines (2216), with no line terminators
Hash 28563d9b30383cfc6a561d725b150c4c
f0eeec00007ccc390c0c93e7fd4fe373de581f34
dfed15e52771f8e657cabdf78db9d45abac2fec751512a3b2583b0d95fe2da18
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/8e1562a058441e964dd3d0daf182c272.css?ver=72e73 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.505509726.1674919924; _ga_MXCGE16QRD=GS1.1.1674919924.1.0.1674919924.0.0.0; _ga=GA1.2.169443583.1674919924; _gid=GA1.2.249113175.1674919925; _gat_UA-207024867-1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 21:32:01 GMT
content-type: text/css
last-modified: Sat, 28 Jan 2023 15:32:01 GMT
etag: "8a8-63d53ff1-8d0e166f787a9840;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 28 Jan 2023 15:32:01 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
89.117.188.39404 Not Found 61 kB URL HTTP/2 karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
IP 89.117.188.39:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (27632)
Hash 8c21d440d86cb6095064b51dae3f904c
976de598b2360702035d3083c92aaa9d389fc28b
7b6404c35531ab86f6f1307517b7e5b3e66bcc8b5844be27a4b2ed4b943e8818
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
x-powered-by: PHP/8.1.13
x-dns-prefetch-control: on
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <https://karthikestatecottages.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache-control: public,max-age=3600
x-litespeed-tag: 3b5_HTTP.404,3b5_404,3b5_URL.b6de0f9110116d4720466419964978fe,3b5_,3b5_CCSS.29901685d9cbced33f58b45c32eb2c02
x-litespeed-cache: miss
content-encoding: br
vary: Accept-Encoding
date: Sat, 28 Jan 2023 15:32:01 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
142.250.74.163200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 17:46:05 GMT
expires: Thu, 25 Jan 2024 17:46:05 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
age: 251156
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
142.250.74.163200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 17:46:05 GMT
expires: Thu, 25 Jan 2024 17:46:05 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
age: 251156
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/js/3a56923e62cb9e1bcbadcd7e294045ca.js?ver=496cb
89.117.188.39200 OK 36 kB URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/js/3a56923e62cb9e1bcbadcd7e294045ca.js?ver=496cb
IP 89.117.188.39:0
File type ASCII text, with very long lines (11125)
Hash 4eb9161f2360570ab9d2d757e7a73adb
c75bf5f95c71cda3c0a25bb230fb3a771653d00e
e40ff5678cb2991972b20e771cb57e4bd6048275af593520c140a8b5da81f3fe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/3a56923e62cb9e1bcbadcd7e294045ca.js?ver=496cb HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.505509726.1674919924; _ga_MXCGE16QRD=GS1.1.1674919924.1.0.1674919924.0.0.0; _ga=GA1.2.169443583.1674919924; _gid=GA1.2.249113175.1674919925; _gat_UA-207024867-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 21:32:01 GMT
content-type: application/x-javascript
last-modified: Sat, 28 Jan 2023 15:32:01 GMT
etag: "2bd8-63d53ff1-806229967ea00252;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 28 Jan 2023 15:32:01 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/css/c238ec3dbb66d139abe9642101d15490.css?ver=d3962
89.117.188.39200 OK 31 kB URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/css/c238ec3dbb66d139abe9642101d15490.css?ver=d3962
IP 89.117.188.39:0
File type ASCII text, with very long lines (691), with no line terminators
Hash 05745bda80ede3eeb362f2378e9487e1
5d204e42fbdf06828f873467b77b264f1e3bad1d
8d89fb5140da80ca66e7860f4e50d01153328500f2acb76273129ef41e07df06
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/c238ec3dbb66d139abe9642101d15490.css?ver=d3962 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.505509726.1674919924; _ga_MXCGE16QRD=GS1.1.1674919924.1.0.1674919924.0.0.0; _ga=GA1.2.169443583.1674919924; _gid=GA1.2.249113175.1674919925; _gat_UA-207024867-1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 21:32:01 GMT
content-type: text/css
last-modified: Sat, 28 Jan 2023 15:32:01 GMT
etag: "2b3-63d53ff1-b201c5cf2cb4c846;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 28 Jan 2023 15:32:01 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/css/67ad67f660d31fca7dbcf5e43ebc64eb.css?ver=0e2f4
