kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
51.222.78.194301 Moved Permanently 707 B URL HTTP/1.1 kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
IP 51.222.78.194:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Phishing
GET /ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Thu, 15 Dec 2022 03:02:54 GMT
server: LiteSpeed
location: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 555d8608594803d49eeb9581c6b70702
d01e0201e0ba0cf751ef97226620338a853bc635
2885cdac311a30161a8ac9ef8e54c788afafd4f86ed197a651fc6d8bda077908
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2885CDAC311A30161A8AC9EF8E54C788AFAFD4F86ED197A651FC6D8BDA077908"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5769
Expires: Thu, 15 Dec 2022 04:39:03 GMT
Date: Thu, 15 Dec 2022 03:02:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 358212db02ecc7c1fa088906bd2dba14
091a0688da9de609d97349215ba9e452dfc346a4
7486e512e4de8172ac07f07f47da3a96dd3ac7cb054b335f3e4929261440e672
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7486E512E4DE8172AC07F07F47DA3A96DD3AC7CB054B335F3E4929261440E672"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18673
Expires: Thu, 15 Dec 2022 08:14:07 GMT
Date: Thu, 15 Dec 2022 03:02:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 51bd0cc75ed746fd33c950eb12936b7e
4a1007ea6c6e4f5e8b4a7d1f85f7a3e329dc8f50
188d4a0d544f40048dc7476cb4f5e478f1eb49a8ef1d51699fb155d2ae258655
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "188D4A0D544F40048DC7476CB4F5E478F1EB49A8EF1D51699FB155D2AE258655"
Last-Modified: Tue, 13 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7321
Expires: Thu, 15 Dec 2022 05:04:55 GMT
Date: Thu, 15 Dec 2022 03:02:54 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 15 Dec 2022 02:33:52 GMT
content-type: application/json
age: 1742
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: THLYQx0xPQzs63CChil6h/75qvy8dvMfOm6u4LBAtPqSgcRSW4XxbQDp7jpEKcbQHnLZlktdOuk=
x-amz-request-id: PMAN4NT59JXXCFDV
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 15 Dec 2022 02:52:36 GMT
age: 618
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 15 Dec 2022 03:02:54 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Backoff, Content-Length, Pragma, Alert, Expires, Last-Modified, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 15 Dec 2022 02:33:21 GMT
age: 1774
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 210b7a2584ae55362c4b582e325f37f7
5f1982f961f1c5db96bbb66af075bab3cb535963
cb3767debad90cb8a34ce287de194cdb2a4f7146e7b51560fd2e0eb11fbfbc2f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4217
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 03:02:55 GMT
Etag: "63999230-1d7"
Last-Modified: Thu, 15 Dec 2022 01:52:38 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.215.56.181101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.215.56.181:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3CxKJ578IkuiTOi4Px0uOQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ZpaorZog7OyMHj2h18xJWv9GbQY=
kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
51.222.78.194404 Not Found 28 kB URL HTTP/2 kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
IP 51.222.78.194:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (9381), with CRLF, LF line terminators
Hash 4bede95ef1edcab66efe5fc9549cae02
a0a485eccc9f2212de321181b021d15290f83c0c
e7011e02e990fd55697d16a3c51d3bd6400fdaca55e7c70ac7ef77d212e5d3dc
Analyzer Verdict Alert fortinet Phishing
GET /ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <https://kingstonconnections.ca/wp-json/>; rel="https://api.w.org/"
content-encoding: br
vary: Accept-Encoding
date: Thu, 15 Dec 2022 03:02:55 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-includes/css/classic-themes.min.css?ver=1
51.222.78.194200 OK 144 B URL HTTP/2 kingstonconnections.ca/wp-includes/css/classic-themes.min.css?ver=1
IP 51.222.78.194:0
Hash fcbd239f30d9a6dd1f3637f291143d37
2871bf7d98af3f43e42f7fa32808048e7134fabf
c2f98e9d71f782b7a3266cd337c61ae6c8dcbb7203669c07852aa2ab65ab6144
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: text/css
last-modified: Tue, 15 Nov 2022 16:24:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 144
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/plugins/ait-item-extension/design/css/frontend.css?ver=6.1.1
51.222.78.194200 OK 469 B URL HTTP/2 kingstonconnections.ca/wp-content/plugins/ait-item-extension/design/css/frontend.css?ver=6.1.1
IP 51.222.78.194:0
File type ASCII text, with CRLF line terminators
Hash abb72daafd06412efbaceeb36118b962
8c4a495fb293235df932a359a707c7953dc2fa21
4a06056ff568c779f88d5f35ed582255a5602dd602c64754ea91cc171ecf815b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ait-item-extension/design/css/frontend.css?ver=6.1.1 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: text/css
last-modified: Thu, 17 Sep 2020 14:16:47 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 469
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
51.222.78.194200 OK 848 B URL HTTP/2 kingstonconnections.ca/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP 51.222.78.194:0
Hash c962ba8e7d42ff9da18392b41dad5151
7b89bc5e6ad161df2e6d7f7fb3ad894aa04b827f
322a4949c5bdd82eb80c13bbbd407ce30a7ad226685c54270d246cb6960e524e
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: text/css
last-modified: Tue, 15 Nov 2022 16:24:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 848
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bfb5d3c071cebab21e6ab8647e84b6ba
ebc1553e88dbe512449a31b3cb4c10c659484d7d
cf794ab56bfa29d8e47637d68f5c82e4c60b855a8f6b772f344a72c712da3c4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 03:02:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bfb5d3c071cebab21e6ab8647e84b6ba
ebc1553e88dbe512449a31b3cb4c10c659484d7d
cf794ab56bfa29d8e47637d68f5c82e4c60b855a8f6b772f344a72c712da3c4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 03:02:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kingstonconnections.ca/wp-includes/css/dashicons.min.css?ver=6.1.1
51.222.78.194200 OK 35 kB URL HTTP/2 kingstonconnections.ca/wp-includes/css/dashicons.min.css?ver=6.1.1
IP 51.222.78.194:0
File type ASCII text, with very long lines (58981)
Hash 54c5bfb8a890d87139d9abfe01662c83
f9eddf5b8a3269e6d6fa40b4f13083705e6267c6
9685e5cabe4efc8c85e986725af8009b306416aad3ecc9086ca5bb12b84ce4ef
GET /wp-includes/css/dashicons.min.css?ver=6.1.1 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: text/css
last-modified: Fri, 16 Apr 2021 01:28:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 35110
