r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16627
Expires: Sun, 29 Jan 2023 09:04:48 GMT
Date: Sun, 29 Jan 2023 04:27:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3eb88dea4fe00db1182370e72683c3ab
ca520abf1e91bfd2aef40c6a1270a911071e8922
d8083ee567c7b3023111dc30f32c94237df7db30d4d2daaea0a569e8a3069ad7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8083EE567C7B3023111DC30F32C94237DF7DB30D4D2DAAEA0A569E8A3069AD7"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18721
Expires: Sun, 29 Jan 2023 09:39:42 GMT
Date: Sun, 29 Jan 2023 04:27:41 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 29 Jan 2023 03:35:33 GMT
content-type: application/json
age: 3128
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 302c7548412192add063ad6c8b99cf3b
e5d178931a27db036ce8daae302594d3ff7050b8
fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11712
Expires: Sun, 29 Jan 2023 07:42:53 GMT
Date: Sun, 29 Jan 2023 04:27:41 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 7G5TlEKa/T2yZxbcA4fIs0RIpgMeMkbndPOw0YKUXgVH4WQPuf9yPIwddRDeW6J46Nucjdw4ecg=
x-amz-request-id: 9DYQF5BXSSS8W7T6
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 29 Jan 2023 04:21:15 GMT
age: 386
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 04:27:41 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 29 Jan 2023 03:49:03 GMT
age: 2319
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17533
Expires: Sun, 29 Jan 2023 09:19:55 GMT
Date: Sun, 29 Jan 2023 04:27:42 GMT
Connection: keep-alive
push.services.mozilla.com/
52.42.148.177101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.42.148.177:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: QxSwgKq/2GXptfrEUJaang==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 8ojAacj+aT/jOXXaRrTT4vWjamE=
citicomp.com.au/
103.250.212.193301 Moved Permanently 0 B IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET / HTTP/1.1
Host: citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 29 Jan 2023 04:27:42 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
X-Powered-By: PHP/8.0.17
X-Pingback: http://www.citicomp.com.au/xmlrpc.php
X-Redirect-By: WordPress
Upgrade: h2,h2c
Location: http://www.citicomp.com.au/
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9871
Expires: Sun, 29 Jan 2023 07:12:14 GMT
Date: Sun, 29 Jan 2023 04:27:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9871
Expires: Sun, 29 Jan 2023 07:12:14 GMT
Date: Sun, 29 Jan 2023 04:27:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9871
Expires: Sun, 29 Jan 2023 07:12:14 GMT
Date: Sun, 29 Jan 2023 04:27:43 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3dade28b-c683-4510-bc44-0207300ccc21.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3dade28b-c683-4510-bc44-0207300ccc21.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6e46615b79ad2d230e98a2b9c54f4431
db55bd978e18e595d695637183862f8c5e7da5dd
f27875ef624f602be8d93b8bc7fae062bf877fc724473613242da4e493510673
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3dade28b-c683-4510-bc44-0207300ccc21.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6211
x-amzn-requestid: 7c124c63-7bd4-44e9-93d6-24ae0fa1c523
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fYvNEHZqIAMF34A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d35f20-3fa73ec93296bedf4eb4aa72;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 05:20:32 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kHOXDx3sSIFuoFZv5NK3vBhVFINGGWrhWi54J0s8zMO_ohX8pLQBbw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 22:11:25 GMT
age: 22578
etag: "db55bd978e18e595d695637183862f8c5e7da5dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ff5857c-39d4-4978-9668-8754096c365b.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ff5857c-39d4-4978-9668-8754096c365b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 17da02bed84fa533c12b4e833f54ec69
e0862b84c3b449722536d8c7d1373af6ad32b7c5
742b05f0d88b86d1890bca55d3cbbd4a746546ab969b866bc4f69f4e2bc8ae38
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ff5857c-39d4-4978-9668-8754096c365b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8995
x-amzn-requestid: 136f34c6-7348-4543-811e-4ecfd8ee8f5e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSRqKGhKoAMFjQw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0c974-7e3f6da23d02323a5c8d86c9;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 06:17:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: uHooyYgYAw370dVKj8BIZUbq9012nnwKsT6cyRAMD1yNWrc8PFuhHA==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 15:59:17 GMT
age: 44906
etag: "e0862b84c3b449722536d8c7d1373af6ad32b7c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 10a6491e2c1dfde68c7cd7297e70700f
d0f195319825a6d3e5e50ad15b2fcab27cb65896
4d9353d5874e5ea03c25e1562db5f479c222a48db526fdd10ede7c2e6a4dd874
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11470
x-amzn-requestid: 62d61967-9380-4ca9-b11a-531425dbd2ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fIf6WFgAIAMF6gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cce042-6d9fe51029094b7f37c0a648;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 07:05:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rUIvvkZQ028ey3klplI-x9oZFugon5HsAWT-SN2GQo5hBeBJWqoMAg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 04:01:15 GMT
age: 1588
etag: "d0f195319825a6d3e5e50ad15b2fcab27cb65896"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62d5a25c-3219-4061-b58b-b783bc3a37fb.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62d5a25c-3219-4061-b58b-b783bc3a37fb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6af6f32397882f56d14d22348e44a9f1
5a626376807e7507fa3a204c4e4e9e44aa074a37
478f32e98c0a1f0d62fa337795ca88b7927e14b684b681f7629b648bc2d709a5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62d5a25c-3219-4061-b58b-b783bc3a37fb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7417
x-amzn-requestid: 53032353-8613-49b0-944d-3742236cf50c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fYcMmFeQIAMF3Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d340b6-7fe2226327d90db014527c08;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 03:10:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zd8cTO2N1JO-OK3hCDwVO8naClCsg0raJLboRFle-DPSKhR_7k8-Yg==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 03:16:35 GMT
age: 4268
etag: "5a626376807e7507fa3a204c4e4e9e44aa074a37"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3be81f83687ddb6c93d3ff3c09a9dba2
