r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb72f04bd7a4410640c0543bb4bd402
7c63b7e220b337b6a4f39864e11d6aa9e26c38ac
b7f7a4d355ed3b847a5e28f16030d5cbc715d47326aea20f292cd76dcaf59794
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B7F7A4D355ED3B847A5E28F16030D5CBC715D47326AEA20F292CD76DCAF59794"
Last-Modified: Mon, 21 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9611
Expires: Tue, 22 Nov 2022 05:53:30 GMT
Date: Tue, 22 Nov 2022 03:13:19 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4843de3bf95411e6aa89834def44bb86
1f1882351ac63fba73a22014382f69df5e02ec96
1e6ed1df02f8fa6c89ddca66f7c9981f8a06127d7ec90b503703137e823bb4b7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2684
Cache-Control: max-age=115362
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 03:13:19 GMT
Etag: "637b5375-1d7"
Expires: Wed, 23 Nov 2022 11:16:01 GMT
Last-Modified: Mon, 21 Nov 2022 10:31:17 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 22 Nov 2022 03:09:19 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 240
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 054ff0d1a0a43f7cb1d78dbd34e27f99
3caf54f3de1d6a8c6f6454083f8b8e7dec77db54
fcdcef8306ae31f20c366489e1f88aa40b08f154d25d45f4055c4f8cdef47634
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FCDCEF8306AE31F20C366489E1F88AA40B08F154D25D45F4055C4F8CDEF47634"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5584
Expires: Tue, 22 Nov 2022 04:46:23 GMT
Date: Tue, 22 Nov 2022 03:13:19 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: jkatcRZ36FycbADT3lnzk6MLG/SEJNqwqgb+r6DVSl0V3rloXUlU6Nye9C5pWEtNd1aGdMFh8MQ=
x-amz-request-id: QPS3VAMG6YV3JG45
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 22 Nov 2022 02:42:22 GMT
age: 1857
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 22 Nov 2022 03:13:19 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
cbkgroup.com.au/
3.105.68.221301 Moved Permanently 707 B IP 3.105.68.221:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: cbkgroup.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Tue, 22 Nov 2022 03:13:19 GMT
server: LiteSpeed
location: http://cbkgroup.com.au/index.html
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 22 Nov 2022 03:08:47 GMT
cache-control: public,max-age=3600
age: 272
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
cbkgroup.com.au/index.html
3.105.68.221200 OK 7.6 kB URL HTTP/1.1 cbkgroup.com.au/index.html
IP 3.105.68.221:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1902), with CRLF, LF line terminators
Hash 003e40e30b9579962a6bbfbe8ad29fb4
13e2a4cd9e8c53352d4ba5db030d213dc0da6a51
82d6b1fe1cc670022c42ccfb4350495decd583e30f53c98d41e3ee6b4226c0f7
Analyzer Verdict Alert fortinet Malware
GET /index.html HTTP/1.1
Host: cbkgroup.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
last-modified: Tue, 27 Sep 2022 02:44:00 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 7565
date: Tue, 22 Nov 2022 03:13:19 GMT
server: LiteSpeed
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2db0ebb9efcf3be3c92f23b61de5c065
dd830565723f18a7944c26d24b0fb142d06a71a5
8615316184c4d1d64db923a5364363bbb3d25e146a042c5fbd5bf0cfcec8effb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 580
Cache-Control: max-age=108194
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 03:13:20 GMT
Etag: "637b3fae-1d7"
Expires: Wed, 23 Nov 2022 09:16:34 GMT
Last-Modified: Mon, 21 Nov 2022 09:06:54 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.39.62.124101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.62.124:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: GbbpWFSQQfl7+M1eNZuhcg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: F1QnPB9inBMbNsUGlOkG4deNPz4=
cbkgroup.com.au/gdpr/gdprscript.js?buildTime=1664237694&hasRemindMe=true&stealth=false
3.105.68.221200 OK 6.7 kB URL HTTP/1.1 cbkgroup.com.au/gdpr/gdprscript.js?buildTime=1664237694&hasRemindMe=true&stealth=false
IP 3.105.68.221:0
File type HTML document text\012- HTML document text\012- C source, ASCII text, with very long lines (17520)
Hash ff43764a56ea26a14ca8804998a5b1ec
122accec7d76d956a4295682076757bd62d37d88
0ba824617f8ac873b3eecc6c166945530fcb3ff1f914ced5a1e41312b370c895
GET /gdpr/gdprscript.js?buildTime=1664237694&hasRemindMe=true&stealth=false HTTP/1.1
Host: cbkgroup.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cbkgroup.com.au/index.html
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/7.4.32
content-type: text/javascript;;charset=UTF-8
x-ds-version: 1664246632
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding
date: Tue, 22 Nov 2022 03:13:21 GMT
server: LiteSpeed
cdn2.editmysite.com/css/old/fancybox.css?1664237694
151.101.85.46200 OK 1.2 kB URL HTTP/1.1 cdn2.editmysite.com/css/old/fancybox.css?1664237694
IP 151.101.85.46:0
File type ASCII text, with very long lines (3910)
Hash b644e92258f4c7c0b4270047652d1e60
93734d52ee9e86a768159e514076051813c39cd9
29199496fb817668f887938571046abcdfb49063d0207d571b361f221f467907
GET /css/old/fancybox.css?1664237694 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cbkgroup.com.au/
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1218
Server: nginx
Content-Type: text/css
Last-Modified: Mon, 07 Nov 2022 17:12:46 GMT
ETag: "63693c8e-f47"
Expires: Tue, 22 Nov 2022 09:33:20 GMT
Cache-Control: max-age=1209600
X-Host: blu41.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Tue, 22 Nov 2022 03:13:21 GMT
Age: 1186801
X-Served-By: cache-sjc10025-SJC, cache-bma1668-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 1
X-Timer: S1669086801.269115,VS0,VE1
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn2.editmysite.com/css/sites.css?buildTime=1664237694
151.101.85.46200 OK 30 kB URL HTTP/1.1 cdn2.editmysite.com/css/sites.css?buildTime=1664237694
IP 151.101.85.46:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash d10158b22b553f723d99dc78eaee6390
80f2d6670cfb0d01cd20c471cf8e3e6465ddd3f6
939c7a8e1ad74a44e0c847e38533e69e36454b6805d25acf3fb0cb5c472d245e
GET /css/sites.css?buildTime=1664237694 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cbkgroup.com.au/