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.3
51.222.78.194200 OK 12 kB URL HTTP/2 kingstonconnections.ca/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.3
IP 51.222.78.194:0
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash 89c01460d72cb1ceb3a46b26a5ca1f76
ac2c983903467ac06692603836da52c269d34745
88fe06f32160927f89011be425a89c7bd71b305cbbb14145f9829509f2805897
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.3 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: text/css
last-modified: Tue, 28 Jan 2020 19:39:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11522
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/themes/directory2/ait-theme/assets/colorbox/colorbox.min.css?ver=1.4.27
51.222.78.194200 OK 579 B URL HTTP/2 kingstonconnections.ca/wp-content/themes/directory2/ait-theme/assets/colorbox/colorbox.min.css?ver=1.4.27
IP 51.222.78.194:0
File type ASCII text, with very long lines (2026)
Hash 3fa815f8b4d329936554aab60b74950f
b9c42a52f4849fcdbd1f914c5ccfbed59c7783d6
16ab0fbe01ebbb4096f7dedd182d3fc6de7bd87cd7bf2570d2dc848da1ef6194
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/directory2/ait-theme/assets/colorbox/colorbox.min.css?ver=1.4.27 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: text/css
last-modified: Mon, 19 Apr 2021 02:36:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 579
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/themes/directory2/ait-theme/assets/ait/element-placeholder.css?ver=4.0.26.1626200761
51.222.78.194200 OK 691 B URL HTTP/2 kingstonconnections.ca/wp-content/themes/directory2/ait-theme/assets/ait/element-placeholder.css?ver=4.0.26.1626200761
IP 51.222.78.194:0
File type ASCII text, with CRLF line terminators
Hash dc99ade6b7e7b26dff8f4626e6da377a
4a701e3dc636e0ec2b0e67f43d6bdb11bba7b9b2
ce25e81bfbe7e02968361c63df00326fd1668cb3498df766cb08eb1a2342aa98
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/directory2/ait-theme/assets/ait/element-placeholder.css?ver=4.0.26.1626200761 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: text/css
last-modified: Mon, 19 Apr 2021 02:36:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 691
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/themes/directory2/design/css/libs/jquery.selectbox.css?ver=6.1.1
51.222.78.194200 OK 549 B URL HTTP/2 kingstonconnections.ca/wp-content/themes/directory2/design/css/libs/jquery.selectbox.css?ver=6.1.1
IP 51.222.78.194:0
File type ASCII text, with CRLF line terminators
Hash d3b3a6bbbe22fa4d9a985e157f4fa421
f63407b315b312eeab49c137d55b8ab487da2371
ad7759b1bce3252b3bfae6f71e0961b99c4346915de6d5a11faf7a8357459c57
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/directory2/design/css/libs/jquery.selectbox.css?ver=6.1.1 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: text/css
last-modified: Mon, 19 Apr 2021 02:36:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 549
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/themes/directory2/design/css/libs/jquery.select2-3.5.1.css?ver=6.1.1
51.222.78.194200 OK 3.1 kB URL HTTP/2 kingstonconnections.ca/wp-content/themes/directory2/design/css/libs/jquery.select2-3.5.1.css?ver=6.1.1
IP 51.222.78.194:0
Hash 0a1f5bd82e1d9fdc7dbeacd1a150d28c
02c1d8bfe6e419613f05f950c6f42ed05d4b87ad
c03895b6fe0faf7645510d3e2a13fcbb920bfd025a9d208c08881bf0b196b2f6
GET /wp-content/themes/directory2/design/css/libs/jquery.select2-3.5.1.css?ver=6.1.1 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: text/css
last-modified: Mon, 19 Apr 2021 02:36:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3124
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7554f75e4959d216038e95962579e741
10f237248a234544391eb351e97515d385a372b3
cb2bc78887ed330dee49076c04ba87723fdc2a869a124dba2a475cac174480da
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 03:02:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kingstonconnections.ca/wp-content/themes/directory2/design/css/libs/leaflet/leaflet.css?ver=6.1.1
51.222.78.194200 OK 3.1 kB URL HTTP/2 kingstonconnections.ca/wp-content/themes/directory2/design/css/libs/leaflet/leaflet.css?ver=6.1.1
IP 51.222.78.194:0
File type ASCII text, with CRLF line terminators
Hash 5507585fdfa3f48b9ba06acc9a3a6072
ff99dc58cc025345b8d59ff790fb983b36b167cc
9d561bf9d7a7935b8141f19e1bd7b6271ebd699667a6c80839e16a611b7926d9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/directory2/design/css/libs/leaflet/leaflet.css?ver=6.1.1 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: text/css
last-modified: Mon, 19 Apr 2021 02:36:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3062
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/themes/directory2/design/css/libs/font-awesome.css?ver=6.1.1
51.222.78.194200 OK 7.0 kB URL HTTP/2 kingstonconnections.ca/wp-content/themes/directory2/design/css/libs/font-awesome.css?ver=6.1.1
IP 51.222.78.194:0
File type troff or preprocessor input, ASCII text, with very long lines (427)
Hash 40cd109595d6850ecd5db53cec3394c1
bc319f6e8245b4e9304d2ee2eedb4559966a4347
74d649dbc17be479d1777dd51c832bd51d4cc307b016ab64fb19f929e02c4a10
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/directory2/design/css/libs/font-awesome.css?ver=6.1.1 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: text/css
last-modified: Mon, 19 Apr 2021 02:36:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7008
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/themes/directory2/design/css/libs/leaflet/MarkerCluster.Default.css?ver=6.1.1
51.222.78.194200 OK 331 B URL HTTP/2 kingstonconnections.ca/wp-content/themes/directory2/design/css/libs/leaflet/MarkerCluster.Default.css?ver=6.1.1
IP 51.222.78.194:0
Hash 41e54e32115609fac2215b71dd73bf24
7074a79b4418c48d9d17a915aaf43574567af450
6dfaf1394cfa3cfcca3a62c489d331cb98aa8aae5c29cd0d9da76ac86a42cedf
GET /wp-content/themes/directory2/design/css/libs/leaflet/MarkerCluster.Default.css?ver=6.1.1 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: text/css
last-modified: Mon, 19 Apr 2021 02:36:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 331
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/uploads/cache/directory2-child/base-4.0.26.1626200761.css?ver=4.0.26.1626200761
51.222.78.194200 OK 42 B URL HTTP/2 kingstonconnections.ca/wp-content/uploads/cache/directory2-child/base-4.0.26.1626200761.css?ver=4.0.26.1626200761
IP 51.222.78.194:0
File type ASCII text, with no line terminators
Hash 7b5c559e947c71c87e7aa0f2c25b1f3b
f4b49897b2c7d52599e0a4c1385ad53082a3531c