89.117.188.39200 OK 32 kB URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/css/67ad67f660d31fca7dbcf5e43ebc64eb.css?ver=0e2f4
IP 89.117.188.39:0
File type ASCII text, with very long lines (4186), with no line terminators
Hash e90247d6993fef34d83b42999c088e29
d47c56cb01d2d124a39f7d0588d3760d22e1780d
dfd8e2e3ec49b1ab7692fe27b7c595d01191e499c264c9f1cb7328726d26a3b6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/67ad67f660d31fca7dbcf5e43ebc64eb.css?ver=0e2f4 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.505509726.1674919924; _ga_MXCGE16QRD=GS1.1.1674919924.1.0.1674919924.0.0.0; _ga=GA1.2.169443583.1674919924; _gid=GA1.2.249113175.1674919925; _gat_UA-207024867-1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 21:32:01 GMT
content-type: text/css
last-modified: Sat, 28 Jan 2023 15:32:01 GMT
etag: "105a-63d53ff1-bb6a128e21439b5d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 28 Jan 2023 15:32:01 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/css/6f803db37a657be1f53fee84b5b47faa.css?ver=1b82a
89.117.188.39200 OK 54 kB URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/css/6f803db37a657be1f53fee84b5b47faa.css?ver=1b82a
IP 89.117.188.39:0
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash d133ad5425ddc9f253b459db9191fff8
93cfaf13c2e3ad98e5d5903661865aaafd5fbdf2
d82e8f3f6c40a629708330456818582f96ff1c63d29bdd41403d1df1631d5039
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/6f803db37a657be1f53fee84b5b47faa.css?ver=1b82a HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.505509726.1674919924; _ga_MXCGE16QRD=GS1.1.1674919924.1.0.1674919924.0.0.0; _ga=GA1.2.169443583.1674919924; _gid=GA1.2.249113175.1674919925; _gat_UA-207024867-1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 21:32:01 GMT
content-type: text/css
last-modified: Sat, 28 Jan 2023 15:32:01 GMT
etag: "151af-63d53ff1-75ec0d3435c4657d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 28 Jan 2023 15:32:01 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
142.250.74.163200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 17:46:05 GMT
expires: Thu, 25 Jan 2024 17:46:05 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
age: 251156
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
142.250.74.163200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 13:49:18 GMT
expires: Thu, 25 Jan 2024 13:49:18 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
age: 265363
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
142.250.74.163200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 13:49:18 GMT
expires: Thu, 25 Jan 2024 13:49:18 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
age: 265363
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
142.250.74.163200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 13:49:18 GMT
expires: Thu, 25 Jan 2024 13:49:18 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
age: 265363
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
142.250.74.163200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 13:49:18 GMT
expires: Thu, 25 Jan 2024 13:49:18 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
age: 265363
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
142.250.74.163200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Hash 17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 09:56:13 GMT
expires: Sat, 27 Jan 2024 09:56:13 GMT
cache-control: public, max-age=31536000
age: 106548
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800%7CMontserrat:100,200,300,regular,500,600,700,800,900,100italic,200italic,300italic,italic,500italic,600italic,700italic,800italic,900italic&subset=latin,latin-ext,latin,latin-ext&display=swap
142.250.74.106200 OK 50 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800%7CMontserrat:100,200,300,regular,500,600,700,800,900,100italic,200italic,300italic,italic,500italic,600italic,700italic,800italic,900italic&subset=latin,latin-ext,latin,latin-ext&display=swap
IP 142.250.74.106:0
Hash 22f90068bbc16952625dd66e810e0a32
d082a2832d64ab432dcfaee2062efba24595af45
19aa086691337a096d1de6deca5bfda588e13b4e3d1bb6607b6bad268da91536