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 29746
Server: nginx
Content-Type: text/css
Last-Modified: Tue, 15 Nov 2022 18:35:38 GMT
ETag: W/"6373dbfa-347ac"
Expires: Wed, 30 Nov 2022 07:53:45 GMT
Cache-Control: max-age=1209600
X-Host: blu77.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Tue, 22 Nov 2022 03:13:21 GMT
Age: 501576
X-Served-By: cache-sjc10036-SJC, cache-bma1675-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 26, 1
X-Timer: S1669086801.268573,VS0,VE1
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn2.editmysite.com/css/social-icons.css?buildtime=1664237694
151.101.85.46200 OK 1.6 kB URL HTTP/1.1 cdn2.editmysite.com/css/social-icons.css?buildtime=1664237694
IP 151.101.85.46:0
File type ASCII text, with very long lines (13080)
Hash 8002b428ac38da04a2e5e27925044ddf
21a97ef0520933749dfabf7e482b55f460435368
d4268f26ec1b667baf309f8ebbfa7c73655b1fab28245cdc23fc828b92f3f6bc
GET /css/social-icons.css?buildtime=1664237694 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cbkgroup.com.au/
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1639
Server: nginx
Content-Type: text/css
Last-Modified: Wed, 09 Nov 2022 00:31:22 GMT
ETag: W/"636af4da-3319"
Expires: Thu, 24 Nov 2022 09:15:22 GMT
Cache-Control: max-age=1209600
X-Host: grn78.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Tue, 22 Nov 2022 03:13:21 GMT
Age: 1015078
X-Served-By: cache-sjc10050-SJC, cache-bma1681-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 57, 1
X-Timer: S1669086801.270425,VS0,VE1
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn2.editmysite.com/fonts/Lato/font.css?2
151.101.85.46200 OK 365 B URL HTTP/1.1 cdn2.editmysite.com/fonts/Lato/font.css?2
IP 151.101.85.46:0
Hash f6aec8855300407d88c732db5b97c3cf
a6a4c862f86744cbf3f5477e830c9f80ab986eaf
6f00c364d20ef3193c0b008183501117dec28fe7a538ccebdc4492f5c9b281d3
GET /fonts/Lato/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cbkgroup.com.au/
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 365
Server: nginx
Content-Type: text/css
Last-Modified: Thu, 17 Nov 2022 13:30:29 GMT
ETag: "63763775-a0c"
Expires: Thu, 01 Dec 2022 18:06:26 GMT
Cache-Control: max-age=1209600
X-Host: grn10.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Tue, 22 Nov 2022 03:13:21 GMT
Age: 378415
X-Served-By: cache-sjc10040-SJC, cache-bma1667-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 40, 566
X-Timer: S1669086801.272407,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn2.editmysite.com/fonts/Cookie/font.css?2
151.101.85.46200 OK 241 B URL HTTP/1.1 cdn2.editmysite.com/fonts/Cookie/font.css?2
IP 151.101.85.46:0
Hash 1e96f83454a26c14abf9d311449fbc2c
8fb90d30bd0f8d349421da0aa774785335eab1e8
5724c6e2dc1270b97f15728db65c26096aa17a770755cf061f702fd56104059a
GET /fonts/Cookie/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cbkgroup.com.au/
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 241
Server: nginx
Content-Type: text/css
Last-Modified: Thu, 10 Nov 2022 22:09:12 GMT
ETag: "636d7688-1ad"
Expires: Tue, 29 Nov 2022 11:10:10 GMT
Cache-Control: max-age=1209600
X-Host: grn78.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Tue, 22 Nov 2022 03:13:21 GMT
Age: 576190
X-Served-By: cache-sjc10059-SJC, cache-bma1622-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 311, 5
X-Timer: S1669086801.272817,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn2.editmysite.com/fonts/Roboto/font.css?2
151.101.85.46200 OK 366 B URL HTTP/1.1 cdn2.editmysite.com/fonts/Roboto/font.css?2
IP 151.101.85.46:0
Hash ba2db81c32601a480e96b58f590f1c0c
b78d1a152ee9c81d4aedadaf1bfbd8b05af5a1bd
0034dbc1fed209004e62d11bed894afa55df825bbc27c8357a3a1bbcd28f9e57
GET /fonts/Roboto/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cbkgroup.com.au/
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 366
Server: nginx
Content-Type: text/css
Last-Modified: Thu, 10 Nov 2022 22:09:13 GMT
ETag: "636d7689-a18"
Expires: Tue, 29 Nov 2022 09:26:32 GMT
Cache-Control: max-age=1209600
X-Host: blu87.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Tue, 22 Nov 2022 03:13:21 GMT
Age: 582408
X-Served-By: cache-sjc10039-SJC, cache-bma1627-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 9, 2
X-Timer: S1669086801.273708,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn2.editmysite.com/fonts/Montserrat/font.css?2
151.101.85.46200 OK 276 B URL HTTP/1.1 cdn2.editmysite.com/fonts/Montserrat/font.css?2
IP 151.101.85.46:0
Hash 559eefb63fcae2a3f85471dd3903016a
5e4a9f5b529f2f6d2ee1de511231f856e673066c
09110f0d179c52677e2caf24d4bad70e5d717acb2eff2887ac36dbc1d9583fae
GET /fonts/Montserrat/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cbkgroup.com.au/
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 276
Server: nginx
Content-Type: text/css
Last-Modified: Thu, 17 Nov 2022 13:30:30 GMT
ETag: "63763776-354"
Expires: Thu, 01 Dec 2022 18:07:57 GMT
Cache-Control: max-age=1209600
X-Host: grn48.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Tue, 22 Nov 2022 03:13:21 GMT
Age: 378324
X-Served-By: cache-sjc10070-SJC, cache-bma1668-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 40, 1143
X-Timer: S1669086801.279731,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn2.editmysite.com/fonts/Open_Sans/font.css?2
151.101.85.46200 OK 367 B URL HTTP/1.1 cdn2.editmysite.com/fonts/Open_Sans/font.css?2
IP 151.101.85.46:0
Hash 52e94ffb1c814650bab35433c3034ac7
b42d636ac9b71805f751612208ddb34e93a6538d
fe0f821828a4b146e9b0aba7f9a4956a0caa14a2ac72541ced5ee1d2ed376462
GET /fonts/Open_Sans/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cbkgroup.com.au/
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 367
Server: nginx
Content-Type: text/css
Last-Modified: Fri, 18 Nov 2022 17:06:34 GMT
ETag: "6377bb9a-a2a"
Expires: Mon, 05 Dec 2022 12:08:38 GMT
Cache-Control: max-age=1209600
X-Host: blu142.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Tue, 22 Nov 2022 03:13:21 GMT
Age: 54282
X-Served-By: cache-sjc10081-SJC, cache-bma1681-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 55, 215