c9cc029c2488498fa7ed479fb67d4920b268b585545cdd856bd041c8649e4a04
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/cache/directory2-child/base-4.0.26.1626200761.css?ver=4.0.26.1626200761 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: text/css
last-modified: Wed, 07 Dec 2022 21:03:50 GMT
accept-ranges: bytes
content-length: 42
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/themes/directory2/design/css/libs/leaflet/MarkerCluster.css?ver=6.1.1
51.222.78.194200 OK 212 B URL HTTP/2 kingstonconnections.ca/wp-content/themes/directory2/design/css/libs/leaflet/MarkerCluster.css?ver=6.1.1
IP 51.222.78.194:0
Hash b64f9160b03468e98bb2fb99e33f038c
6d53192bffc56a0af275abd30796580efb6e4f2a
8c61fe545b79e59e67dbccdb5b0bdd3652b0a08c7585a54572550e9d1713c508
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/directory2/design/css/libs/leaflet/MarkerCluster.css?ver=6.1.1 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: text/css
last-modified: Mon, 19 Apr 2021 02:36:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 212
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/themes/directory2/ait-theme/elements/search-form/design/css/base-style.css?ver=6.1.1
51.222.78.194200 OK 27 B URL HTTP/2 kingstonconnections.ca/wp-content/themes/directory2/ait-theme/elements/search-form/design/css/base-style.css?ver=6.1.1
IP 51.222.78.194:0
File type ASCII text, with CRLF line terminators
Hash 451a865ab7f4b7d884ba2297090e92f2
a400b61b6ba6387fa62842ae801339171c98bcba
16eb23976764966ef5f3d2d2b17ff8cfeb1892ed84edcbae61362d7fe36877e4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/directory2/ait-theme/elements/search-form/design/css/base-style.css?ver=6.1.1 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: text/css
last-modified: Mon, 19 Apr 2021 02:36:46 GMT
accept-ranges: bytes
content-length: 27
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/themes/directory2/ait-theme/assets/jquery-ui-css/jquery-ui.css?ver=1.8.24
51.222.78.194200 OK 5.5 kB URL HTTP/2 kingstonconnections.ca/wp-content/themes/directory2/ait-theme/assets/jquery-ui-css/jquery-ui.css?ver=1.8.24
IP 51.222.78.194:0
File type ASCII text, with very long lines (1399)
Hash 96121df13c6e35e4f8063ae6ce8ad8fe
9f63f124b7707cfc4d0f31d0cc30dcb19f4fabe5
2fa76f2ed3cc00fefe286ff0b0822025be03d4bd135a2affbea49bce44aabee1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/directory2/ait-theme/assets/jquery-ui-css/jquery-ui.css?ver=1.8.24 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: text/css
last-modified: Mon, 19 Apr 2021 02:36:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5498
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/themes/directory2/design/css/libs/leaflet/leaflet-gesture-handling.min.css?ver=6.1.1
51.222.78.194200 OK 320 B URL HTTP/2 kingstonconnections.ca/wp-content/themes/directory2/design/css/libs/leaflet/leaflet-gesture-handling.min.css?ver=6.1.1
IP 51.222.78.194:0
File type ASCII text, with very long lines (1022), with no line terminators
Hash 7f6c29c6cdd42f98a89d9c137b0aac57
b2fecb4e878774d771c1907e4503197e8fc98cd9
2c8bbecaa816f5e5e0ff316fa6e0087f4611a1349bf6f6c14da1e1b2e23f8499
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/directory2/design/css/libs/leaflet/leaflet-gesture-handling.min.css?ver=6.1.1 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: text/css
last-modified: Mon, 19 Apr 2021 02:36:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 320
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/themes/directory2/ait-theme/elements/header-map/design/css/base-style.css?ver=6.1.1
51.222.78.194200 OK 167 B URL HTTP/2 kingstonconnections.ca/wp-content/themes/directory2/ait-theme/elements/header-map/design/css/base-style.css?ver=6.1.1
IP 51.222.78.194:0
File type ASCII text, with CRLF line terminators
Hash 9bbbef55a46d98eba46962413ad4bf67
ce90377f42bfacb3a0020a227af26153619583b2
71b48802321a95504b37856b24f30228d0a878f9aa1eab09251aced06af2db4e
GET /wp-content/themes/directory2/ait-theme/elements/header-map/design/css/base-style.css?ver=6.1.1 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: text/css
last-modified: Mon, 19 Apr 2021 02:36:46 GMT
accept-ranges: bytes
content-length: 167
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/uploads/cache/directory2-child/preloading-4.0.26.1626200761.css?ver=4.0.26.1626200761
51.222.78.194200 OK 6.0 kB URL HTTP/2 kingstonconnections.ca/wp-content/uploads/cache/directory2-child/preloading-4.0.26.1626200761.css?ver=4.0.26.1626200761
IP 51.222.78.194:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash cf02b5759aff578ad2d8c36696fb34cf
3b02b4acb35307aafbd821922881ff5f71c06e0a
fad8c331d45ff46845abfedf4d4397ff14f2d04663103d8bbef3adfed7e2dd8e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/cache/directory2-child/preloading-4.0.26.1626200761.css?ver=4.0.26.1626200761 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: text/css
last-modified: Wed, 07 Dec 2022 21:03:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5981
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
51.222.78.194200 OK 2.8 kB URL HTTP/2 kingstonconnections.ca/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP 51.222.78.194:0
File type ASCII text, with very long lines (9937), with no line terminators
Hash 4317b1c024df372435f6482deadddeb3
5c8824a17e40a44ea8fc51568b98bdb1e2e7fab5
3798fb16289ba55459fb6d3b2efa915e3c019c5942759abb7bd19a0ef622b85d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: application/javascript
last-modified: Tue, 15 Nov 2022 16:24:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2817
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
51.222.78.194200 OK 3.7 kB URL HTTP/2 kingstonconnections.ca/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP 51.222.78.194:0
File type HTML document, ASCII text, with very long lines (12310), with no line terminators
Hash dc6411bfa6891b75944f0074c945752d
03c1a8b686c287068c61ab90f58d905496d65085
96abeabc9cc7b4c2b7d46579f2827c67ccd02fbaef0343ae052f71accd381b0d
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: application/javascript
last-modified: Tue, 15 Nov 2022 16:24:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3706
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/uploads/cache/directory2-child/typography-4.0.26.1626200761-en_US.css?ver=4.0.26.1626200761
51.222.78.194200 OK 4.8 kB URL HTTP/2 kingstonconnections.ca/wp-content/uploads/cache/directory2-child/typography-4.0.26.1626200761-en_US.css?ver=4.0.26.1626200761
IP 51.222.78.194:0