50a48e737310d3f31840db4301b25927fbcc12c5
e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: f644ca78-a07a-43d1-96e4-95bcdecff7fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPGLfFtOIAMFp7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf83e2-202ca7160544acd24259bd5d;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:08:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xRwqrWS66l4qJfg2HnGphN1dbrIUod9XKW3zTk_-Km9AQRPyV2UqWg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 20:46:16 GMT
age: 27687
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88a27c66-393d-4cd0-b191-286277c9da31.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88a27c66-393d-4cd0-b191-286277c9da31.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b1b66f2ccb0017b06d5e5903e00dede4
f3c7c1abdbab6510de54727cb68eedcc3103e1ce
44d84a015c27d9a298a2ef891e46f2fdd7764d45d914689e127244fef96ddd27
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88a27c66-393d-4cd0-b191-286277c9da31.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8149
x-amzn-requestid: 8c634b51-b124-4cf9-b20e-897babf98d0b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: feRtIG3sIAMF-rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d59653-3f20abcd6c56307b1ebabf2b;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 21:40:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jpe_r8O7AjOS1Mg4kmgDCvxstulkpZI9DXkagbRPmrgyjgwVbDFuog==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 21:46:36 GMT
etag: "f3c7c1abdbab6510de54727cb68eedcc3103e1ce"
content-type: image/jpeg
age: 24067
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Raleway%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CKalam%3A300%2C400%2C700%7CPT+Sans%3A300%2C400%2C600%2C700%2C800%2C900%7CRoboto%3A400%2C700%7CRoboto+Condensed%3A400%2C700%7COpen+Sans%7COverpass%7CMontserrat%3A300%2C400%2C600%2C700%2C800%2C900%7CPlayball%3A300%2C400%2C600%2C700%2C800%2C900%7CAlegreya%3A300%2C400%2C600%2C700%2C800%2C900%7CJulius+Sans+One%7CArsenal%7CSlabo%7CLato%7COverpass+Mono%7CSource+Sans+Pro%7CRaleway%7CMerriweather%7CDroid+Sans%7CRubik%7CLora%7CUbuntu%7CCabin%7CArimo%7CPlayfair+Display%7CQuicksand%7CPadauk%7CMuli%7CInconsolata%7CBitter%7CPacifico%7CIndie+Flower%7CVT323%7CDosis%7CFrank+Ruhl+Libre%7CFjalla+One%7COxygen%7CArvo%7CNoto+Serif%7CLobster%7CCrimson+Text%7CYanone+Kaffeesatz%7CAnton%7CLibre+Baskerville%7CBree+Serif%7CGloria+Hallelujah%7CJosefin+Sans%7CAbril+Fatface%7CVarela+Round%7CVampiro+One%7CShadows+Into+Light%7CCuprum%7CRokkitt%7CVollkorn%7CFrancois+One%7COrbitron%7CPatua+One%7CAcme%7CSatisfy%7CJosefin+Slab%7CQuattrocento+Sans%7CArchitects+Daughter%7CRusso+One%7CMonda%7CRighteous%7CLobster+Two%7CHammersmith+One%7CCourgette%7CPermanent+Marker%7CCherry+Swash%7CCormorant+Garamond%7CPoiret+One%7CBenchNine%7CEconomica%7CHandlee%7CCardo%7CAlfa+Slab+One%7CAveria+Serif+Libre%7CCookie%7CChewy%7CGreat+Vibes%7CComing+Soon%7CPhilosopher%7CDays+One%7CKanit%7CShrikhand%7CTangerine%7CIM+Fell+English+SC%7CBoogaloo%7CBangers%7CFredoka+One%7CBad+Script%7CVolkhov%7CShadows+Into+Light+Two%7CMarck+Script%7CSacramento%7CUnica+One%7CNoto+Sans%3A400%2C400i%2C700%2C700i&ver=6.1.1
142.250.74.106200 OK 8.5 kB URL HTTP/1.1 fonts.googleapis.com/css?family=Raleway%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CKalam%3A300%2C400%2C700%7CPT+Sans%3A300%2C400%2C600%2C700%2C800%2C900%7CRoboto%3A400%2C700%7CRoboto+Condensed%3A400%2C700%7COpen+Sans%7COverpass%7CMontserrat%3A300%2C400%2C600%2C700%2C800%2C900%7CPlayball%3A300%2C400%2C600%2C700%2C800%2C900%7CAlegreya%3A300%2C400%2C600%2C700%2C800%2C900%7CJulius+Sans+One%7CArsenal%7CSlabo%7CLato%7COverpass+Mono%7CSource+Sans+Pro%7CRaleway%7CMerriweather%7CDroid+Sans%7CRubik%7CLora%7CUbuntu%7CCabin%7CArimo%7CPlayfair+Display%7CQuicksand%7CPadauk%7CMuli%7CInconsolata%7CBitter%7CPacifico%7CIndie+Flower%7CVT323%7CDosis%7CFrank+Ruhl+Libre%7CFjalla+One%7COxygen%7CArvo%7CNoto+Serif%7CLobster%7CCrimson+Text%7CYanone+Kaffeesatz%7CAnton%7CLibre+Baskerville%7CBree+Serif%7CGloria+Hallelujah%7CJosefin+Sans%7CAbril+Fatface%7CVarela+Round%7CVampiro+One%7CShadows+Into+Light%7CCuprum%7CRokkitt%7CVollkorn%7CFrancois+One%7COrbitron%7CPatua+One%7CAcme%7CSatisfy%7CJosefin+Slab%7CQuattrocento+Sans%7CArchitects+Daughter%7CRusso+One%7CMonda%7CRighteous%7CLobster+Two%7CHammersmith+One%7CCourgette%7CPermanent+Marker%7CCherry+Swash%7CCormorant+Garamond%7CPoiret+One%7CBenchNine%7CEconomica%7CHandlee%7CCardo%7CAlfa+Slab+One%7CAveria+Serif+Libre%7CCookie%7CChewy%7CGreat+Vibes%7CComing+Soon%7CPhilosopher%7CDays+One%7CKanit%7CShrikhand%7CTangerine%7CIM+Fell+English+SC%7CBoogaloo%7CBangers%7CFredoka+One%7CBad+Script%7CVolkhov%7CShadows+Into+Light+Two%7CMarck+Script%7CSacramento%7CUnica+One%7CNoto+Sans%3A400%2C400i%2C700%2C700i&ver=6.1.1
IP 142.250.74.106:0
Hash bf1c59275c9c56d7d6fc0020baae6a1a
703dfa53b769f22810f4b01b38a7941df71fcb3c
b1a5fa92ed908fc39baec0eb27f03eeb1231bd99f2c083a61c5bcf384d11e69c
GET /css?family=Raleway%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CKalam%3A300%2C400%2C700%7CPT+Sans%3A300%2C400%2C600%2C700%2C800%2C900%7CRoboto%3A400%2C700%7CRoboto+Condensed%3A400%2C700%7COpen+Sans%7COverpass%7CMontserrat%3A300%2C400%2C600%2C700%2C800%2C900%7CPlayball%3A300%2C400%2C600%2C700%2C800%2C900%7CAlegreya%3A300%2C400%2C600%2C700%2C800%2C900%7CJulius+Sans+One%7CArsenal%7CSlabo%7CLato%7COverpass+Mono%7CSource+Sans+Pro%7CRaleway%7CMerriweather%7CDroid+Sans%7CRubik%7CLora%7CUbuntu%7CCabin%7CArimo%7CPlayfair+Display%7CQuicksand%7CPadauk%7CMuli%7CInconsolata%7CBitter%7CPacifico%7CIndie+Flower%7CVT323%7CDosis%7CFrank+Ruhl+Libre%7CFjalla+One%7COxygen%7CArvo%7CNoto+Serif%7CLobster%7CCrimson+Text%7CYanone+Kaffeesatz%7CAnton%7CLibre+Baskerville%7CBree+Serif%7CGloria+Hallelujah%7CJosefin+Sans%7CAbril+Fatface%7CVarela+Round%7CVampiro+One%7CShadows+Into+Light%7CCuprum%7CRokkitt%7CVollkorn%7CFrancois+One%7COrbitron%7CPatua+One%7CAcme%7CSatisfy%7CJosefin+Slab%7CQuattrocento+Sans%7CArchitects+Daughter%7CRusso+One%7CMonda%7CRighteous%7CLobster+Two%7CHammersmith+One%7CCourgette%7CPermanent+Marker%7CCherry+Swash%7CCormorant+Garamond%7CPoiret+One%7CBenchNine%7CEconomica%7CHandlee%7CCardo%7CAlfa+Slab+One%7CAveria+Serif+Libre%7CCookie%7CChewy%7CGreat+Vibes%7CComing+Soon%7CPhilosopher%7CDays+One%7CKanit%7CShrikhand%7CTangerine%7CIM+Fell+English+SC%7CBoogaloo%7CBangers%7CFredoka+One%7CBad+Script%7CVolkhov%7CShadows+Into+Light+Two%7CMarck+Script%7CSacramento%7CUnica+One%7CNoto+Sans%3A400%2C400i%2C700%2C700i&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sun, 29 Jan 2023 04:27:45 GMT