X-Timer: S1669086801.281720,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn2.editmysite.com/fonts/Patua_One/font.css?2
151.101.85.46200 OK 243 B URL HTTP/1.1 cdn2.editmysite.com/fonts/Patua_One/font.css?2
IP 151.101.85.46:0
Hash e17d32452c2a93a7d79b8c021db679c7
940edb336ad600ce75e0119e0cb3a5dec6ab8da5
004b8507f87f9837c871125a769d518219f9d7cde472379831fa0a685f817035
GET /fonts/Patua_One/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cbkgroup.com.au/
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 243
Server: nginx
Content-Type: text/css
Last-Modified: Thu, 10 Nov 2022 22:09:13 GMT
ETag: "636d7689-1b0"
Expires: Tue, 29 Nov 2022 08:49:25 GMT
Cache-Control: max-age=1209600
X-Host: grn78.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Tue, 22 Nov 2022 03:13:21 GMT
Age: 584635
X-Served-By: cache-sjc10054-SJC, cache-bma1675-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 21, 1
X-Timer: S1669086801.281218,VS0,VE1
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1664237694&
151.101.85.46200 OK 33 kB URL HTTP/1.1 cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1664237694&
IP 151.101.85.46:0
File type ASCII text, with very long lines (65024)
Hash d8a96093e4ac9525ad79fcfd57d8ef8a
c69965f81400795e52e7795f2befbb62dc84dbeb
260dadf35ac438d5101a0c5ad9f48d631d6e9652e92761af42e81338153831f2
GET /js/lang/en/stl.js?buildTime=1664237694& HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cbkgroup.com.au/
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 32668
Server: nginx
Content-Type: application/javascript
Last-Modified: Fri, 18 Nov 2022 22:53:11 GMT
ETag: "63780cd7-2c00a"
Expires: Mon, 05 Dec 2022 11:52:04 GMT
Cache-Control: max-age=1209600
X-Host: blu20.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Tue, 22 Nov 2022 03:13:21 GMT
Age: 55276
X-Served-By: cache-sjc10057-SJC, cache-bma1667-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 45, 1
X-Timer: S1669086801.283250,VS0,VE1
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1664237694
151.101.85.46200 OK 159 kB URL HTTP/1.1 cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1664237694
IP 151.101.85.46:0
File type ASCII text, with very long lines (32007)
Size 159 kB (158975 bytes)
Hash c29a5e4fd4ee0d3b7cd0597f2b9b602b
bb134ed641467954f4a724167dc7ea56a03e7fa8
bf9850a7e6dd269898b78ecf07a34438bc300cad0bbb2d280e10ccadf81646b2
GET /js/site/main-customer-accounts-site.js?buildTime=1664237694 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cbkgroup.com.au/
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 158975
Server: nginx
Content-Type: application/javascript
Last-Modified: Tue, 08 Nov 2022 23:00:10 GMT
ETag: "636adf7a-8250f"
Expires: Wed, 23 Nov 2022 09:14:20 GMT
Cache-Control: max-age=1209600
X-Host: grn77.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Tue, 22 Nov 2022 03:13:21 GMT
Age: 1101541
X-Served-By: cache-sjc10045-SJC, cache-bma1627-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1222, 1
X-Timer: S1669086801.289786,VS0,VE1
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 8796b1bba5e0df458c07179adea64173
b3c3f64718de099805a200e156774ea356a08132
ae32033094ed99df37e4537b91ec3d52a8fd2f0d2f538e3c81901e1f9c29a0a2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 03:13:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
142.250.74.170200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
IP 142.250.74.170:0
File type ASCII text, with very long lines (65483)
Hash a54a444f20643b131117dc2112cca05f
074964746b12ff1d30f7656310d6154ae1cc98b5
aa3ca8485dd777d4d880b38c1cf3bc2fc290d28a79ba3e3e43cba1f653132830
GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cbkgroup.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33593
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 19 Nov 2022 21:21:09 GMT
expires: Sun, 19 Nov 2023 21:21:09 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 193932
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 8796b1bba5e0df458c07179adea64173
b3c3f64718de099805a200e156774ea356a08132
ae32033094ed99df37e4537b91ec3d52a8fd2f0d2f538e3c81901e1f9c29a0a2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 03:13:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cbkgroup.com.au/files/main_style.css?1664246629
3.105.68.221200 OK 6.3 kB URL HTTP/1.1 cbkgroup.com.au/files/main_style.css?1664246629
IP 3.105.68.221:0
File type ASCII text, with very long lines (580)
Hash 61e53275257d16615eeeef42e4b602c9
dea07d0d4884a9ec938e03e2cc49cc01e0572e92
243e69e7155cde010a3ea217b73676d4ded5bce01f50842a63866a163e4a80b9
Analyzer Verdict Alert fortinet Malware
GET /files/main_style.css?1664246629 HTTP/1.1
Host: cbkgroup.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cbkgroup.com.au/index.html
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 03:13:21 GMT
content-type: text/css
last-modified: Tue, 27 Sep 2022 02:44:03 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 6298
date: Tue, 22 Nov 2022 03:13:21 GMT
server: LiteSpeed
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6558
Expires: Tue, 22 Nov 2022 05:02:39 GMT
Date: Tue, 22 Nov 2022 03:13:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6558
Expires: Tue, 22 Nov 2022 05:02:39 GMT
Date: Tue, 22 Nov 2022 03:13:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6558
Expires: Tue, 22 Nov 2022 05:02:39 GMT
Date: Tue, 22 Nov 2022 03:13:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6558
Expires: Tue, 22 Nov 2022 05:02:39 GMT
Date: Tue, 22 Nov 2022 03:13:21 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 481c033b9ffd030ff0de6e35cf788b47
85d3baad9217af2b5d75c019d2ef95dbb919a788
02443c7869914c2b29892deb0c645395bcf4e8379da3cf20974614ff9c92893b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11249
x-amzn-requestid: 65a3db77-b2e6-40b9-a776-021c2e9b56d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bubSsHbZoAMFZNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6375a5aa-1286b97968cc2e4c7fe8ab29;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 03:08:26 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: s1153EpshSWYGLcN7Zzzs4PgXl9cddZ20gTwh5bK2HOBu4e_PSNCpQ==