File type ASCII text, with very long lines (50085), with no line terminators
Hash 23b15bce1c17122123d35e619b7c5980
c7a87988c9e0047ef5970bc53cab6bc044e5730b
0c1ad851bff330cc6150ca38245f2a71e7f4baf6feadec6fb038c952c0f2d96f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/cache/directory2-child/typography-4.0.26.1626200761-en_US.css?ver=4.0.26.1626200761 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: text/css
last-modified: Wed, 07 Dec 2022 21:03:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4752
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/themes/directory2/ait-theme/assets/colorbox/jquery.colorbox.min.js?ver=1.4.27
51.222.78.194200 OK 4.5 kB URL HTTP/2 kingstonconnections.ca/wp-content/themes/directory2/ait-theme/assets/colorbox/jquery.colorbox.min.js?ver=1.4.27
IP 51.222.78.194:0
File type ASCII text, with very long lines (11887)
Hash 65d669ec0b59ad7d2040d842c0b7a138
e5eb7828252dac354af8a3e21048b01a5e03fed7
adc999c096832cee4900be483e1aa5aa360994d89785f2ab9b123d90b716734e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/directory2/ait-theme/assets/colorbox/jquery.colorbox.min.js?ver=1.4.27 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: application/javascript
last-modified: Mon, 19 Apr 2021 02:36:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4463
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/plugins/popslide/assets/js/jquery.cookie.min.js
51.222.78.194200 OK 600 B URL HTTP/2 kingstonconnections.ca/wp-content/plugins/popslide/assets/js/jquery.cookie.min.js
IP 51.222.78.194:0
File type ASCII text, with very long lines (1285), with no line terminators
Hash cf6db9095d99c3a903b9c45b33bfeba7
969effee72715014cad403163ef6e172a653224c
193da8104086306ee6ca5b44e03f54e5b0cd3d8230caf5bad05edbf306eebd5a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/popslide/assets/js/jquery.cookie.min.js HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: application/javascript
last-modified: Thu, 26 Mar 2020 13:48:05 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 600
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-includes/js/underscore.min.js?ver=1.13.4
51.222.78.194200 OK 7.2 kB URL HTTP/2 kingstonconnections.ca/wp-includes/js/underscore.min.js?ver=1.13.4
IP 51.222.78.194:0
File type ASCII text, with very long lines (18798)
Hash f4bb18d2e152ba945cb63980362f40e9
925f93a6c4ee411e97d8dc3186f9d66c4b5169ab
16ab496a6c74f5f272f7a5c31e9cb69c753fea994396ef6deacf641180ad317b
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: application/javascript
last-modified: Tue, 15 Nov 2022 16:24:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7179
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
51.222.78.194200 OK 4.0 kB URL HTTP/2 kingstonconnections.ca/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 51.222.78.194:0
File type ASCII text, with very long lines (11126)
Hash 7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: application/javascript
last-modified: Tue, 15 Dec 2020 21:31:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/plugins/popslide/assets/js/front.js
51.222.78.194200 OK 792 B URL HTTP/2 kingstonconnections.ca/wp-content/plugins/popslide/assets/js/front.js
IP 51.222.78.194:0
File type ASCII text, with CRLF line terminators
Hash aaa06787ae4ea91535efa202e2932b35
9787b1808d5af3edcef268d8694b3e2292e83f8c
de945d8a217f77be3869a0c8f5d3533bf253708e40ff66cef6e85c204712116e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/popslide/assets/js/front.js HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: application/javascript
last-modified: Thu, 26 Mar 2020 13:48:05 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 792
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
51.222.78.194200 OK 30 kB URL HTTP/2 kingstonconnections.ca/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 51.222.78.194:0
File type ASCII text, with very long lines (65447)
Hash 3a1740685bd5c0bbd5f2b812e1eb7fb4
488e07695da787fed18361c50292aef35abb5e81
4a07aed2d8cf88afdec0b56b365b951c76d387db3459166b5a0d25e2e6cc95ef
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: application/javascript
last-modified: Tue, 15 Nov 2022 16:24:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30324
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/uploads/cache/directory2-child/style-4.0.26.1626200761.css?ver=4.0.26.1626200761
51.222.78.194200 OK 99 kB URL HTTP/2 kingstonconnections.ca/wp-content/uploads/cache/directory2-child/style-4.0.26.1626200761.css?ver=4.0.26.1626200761
IP 51.222.78.194:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash e15dc2a4a7a6f4112de9f30d93f2c26d
34c1979ac672296938e5e09e5188a404565c87aa
b5649869719e46cfb0cd84d7623c4fa41e150163a310fb051f1538966d8a9095
GET /wp-content/uploads/cache/directory2-child/style-4.0.26.1626200761.css?ver=4.0.26.1626200761 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: text/css
last-modified: Wed, 07 Dec 2022 21:03:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 99295
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.3
51.222.78.194200 OK 67 kB URL HTTP/2 kingstonconnections.ca/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.3
IP 51.222.78.194:0
File type ASCII text, with very long lines (64288)
Hash aa9372a85693a6493774f10b65bad30c
cc3c53e0aed0450cafaec2579de0049ffad0387b
ece029d1221e027b0ca02e11c47f9838dd69f226a8283b4ef7dd7d684fef1c5a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.3 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: application/javascript
last-modified: Tue, 28 Jan 2020 19:39:27 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 66776
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0
51.222.78.194200 OK 50 kB URL HTTP/2 kingstonconnections.ca/wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0
IP 51.222.78.194:0
File type ASCII text, with very long lines (32017), with CRLF line terminators
Hash 12ee1cc38870cd33b736f5a03a213de8
32e13b34e228e12ef6e3afcfcfa57cfb92d632ff
629c9a0ac8f73997327bfe37312e363e461ab8c1d8ac1c112b2d2f2eed814dee
GET /wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: application/javascript
last-modified: Tue, 28 Jan 2020 19:39:27 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 50040
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/themes/directory2/design/js/libs/jquery.selectbox-0.2.js?ver=6.1.1
51.222.78.194200 OK 3.7 kB URL HTTP/2 kingstonconnections.ca/wp-content/themes/directory2/design/js/libs/jquery.selectbox-0.2.js?ver=6.1.1
IP 51.222.78.194:0
File type ASCII text, with CRLF line terminators