Date: Sun, 29 Jan 2023 04:27:45 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8c630e9bbc930d1c367efa81b67be3f7
ec536695531d40a813d99a06271c7c2d698d51d3
39ca0a60c3e2e85712757ead0830d0da82beac1e4f44b6e90243e5ca9326bf4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 04:27:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.citicomp.com.au/
103.250.212.193200 OK 24 kB IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (9381)
Hash bd5f21fcdd41efb15d126b74bbfa4fc9
333207258299369456593747e34fcd409967e04b
d0c75051871775748604367892ac4b3f47ca5f3d02bdb334b7e18054e46a4310
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET / HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:45 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
X-Powered-By: PHP/8.0.17
X-Pingback: http://www.citicomp.com.au/xmlrpc.php
Link: <http://www.citicomp.com.au/wp-json/>; rel="https://api.w.org/", <http://www.citicomp.com.au/wp-json/wp/v2/pages/2>; rel="alternate"; type="application/json", <http://www.citicomp.com.au/>; rel=shortlink
Upgrade: h2,h2c
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8c630e9bbc930d1c367efa81b67be3f7
ec536695531d40a813d99a06271c7c2d698d51d3
39ca0a60c3e2e85712757ead0830d0da82beac1e4f44b6e90243e5ca9326bf4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 04:27:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.citicomp.com.au/wp-content/plugins/caldera-forms/assets/build/css/caldera-forms-front.min.css?ver=1.9.6
103.250.212.193200 OK 21 kB URL HTTP/1.1 www.citicomp.com.au/wp-content/plugins/caldera-forms/assets/build/css/caldera-forms-front.min.css?ver=1.9.6
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (65536), with no line terminators
Hash 5fb3da02c9a46b643247167b072ea967
a6bb5fd5a17c4886eaf939132d76de0b32a51f62
b32cdd2345de2af55e0d9acbedfcfab0e2abb122b53b00c740fdec909dc8ba86
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/plugins/caldera-forms/assets/build/css/caldera-forms-front.min.css?ver=1.9.6 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:45 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Upgrade: h2,h2c
Last-Modified: Wed, 12 Jan 2022 03:43:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-content/uploads/elementor/css/post-2.css?ver=1643916465
103.250.212.193200 OK 1.9 kB URL HTTP/1.1 www.citicomp.com.au/wp-content/uploads/elementor/css/post-2.css?ver=1643916465
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (9616), with no line terminators
Hash c81002840e878d9dbb1b7cb0547b10f2
6eb1405a3e3a9ebdf5a3fe0d2a43bdeccadf2b72
2b50d19491a74304bdd403b06a210bb8d1df9971ac50f4999a7d17d0f0363000
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-2.css?ver=1643916465 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:45 GMT
Content-Type: text/css
Content-Length: 1870
Upgrade: h2,h2c
Last-Modified: Thu, 03 Feb 2022 19:27:45 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-content/uploads/elementor/css/post-5.css?ver=1643915435
103.250.212.193200 OK 343 B URL HTTP/1.1 www.citicomp.com.au/wp-content/uploads/elementor/css/post-5.css?ver=1643915435
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (979), with no line terminators
Hash 763fdae930eeac770a67aebd30960c8f
6cf047f6592a8393383d85fdee8ca08a1cef20f5
9e46604137bf08b1070f621da500525848103c199c3f67d5618514589dd73d37
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-5.css?ver=1643915435 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:45 GMT
Content-Type: text/css
Content-Length: 343
Upgrade: h2,h2c
Last-Modified: Thu, 03 Feb 2022 19:10:35 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
103.250.212.193200 OK 18 kB URL HTTP/1.1 www.citicomp.com.au/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (47826)
Hash 9415c9562591af7a582c29139621505f
0b12eecf36a48b871a3198550f4f65bb4a6d9b1b
06c70d3232c2ae3ed2aa259eb7a1beb329b654926813935fffa8902cd5ebaa4a
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:45 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Upgrade: h2,h2c
Last-Modified: Wed, 16 Nov 2022 08:15:13 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.7
103.250.212.193200 OK 12 kB URL HTTP/1.1 www.citicomp.com.au/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.7
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type Unicode text, UTF-8 text, with very long lines (1646)
Hash e56098a703c5beb99abc9c3a870be594
76e54634e0628ab91310c760d619360151e26be1
0eb4438e57550f2c2a321d45a5cb1c92fb22d58f6dbcc9c189fc3bd1e4f78b8f
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.7 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:45 GMT
Content-Type: text/css
Content-Length: 11654
Upgrade: h2,h2c
Last-Modified: Tue, 11 Jan 2022 07:54:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-content/uploads/elementor/css/post-76.css?ver=1643915437
103.250.212.193200 OK 2.3 kB URL HTTP/1.1 www.citicomp.com.au/wp-content/uploads/elementor/css/post-76.css?ver=1643915437
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (6975)
Hash 551390d40636ecda4f2a26cddc890f12
d45d9f99e690c736b5b04b68ee61c44efabbb09a
0c7794204c49f9d19a608e4f530147f1b1da6f0d3f4e49d270db568dff8774a7
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-76.css?ver=1643915437 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:45 GMT
Content-Type: text/css
Content-Length: 2258
Upgrade: h2,h2c
Last-Modified: Thu, 03 Feb 2022 19:10:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 14964a90362e566805a3a94e625d3e6d
1b5443469ba1d8d240317a882a55f32c8cc0af1c
0e3459b0fb5d103703c539468747faebdfa6f909735d815a1e6dc3d21bb040fb
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 04:27:46 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 16:51:18 GMT
Expires: Wed, 01 Feb 2023 16:51:17 GMT
Etag: "1b5443469ba1d8d240317a882a55f32c8cc0af1c"
Cache-Control: max-age=303210,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 790f379bae29b4f7-OSL
www.citicomp.com.au/wp-content/uploads/elementor/css/post-55.css?ver=1643915437
103.250.212.193200 OK 1.9 kB URL HTTP/1.1 www.citicomp.com.au/wp-content/uploads/elementor/css/post-55.css?ver=1643915437
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (6132)
Hash e5fb82856ca55761c02574a6c35ab794
3d5520e805a213cfc82f4ab11c3dcc6542dac8b3
d3c4101254060248e12bc8c251caa20a452b60a0c3979fc29b460c578e8c9a9b
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-55.css?ver=1643915437 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:45 GMT
Content-Type: text/css