GET /css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800%7CMontserrat:100,200,300,regular,500,600,700,800,900,100italic,200italic,300italic,italic,500italic,600italic,700italic,800italic,900italic&subset=latin,latin-ext,latin,latin-ext&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 28 Jan 2023 15:32:01 GMT
date: Sat, 28 Jan 2023 15:32:01 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
142.250.74.163200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Hash 17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 09:56:13 GMT
expires: Sat, 27 Jan 2024 09:56:13 GMT
cache-control: public, max-age=31536000
age: 106548
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
142.250.74.163200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 13:49:18 GMT
expires: Thu, 25 Jan 2024 13:49:18 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
age: 265364
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
142.250.74.163200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 13:49:18 GMT
expires: Thu, 25 Jan 2024 13:49:18 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
age: 265364
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
142.250.74.163200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 13:49:18 GMT
expires: Thu, 25 Jan 2024 13:49:18 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
age: 265364
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
142.250.74.163200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 13:49:18 GMT
expires: Thu, 25 Jan 2024 13:49:18 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
age: 265364
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
142.250.74.163200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Hash 17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 09:56:13 GMT
expires: Sat, 27 Jan 2024 09:56:13 GMT
cache-control: public, max-age=31536000
age: 106549
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pixel.wp.com/g.gif?v=ext&blog=214677232&post=0&tz=0&srv=karthikestatecottages.com&j=1%3A11.6&host=karthikestatecottages.com&ref=&fcp=1708&rand=0.08943624708157083
192.0.76.3200 OK 50 B URL HTTP/2 pixel.wp.com/g.gif?v=ext&blog=214677232&post=0&tz=0&srv=karthikestatecottages.com&j=1%3A11.6&host=karthikestatecottages.com&ref=&fcp=1708&rand=0.08943624708157083
IP 192.0.76.3:0
File type GIF image data, version 89a, 6 x 5\012- data
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?v=ext&blog=214677232&post=0&tz=0&srv=karthikestatecottages.com&j=1%3A11.6&host=karthikestatecottages.com&ref=&fcp=1708&rand=0.08943624708157083 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 15:32:02 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/themes/Divi/core/admin/fonts/modules/social/modules.ttf
89.117.188.39200 OK 5.9 kB URL HTTP/2 karthikestatecottages.com/wp-content/themes/Divi/core/admin/fonts/modules/social/modules.ttf
IP 89.117.188.39:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, ETmodules \012- data
Hash fd819149ea6e2074186c600086745092
9a99fabb54aa10741aef7014d53ae3ef0ec5e130
fee6b82cb48a3d100510e520c0e59011e0124679127034b05a736b4b9d5e63c4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/core/admin/fonts/modules/social/modules.ttf HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/litespeed/css/f730e910073d3407fc066c352d75ef27.css?ver=ace8e
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.505509726.1674919924; _ga_MXCGE16QRD=GS1.1.1674919924.1.0.1674919924.0.0.0; _ga=GA1.2.169443583.1674919924; _gid=GA1.2.249113175.1674919925; _gat_UA-207024867-1=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 21:32:02 GMT
content-type: application/x-font-ttf
last-modified: Sat, 26 Nov 2022 14:52:15 GMT
etag: "289c-6382281f-c9c3a87062d82317;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5918
date: Sat, 28 Jan 2023 15:32:02 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/js/29fb4cef923a216602b788d65cf5cc5d.js?ver=e8bb9
89.117.188.39200 OK 96 kB URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/js/29fb4cef923a216602b788d65cf5cc5d.js?ver=e8bb9
IP 89.117.188.39:0
File type ASCII text, with very long lines (65467)
Hash 0ab46a9995c2a19bfef015f633c3023c
257a31c3e8fbb16b6da455a26086da3712e19694
cfae9e0b2e37db2038ffb37a3d73fa6e980fdc80874c74017c75f853fc188d49