Hash fe20db7ff1d6f533a5279598b65f6d78
fa675d5759cfe2a5d946f5cd78a264c9567213d7
feec72f60b44f846064f7a3603cc51bea78c6d62dd770bae0b4a8a72af7775ca
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/directory2/design/js/libs/jquery.selectbox-0.2.js?ver=6.1.1 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: application/javascript
last-modified: Mon, 19 Apr 2021 02:36:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3702
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/themes/directory2/design/js/libs/jquery.raty-2.5.2.js?ver=6.1.1
51.222.78.194200 OK 3.7 kB URL HTTP/2 kingstonconnections.ca/wp-content/themes/directory2/design/js/libs/jquery.raty-2.5.2.js?ver=6.1.1
IP 51.222.78.194:0
Hash 73e29207c75b19b267ca486d698dd720
43e7446c71b8e719d1bdbecbc70de0ac40068293
fbd3e58109517198c4ce2045f912780f7c9c23ab7629be54abc753eaba899c96
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/directory2/design/js/libs/jquery.raty-2.5.2.js?ver=6.1.1 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: application/javascript
last-modified: Mon, 19 Apr 2021 02:36:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3711
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/themes/directory2/design/js/libs/jquery.infieldlabel-0.1.4.js?ver=6.1.1
51.222.78.194200 OK 1.9 kB URL HTTP/2 kingstonconnections.ca/wp-content/themes/directory2/design/js/libs/jquery.infieldlabel-0.1.4.js?ver=6.1.1
IP 51.222.78.194:0
Hash 47112cf8265967d094a5ce5997495377
e2915f9ca6940057d72b324a26d0f8ab7f38dbda
f9921430b02661051ba14c9e08bfe481762d6d4dd583b96d9324ae0eb635301c
GET /wp-content/themes/directory2/design/js/libs/jquery.infieldlabel-0.1.4.js?ver=6.1.1 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: application/javascript
last-modified: Mon, 19 Apr 2021 02:36:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1862
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/themes/directory2/design/js/libs/leaflet/leaflet.markercluster.js?ver=6.1.1
51.222.78.194200 OK 8.5 kB URL HTTP/2 kingstonconnections.ca/wp-content/themes/directory2/design/js/libs/leaflet/leaflet.markercluster.js?ver=6.1.1
IP 51.222.78.194:0
File type ASCII text, with very long lines (32045)
Hash c60b5e3a8d131299c4da83e4b367490d
2b215d63e3a933ee25d9551b68defcf9986d2497
0412440f0d70391630d734199065569329db8dd6c0d7b067287de4199e6546da
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/directory2/design/js/libs/leaflet/leaflet.markercluster.js?ver=6.1.1 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: application/javascript
last-modified: Mon, 19 Apr 2021 02:36:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8465
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/themes/directory2/design/js/libs/jquery-waypoints-2.0.3.js?ver=6.1.1
51.222.78.194200 OK 3.4 kB URL HTTP/2 kingstonconnections.ca/wp-content/themes/directory2/design/js/libs/jquery-waypoints-2.0.3.js?ver=6.1.1
IP 51.222.78.194:0
Hash 3c1e9a8ee6422e73b156bbe79beedbc7
56d39626241423beb358d455c60a1da7a831a847
5e51cb02940d689e397ee51e1269cf7d58e980eda3cdb002c655a41ea0b78945
GET /wp-content/themes/directory2/design/js/libs/jquery-waypoints-2.0.3.js?ver=6.1.1 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: application/javascript
last-modified: Mon, 19 Apr 2021 02:36:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3446
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/themes/directory2/design/js/menu.js?ver=6.1.1
51.222.78.194200 OK 2.5 kB URL HTTP/2 kingstonconnections.ca/wp-content/themes/directory2/design/js/menu.js?ver=6.1.1
IP 51.222.78.194:0
Hash 6ed61bacc4629f8000fa292c007b394f
aae08a186c61fcefafaa3c429d254391bb56a9a6
d42146f08f70d3acf7de452f9b84e8839265c5b81a05ced3545310b02fced9cd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/directory2/design/js/menu.js?ver=6.1.1 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: application/javascript
last-modified: Mon, 19 Apr 2021 02:36:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2470
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/themes/directory2/design/js/libs/leaflet/leaflet-gesture-handling.min.js?ver=6.1.1
51.222.78.194200 OK 6.1 kB URL HTTP/2 kingstonconnections.ca/wp-content/themes/directory2/design/js/libs/leaflet/leaflet-gesture-handling.min.js?ver=6.1.1
IP 51.222.78.194:0
File type Unicode text, UTF-8 text, with very long lines (14650)
Hash 84fbf0f521f3b26eea0a5f3043016045
0876751eb39f1c178b8077d697afcbfa2ea9a4ae
5f4bcfd711a6aeaa175e610fd38462776391a1c9f87a62d9e097a4e8c3e21a38
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/directory2/design/js/libs/leaflet/leaflet-gesture-handling.min.js?ver=6.1.1 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: application/javascript
last-modified: Mon, 19 Apr 2021 02:36:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6097
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/themes/directory2/design/js/portfolio-item.js?ver=6.1.1
51.222.78.194200 OK 715 B URL HTTP/2 kingstonconnections.ca/wp-content/themes/directory2/design/js/portfolio-item.js?ver=6.1.1
IP 51.222.78.194:0
Hash 445f9be76c2f2ffdcb4356146ccfa06f
dca44440d94c86143629f94b3f13aa7162d30c29
e25ca8c246066bf9424ee935981838821e3c34a940337fe1cd7f358f45376c90
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/directory2/design/js/portfolio-item.js?ver=6.1.1 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: application/javascript
last-modified: Mon, 19 Apr 2021 02:36:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 715
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/themes/directory2/design/js/custom.js?ver=6.1.1
51.222.78.194200 OK 2.1 kB URL HTTP/2 kingstonconnections.ca/wp-content/themes/directory2/design/js/custom.js?ver=6.1.1
IP 51.222.78.194:0
Hash 65006712cde9e7d61282a256055462b6
82656441a8161d29a8509008fbafbf114e5c0b59
ab4b0e6ba7a8ab9e74669134308d39d76ba95026ee9ac6288fd0fb7ae3801849
GET /wp-content/themes/directory2/design/js/custom.js?ver=6.1.1 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: application/javascript
last-modified: Mon, 19 Apr 2021 02:36:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2140
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/themes/directory2/ait-theme/assets/modernizr/modernizr.touch.js?ver=2.6.2
51.222.78.194200 OK 1.4 kB URL HTTP/2 kingstonconnections.ca/wp-content/themes/directory2/ait-theme/assets/modernizr/modernizr.touch.js?ver=2.6.2
IP 51.222.78.194:0
File type ASCII text, with very long lines (3173)
Hash 25cf9696e54a12b10205980c6d9cfd26
d199bdb2e9a733a880ab07aa06d1a6c9c0acded9