Content-Length: 1877
Upgrade: h2,h2c
Last-Modified: Thu, 03 Feb 2022 19:10:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.10.1
103.250.212.193200 OK 20 kB URL HTTP/1.1 www.citicomp.com.au/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.10.1
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (65496)
Hash b63d2ba9fff6f5e7a31fafcdad9b833c
5104b3495e73a611712cb21fce389230872e4419
820ba656b3caa97f9ff5d78515109dd4e474aecf296614cccdc437c10ce466c2
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.10.1 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:45 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Upgrade: h2,h2c
Last-Modified: Tue, 17 Jan 2023 19:20:46 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-content/themes/it-company/style.css?ver=6.1.1
103.250.212.193200 OK 12 kB URL HTTP/1.1 www.citicomp.com.au/wp-content/themes/it-company/style.css?ver=6.1.1
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type Unicode text, UTF-8 text, with very long lines (1876)
Hash c285b8726db747b9dd91a356659e2fd1
4a8c2e8b6646365c4d640282c1f8f81d05a48351
5e21ba2811d9fd28041e36a84c4a082da7ab13ce7d4a88b994f71ae2137e1bf1
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/themes/it-company/style.css?ver=6.1.1 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:45 GMT
Content-Type: text/css
Content-Length: 11928
Upgrade: h2,h2c
Last-Modified: Tue, 11 Jan 2022 06:20:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-content/themes/it-services/style.css?ver=6.1.1
103.250.212.193200 OK 2.8 kB URL HTTP/1.1 www.citicomp.com.au/wp-content/themes/it-services/style.css?ver=6.1.1
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (1388), with CRLF line terminators
Hash cbe2b0ba28f2afc50b821fd3bcd78df1
ebf9e1a8c66fab2f42bb558b474a58e16506e09d
7ce5f70ec759a22da267f2504a6b9b401c02b15bca4394417b2b319b2f348ea4
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/it-services/style.css?ver=6.1.1 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:45 GMT
Content-Type: text/css
Content-Length: 2766
Upgrade: h2,h2c
Last-Modified: Tue, 11 Jan 2022 06:20:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-content/themes/it-company/css/fontawesome-all.css?ver=6.1.1
103.250.212.193200 OK 13 kB URL HTTP/1.1 www.citicomp.com.au/wp-content/themes/it-company/css/fontawesome-all.css?ver=6.1.1
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
Hash 375f16f44820395c3236d763d106a2eb
852d7fd85351fb7203aa4828138d0a58dbf33109
a6629b30a392c11d40570a087dffd5bd1a34b23a1534eab4e9a7f7b74843a776
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/themes/it-company/css/fontawesome-all.css?ver=6.1.1 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:46 GMT
Content-Type: text/css
Content-Length: 12787
Upgrade: h2,h2c
Last-Modified: Tue, 11 Jan 2022 06:20:23 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-content/themes/it-services/css/blocks-style.css?ver=6.1.1
103.250.212.193200 OK 3.1 kB URL HTTP/1.1 www.citicomp.com.au/wp-content/themes/it-services/css/blocks-style.css?ver=6.1.1
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
Hash 0a78972675924983ef38fc87496bf2ed
f18e3bd0157c266e916fc7d1fc7cf86d9277c7a2
107ab129cac6a111aad487a52ade5a603d890ca650dca1c39f64b3536e1fbb1b
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/themes/it-services/css/blocks-style.css?ver=6.1.1 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:46 GMT
Content-Type: text/css
Content-Length: 3079
Upgrade: h2,h2c
Last-Modified: Tue, 11 Jan 2022 06:20:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
103.250.212.193200 OK 309 B URL HTTP/1.1 www.citicomp.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (483)
Hash 0ea43e394ddaae5fdb710dbbc8869e58
3b0c93adc80720236096201db5cc2751e703996d
85225fffa21a94bfd954393d7471069ab227b98fd8b51cb5ab4af5488168a34e
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:46 GMT
Content-Type: text/css
Content-Length: 309
Upgrade: h2,h2c
Last-Modified: Tue, 17 Jan 2023 19:20:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
103.250.212.193200 OK 13 kB URL HTTP/1.1 www.citicomp.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (57726)
Hash dc63c0a8e2d5857cc7a00a4b5456dabb
ee29df5eb2a4bf3eb805b160551c1afd84b42599
035ef40b1dd3df1eefb2dd3c8c2096425727fb939b06f3aa0bc6ef91dafd5441
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:46 GMT
Content-Type: text/css
Content-Length: 12577
Upgrade: h2,h2c
Last-Modified: Tue, 17 Jan 2023 19:20:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-content/themes/it-company/css/bootstrap.css?ver=6.1.1
103.250.212.193200 OK 39 kB URL HTTP/1.1 www.citicomp.com.au/wp-content/themes/it-company/css/bootstrap.css?ver=6.1.1
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type Unicode text, UTF-8 text, with very long lines (560)
Hash 94c53793c1c0f7402aade5ebbba714ab
daa770192dd1a1e1dd1137f50c14935819221a80
f71cf4a6f6ae515c778c6b0bca2a489fa2f7034cd5ef903d6a12ffaa4f9358b2
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/themes/it-company/css/bootstrap.css?ver=6.1.1 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:45 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Upgrade: h2,h2c
Last-Modified: Tue, 11 Jan 2022 06:20:23 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
103.250.212.193200 OK 1.4 kB URL HTTP/2 www.citicomp.com.au/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (9804)
Hash 2261826e660a0fefb18fefa586ba9899
c33d26b38da8573b4025bf5a9055416ac9ab8520
a91d019f9891a500cc1e33d8eb1f24e4764df18ed97e5dd0255bc5efd5de9c58
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/css/widget-icon-list.min.css HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.citicomp.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 04:27:46 GMT
content-type: text/css
content-length: 1442
last-modified: Tue, 17 Jan 2023 19:20:46 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.citicomp.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
103.250.212.193200 OK 308 B URL HTTP/1.1 www.citicomp.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (491)
Hash 851fd514d412b7e854365f20a4227c8a
08bf47072f70af1816450cc85a5efb3b8f9114d2
a9449e3cc7c003e5ed6b93bae7b0bba3e4f1713c52214f41d3591692a759b9d7
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:46 GMT
Content-Type: text/css
Content-Length: 308
Upgrade: h2,h2c
Last-Modified: Tue, 17 Jan 2023 19:20:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
103.250.212.193200 OK 4.6 kB URL HTTP/1.1 www.citicomp.com.au/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:46 GMT