via: 1.1 38eecd3ca21bf068d69a2f9cfe668d14.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 05:19:29 GMT
age: 78832
etag: "85d3baad9217af2b5d75c019d2ef95dbb919a788"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d5a9928-3c61-44dc-af42-7d4e3c891caa.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d5a9928-3c61-44dc-af42-7d4e3c891caa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 03830e3ff377979c234bf37561c54cfd
c18884ce9370c97e6b4e12ab0f827d68a1938bfa
5ba8bfc69c7eba42de4a16bf6d1e1e3570cd3918fe15cb8b2d25950ef791ddbb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d5a9928-3c61-44dc-af42-7d4e3c891caa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8365
x-amzn-requestid: e6c2ec6e-525e-4b9f-a45d-63076580df5b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-IrpFJ3oAMF4mA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637bee4a-576f678b6e364bca09532010;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:31:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 89jqCw8OJIxusDPoTi5-HDxWcgCfNvRrku2VFBLcQbFJwLLaZBpHGA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:44:46 GMT
age: 19715
etag: "c18884ce9370c97e6b4e12ab0f827d68a1938bfa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe35a8d1-e974-48d4-a8b7-1add4aa5d251.webp
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe35a8d1-e974-48d4-a8b7-1add4aa5d251.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2ed6b76d15fc8d6295acdb6fb47461d3
b8c928f93a8d82b48491448d811a95ad99dc6aef
de326836a9de677438b9ae724198e94348b0900c62817ff10de3677ce93fdae0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe35a8d1-e974-48d4-a8b7-1add4aa5d251.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8685
x-amzn-requestid: 66455cc7-83d7-4570-99f9-5fa838da947f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-IrAHwKoAMFUHQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637bee46-354d65e9609bc05647556a5a;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:31:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: -9tZPsMl7i5hr0N1rwJdQBLiOImuEO12RDL0pcPNjf6t-LkRbPaN2A==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:58:29 GMT
age: 18892
etag: "b8c928f93a8d82b48491448d811a95ad99dc6aef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8365a642-a490-4221-8f9f-867864b12d62.webp
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8365a642-a490-4221-8f9f-867864b12d62.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 528d729159d8b08ed1fe05472dc65ce4
b7d570a7a095e127fd408b8272b93a52c5038b46
d6404764bcc3f2e7c4462b6b31fbc0e315c9cbf51b7424194c2bc6f4a21a33de
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8365a642-a490-4221-8f9f-867864b12d62.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9862
x-amzn-requestid: 02281c2f-2a42-4891-97af-8d21a4cd0d2e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-IrJEdYIAMFijQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637bee47-7c96415239d22bfc219f53f6;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:31:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: s7D3KMWB4GWn_ocJfzzb71Btbh8DE--DsUnwH9PkWptl7CXfqh3CXA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:48:12 GMT
age: 19509
etag: "b7d570a7a095e127fd408b8272b93a52c5038b46"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4585277-93e1-4477-a3fd-7902d8def50a.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4585277-93e1-4477-a3fd-7902d8def50a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ed56d033b6595fa91a4c513c0ed7cdd4
ef87cc22637f94451f116905bfe096fff3e73d86
02f79fe867a07f3fdd1ad932da67a9a2df8c07ad4172b0aad2f61ee6b67a72fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4585277-93e1-4477-a3fd-7902d8def50a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9355
x-amzn-requestid: d801efd0-da4a-405a-b1b4-ebd17a784129
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-LA6FwuoAMFRxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637bf205-1d28acc046a79a4e4df8aabe;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:47:49 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: IZZbByT9It-u1_v1M9O1pTF65pwOSGBeCVgCtDisb6-kZiN76R3lkg==
via: 1.1 b04d82bf2bc15ab146955a862be263f0.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:59:38 GMT
etag: "ef87cc22637f94451f116905bfe096fff3e73d86"
content-type: image/jpeg
age: 18823
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1372997b-0a59-409c-abfc-e43335bb3c99.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1372997b-0a59-409c-abfc-e43335bb3c99.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9966de3441666a87569e1035e7849a5d
537e1122532b97637319252662d25be5edcd8009
032f9fd899993bde783fee0123a1568e65fb6dd3810666813fc878263d5b6387
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1372997b-0a59-409c-abfc-e43335bb3c99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6574
x-amzn-requestid: fd74522d-9523-48da-a94a-72ff65e6a15b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-I61E_pIAMFnfQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637beeab-6f916e413d39bea94b0e137f;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:33:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VuPgTium3lWMOuUdkZ50LFGHdpuAaiHusb2fkYQNw4FgB_MkNVO0Zw==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 22:05:17 GMT
age: 18484
etag: "537e1122532b97637319252662d25be5edcd8009"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cbkgroup.com.au/files/theme/custom.js?1556896837
3.105.68.221200 OK 3.1 kB URL HTTP/1.1 cbkgroup.com.au/files/theme/custom.js?1556896837
IP 3.105.68.221:0
Hash 3ad706a6014f4b153bbcf43cfdfb9c17
2571bce7ce8906bea4ce956563938cdd83df58f4
923a6f083d9a08bff4daf1b55a385136145ca9b8625e02f9b38dc35aeab966f5
Analyzer Verdict Alert fortinet Malware
GET /files/theme/custom.js?1556896837 HTTP/1.1
Host: cbkgroup.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cbkgroup.com.au/index.html
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 03:13:21 GMT