e2f531fc851a3194d139898dc7d0e3ca00609a491ebd740b028ed9c30ba09c62
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/directory2/ait-theme/assets/modernizr/modernizr.touch.js?ver=2.6.2 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: application/javascript
last-modified: Mon, 19 Apr 2021 02:36:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1416
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.2
51.222.78.194200 OK 2.6 kB URL HTTP/2 kingstonconnections.ca/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.2
IP 51.222.78.194:0
File type ASCII text, with very long lines (8632)
Hash 8238287357a4279c2ae038a097965ad3
3a677770d91002d75e397397671b82332724af10
b5c3686973bb5e86e3328dc87298dee495dd6908355ac1d6e7fee730c364e92e
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.2 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: application/javascript
last-modified: Tue, 15 Nov 2022 16:24:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2646
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
51.222.78.194200 OK 6.8 kB URL HTTP/2 kingstonconnections.ca/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 51.222.78.194:0
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 3d0ff0f6731d9cef860af9a5a0e3ce62
13aed444304d782039e261475c8b4450b83e743e
e8d05db77732c71843ced6f386ea82eb32243ac36e7ca3e071cb7f53e2ffbce5
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: application/javascript
last-modified: Tue, 15 Nov 2022 16:24:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6800
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/themes/directory2/ait-theme/assets/bxslider/jquery.bxslider.min.js?ver=4.1.2
51.222.78.194200 OK 4.9 kB URL HTTP/2 kingstonconnections.ca/wp-content/themes/directory2/ait-theme/assets/bxslider/jquery.bxslider.min.js?ver=4.1.2
IP 51.222.78.194:0
File type ASCII text, with very long lines (19040)
Hash d2c26da9ce67516d1c19f4896b5b9c41
1979bb8c67596d0edd349d2209cb65110beea664
deef64f20a8ad1238a721449bc80cfb2e1a41cfe0085e5fe23b3562a108c1d92
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/directory2/ait-theme/assets/bxslider/jquery.bxslider.min.js?ver=4.1.2 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: application/javascript
last-modified: Mon, 19 Apr 2021 02:36:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4925
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/themes/directory2/design/js/script.js?ver=6.1.1
51.222.78.194200 OK 1.4 kB URL HTTP/2 kingstonconnections.ca/wp-content/themes/directory2/design/js/script.js?ver=6.1.1
IP 51.222.78.194:0
File type ASCII text, with CRLF line terminators
Hash 3260682397d5fe5c933668ba7cfdab43
0d0276585a1206e9cd06f8f944f9ae128ccf1919
9c0d35a40f8d44d32e97fb3995f4797640465d79e1bce7d670e32b4de9ba1ca7
GET /wp-content/themes/directory2/design/js/script.js?ver=6.1.1 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: application/javascript
last-modified: Mon, 19 Apr 2021 02:36:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1409
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/themes/directory2/design/js/mobile.js?ver=6.1.1
51.222.78.194200 OK 430 B URL HTTP/2 kingstonconnections.ca/wp-content/themes/directory2/design/js/mobile.js?ver=6.1.1
IP 51.222.78.194:0
Hash d5e50f7c323d8e0fe2149738098de3ec
ae3c8dc6ecbfed68f36004500fa96029a7c64015
4eccb16db8a3d83d171756528ddd1526231ef8fa680f5210e8f2a59559ca3401
GET /wp-content/themes/directory2/design/js/mobile.js?ver=6.1.1 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: application/javascript
last-modified: Mon, 19 Apr 2021 02:36:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 430
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1
51.222.78.194200 OK 392 B URL HTTP/2 kingstonconnections.ca/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1
IP 51.222.78.194:0
File type HTML document, ASCII text, with very long lines (906), with no line terminators
Hash 200d0ec78a54a35bb97450e75bddfe52
25a0c90e7c2a7f49b4d5abf3165eb2d03849c2cb
9555fae27002a4036ca476b62143a67552e3870a1ff46c5869611b5edbe1deac
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: application/javascript
last-modified: Thu, 04 Feb 2021 01:24:33 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 392
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1
51.222.78.194200 OK 479 B URL HTTP/2 kingstonconnections.ca/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1
IP 51.222.78.194:0
File type ASCII text, with very long lines (1191), with no line terminators
Hash 62b3593ce258f7488f936d31b1ab1b6e
34c14a9bf90463e4456add8d8d039453b8bb8b8e
be4b9efdf77f14940f6b8aa22e7287411cf0377f99009d49276b5cfa47c4f3ad
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: application/javascript
last-modified: Wed, 15 Jun 2022 18:09:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 479
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/plugins/ait-shortcodes/assets/js/rule-btn.js?ver=6.1.1
51.222.78.194200 OK 149 B URL HTTP/2 kingstonconnections.ca/wp-content/plugins/ait-shortcodes/assets/js/rule-btn.js?ver=6.1.1
IP 51.222.78.194:0
Hash d59f6a8bcae31d209e5e8c4ce55c67f6
a3bf29f507f7015a58e51300b5d2765641c215ad
321454ada53b9c4f599dac5a6752ce9d1a7bbf1658f2d144f12b9462f02c34c4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ait-shortcodes/assets/js/rule-btn.js?ver=6.1.1 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: application/javascript
last-modified: Thu, 17 Sep 2020 14:16:52 GMT
accept-ranges: bytes
content-length: 149
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17
51.222.78.194200 OK 36 kB URL HTTP/2 kingstonconnections.ca/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17
IP 51.222.78.194:0
File type ASCII text, with very long lines (65266)
Hash eabd3755fb73f0e4ef1ac6e474373dd8
cd92121ebac48f10a27821172202bb1d06267663
37f62084aa872e3b695e87f549c236fda5828bc68036875a771768cd90bf2436
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: application/javascript
last-modified: Tue, 15 Nov 2022 16:24:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 36433
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/themes/directory2/design/js/libs/jquery.select2-3.5.1.js?ver=6.1.1
51.222.78.194200 OK 30 kB URL HTTP/2 kingstonconnections.ca/wp-content/themes/directory2/design/js/libs/jquery.select2-3.5.1.js?ver=6.1.1
IP 51.222.78.194:0
File type ASCII text, with very long lines (11072)
Hash 1c3ca3aad6432ea5e6c8797f3c2aa339
f5d974f46a1f4775bb4cf8b7a6fa7a292d8d0cbe