Content-Type: application/javascript
Content-Length: 4618
Upgrade: h2,h2c
Last-Modified: Wed, 18 Nov 2020 09:06:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-content/themes/it-company/js/custom.js?ver=6.1.1
103.250.212.193200 OK 964 B URL HTTP/1.1 www.citicomp.com.au/wp-content/themes/it-company/js/custom.js?ver=6.1.1
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
Hash 0de9a231c83d49fd432b3e973dafbaf1
8b7d9a5a5e7aeaf3407902d99f067788ef195cd5
a6e60b989c9a5877a7de81e2b29195331d2c83d45291a72936d4faf5b286f9a1
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/themes/it-company/js/custom.js?ver=6.1.1 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:46 GMT
Content-Type: application/javascript
Content-Length: 964
Upgrade: h2,h2c
Last-Modified: Tue, 11 Jan 2022 06:20:23 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
103.250.212.193200 OK 5.3 kB URL HTTP/1.1 www.citicomp.com.au/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (15660)
Hash 710f8b142ea44c0682dc2c30f318f065
49144e9b3a76d3d383b1d4359cf7a25e947f4233
708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:46 GMT
Content-Type: application/javascript
Content-Length: 5321
Upgrade: h2,h2c
Last-Modified: Wed, 25 May 2022 07:31:55 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-includes/css/classic-themes.min.css?ver=1
103.250.212.193200 OK 189 B URL HTTP/1.1 www.citicomp.com.au/wp-includes/css/classic-themes.min.css?ver=1
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:46 GMT
Content-Type: text/css
Content-Length: 189
Upgrade: h2,h2c
Last-Modified: Wed, 02 Nov 2022 08:01:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
103.250.212.193200 OK 39 kB URL HTTP/1.1 www.citicomp.com.au/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (65447)
Hash 32f58a61f7c5a7e10f8b2dcf8e9a8e34
865c25589283ab1debd45bdfa6c4d8c6ecf15ad3
481cb2216fbdb0797af8c61b69c0bda2c10d025f7b11f2cdfac382d35dc45d63
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:46 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Upgrade: h2,h2c
Last-Modified: Wed, 02 Nov 2022 08:01:48 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-content/uploads/essential-addons-elementor/cb70d11b8.min.css?ver=1674966464
103.250.212.193200 OK 1.1 kB URL HTTP/1.1 www.citicomp.com.au/wp-content/uploads/essential-addons-elementor/cb70d11b8.min.css?ver=1674966464
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (3096)
Hash 664b78dd2a44a852f1417f566400ce7b
799e589fadec7e3c3fb10d164a33e18bd1b99d0b
4f7baeb419bf28daa744d5cc3fe4e4b4f092be184065649ee2a4fa599b6f1be6
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/essential-addons-elementor/cb70d11b8.min.css?ver=1674966464 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:46 GMT
Content-Type: text/css
Content-Length: 1069
Upgrade: h2,h2c
Last-Modified: Wed, 12 Jan 2022 19:14:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.7
103.250.212.193200 OK 323 B URL HTTP/1.1 www.citicomp.com.au/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.7
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
Hash b24c24b7da3ffeed6ae8ade102a4d317
c4445b3977ce704b927508108e100213eea67a3c
5421ad49b70f379553eaceec744d753e74d4b065966c08aa7c7dd949553ca9a8
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.7 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:46 GMT
Content-Type: text/css
Content-Length: 323
Upgrade: h2,h2c
Last-Modified: Tue, 11 Jan 2022 07:54:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-content/themes/it-company/js/bootstrap.js?ver=6.1.1
103.250.212.193200 OK 47 kB URL HTTP/1.1 www.citicomp.com.au/wp-content/themes/it-company/js/bootstrap.js?ver=6.1.1
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (620)
Hash 814e58a3839a0abc0543229f25312213
3a9d22b469976a447761c4952557c0dabbe6c8a3
6792a469c59250e86d356a4893e4157adba249e33af2223c58c962b7cbcc1fd9
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/themes/it-company/js/bootstrap.js?ver=6.1.1 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:46 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Upgrade: h2,h2c
Last-Modified: Tue, 11 Jan 2022 06:20:23 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.17.0
103.250.212.193200 OK 4.0 kB URL HTTP/1.1 www.citicomp.com.au/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.17.0
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (19277)
Hash 121771070c72763b4639003c78a68417
07c6b46f633bd9c27a4c942a478de9fc5baaa0a8
66ecb2c3961530e26dd1054b324423cdcad8d17ef85a50c33b351a8d7cbf5992
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.17.0 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:46 GMT
Content-Type: text/css
Content-Length: 4018
Upgrade: h2,h2c
Last-Modified: Tue, 17 Jan 2023 19:20:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-content/plugins/caldera-forms/clients/render/build/style.min.css?ver=1.9.6
103.250.212.193200 OK 392 B URL HTTP/1.1 www.citicomp.com.au/wp-content/plugins/caldera-forms/clients/render/build/style.min.css?ver=1.9.6
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (1196), with no line terminators
Hash 628f856fa3e18f63b49e73b25edc68dd
8bbdf00a09bf27dbf5c16d2228dfc953d0a90833
bdb8069be39eca98ddaaa2606dbbd5184a9957a1ee7925885344bc534acb58d1
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/plugins/caldera-forms/clients/render/build/style.min.css?ver=1.9.6 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:46 GMT
Content-Type: text/css
Content-Length: 392
Upgrade: h2,h2c
Last-Modified: Wed, 12 Jan 2022 03:43:40 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ef589be52a3e55b643978f17949a73da
74545de6f144282252ff92c751f97cc835c80341
7bfa68c43e60a2627770163b5c1b96fbd7e4843984ad5ff6225c5490b8073b26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 04:27:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
142.250.74.35200 OK 46 kB URL HTTP/1.1 fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Hash c1fd378f54921c75e4ae1821e7b8fff6
2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826
GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.citicomp.com.au
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 46524
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 28 Jan 2023 15:56:53 GMT
Expires: Sun, 28 Jan 2024 15:56:53 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 18 Jul 2022 19:58:01 GMT
Content-Type: font/woff2
Age: 45054
maps.google.com/maps?q=Citicomp%20Computers&t=m&z=10&output=embed&iwloc=near