content-type: application/javascript
last-modified: Fri, 11 Mar 2022 00:02:54 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3089
date: Tue, 22 Nov 2022 03:13:21 GMT
server: LiteSpeed
cbkgroup.com.au/files/theme/mobile.js?1556896837
3.105.68.221200 OK 4.8 kB URL HTTP/1.1 cbkgroup.com.au/files/theme/mobile.js?1556896837
IP 3.105.68.221:0
Hash ed17ed59c8b7c475f12d20923c0b2e19
14435995c335622d954211b11cecda22a5f0493b
a7af5cc0423426e22930bb6ce0a218ed956f275a97a000abf035c65c7757c1d0
Analyzer Verdict Alert fortinet Malware
GET /files/theme/mobile.js?1556896837 HTTP/1.1
Host: cbkgroup.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cbkgroup.com.au/index.html
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 03:13:21 GMT
content-type: application/javascript
last-modified: Mon, 18 Jul 2022 06:50:18 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 4812
date: Tue, 22 Nov 2022 03:13:21 GMT
server: LiteSpeed
cbkgroup.com.au/files/theme/plugins.js?1556896837
3.105.68.221200 OK 18 kB URL HTTP/1.1 cbkgroup.com.au/files/theme/plugins.js?1556896837
IP 3.105.68.221:0
Hash 2c8e4692e12398df2456108d4a7e66b3
70a2a4053ec2aba60dac591526969922d8056cdd
ab7cfe11e1a9889d0400953b0181ba2efc55b9e4ce5591a4cef9672d7cef010c
GET /files/theme/plugins.js?1556896837 HTTP/1.1
Host: cbkgroup.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cbkgroup.com.au/index.html
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 03:13:21 GMT
content-type: application/javascript
last-modified: Fri, 11 Mar 2022 00:02:54 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 18095
date: Tue, 22 Nov 2022 03:13:21 GMT
server: LiteSpeed
cbkgroup.com.au/gdpr/gdprscript.js?buildTime=1664237694&hasRemindMe=true&stealth=false
3.105.68.221200 OK 6.7 kB URL HTTP/1.1 cbkgroup.com.au/gdpr/gdprscript.js?buildTime=1664237694&hasRemindMe=true&stealth=false
IP 3.105.68.221:0
File type HTML document text\012- HTML document text\012- C source, ASCII text, with very long lines (17520)
Hash ff43764a56ea26a14ca8804998a5b1ec
122accec7d76d956a4295682076757bd62d37d88
0ba824617f8ac873b3eecc6c166945530fcb3ff1f914ced5a1e41312b370c895
GET /gdpr/gdprscript.js?buildTime=1664237694&hasRemindMe=true&stealth=false HTTP/1.1
Host: cbkgroup.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cbkgroup.com.au/index.html
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/7.4.32
content-type: text/javascript;;charset=UTF-8
x-ds-version: 1664246632
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding
date: Tue, 22 Nov 2022 03:13:22 GMT
server: LiteSpeed
cdn2.editmysite.com/js/wsnbn/snowday262.js
151.101.85.46200 OK 26 kB URL HTTP/1.1 cdn2.editmysite.com/js/wsnbn/snowday262.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (2512)
Hash 234327230add9a5a5d61a48829ea4565
7966cc0e4bd76f88ff193c8a99a067de804b7129
bb696c58d9ae5fa635b3ff22efdf60de9ac2f8ef9df5e2f2d58dd5f8dc99df75
GET /js/wsnbn/snowday262.js HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cbkgroup.com.au/
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 25752
Server: nginx
Content-Type: application/javascript
Last-Modified: Wed, 09 Nov 2022 00:31:12 GMT
ETag: "636af4d0-124fe"
Expires: Thu, 24 Nov 2022 08:38:41 GMT
Cache-Control: max-age=1209600
X-Host: grn91.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Tue, 22 Nov 2022 03:13:22 GMT
Age: 1017280
X-Served-By: cache-sjc10061-SJC, cache-bma1627-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 49, 6290
X-Timer: S1669086802.415486,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn2.editmysite.com/fonts/Cookie/regular.woff2
151.101.85.46200 OK 14 kB URL HTTP/1.1 cdn2.editmysite.com/fonts/Cookie/regular.woff2
IP 151.101.85.46:0
File type Web Open Font Format (Version 2), TrueType, length 14456, version 1.0\012- data
Hash 7a93cfe157bf03fdac08d381c241b458
6c502bd8dd6045e41c80b6de80341760a83130a3
4e8b3c170321fd6a38ad24b7df1aebf59b19d9f07fada7beef10f7e5664b13f9
GET /fonts/Cookie/regular.woff2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://cbkgroup.com.au
Connection: keep-alive
Referer: http://cdn2.editmysite.com/
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 14456
Server: nginx
Content-Type: font/woff2
Last-Modified: Thu, 10 Nov 2022 22:09:12 GMT
ETag: "636d7688-3878"
Expires: Tue, 29 Nov 2022 08:59:30 GMT
Cache-Control: max-age=1209600
X-Host: blu11.sf2p.intern.weebly.net
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Tue, 22 Nov 2022 03:13:22 GMT
Age: 584032
X-Served-By: cache-sjc10040-SJC, cache-bma1682-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 12, 3
X-Timer: S1669086802.437574,VS0,VE0
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn2.editmysite.com/fonts/Montserrat/regular.woff2
151.101.85.46200 OK 13 kB URL HTTP/1.1 cdn2.editmysite.com/fonts/Montserrat/regular.woff2
IP 151.101.85.46:0
File type Web Open Font Format (Version 2), TrueType, length 12708, version 1.0\012- data
Hash b4a68b1e743ee317eaaf0bbadd131571
f24f7823d4e3830c7cfa5bcb33733d2897c00f13
ddc148b8a0a27b1449fda6033f4a0defac9bd43210117b50d5d7ad1eda09f394
GET /fonts/Montserrat/regular.woff2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://cbkgroup.com.au
Connection: keep-alive
Referer: http://cdn2.editmysite.com/
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 12708
Server: nginx
Content-Type: font/woff2
Last-Modified: Wed, 02 Nov 2022 21:12:12 GMT
ETag: "6362dd2c-31a4"
Expires: Tue, 22 Nov 2022 12:23:58 GMT
Cache-Control: max-age=1209600
X-Host: blu133.sf2p.intern.weebly.net
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Tue, 22 Nov 2022 03:13:22 GMT
Age: 1176563
X-Served-By: cache-sjc10045-SJC, cache-bma1636-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 50, 1595
X-Timer: S1669086802.442198,VS0,VE0
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn2.editmysite.com/fonts/Montserrat/bold.woff2
151.101.85.46200 OK 13 kB URL HTTP/1.1 cdn2.editmysite.com/fonts/Montserrat/bold.woff2
IP 151.101.85.46:0
File type Web Open Font Format (Version 2), TrueType, length 12848, version 1.0\012- data
Hash f0b3206d02a2f684530117ce1d7e8ce0