891ea511d0b55150b41cf081c6e90242eb6ffe675ef1a5ec630c6d5d8faa77b8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/directory2/design/js/libs/jquery.select2-3.5.1.js?ver=6.1.1 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: application/javascript
last-modified: Mon, 19 Apr 2021 02:36:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30069
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
kingstonconnections.ca/wp-content/themes/directory2/design/js/libs/leaflet/leaflet.js?ver=6.1.1
51.222.78.194200 OK 40 kB URL HTTP/2 kingstonconnections.ca/wp-content/themes/directory2/design/js/libs/leaflet/leaflet.js?ver=6.1.1
IP 51.222.78.194:0
File type ASCII text, with very long lines (65325)
Hash 6d399babb4d84c222c3417d56ef3f961
07ac0e20c5c7fab1ef19ea5c47b6c109487ac8c1
43894d61d9472966ab5ae36c748623d136ed986f94ee30710711b94299daa21c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/directory2/design/js/libs/leaflet/leaflet.js?ver=6.1.1 HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: application/javascript
last-modified: Mon, 19 Apr 2021 02:36:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 39939
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 08f7321e01de2d111fc8100424937061
01ea459fe9270ea25e3cec2228d1cf3cd61d80b8
36ca62b5281e0d5434f0bf6119b2074eb05f5336db3113b5556d2a4273ed2816
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36CA62B5281E0D5434F0BF6119B2074EB05F5336DB3113B5556D2A4273ED2816"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5862
Expires: Thu, 15 Dec 2022 04:40:38 GMT
Date: Thu, 15 Dec 2022 03:02:56 GMT
Connection: keep-alive
fonts.googleapis.com/css?family=PT+Sans+Narrow%3Aregular%2C700&subset=cyrillic-ext%2Clatin-ext%2Ccyrillic%2Clatin&ver=6.1.1
142.250.74.106200 OK 1.0 kB URL HTTP/2 fonts.googleapis.com/css?family=PT+Sans+Narrow%3Aregular%2C700&subset=cyrillic-ext%2Clatin-ext%2Ccyrillic%2Clatin&ver=6.1.1
IP 142.250.74.106:0
Hash f4356a2c0dc28f75d5e1e42de5713bf2
7e728f939ebf39b69c994d38075d50dced10c47d
d3b39ef88920ecc157eae98f25ff4d19b1a72402c91e7182c92fecdd35dfc9a2
GET /css?family=PT+Sans+Narrow%3Aregular%2C700&subset=cyrillic-ext%2Clatin-ext%2Ccyrillic%2Clatin&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 15 Dec 2022 03:02:56 GMT
date: Thu, 15 Dec 2022 03:02:56 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 08f7321e01de2d111fc8100424937061
01ea459fe9270ea25e3cec2228d1cf3cd61d80b8
36ca62b5281e0d5434f0bf6119b2074eb05f5336db3113b5556d2a4273ed2816
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36CA62B5281E0D5434F0BF6119B2074EB05F5336DB3113B5556D2A4273ED2816"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5862
Expires: Thu, 15 Dec 2022 04:40:38 GMT
Date: Thu, 15 Dec 2022 03:02:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 08f7321e01de2d111fc8100424937061
01ea459fe9270ea25e3cec2228d1cf3cd61d80b8
36ca62b5281e0d5434f0bf6119b2074eb05f5336db3113b5556d2a4273ed2816
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36CA62B5281E0D5434F0BF6119B2074EB05F5336DB3113B5556D2A4273ED2816"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5862
Expires: Thu, 15 Dec 2022 04:40:38 GMT
Date: Thu, 15 Dec 2022 03:02:56 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07861bcb-0cbb-458b-b85e-45f3efc2391a.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07861bcb-0cbb-458b-b85e-45f3efc2391a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9d38060edf5f77bdaa18a4dd3b092c12
50b89e4fbdb88026899ce49cb45b0d6286f303a7
8ff9d03bca03022c717004f96a178d4982d16b575cb70a1a237ca76f90f4f0e1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07861bcb-0cbb-458b-b85e-45f3efc2391a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5789
x-amzn-requestid: bb0455df-4252-4b04-a24c-eb101e3e40db
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dKWBdFAUIAMFaig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639a6a09-1e3f6b0d0a59da3807acffee;Sampled=0
x-amzn-remapped-date: Thu, 15 Dec 2022 00:27:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VqhIHvfNAEZCR2jLF3lsgYp4uBuPWHSnvOrd_0sHOHEE9waf_svnMQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Dec 2022 02:16:25 GMT
age: 2791
etag: "50b89e4fbdb88026899ce49cb45b0d6286f303a7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=PT+Sans%3Aregular%2Citalic%2C700%2C700italic&subset=cyrillic-ext%2Clatin-ext%2Ccyrillic%2Clatin&ver=6.1.1
142.250.74.106200 OK 5.7 kB URL HTTP/2 fonts.googleapis.com/css?family=PT+Sans%3Aregular%2Citalic%2C700%2C700italic&subset=cyrillic-ext%2Clatin-ext%2Ccyrillic%2Clatin&ver=6.1.1
IP 142.250.74.106:0
Hash b28e9a0c157aa54e57bca37ad2a91318
0913ab40a2962a7d95d60b2f9f86c6133cbbf4c9
04bb0178eeb4fd5f339312a61471c90fa8b8edc756af0367ce1c4426c72e772e
GET /css?family=PT+Sans%3Aregular%2Citalic%2C700%2C700italic&subset=cyrillic-ext%2Clatin-ext%2Ccyrillic%2Clatin&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 15 Dec 2022 03:02:56 GMT
date: Thu, 15 Dec 2022 03:02:56 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa84ff272-725d-4ea2-9b73-d56ddbd06979.jpeg
34.120.237.76200 OK 3.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa84ff272-725d-4ea2-9b73-d56ddbd06979.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1e72301b10bca35b0a570adb01aea806
ff5817aecda71a982779d5b12ba19e3264e964a3
3de1caddc5e0214a69e34ecb64be729a70462f8ea1852f2b9b97901bdc0fd3cb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa84ff272-725d-4ea2-9b73-d56ddbd06979.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3187
x-amzn-requestid: 01e45059-3240-4c5b-bd89-4cce8387e6f4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUX0FUgoAMFYqA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6765-1db6a3fd5433985e5f0687a7;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:49:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ab-V5dPQRj6wn9lhjFnS0WCdjKhyKG0S_eXyDQM86Bg-8P4qxvwqQg==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Dec 2022 06:13:37 GMT
age: 74959
etag: "ff5817aecda71a982779d5b12ba19e3264e964a3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb602c981-caf1-4cfc-b19b-56f816dc7417.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb602c981-caf1-4cfc-b19b-56f816dc7417.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c2ae931d0f14a81013f782d43b8c7b85
9ec84996b63362ad370ff67b0fd8136a343c1bbf
9b4a2b3e5e2d2b4fac094135fed10a3040598f1208f6b2ec52d95d10aca66ed5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb602c981-caf1-4cfc-b19b-56f816dc7417.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9891
x-amzn-requestid: ef1d7b5b-b6fd-483b-bef7-235b0d76648d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c2SlaEzgoAMFebw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63926488-701a5e2b61cc6f647fe41acb;Sampled=0