142.250.74.46301 Moved Permanently 0 B URL HTTP/2 maps.google.com/maps?q=Citicomp%20Computers&t=m&z=10&output=embed&iwloc=near
IP 142.250.74.46:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /maps?q=Citicomp%20Computers&t=m&z=10&output=embed&iwloc=near HTTP/1.1
Host: maps.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.citicomp.com.au/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
location: https://www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1sCiticomp+Computers!5e0!6i10
vary: Origin, X-Origin, Referer
date: Sun, 29 Jan 2023 04:27:47 GMT
content-type: text/html
server: scaffolding on HTTPServer2
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
server-timing: gfet4t7; dur=12
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8cf65fcdafa84b63cf7005fe57927fcb
3f7d163a96e7f00eb2de9828624ec46e22b4b40a
dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 04:27:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8cf65fcdafa84b63cf7005fe57927fcb
3f7d163a96e7f00eb2de9828624ec46e22b4b40a
dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 04:27:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8cf65fcdafa84b63cf7005fe57927fcb
3f7d163a96e7f00eb2de9828624ec46e22b4b40a
dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 04:27:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.citicomp.com.au
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 19:33:54 GMT
expires: Thu, 25 Jan 2024 19:33:54 GMT
cache-control: public, max-age=31536000
age: 291233
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.citicomp.com.au
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 07:51:59 GMT
expires: Thu, 25 Jan 2024 07:51:59 GMT
cache-control: public, max-age=31536000
age: 333348
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.citicomp.com.au
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 24 Jan 2023 13:09:06 GMT
expires: Wed, 24 Jan 2024 13:09:06 GMT
cache-control: public, max-age=31536000
age: 400721
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ef589be52a3e55b643978f17949a73da
74545de6f144282252ff92c751f97cc835c80341
7bfa68c43e60a2627770163b5c1b96fbd7e4843984ad5ff6225c5490b8073b26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 04:27:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 86352d15c37831cf9bf1e41325029224
ac8b28bcc1e6dd026e1f62d1ef8b9f80a42eee21
154f5f5e116df41f5d3bd414c671138b2afc198071529a0f3573109277566cd8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 04:27:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8cf65fcdafa84b63cf7005fe57927fcb
3f7d163a96e7f00eb2de9828624ec46e22b4b40a
dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 04:27:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.citicomp.com.au/wp-content/uploads/essential-addons-elementor/cb70d11b8.min.js?ver=1674966464
103.250.212.193200 OK 2.1 kB URL HTTP/1.1 www.citicomp.com.au/wp-content/uploads/essential-addons-elementor/cb70d11b8.min.js?ver=1674966464
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (6072), with no line terminators
Hash dfada362519948f9a53ecbb6454c0ec3
7e72ef58567c1f89a8820bdc9f797451790b2abb
ff51536c5f28ad5fe9f6db5adbed7f6b948703d63a33ef68ba96539e9edabc2f
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/uploads/essential-addons-elementor/cb70d11b8.min.js?ver=1674966464 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:47 GMT
Content-Type: application/javascript
Content-Length: 2132
Upgrade: h2,h2c
Last-Modified: Wed, 12 Jan 2022 19:14:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-content/themes/it-company/js/jquery.superfish.js?ver=6.1.1
103.250.212.193200 OK 2.7 kB URL HTTP/1.1 www.citicomp.com.au/wp-content/themes/it-company/js/jquery.superfish.js?ver=6.1.1
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
Hash 80c0d0ef5fa0ac709eede3968bcd5bc5
361aa0aa7c75c70a64d399a3b2d07691ca66ad5c
c849c52114cefb807bafc58abbcbda91ed2c7759137f3cb2f26478d8bcc5746d
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/it-company/js/jquery.superfish.js?ver=6.1.1 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:47 GMT
Content-Type: application/javascript
Content-Length: 2697
Upgrade: h2,h2c
Last-Modified: Tue, 11 Jan 2022 06:20:23 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.7
103.250.212.193200 OK 6.1 kB URL HTTP/1.1 www.citicomp.com.au/wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.7
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
Hash 80e63147618e29d1c94bba21050b6377
b1be250b2298529e37be473325a5fdac047c6fd1
c62666a62a13f25de7b53efefad9f1e4351adbb8dc577dee03c561ce503e0761
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.7 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:47 GMT
Content-Type: application/javascript
Content-Length: 6101
Upgrade: h2,h2c
Last-Modified: Tue, 11 Jan 2022 07:54:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-content/plugins/caldera-forms/assets/build/js/jquery-baldrick.min.js?ver=1.9.6
103.250.212.193200 OK 3.8 kB URL HTTP/1.1 www.citicomp.com.au/wp-content/plugins/caldera-forms/assets/build/js/jquery-baldrick.min.js?ver=1.9.6
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (11102), with no line terminators
Hash b2be8829a19cdeb461999d8aadca8647
a16f8524460d4ebbb434b10e6127efa2c676058b
88a0c1973ed1a097276b3880acde79fa8ece868a6ae226cbf3e77846f020b9e5
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/plugins/caldera-forms/assets/build/js/jquery-baldrick.min.js?ver=1.9.6 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:47 GMT
Content-Type: application/javascript
Content-Length: 3760
Upgrade: h2,h2c
Last-Modified: Wed, 12 Jan 2022 03:43:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-content/plugins/caldera-forms/assets/js/i18n/en.js?ver=1.9.6
103.250.212.193200 OK 485 B URL HTTP/1.1 www.citicomp.com.au/wp-content/plugins/caldera-forms/assets/js/i18n/en.js?ver=1.9.6
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
Hash 3c654a8014862b54f3c5c3e2a8bc7987
a8c724caef6d239a04cab941dd79bd055696b5d2
622d48e01f703d3b715ad4127aceaa030e3187e0e296bd441ad342719b36f196
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/plugins/caldera-forms/assets/js/i18n/en.js?ver=1.9.6 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:47 GMT
Content-Type: application/javascript
Content-Length: 485
Upgrade: h2,h2c
Last-Modified: Wed, 12 Jan 2022 03:43:36 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-content/plugins/caldera-forms/assets/build/js/parsley.min.js?ver=1.9.6