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/29fb4cef923a216602b788d65cf5cc5d.js?ver=e8bb9 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.505509726.1674919924; _ga_MXCGE16QRD=GS1.1.1674919924.1.0.1674919924.0.0.0; _ga=GA1.2.169443583.1674919924; _gid=GA1.2.249113175.1674919925; _gat_UA-207024867-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 21:32:01 GMT
content-type: application/x-javascript
last-modified: Sat, 28 Jan 2023 15:32:01 GMT
etag: "42f6a-63d53ff1-5e1eb0dbabd5835c;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 28 Jan 2023 15:32:01 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/uploads/2020/12/Logo-1-white.png.webp
89.117.188.39200 OK 3.9 kB URL HTTP/2 karthikestatecottages.com/wp-content/uploads/2020/12/Logo-1-white.png.webp
IP 89.117.188.39:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash f55ac4812010cb55d5b6ed20e9ee480d
ea20922ad6b4d6a122948a76390859834969c144
575671cd4b3d599ba3385b0257a7485e67d8173132e051249e628bd29ec0dfc7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/12/Logo-1-white.png.webp HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.505509726.1674919924; _ga_MXCGE16QRD=GS1.1.1674919924.1.0.1674919924.0.0.0; _ga=GA1.2.169443583.1674919924; _gid=GA1.2.249113175.1674919925; _gat_UA-207024867-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 21:32:02 GMT
content-type: image/webp
last-modified: Mon, 28 Nov 2022 17:23:35 GMT
etag: "f64-6384ee97-40f2720e287fe0b8;;;"
accept-ranges: bytes
content-length: 3940
date: Sat, 28 Jan 2023 15:32:02 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/uploads/2020/12/03-a.png.webp
89.117.188.39200 OK 1.5 kB URL HTTP/2 karthikestatecottages.com/wp-content/uploads/2020/12/03-a.png.webp
IP 89.117.188.39:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash c74ead7b0feb3ace4aa1c0d31e3dfeec
3915416d9cbbfe6a8d57f7da3d945ee720098d92
4e35d6ce524adf3e9615fa5d223d9fc3e4db93359562166e150014004b735ba5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/12/03-a.png.webp HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.505509726.1674919924; _ga_MXCGE16QRD=GS1.1.1674919924.1.0.1674919924.0.0.0; _ga=GA1.2.169443583.1674919924; _gid=GA1.2.249113175.1674919925; _gat_UA-207024867-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 21:32:02 GMT
content-type: image/webp
last-modified: Mon, 28 Nov 2022 17:35:57 GMT
etag: "5c4-6384f17d-2b23314c6ef20912;;;"
accept-ranges: bytes
content-length: 1476
date: Sat, 28 Jan 2023 15:32:02 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/js/370f679cbafa77014ada20d864a14360.js?ver=257f6
89.117.188.39200 OK 8.2 kB URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/js/370f679cbafa77014ada20d864a14360.js?ver=257f6
IP 89.117.188.39:0
File type Unicode text, UTF-8 text, with very long lines (17818)
Hash d5c0ffffc00453cfefde94b32f5f9a60
d20a9a0698924a8986206e8442508b0cd5c6cd63
50c80d352bff7201ff615fe7fb739da97288adfd3e5825d522f8b0de362448b4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/370f679cbafa77014ada20d864a14360.js?ver=257f6 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.505509726.1674919924; _ga_MXCGE16QRD=GS1.1.1674919924.1.0.1674919924.0.0.0; _ga=GA1.2.169443583.1674919924; _gid=GA1.2.249113175.1674919925; _gat_UA-207024867-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 21:32:01 GMT
content-type: application/x-javascript
last-modified: Sat, 28 Jan 2023 15:32:01 GMT
etag: "45a0-63d53ff1-56cd89d2e43f16ee;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 28 Jan 2023 15:32:01 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/11035497740/?random=1674919924328&cv=11&fst=1674918000000&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fkarthikestatecottages.com%2Fwp-content%2Fthemes%2Ftwentytwentytwo%2Ftelstra%2Fklnmnbe84765%2F43c13bc75b3e2794772e3b23e0a31ef3%2Fcc.php&tiba=Page%20not%20found%20-%20Homestay&fmt=3&is_vtc=1&random=1233513080&rmt_tld=1&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/11035497740/?random=1674919924328&cv=11&fst=1674918000000&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fkarthikestatecottages.com%2Fwp-content%2Fthemes%2Ftwentytwentytwo%2Ftelstra%2Fklnmnbe84765%2F43c13bc75b3e2794772e3b23e0a31ef3%2Fcc.php&tiba=Page%20not%20found%20-%20Homestay&fmt=3&is_vtc=1&random=1233513080&rmt_tld=1&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/11035497740/?random=1674919924328&cv=11&fst=1674918000000&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fkarthikestatecottages.com%2Fwp-content%2Fthemes%2Ftwentytwentytwo%2Ftelstra%2Fklnmnbe84765%2F43c13bc75b3e2794772e3b23e0a31ef3%2Fcc.php&tiba=Page%20not%20found%20-%20Homestay&fmt=3&is_vtc=1&random=1233513080&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 15:32:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b7da7d1d3e5880d5d4e313ac7fcf2a83