f3708b707b65e241b0f1c819d5f7bf7da8412653
f31b80562610135edd91a86ec7f243c5eeaec2ec08337e6a20c2d135d8e217da
GET /fonts/Montserrat/bold.woff2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://cbkgroup.com.au
Connection: keep-alive
Referer: http://cdn2.editmysite.com/
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 12848
Server: nginx
Content-Type: font/woff2
Last-Modified: Wed, 02 Nov 2022 21:12:12 GMT
ETag: "6362dd2c-3230"
Expires: Tue, 22 Nov 2022 09:58:21 GMT
Cache-Control: max-age=1209600
X-Host: blu41.sf2p.intern.weebly.net
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Tue, 22 Nov 2022 03:13:22 GMT
Age: 1185301
X-Served-By: cache-sjc10033-SJC, cache-bma1636-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 5348, 513
X-Timer: S1669086802.453376,VS0,VE0
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn2.editmysite.com/fonts/Lato/bold.woff2
151.101.85.46200 OK 23 kB URL HTTP/1.1 cdn2.editmysite.com/fonts/Lato/bold.woff2
IP 151.101.85.46:0
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /fonts/Lato/bold.woff2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://cbkgroup.com.au
Connection: keep-alive
Referer: http://cdn2.editmysite.com/
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 23040
Server: nginx
Content-Type: font/woff2
Last-Modified: Tue, 08 Nov 2022 21:15:05 GMT
ETag: "636ac6d9-5a00"
Expires: Wed, 23 Nov 2022 09:15:38 GMT
Cache-Control: max-age=1209600
X-Host: blu127.sf2p.intern.weebly.net
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Tue, 22 Nov 2022 03:13:22 GMT
Age: 1101463
X-Served-By: cache-sjc10081-SJC, cache-bma1660-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 2092, 152
X-Timer: S1669086802.453219,VS0,VE0
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn2.editmysite.com/fonts/Lato/italic.woff2
151.101.85.46200 OK 24 kB URL HTTP/1.1 cdn2.editmysite.com/fonts/Lato/italic.woff2
IP 151.101.85.46:0
File type Web Open Font Format (Version 2), TrueType, length 24408, version 1.0\012- data
Hash efee2d080d7bebdd2e0aeb2e030813a0
f8d38f9f9584e48c2e469877ebd94232265585f1
bca1d88ada544d9c80872d4da27133fab6d347361fa26e932b47ec9559088fd0
GET /fonts/Lato/italic.woff2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://cbkgroup.com.au
Connection: keep-alive
Referer: http://cdn2.editmysite.com/
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 24408
Server: nginx
Content-Type: font/woff2
Last-Modified: Thu, 10 Nov 2022 22:09:13 GMT
ETag: "636d7689-5f58"
Expires: Tue, 29 Nov 2022 07:43:39 GMT
Cache-Control: max-age=1209600
X-Host: blu67.sf2p.intern.weebly.net
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Tue, 22 Nov 2022 03:13:22 GMT
Age: 588583
X-Served-By: cache-sjc10083-SJC, cache-bma1637-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 16, 2
X-Timer: S1669086802.453520,VS0,VE0
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn2.editmysite.com/fonts/Lato/regular.woff2
151.101.85.46200 OK 24 kB URL HTTP/1.1 cdn2.editmysite.com/fonts/Lato/regular.woff2
IP 151.101.85.46:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /fonts/Lato/regular.woff2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://cbkgroup.com.au
Connection: keep-alive
Referer: http://cdn2.editmysite.com/
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 23580
Server: nginx
Content-Type: font/woff2
Last-Modified: Wed, 02 Nov 2022 21:12:11 GMT
ETag: "6362dd2b-5c1c"
Expires: Tue, 22 Nov 2022 11:35:42 GMT
Cache-Control: max-age=1209600
X-Host: grn46.sf2p.intern.weebly.net
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Tue, 22 Nov 2022 03:13:22 GMT
Age: 1179460
X-Served-By: cache-sjc10034-SJC, cache-bma1682-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 11, 192
X-Timer: S1669086802.453279,VS0,VE0
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d5f44030ae728558d0102445d170b873
a9c2e9ce4d20fe2e8a1656f4f457d9a7fe6ee20e
72f2e03c205a810e0ee66b1ee52f2c32ad4d5e5f8b14c5f26810f281761abc0c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 03:13:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cbkgroup.com.au/uploads/1/4/1/0/141069492/editor/round-logo-13.png?1658058723
3.105.68.221200 OK 12 kB URL HTTP/1.1 cbkgroup.com.au/uploads/1/4/1/0/141069492/editor/round-logo-13.png?1658058723
IP 3.105.68.221:0
File type PNG image data, 246 x 244, 8-bit/color RGBA, non-interlaced\012- data
Hash bf1ce34a09ada8f8a8672066ce78413b
bc315314afc2e6addadaaa78c15c0312ab2f0da7
2e568cb8f7f15f6235a95e7634a134a7f05f1a76b1be19926431114766583d79
Analyzer Verdict Alert fortinet Malware
GET /uploads/1/4/1/0/141069492/editor/round-logo-13.png?1658058723 HTTP/1.1
Host: cbkgroup.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cbkgroup.com.au/index.html
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 03:13:22 GMT
content-type: image/png
last-modified: Thu, 04 Aug 2022 07:27:19 GMT
accept-ranges: bytes
content-length: 12122
date: Tue, 22 Nov 2022 03:13:22 GMT
server: LiteSpeed
cbkgroup.com.au/uploads/1/4/1/0/141069492/lines-09.png
3.105.68.221200 OK 4.9 kB URL HTTP/1.1 cbkgroup.com.au/uploads/1/4/1/0/141069492/lines-09.png
IP 3.105.68.221:0
File type PNG image data, 648 x 486, 8-bit colormap, non-interlaced\012- data
Hash 8bb718b9e627e6e13eeb5690fc977aa6
8a49b7786540d9639e3a440a5172d98664da2b7e
236412e0626e50032992f0ff05e957d102443d18fcd4c1bee5c227b8995cde84
GET /uploads/1/4/1/0/141069492/lines-09.png HTTP/1.1
Host: cbkgroup.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cbkgroup.com.au/index.html
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 03:13:22 GMT
content-type: image/png
last-modified: Thu, 04 Aug 2022 07:27:19 GMT
accept-ranges: bytes
content-length: 4936
date: Tue, 22 Nov 2022 03:13:22 GMT
server: LiteSpeed
www.google.com/recaptcha/api.js?_=1669086802407
142.250.74.164200 OK 553 B URL HTTP/2 www.google.com/recaptcha/api.js?_=1669086802407
IP 142.250.74.164:0
File type ASCII text, with very long lines (850), with no line terminators
Hash 1309ff133720d219cc98090d66a051ed
b96fc5a893e42be16d687d7abdecdb13d348a019
358683c66634ea5ee3021c93111d8621d583880bcbbfadf3ec2ff87a15ea1038