x-amzn-remapped-date: Thu, 08 Dec 2022 22:26:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: K8OPTRGA7cKydHi7_5T23cXe-9m0MsxYAMzBh-aXD93WSNB4pOnMpA==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Dec 2022 20:23:47 GMT
age: 23949
etag: "9ec84996b63362ad370ff67b0fd8136a343c1bbf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1cff467d-ce7f-4454-8f95-b9c6348a2347.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1cff467d-ce7f-4454-8f95-b9c6348a2347.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 651b0f2569cf044585ce4f571cfd89fb
4c5e9db56536dd4145d63200d0fd74e2aa243fbf
c561267909b1e19768a2c11d78bab18faaa0de11d822e56324d7642daf798bf5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1cff467d-ce7f-4454-8f95-b9c6348a2347.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5820
x-amzn-requestid: aea526e4-f177-483a-bf63-4dbc3e526bf6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dHHBHE8HIAMFn0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63991ed3-2fdc5eed7f4c006224bd29c5;Sampled=0
x-amzn-remapped-date: Wed, 14 Dec 2022 00:54:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: usEmccGMldP3GGjxbRfQ_TuRDdRzDqo8C31tNcjXVpz3ke03xykUfg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Dec 2022 13:45:56 GMT
etag: "4c5e9db56536dd4145d63200d0fd74e2aa243fbf"
content-type: image/jpeg
age: 47820
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe34f6337-b00d-4487-82ce-cbed5b4f3f4f.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe34f6337-b00d-4487-82ce-cbed5b4f3f4f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0d2294cdacdc84b8b19874ba56035a6d
53009a81b15e464d5529d36b1e04b841b2ae034e
67d59aa026b43ed3f698f3853b986fc7c07e4e6e5f7b3551e59238f79978480a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe34f6337-b00d-4487-82ce-cbed5b4f3f4f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7616
x-amzn-requestid: 71bbe208-11e3-4280-bf09-bff8bd18fcb4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c82fXGmPoAMF3Og=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63950462-12393ca432808b7f0b2771dc;Sampled=0
x-amzn-remapped-date: Sat, 10 Dec 2022 22:12:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: G1MopDnv-WOAbIBMe0v-V9xXeJIVDReKWSMG33dQt1q5GpK41RU0PQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Dec 2022 11:18:24 GMT
age: 56672
etag: "53009a81b15e464d5529d36b1e04b841b2ae034e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2e709a04ea80113c435ca4f9d37e93e7
053f34d74eded192d698bb20956897ec3e3ad23b
2535554bd9d9004c7888cde496278d847002218fb1d35a3d4bacdd98c8a92ff9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 03:02:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4557f99d9d9535e0134db96dfe8063b2
c9b446d4f382a8ee3d73b1b2e77c96c3e4787059
74305a78c814edc962f442dbbc14023e0b96c5822d5aa9f4ef4c8e4bc791fc00
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 03:02:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4557f99d9d9535e0134db96dfe8063b2
c9b446d4f382a8ee3d73b1b2e77c96c3e4787059
74305a78c814edc962f442dbbc14023e0b96c5822d5aa9f4ef4c8e4bc791fc00
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 03:02:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2
216.58.207.227200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 45300, version 1.0\012- data
Hash 5fe660c3a23b871807b0e1d3ee973d23
62a9dd423b30b6ee3ab3dd40d573545d579af10a
e13ffa988be59cbf299d7ff68f019f902b60848203ac4990819eb7e4624ee52d
GET /s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kingstonconnections.ca
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 45300
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 10 Dec 2022 22:37:36 GMT
expires: Sun, 10 Dec 2023 22:37:36 GMT
cache-control: public, max-age=31536000
age: 361520
last-modified: Wed, 27 Apr 2022 16:11:08 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ptsansnarrow/v17/BngRUXNadjH0qYEzV7ab-oWlsbCGwR0.woff2
216.58.207.227200 OK 36 kB URL HTTP/2 fonts.gstatic.com/s/ptsansnarrow/v17/BngRUXNadjH0qYEzV7ab-oWlsbCGwR0.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 36220, version 1.0\012- data
Hash 703384eb990fa92cab3b11662e55234f
825232b537f04761e3f866599f3abb7c14d32d60
38ba9bd69a8f6114511656eed8cf0f4e3d45d9e2c9aa0a22fb978d5da5ac250b
GET /s/ptsansnarrow/v17/BngRUXNadjH0qYEzV7ab-oWlsbCGwR0.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kingstonconnections.ca
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 36220
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Dec 2022 02:16:45 GMT
expires: Fri, 15 Dec 2023 02:16:45 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 17:03:05 GMT
content-type: font/woff2
age: 2771
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ptsansnarrow/v17/BngSUXNadjH0qYEzV7ab-oWlsbg95AiFW_0.woff2
216.58.207.227200 OK 51 kB URL HTTP/2 fonts.gstatic.com/s/ptsansnarrow/v17/BngSUXNadjH0qYEzV7ab-oWlsbg95AiFW_0.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 51132, version 1.0\012- data
Hash ebf9aaf2e7ed2dc812dcd308b5b807e2
821884be5d80ad6e3310c47ec68a172f3aebfe32
f54e39446dc1a3407191e704a37aa5da2d12fbdeac8842b6c3a5648377f3e688
GET /s/ptsansnarrow/v17/BngSUXNadjH0qYEzV7ab-oWlsbg95AiFW_0.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kingstonconnections.ca
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 51132
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Dec 2022 19:37:01 GMT
expires: Thu, 14 Dec 2023 19:37:01 GMT
cache-control: public, max-age=31536000
age: 26755
last-modified: Wed, 27 Apr 2022 16:09:38 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4557f99d9d9535e0134db96dfe8063b2
c9b446d4f382a8ee3d73b1b2e77c96c3e4787059
74305a78c814edc962f442dbbc14023e0b96c5822d5aa9f4ef4c8e4bc791fc00
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 03:02:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kingstonconnections.ca/wp-content/uploads/2015/12/kc-logo.png
51.222.78.194200 OK 0 B URL HTTP/2 kingstonconnections.ca/wp-content/uploads/2015/12/kc-logo.png
IP 51.222.78.194:0
GET /wp-content/uploads/2015/12/kc-logo.png HTTP/1.1
Host: kingstonconnections.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingstonconnections.ca/ccss/owas/ZS/92fd5b365c612a19b8d88dad3fe6bff5/74q7yehyqcmfbnsu0fpuw0uz.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 22 Dec 2022 03:02:56 GMT
content-type: image/png
last-modified: Tue, 28 Jan 2020 19:40:06 GMT
accept-ranges: bytes
content-length: 69789
date: Thu, 15 Dec 2022 03:02:56 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2