60a1e887ccb7c7cdae0035c65ef7df9908547fef
af17efcd17df50324c29cff05cea79f18cba79f6b1134ec0e6d1637759b5e895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 15:32:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
karthikestatecottages.com/wp-content/uploads/2020/12/favicon.png
89.117.188.39200 OK 922 B URL HTTP/2 karthikestatecottages.com/wp-content/uploads/2020/12/favicon.png
IP 89.117.188.39:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash c29c04f3ade9a3e3645e662cb22aed5e
224edb0765d28f7398b8918b27b4dc85ebac49bf
ec1f90d418fb4a7546dbb25bf2775731e49949fcfb584057428090de5d7f25af
GET /wp-content/uploads/2020/12/favicon.png HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.505509726.1674919924; _ga_MXCGE16QRD=GS1.1.1674919924.1.0.1674919924.0.0.0; _ga=GA1.2.169443583.1674919924; _gid=GA1.2.249113175.1674919925; _gat_UA-207024867-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 21:32:02 GMT
content-type: image/png
last-modified: Mon, 28 Nov 2022 17:26:28 GMT
etag: "39a-6384ef44-3e7f214ce0d65126;;;"
accept-ranges: bytes
content-length: 922
date: Sat, 28 Jan 2023 15:32:02 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/uploads/2020/12/favicon.png
89.117.188.39200 OK 922 B URL HTTP/2 karthikestatecottages.com/wp-content/uploads/2020/12/favicon.png
IP 89.117.188.39:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash c29c04f3ade9a3e3645e662cb22aed5e
224edb0765d28f7398b8918b27b4dc85ebac49bf
ec1f90d418fb4a7546dbb25bf2775731e49949fcfb584057428090de5d7f25af
GET /wp-content/uploads/2020/12/favicon.png HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.505509726.1674919924; _ga_MXCGE16QRD=GS1.1.1674919924.1.0.1674919924.0.0.0; _ga=GA1.2.169443583.1674919924; _gid=GA1.2.249113175.1674919925; _gat_UA-207024867-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 21:32:02 GMT
content-type: image/png
last-modified: Mon, 28 Nov 2022 17:26:28 GMT
etag: "39a-6384ef44-3e7f214ce0d65126;;;"
accept-ranges: bytes
content-length: 922
date: Sat, 28 Jan 2023 15:32:02 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/plugins/chaty/images/whatsapp.png
89.117.188.39200 OK 106 kB URL HTTP/2 karthikestatecottages.com/wp-content/plugins/chaty/images/whatsapp.png
IP 89.117.188.39:0
File type PNG image data, 550 x 999, 8-bit colormap, non-interlaced\012- data
Size 106 kB (105898 bytes)
Hash ac16b58dab286451f37dc9e0286ccbea
763cbea1c8a9a97f60fc8abecc8304d6e67aadc5
69c383a1cca56628ad0bc45c83a67112b0851d57a77c18252f79de50364af9d4
GET /wp-content/plugins/chaty/images/whatsapp.png HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/litespeed/css/28d7a7b6170f194201beacbe7fd5b7ad.css?ver=a7ff3
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.505509726.1674919924; _ga_MXCGE16QRD=GS1.1.1674919924.1.0.1674919924.0.0.0; _ga=GA1.2.169443583.1674919924; _gid=GA1.2.249113175.1674919925; _gat_UA-207024867-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 21:32:02 GMT
content-type: image/png
last-modified: Thu, 15 Dec 2022 09:44:11 GMT
etag: "19daa-639aec6b-f649144df42d1bd;;;"
accept-ranges: bytes
content-length: 105898
date: Sat, 28 Jan 2023 15:32:02 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.ttf
89.117.188.39200 OK 36 kB URL HTTP/2 karthikestatecottages.com/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.ttf
IP 89.117.188.39:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, modules \012- data
Hash 92d4c4b52b85bddba9e00893d78a9228
ef9dab27a60868e213d2b56da5f7ee40a5b713ea
392b1fd700e55cbc3279f35f7d60c3ee75e2b7698e83e55349dbfca9b664a06c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/core/admin/fonts/modules/all/modules.ttf HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/litespeed/css/c238ec3dbb66d139abe9642101d15490.css?ver=d3962