GET /recaptcha/api.js?_=1669086802407 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cbkgroup.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Tue, 22 Nov 2022 03:13:22 GMT
date: Tue, 22 Nov 2022 03:13:22 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 553
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cbkgroup.com.au/uploads/1/4/1/0/141069492/editor/footer-15.png?1660093526
3.105.68.221200 OK 6.6 kB URL HTTP/1.1 cbkgroup.com.au/uploads/1/4/1/0/141069492/editor/footer-15.png?1660093526
IP 3.105.68.221:0
File type PNG image data, 229 x 123, 8-bit/color RGBA, non-interlaced\012- data
Hash 20f455bc7e89d227f8188b41b8d80555
3ff55c9821338f90bf536d7e2b0f4e40972a736e
8cdfdd59b0091d445750b0afd44a215d93e656eb5d69cba1ff130459399ebd01
GET /uploads/1/4/1/0/141069492/editor/footer-15.png?1660093526 HTTP/1.1
Host: cbkgroup.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cbkgroup.com.au/index.html
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 03:13:22 GMT
content-type: image/png
last-modified: Mon, 18 Jul 2022 06:50:20 GMT
accept-ranges: bytes
content-length: 6629
date: Tue, 22 Nov 2022 03:13:22 GMT
server: LiteSpeed
cbkgroup.com.au/uploads/1/4/1/0/141069492/published/logo-12.png?1659593151
3.105.68.221200 OK 3.1 kB URL HTTP/1.1 cbkgroup.com.au/uploads/1/4/1/0/141069492/published/logo-12.png?1659593151
IP 3.105.68.221:0
File type PNG image data, 88 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 81df92caefc8595d5dcdf8cb23685a30
c17dff4d49edca8e4a221f23926059890638abba
3d620371bc601cc500e20a4c4ccbcb10a23e3bdcfae490bffcd7a25d17e2348c
Analyzer Verdict Alert fortinet Malware
GET /uploads/1/4/1/0/141069492/published/logo-12.png?1659593151 HTTP/1.1
Host: cbkgroup.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cbkgroup.com.au/index.html
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 03:13:22 GMT
content-type: image/png
last-modified: Mon, 18 Jul 2022 06:50:18 GMT
accept-ranges: bytes
content-length: 3076
date: Tue, 22 Nov 2022 03:13:22 GMT
server: LiteSpeed
cbkgroup.com.au/uploads/1/4/1/0/141069492/lines-10.png
3.105.68.221200 OK 4.9 kB URL HTTP/1.1 cbkgroup.com.au/uploads/1/4/1/0/141069492/lines-10.png
IP 3.105.68.221:0
File type PNG image data, 648 x 486, 8-bit colormap, non-interlaced\012- data
Hash 52bbeead513dfb294680d16550df8c5f
0a076575fe3a83569a78b31d49fa00c44981c856
46a5ee24715fdb520e554ff86c1ce14e846781f09d2476e1596af1778c2ccebb
GET /uploads/1/4/1/0/141069492/lines-10.png HTTP/1.1
Host: cbkgroup.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cbkgroup.com.au/index.html
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 03:13:22 GMT
content-type: image/png
last-modified: Thu, 04 Aug 2022 07:27:19 GMT
accept-ranges: bytes
content-length: 4921
date: Tue, 22 Nov 2022 03:13:22 GMT
server: LiteSpeed
cbkgroup.com.au/uploads/1/4/1/0/141069492/lines-11.png
3.105.68.221200 OK 5.7 kB URL HTTP/1.1 cbkgroup.com.au/uploads/1/4/1/0/141069492/lines-11.png
IP 3.105.68.221:0
File type PNG image data, 649 x 486, 8-bit colormap, non-interlaced\012- data
Hash 8fb127a5df7afddbb7b47a46400d53e5
e9146d850672084eac027274a17f0db38b640fcb
a089140554e71a8c306d74433bef193766101c764cc6ff2de042a684e6e8c9b6
GET /uploads/1/4/1/0/141069492/lines-11.png HTTP/1.1
Host: cbkgroup.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cbkgroup.com.au/index.html
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 03:13:22 GMT
content-type: image/png
last-modified: Thu, 04 Aug 2022 07:27:19 GMT
accept-ranges: bytes
content-length: 5718
date: Tue, 22 Nov 2022 03:13:22 GMT
server: LiteSpeed
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash cdcd936a1ca3729e5415928204c25f17
2a0d0e6f94f8145a32f98b725bba52a9a6616f2b
e92ab786e674810e9a0faf3a8c98a99eddb356fa27861f965fd688e54b5bf8c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 03:13:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/ga.js
216.239.38.178200 OK 17 kB URL HTTP/1.1 www.google-analytics.com/ga.js
IP 216.239.38.178:0
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cbkgroup.com.au/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 17168
Date: Tue, 22 Nov 2022 03:05:55 GMT
Expires: Tue, 22 Nov 2022 05:05:55 GMT
Cache-Control: public, max-age=7200
Age: 447
Last-Modified: Tue, 27 Sep 2022 22:01:05 GMT
Content-Type: text/javascript
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
35.82.13.103200 OK 0 B URL HTTP/1.1 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 35.82.13.103:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://cbkgroup.com.au/
Origin: http://cbkgroup.com.au
Connection: keep-alive
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 03:13:22 GMT
Content-Length: 0
Connection: keep-alive
Server: nginx
Access-Control-Allow-Origin: http://cbkgroup.com.au
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type, SP-Anonymous
Access-Control-Max-Age: 600
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash ed3ae8e878b9c8c9c5fc3ab22d8547d6
e4d08dc74fa84a3bcc9d442e225e8f7a6c124822
e135b6fb23500cb2edbf836719ed450cdb6b1e86b7c8491289cb4e1ccbd9ce84
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 03:13:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
142.250.74.163200 OK 163 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (730)
Size 163 kB (162976 bytes)
Hash 79d18cf4265108d7cecca1bf4ada6109
e51d0285a545381d4c39e9e0292a650ffeeecbb9
59ce7253f371df0833c3f72d4748ef812002b90a49413c56d0ca7c40bb5a0ab6
GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://cbkgroup.com.au
Connection: keep-alive
Referer: http://cbkgroup.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 20 Nov 2022 11:26:10 GMT
expires: Mon, 20 Nov 2023 11:26:10 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
content-type: text/javascript
age: 143232
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d9afe0ae0199aff69fefbe5a55490d31
126f648ad266469bf531b5c08f7f71a973d0eeb0
105d272d89fa39de018c77cb85f97c12af739243c6bf8172e2914217bd2efec5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 03:13:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