103.250.212.193200 OK 32 kB URL HTTP/1.1 www.citicomp.com.au/wp-content/plugins/caldera-forms/assets/build/js/parsley.min.js?ver=1.9.6
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (31963)
Hash 657da909956678dfba1f26de6419a95a
6a163abc5cab995763c51b811239ab2e8b17f59f
c1a9b1d0388a554749cdf08629f22f5bc34f4014a6598e0a73e254b9ef670c45
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/caldera-forms/assets/build/js/parsley.min.js?ver=1.9.6 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:47 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Upgrade: h2,h2c
Last-Modified: Wed, 12 Jan 2022 03:43:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-content/uploads/2022/01/Asset-7.svg
103.250.212.193200 OK 195 B URL HTTP/1.1 www.citicomp.com.au/wp-content/uploads/2022/01/Asset-7.svg
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with no line terminators
Hash 104741143bea2c59615a4d9368b3cdbd
0659340c0ab79352eb2184c6ed3091515a0c1d9b
4c9003c5752ca279efea34b8535f1d88fd993e4494fdefc720d6af8737d94b09
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/uploads/2022/01/Asset-7.svg HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/wp-content/uploads/elementor/css/post-2.css?ver=1643916465
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:47 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Vary: Accept-Encoding
Upgrade: h2,h2c
Last-Modified: Tue, 11 Jan 2022 14:42:08 GMT
Content-Encoding: gzip
www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1sCiticomp+Computers!5e0!6i10
142.250.74.164200 OK 817 B URL HTTP/2 www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1sCiticomp+Computers!5e0!6i10
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1051)
Hash 2d14f16e7bf58779ac1d46db54d45da7
67434d3b7867dee7008a735a7836046342638253
b3629554f225d9ef71e2fbf6259459b160ab07e7b3a37bc1f688630869942b6c
GET /maps/embed?origin=mfe&pb=!1m4!2m1!1sCiticomp+Computers!5e0!6i10 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.citicomp.com.au/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, must-revalidate
vary: Accept-Language, Origin, X-Origin, Referer
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-6ogJppTA-fZPsTSfI33QNA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Sun, 29 Jan 2023 04:27:47 GMT
server: scaffolding on HTTPServer2
content-length: 817
x-xss-protection: 0
x-content-type-options: nosniff
server-timing: gfet4t7; dur=328
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.citicomp.com.au/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
103.250.212.193200 OK 2.7 kB URL HTTP/1.1 www.citicomp.com.au/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (6475), with no line terminators
Hash 45bd1d6f7fc3a4069fc6fd400b90c961
903c7e28c7141e9fc1bdb4dfc62d043a97a01e2d
c638a0057b4be0a61cfb65b1860a855a327397e9871f5dde28fa2f138fb394dc
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:47 GMT
Content-Type: application/javascript
Content-Length: 2675
Upgrade: h2,h2c
Last-Modified: Wed, 25 May 2022 07:31:46 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
103.250.212.193200 OK 7.6 kB URL HTTP/1.1 www.citicomp.com.au/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Hash 66c68f2158dcf7d97a02f3719a17aab0
fdb04fb4c632b9fb4275006a4e402cd0d4fa393a
e4b360f0e6ae1afc06f05f958e8696e5ae45257912bc2ab0b9334bd1382a51aa
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:47 GMT
Content-Type: application/javascript
Content-Length: 7621
Upgrade: h2,h2c
Last-Modified: Wed, 02 Nov 2022 08:01:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-includes/js/dist/vendor/react.min.js?ver=17.0.1
103.250.212.193200 OK 4.9 kB URL HTTP/1.1 www.citicomp.com.au/wp-includes/js/dist/vendor/react.min.js?ver=17.0.1
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (11082)
Hash b725a8dd8c43cfde32eb6e5a8022a56c
e20b1ff3f34a8c093fe1db28c8ff2b3c1f1e6475
8952ccc0253b7045512ea80e9319dd51f6e812ef6abf0eba5fc72553a689b454
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/dist/vendor/react.min.js?ver=17.0.1 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:47 GMT
Content-Type: application/javascript
Content-Length: 4893
Upgrade: h2,h2c
Last-Modified: Wed, 25 May 2022 07:31:47 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
maps.gstatic.com/maps-api-v3/embed/js/51/7/init_embed.js
142.250.74.3200 OK 69 kB URL HTTP/2 maps.gstatic.com/maps-api-v3/embed/js/51/7/init_embed.js
IP 142.250.74.3:0
File type ASCII text, with very long lines (2599)
Hash fd4867728783671f13b38d1f073e7be9
ff5ba304ce5b2838e4b49b6cff833dede37e1098
52a398663110b5dc50e72094c287b049ec5ed33a2b639418e4e1a9c3d313b82c
GET /maps-api-v3/embed/js/51/7/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 69373
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 03:51:36 GMT
expires: Sun, 28 Jan 2024 03:51:36 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 23 Jan 2023 21:48:16 GMT
content-type: text/javascript
age: 88571
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.citicomp.com.au/wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca
103.250.212.193200 OK 331 B URL HTTP/1.1 www.citicomp.com.au/wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (463)
Hash ba2b50662c393ff6ba69961f66b24d5d
d5694f33b1072b13fc4c3989e90252c0b28030a2
79ad638f020827a6db341526b430e65459aa712bfbdcabf28bb013c6b2c715e9
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:47 GMT
Content-Type: application/javascript
Content-Length: 331
Upgrade: h2,h2c
Last-Modified: Wed, 25 May 2022 07:31:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-content/plugins/caldera-forms/clients/render/build/index.min.js?ver=1.9.6
103.250.212.193200 OK 21 kB URL HTTP/1.1 www.citicomp.com.au/wp-content/plugins/caldera-forms/clients/render/build/index.min.js?ver=1.9.6
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (54767), with no line terminators
Hash 067504c7ec9a80d2da347243407af620
674644a2f57d9a75d5434cc8575ff88cd14ed8f1
c18dfa1322802f532565ba88b9057ed23dcd5149c19109b549a21adcc7430a68
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/caldera-forms/clients/render/build/index.min.js?ver=1.9.6 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:47 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Upgrade: h2,h2c
Last-Modified: Wed, 12 Jan 2022 03:43:40 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-content/plugins/caldera-forms/assets/build/js/caldera-forms-front.min.js?ver=1.9.6
103.250.212.193200 OK 60 kB URL HTTP/1.1 www.citicomp.com.au/wp-content/plugins/caldera-forms/assets/build/js/caldera-forms-front.min.js?ver=1.9.6