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.505509726.1674919924; _ga_MXCGE16QRD=GS1.1.1674919924.1.0.1674919924.0.0.0; _ga=GA1.2.169443583.1674919924; _gid=GA1.2.249113175.1674919925; _gat_UA-207024867-1=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 21:32:02 GMT
content-type: application/x-font-ttf
last-modified: Sat, 26 Nov 2022 14:52:15 GMT
etag: "168f0-6382281f-f4a7184c7e2d1029;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 36345
date: Sat, 28 Jan 2023 15:32:02 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a6a37ab4140c561a21149fe23c5039ba
b92bf9ee84da841b64091e2e6d094477e9c506d7
20e865aaea3b329562a4017c7a4123694c902cdb10a044fd0ef2831c20f6b3c5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 15:32:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googleadservices.com/pagead/conversion/11035497740/wcm?cc=ZZ&dn=7348847227&cl=JyW3CN61uIUYEIyqkY4p&ct_eid=2
142.250.74.162302 Found 0 B URL HTTP/2 www.googleadservices.com/pagead/conversion/11035497740/wcm?cc=ZZ&dn=7348847227&cl=JyW3CN61uIUYEIyqkY4p&ct_eid=2
IP 142.250.74.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/conversion/11035497740/wcm?cc=ZZ&dn=7348847227&cl=JyW3CN61uIUYEIyqkY4p&ct_eid=2 HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://karthikestatecottages.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://www.google.no/pagead/attribution/wcm?cc=ZZ&dn=7348847227&cl=JyW3CN61uIUYEIyqkY4p
access-control-allow-origin: https://karthikestatecottages.com
access-control-allow-credentials: true
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Sat, 28 Jan 2023 15:32:02 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4abb97e5fd107cb87b896feb33a2159b
757fc267c534b8f5191f97d4c6dce60753e965f2
88d691d314752499a884e54232b88c0d19e4c8163236851b99a0b0d3ac0d7f8a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 15:32:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
karthikestatecottages.com/wp-content/litespeed/js/12337bc2d6f5fc0d02755cbd085a32d4.js?ver=a5970
89.117.188.39200 OK 0 B URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/js/12337bc2d6f5fc0d02755cbd085a32d4.js?ver=a5970
IP 89.117.188.39:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/12337bc2d6f5fc0d02755cbd085a32d4.js?ver=a5970 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.505509726.1674919924; _ga_MXCGE16QRD=GS1.1.1674919924.1.0.1674919924.0.0.0; _ga=GA1.2.169443583.1674919924; _gid=GA1.2.249113175.1674919925; _gat_UA-207024867-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 21:32:01 GMT
content-type: application/x-javascript
last-modified: Sat, 28 Jan 2023 15:32:01 GMT
etag: "995-63d53ff1-572ce90d79df6e5a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 28 Jan 2023 15:32:01 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/js/fee2d6f9c7e7dd016098681f67c4fe44.js?ver=5978d
89.117.188.39200 OK 0 B URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/js/fee2d6f9c7e7dd016098681f67c4fe44.js?ver=5978d
IP 89.117.188.39:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/fee2d6f9c7e7dd016098681f67c4fe44.js?ver=5978d HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.505509726.1674919924; _ga_MXCGE16QRD=GS1.1.1674919924.1.0.1674919924.0.0.0; _ga=GA1.2.169443583.1674919924; _gid=GA1.2.249113175.1674919925; _gat_UA-207024867-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 21:32:01 GMT
content-type: application/x-javascript
last-modified: Sat, 28 Jan 2023 15:32:01 GMT
etag: "194d-63d53ff1-2c1b7d9f34f8352;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 28 Jan 2023 15:32:01 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/js/43561677c57e5b1d434f961aa7435971.js?ver=35971
89.117.188.39200 OK 0 B URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/js/43561677c57e5b1d434f961aa7435971.js?ver=35971
IP 89.117.188.39:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/43561677c57e5b1d434f961aa7435971.js?ver=35971 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.505509726.1674919924; _ga_MXCGE16QRD=GS1.1.1674919924.1.0.1674919924.0.0.0; _ga=GA1.2.169443583.1674919924; _gid=GA1.2.249113175.1674919925; _gat_UA-207024867-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 21:32:01 GMT