35.82.13.103200 OK 2 B URL HTTP/1.1 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 35.82.13.103:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json; charset=UTF-8
Content-Length: 1811
Origin: http://cbkgroup.com.au
Connection: keep-alive
Referer: http://cbkgroup.com.au/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 03:13:22 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 2
Connection: keep-alive
Server: nginx
Set-Cookie: sp=0586391f-95d8-48e5-9456-d15639216ce3; Expires=Wed, 22 Nov 2023 03:13:22 GMT; Domain=; Path=/; Secure; SameSite=None
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
Access-Control-Allow-Origin: http://cbkgroup.com.au
Access-Control-Allow-Credentials: true
cbkgroup.com.au/favicon.ico
3.105.68.221200 OK 17 kB URL HTTP/1.1 cbkgroup.com.au/favicon.ico
IP 3.105.68.221:0
File type MS Windows icon resource - 1 icon, 64x64, 32 bits/pixel\012- data
Hash e9d3efe3a6dd9de8fc2884a8b6284606
8d86be2585614462ccb11d299e7d4bcb62167fda
02f159a51a113dd78805f5f734d969048ff51e847eb7ae4ae1eaaf7959a3fe97
GET /favicon.ico HTTP/1.1
Host: cbkgroup.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cbkgroup.com.au/index.html
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 03:13:23 GMT
content-type: image/x-icon
last-modified: Tue, 27 Sep 2022 02:44:37 GMT
accept-ranges: bytes
content-length: 16958
date: Tue, 22 Nov 2022 03:13:23 GMT
server: LiteSpeed
cbkgroup.com.au/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
3.105.68.221200 OK 348 B URL HTTP/1.1 cbkgroup.com.au/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
IP 3.105.68.221:0
File type JSON data\012- , ASCII text, with very long lines (348), with no line terminators
Hash a944dd688c99d2901d6719be713271c0
4f5454d5d434829baf46671638610791758725d9
adb97e1bc686c58b4286f1208d2bd969687c6cf3e2fc468697dfd956d260de49
POST /ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] HTTP/1.1
Host: cbkgroup.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 83
Origin: http://cbkgroup.com.au
Connection: keep-alive
Referer: http://cbkgroup.com.au/index.html
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/7.4.32
vary: X-W-SSL,User-Agent
x-host: grn49.sf2p.intern.weebly.net
x-ua-compatible: IE=edge,chrome=1
content-type: application/json
x-ds-version: 1664246632
content-length: 348
date: Tue, 22 Nov 2022 03:13:23 GMT
server: LiteSpeed
cbkgroup.com.au/uploads/1/4/1/0/141069492/background-images/2081944749.jpg
3.105.68.221200 OK 223 kB URL HTTP/1.1 cbkgroup.com.au/uploads/1/4/1/0/141069492/background-images/2081944749.jpg
IP 3.105.68.221:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2000x1125, components 3\012- data
Size 223 kB (222946 bytes)
Hash 33bb1ea790ec0986e069b837a749cce3
a68876f87a68f58bd7d7c2374a75edc74fe57353
f69b71bc34c2a3fe574db3e07c7f511b0dae803cb5870f2dbd9c1b0b783ed3cb
GET /uploads/1/4/1/0/141069492/background-images/2081944749.jpg HTTP/1.1
Host: cbkgroup.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cbkgroup.com.au/index.html
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 03:13:22 GMT
content-type: image/jpeg
last-modified: Thu, 04 Aug 2022 08:13:14 GMT
accept-ranges: bytes
content-length: 222946
date: Tue, 22 Nov 2022 03:13:22 GMT
server: LiteSpeed
cbkgroup.com.au/uploads/1/4/1/0/141069492/background-images/2049704978.jpg
3.105.68.221200 OK 2.1 MB URL HTTP/1.1 cbkgroup.com.au/uploads/1/4/1/0/141069492/background-images/2049704978.jpg
IP 3.105.68.221:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 4583x1265, components 3\012- data
Size 2.1 MB (2079002 bytes)
Hash 72fd91d47d3cd7c6aef021c8c659e7b4
900a2c093045ec430ae990251a3ed187cfaa4e88
6809d4aeb15ea01126dd6cfbeca8bb5cb56eac78b137bbaa1685b2b5f61bd8fa
GET /uploads/1/4/1/0/141069492/background-images/2049704978.jpg HTTP/1.1
Host: cbkgroup.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cbkgroup.com.au/index.html
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 03:13:22 GMT
content-type: image/jpeg
last-modified: Thu, 04 Aug 2022 06:09:23 GMT
accept-ranges: bytes
content-length: 2079002
date: Tue, 22 Nov 2022 03:13:22 GMT
server: LiteSpeed
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4cb92473-220a-4ebb-b8d8-6c17618bc006.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4cb92473-220a-4ebb-b8d8-6c17618bc006.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bd62f641e9d58eee10e41db0fa00b5f2
4210e5f150a49d6f6ee26cbb11ded8173ab8cf74
5858451bf7cac97b8881dde7e3197110fa8639c1d94b51934859669c51221e1a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4cb92473-220a-4ebb-b8d8-6c17618bc006.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4308
x-amzn-requestid: 7db10594-4acc-448d-b724-1c4bc8ec42ca
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-IrVFtRoAMFTzg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637bee48-0a466f6b0bd48f3532216bca;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:31:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lazmS3LWuJDe1SCEMAL2jXKrjjRr4H_hC7kAi7zx9Zx1un1zthsdxQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:48:00 GMT
etag: "4210e5f150a49d6f6ee26cbb11ded8173ab8cf74"
content-type: image/jpeg
age: 19528
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/site/main.js?buildTime=1664237694
151.101.85.46200 OK 0 B URL HTTP/1.1 cdn2.editmysite.com/js/site/main.js?buildTime=1664237694
IP 151.101.85.46:0
GET /js/site/main.js?buildTime=1664237694 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cbkgroup.com.au/
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 146400
Server: nginx
Content-Type: application/javascript
Last-Modified: Fri, 18 Nov 2022 01:33:58 GMT
ETag: "6376e106-74804"
Expires: Fri, 02 Dec 2022 11:50:59 GMT
Cache-Control: max-age=1209600
X-Host: grn103.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Tue, 22 Nov 2022 03:13:21 GMT
Age: 314541
X-Served-By: cache-sjc10076-SJC, cache-bma1622-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 2, 1
X-Timer: S1669086801.283287,VS0,VE1
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400