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type Unicode text, UTF-8 text, with very long lines (31999)
Hash f96e25b52a74c8badd894a7c4354fb81
e50f44b03d5f3759489f8868298bccc211f6e640
674a671c816d20e5f430f87e8ab0a258de4f0e7db84f6642bf9816cb6bfedbb8
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/caldera-forms/assets/build/js/caldera-forms-front.min.js?ver=1.9.6 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:47 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Upgrade: h2,h2c
Last-Modified: Wed, 12 Jan 2022 03:43:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
103.250.212.193200 OK 78 kB URL HTTP/1.1 www.citicomp.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Hash e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.citicomp.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:47 GMT
Content-Type: font/woff2
Content-Length: 78196
Upgrade: h2,h2c
Last-Modified: Tue, 17 Jan 2023 19:20:55 GMT
Accept-Ranges: bytes
www.citicomp.com.au/wp-content/uploads/2022/01/9261-1-768x576.jpg
103.250.212.193200 OK 61 kB URL HTTP/1.1 www.citicomp.com.au/wp-content/uploads/2022/01/9261-1-768x576.jpg
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 768x576, components 3\012- data
Hash 97985aab8535c330d906cdfeac9120e2
329b62c2e10722ee17cde9541feaf2f58043487e
046a724419b94a652a0712557b60e1b4547be8e7b607a8e8c8c19affe6993483
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/01/9261-1-768x576.jpg HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:47 GMT
Content-Type: image/jpeg
Content-Length: 61084
Upgrade: h2,h2c
Last-Modified: Wed, 12 Jan 2022 11:34:55 GMT
Accept-Ranges: bytes
www.citicomp.com.au/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.10.1
103.250.212.193200 OK 2.4 kB URL HTTP/1.1 www.citicomp.com.au/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.10.1
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (4974)
Hash 5c249d0fb8340a22a7c4bf9bb4b44a56
9ea655e2efed8e14878076700f165551bb178c00
6d2e92a0b0dd1581309480b3f14221f12c9d662b321eaa3b7fb6155c63dd1989
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.10.1 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:48 GMT
Content-Type: application/javascript
Content-Length: 2354
Upgrade: h2,h2c
Last-Modified: Tue, 17 Jan 2023 19:20:48 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.10.1
103.250.212.193200 OK 14 kB URL HTTP/1.1 www.citicomp.com.au/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.10.1
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type Unicode text, UTF-8 text, with very long lines (35829)
Hash 4c77b0a416ccd89afa5436452193520f
797d1acebf9c8c947d3a66b9706dc3d4033b3460
64e49854215bf7e03d664f4a97db2bdfc235c0a2950b7bc4af67322e0dffad58
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.10.1 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:48 GMT
Content-Type: application/javascript
Content-Length: 14353
Upgrade: h2,h2c
Last-Modified: Tue, 17 Jan 2023 19:20:48 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
103.250.212.193200 OK 3.7 kB URL HTTP/1.1 www.citicomp.com.au/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (12198), with no line terminators
Hash e2a8decccf4d0a6b925af707a36077a9
26a0febc9c3d91e75410f74b9ec62099ba1cbe90
09e0e638a6f53c0fdcfeeb8ae91f3a404bef47b471324e335e29be14a2aa87f7
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:48 GMT
Content-Type: application/javascript
Content-Length: 3747
Upgrade: h2,h2c
Last-Modified: Tue, 17 Jan 2023 19:20:57 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
103.250.212.193200 OK 8.3 kB URL HTTP/1.1 www.citicomp.com.au/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 838560e989767f2ef5951b9eeee20352
6bf8419cb4d68d9beced9e4b79b22b347ae16a46
72e6d275c5229613a59aef94523fc6a96330553976aee003d8544d5806fa0c3d
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:48 GMT
Content-Type: application/javascript
Content-Length: 8344
Upgrade: h2,h2c
Last-Modified: Wed, 02 Nov 2022 08:01:46 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.10.1
103.250.212.193200 OK 16 kB URL HTTP/1.1 www.citicomp.com.au/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.10.1
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (40802)
Hash 2410e686710efe8d345f146c5b65be94
6949338580b783604042a0d6355f97bb2d8344ed
48f2d2656ddded0745b76c940fe380242db232f8f55574652bec8924127f938e
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.10.1 HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:48 GMT
Content-Type: application/javascript
Content-Length: 16265
Upgrade: h2,h2c
Last-Modified: Tue, 17 Jan 2023 19:20:48 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.citicomp.com.au/wp-content/uploads/2021/11/citicomplogo.svg
103.250.212.193200 OK 2.3 kB URL HTTP/1.1 www.citicomp.com.au/wp-content/uploads/2021/11/citicomplogo.svg
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (6346), with no line terminators
Hash 4635b0d274b7984e3f6058e3da229b8d
16fde0ab84acc887c488aafcc277fe8c23f4a598
7192e4b77561b8f8bade3487624493fd1073a9d7dfaee7aba2d98329c8fdbb0a
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/uploads/2021/11/citicomplogo.svg HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:48 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Vary: Accept-Encoding
Upgrade: h2,h2c
Last-Modified: Tue, 11 Jan 2022 07:50:20 GMT
Content-Encoding: gzip
www.citicomp.com.au/wp-content/uploads/2021/11/Asset-6.svg
103.250.212.193200 OK 447 B URL HTTP/1.1 www.citicomp.com.au/wp-content/uploads/2021/11/Asset-6.svg
IP 103.250.212.193:0
ASN #38719 Dreamscape Networks Limited
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (824), with no line terminators
Hash 15b2f0e8d58ffdd0df6840d5996f34e1
d74e3480fb7ad66c983580712bf92a6b25c3f9e7
f0ed7ebf8b84ed68a8041f2887e705ff5a0dfbcd9b821c01f704d7d2e1b38ed6
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/uploads/2021/11/Asset-6.svg HTTP/1.1
Host: www.citicomp.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.citicomp.com.au/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 04:27:48 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Vary: Accept-Encoding
Upgrade: h2,h2c
Last-Modified: Tue, 11 Jan 2022 13:55:55 GMT
Content-Encoding: gzip
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
IP 142.250.74.106:0
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.citicomp.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 29 Jan 2023 04:27:45 GMT
date: Sun, 29 Jan 2023 04:27:45 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2