content-type: application/x-javascript
last-modified: Sat, 28 Jan 2023 15:32:01 GMT
etag: "3e9-63d53ff1-f8a77a7c0f63917a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 28 Jan 2023 15:32:01 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/css/f5d9ceb442b128ee5879bc7cc7c6247b.css?ver=e7d53
89.117.188.39200 OK 0 B URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/css/f5d9ceb442b128ee5879bc7cc7c6247b.css?ver=e7d53
IP 89.117.188.39:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/f5d9ceb442b128ee5879bc7cc7c6247b.css?ver=e7d53 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.505509726.1674919924; _ga_MXCGE16QRD=GS1.1.1674919924.1.0.1674919924.0.0.0; _ga=GA1.2.169443583.1674919924; _gid=GA1.2.249113175.1674919925; _gat_UA-207024867-1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 21:32:01 GMT
content-type: text/css
last-modified: Sat, 28 Jan 2023 15:32:01 GMT
etag: "cda-63d53ff1-231db29294865fa6;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 28 Jan 2023 15:32:01 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
stats.wp.com/e-202304.js
192.0.76.3200 OK 0 B IP 192.0.76.3:0
GET /e-202304.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 15:31:59 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"6197c5cf-3508"
content-encoding: br
expires: Mon, 11 Dec 2023 21:09:59 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/js/e7c1d41e270196d688189a9f163b0202.js?ver=cbd88
89.117.188.39200 OK 0 B URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/js/e7c1d41e270196d688189a9f163b0202.js?ver=cbd88
IP 89.117.188.39:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/e7c1d41e270196d688189a9f163b0202.js?ver=cbd88 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.505509726.1674919924; _ga_MXCGE16QRD=GS1.1.1674919924.1.0.1674919924.0.0.0; _ga=GA1.2.169443583.1674919924; _gid=GA1.2.249113175.1674919925; _gat_UA-207024867-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 21:32:01 GMT
content-type: application/x-javascript
last-modified: Sat, 28 Jan 2023 15:32:01 GMT
etag: "e31f-63d53ff1-e078863e4d244e67;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 28 Jan 2023 15:32:01 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/css/417fb907586e584e0d226d2b21711b92.css?ver=33072
89.117.188.39200 OK 0 B URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/css/417fb907586e584e0d226d2b21711b92.css?ver=33072
IP 89.117.188.39:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/417fb907586e584e0d226d2b21711b92.css?ver=33072 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.505509726.1674919924; _ga_MXCGE16QRD=GS1.1.1674919924.1.0.1674919924.0.0.0; _ga=GA1.2.169443583.1674919924; _gid=GA1.2.249113175.1674919925; _gat_UA-207024867-1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 21:32:01 GMT
content-type: text/css
last-modified: Sat, 28 Jan 2023 15:32:01 GMT
etag: "1ce5-63d53ff1-ea1ef86a47b57ac5;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 28 Jan 2023 15:32:01 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/css/da19b69de124bba871c59f991d5abb78.css?ver=4cb11
89.117.188.39200 OK 0 B URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/css/da19b69de124bba871c59f991d5abb78.css?ver=4cb11
IP 89.117.188.39:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/da19b69de124bba871c59f991d5abb78.css?ver=4cb11 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.505509726.1674919924; _ga_MXCGE16QRD=GS1.1.1674919924.1.0.1674919924.0.0.0; _ga=GA1.2.169443583.1674919924; _gid=GA1.2.249113175.1674919925; _gat_UA-207024867-1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 21:32:01 GMT
content-type: text/css
last-modified: Sat, 28 Jan 2023 15:32:01 GMT
etag: "21e2-63d53ff1-a30f9a138dc85a8b;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 28 Jan 2023 15:32:01 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
142.250.74.163200 OK 0 B URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP 142.250.74.163:0
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 13:49:18 GMT
expires: Thu, 25 Jan 2024 13:49:18 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
age: 265364
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/css/eb7e6d7525599c5d35819c8614f88177.css?ver=56497
89.117.188.39200 OK 0 B URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/css/eb7e6d7525599c5d35819c8614f88177.css?ver=56497
IP 89.117.188.39:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/eb7e6d7525599c5d35819c8614f88177.css?ver=56497 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.505509726.1674919924; _ga_MXCGE16QRD=GS1.1.1674919924.1.0.1674919924.0.0.0; _ga=GA1.2.169443583.1674919924; _gid=GA1.2.249113175.1674919925; _gat_UA-207024867-1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 21:32:01 GMT
content-type: text/css
last-modified: Sat, 28 Jan 2023 15:32:01 GMT
etag: "17193-63d53ff1-a0a0df528e8495b4;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 28 Jan 2023 15:32:01 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/js/cfe9f73e6db21967110cbb9e7d6b872b.js?ver=9bf4c
89.117.188.39200 OK 0 B URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/js/cfe9f73e6db21967110cbb9e7d6b872b.js?ver=9bf4c
IP 89.117.188.39:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/cfe9f73e6db21967110cbb9e7d6b872b.js?ver=9bf4c HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.505509726.1674919924; _ga_MXCGE16QRD=GS1.1.1674919924.1.0.1674919924.0.0.0; _ga=GA1.2.169443583.1674919924; _gid=GA1.2.249113175.1674919925; _gat_UA-207024867-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 21:32:01 GMT
content-type: application/x-javascript
last-modified: Sat, 28 Jan 2023 15:32:01 GMT
etag: "26d2-63d53ff1-b0567c5e8472159a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 28 Jan 2023 15:32:01 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/js/c85f03e1a7cc5be42fa7fa7c1b037401.js?ver=41d40
89.117.188.39200 OK 0 B URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/js/c85f03e1a7cc5be42fa7fa7c1b037401.js?ver=41d40
IP 89.117.188.39:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/c85f03e1a7cc5be42fa7fa7c1b037401.js?ver=41d40 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.505509726.1674919924; _ga_MXCGE16QRD=GS1.1.1674919924.1.0.1674919924.0.0.0; _ga=GA1.2.169443583.1674919924; _gid=GA1.2.249113175.1674919925; _gat_UA-207024867-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 21:32:01 GMT
content-type: application/x-javascript
last-modified: Sat, 28 Jan 2023 15:32:01 GMT
etag: "3017-63d53ff1-d3237d6bbb674884;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 28 Jan 2023 15:32:01 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/js/91aa9e0adf0c8c2ae3f443d1848ace02.js?ver=1f875
89.117.188.39200 OK 0 B URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/js/91aa9e0adf0c8c2ae3f443d1848ace02.js?ver=1f875
IP 89.117.188.39:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/91aa9e0adf0c8c2ae3f443d1848ace02.js?ver=1f875 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.505509726.1674919924; _ga_MXCGE16QRD=GS1.1.1674919924.1.0.1674919924.0.0.0; _ga=GA1.2.169443583.1674919924; _gid=GA1.2.249113175.1674919925; _gat_UA-207024867-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 21:32:01 GMT
content-type: application/x-javascript
last-modified: Sat, 28 Jan 2023 15:32:01 GMT
etag: "37c-63d53ff1-3359a9363c703120;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 28 Jan 2023 15:32:01 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/css/f730e910073d3407fc066c352d75ef27.css?ver=ace8e
89.117.188.39200 OK 0 B URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/css/f730e910073d3407fc066c352d75ef27.css?ver=ace8e
IP 89.117.188.39:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/f730e910073d3407fc066c352d75ef27.css?ver=ace8e HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/43c13bc75b3e2794772e3b23e0a31ef3/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.505509726.1674919924; _ga_MXCGE16QRD=GS1.1.1674919924.1.0.1674919924.0.0.0; _ga=GA1.2.169443583.1674919924; _gid=GA1.2.249113175.1674919925; _gat_UA-207024867-1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 28 Jan 2024 21:32:01 GMT
content-type: text/css
last-modified: Sat, 28 Jan 2023 15:32:01 GMT
etag: "14680-63d53ff1-5cf0d8a4a35df7f3;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 28 Jan 2023 15:32:01 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2