r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7786cd9bd97e024b3a1d16215defaad2
786ddbb74b0b6bd9270622dbe0258d6caee407c1
9c297ccfd178eec7e472fb64a6b2e34d4c7a6dec32870f49982353e590196ba0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C297CCFD178EEC7E472FB64A6B2E34D4C7A6DEC32870F49982353E590196BA0"
Last-Modified: Mon, 14 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8540
Expires: Wed, 16 Nov 2022 08:57:21 GMT
Date: Wed, 16 Nov 2022 06:35:01 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 4fe5a11c3ca8a150aad830b739f24b58
898b730b1a66dd49c6f018333ba828410f63f347
2c3a2a8a3dfa29808bd550718025fdf355e4a88235cb50ae978abc00ee5fd23b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6223
Cache-Control: max-age=106789
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 06:35:01 GMT
Etag: "63736a6b-1d7"
Expires: Thu, 17 Nov 2022 12:14:50 GMT
Last-Modified: Tue, 15 Nov 2022 10:31:07 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c88bc06741ab9fb81c2544acfcc34aa2
362cab19cff5aba27f472cc00071d5dfa38192e4
314ba27975f458e13917b2be91c9d5989a3e57c9e94b5a84dd52d0e21d27ae7f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "314BA27975F458E13917B2BE91C9D5989A3E57C9E94B5A84DD52D0E21D27AE7F"
Last-Modified: Mon, 14 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7959
Expires: Wed, 16 Nov 2022 08:47:40 GMT
Date: Wed, 16 Nov 2022 06:35:01 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4736bac84ca28f2b1e961159fb4ea098
1319612979f53896fcfeacd4215c2715d4951e4c
5e81213e111ddf68c7f884f72b4e06fc4dc95eb902c3cf0762236b2418840dba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Length, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 16 Nov 2022 05:44:44 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3017
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: +ZRchxjj7VnDUa4P00/TsdgTGSLYW/IPC7Kv6rNSijOgfKPIXlnc9DeTntUvAuGFpZkkMj+XS8M=
x-amz-request-id: J8DME2SDPK69HKVR
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 16 Nov 2022 06:14:35 GMT
age: 1226
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 06:35:01 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Cache-Control, Pragma, Retry-After, ETag, Alert, Expires, Backoff, Content-Type, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 16 Nov 2022 05:44:49 GMT
cache-control: public,max-age=3600
age: 3012
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
lbe.com.sg/
301 Moved Permanently 0 B IP
ASN #58621 Vodien Internet Solutions Pte Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: lbe.com.sg
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 16 Nov 2022 06:35:01 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
X-Powered-By: PHP/8.1.2
cf-edge-cache: cache,platform=wordpress
X-Redirect-By: WordPress
Upgrade: h2,h2c
Location: https://lbe.com.sg/
ocsp.digicert.com/
200 OK 471 B IP
Hash de57a2d376db743a3987c454889f1f21
0defab699bdb1b158026f93c2dd105bcd65f6764
b1c47a81ac45af6f756a8eca8ef14a82f0113ea8f09dae7a285a4491963ae2ff
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1558
Cache-Control: max-age=97071
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 06:35:02 GMT
Etag: "637356af-1d7"
Expires: Thu, 17 Nov 2022 09:32:53 GMT
Last-Modified: Tue, 15 Nov 2022 09:06:55 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Odbb2C+Al9wWWzi5xdrmAA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: XtMElMACb6o0LEe6ddFsAHL+u3s=
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d7250b758a7f340b579fd834d77940f8
b7ce3e5dad508a53bfd91e0a47a60610cbf56523
bf013e41f94319c7480633c3423ab13e209b6bb67f31747d7fea22dcc3a3a27b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF013E41F94319C7480633C3423AB13E209B6BB67F31747D7FEA22DCC3A3A27B"
Last-Modified: Tue, 15 Nov 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21598
Expires: Wed, 16 Nov 2022 12:35:00 GMT
Date: Wed, 16 Nov 2022 06:35:02 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9426341bb128c1b6ba16e64df78152b4
08859a30ed6dee233cde4d77f2a04f058991502b
209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6419
Expires: Wed, 16 Nov 2022 08:22:02 GMT
Date: Wed, 16 Nov 2022 06:35:03 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9426341bb128c1b6ba16e64df78152b4
08859a30ed6dee233cde4d77f2a04f058991502b
209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6419
Expires: Wed, 16 Nov 2022 08:22:02 GMT
Date: Wed, 16 Nov 2022 06:35:03 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9426341bb128c1b6ba16e64df78152b4
08859a30ed6dee233cde4d77f2a04f058991502b
209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6419
Expires: Wed, 16 Nov 2022 08:22:02 GMT
Date: Wed, 16 Nov 2022 06:35:03 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9426341bb128c1b6ba16e64df78152b4
08859a30ed6dee233cde4d77f2a04f058991502b
209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6419
Expires: Wed, 16 Nov 2022 08:22:02 GMT
Date: Wed, 16 Nov 2022 06:35:03 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9426341bb128c1b6ba16e64df78152b4
08859a30ed6dee233cde4d77f2a04f058991502b
209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6419
Expires: Wed, 16 Nov 2022 08:22:02 GMT
Date: Wed, 16 Nov 2022 06:35:03 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8552fe5-9d6e-4c48-8fdf-9aff24c27e99.jpeg
200 OK 3.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8552fe5-9d6e-4c48-8fdf-9aff24c27e99.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 615bef859754507c0879d46f82e190bf
38102ae658b239a79d016273972fa1f0386d9bc3
4eb4d80158c1a0eb93bb758728f18646b43480d929ee1b3afad665dabf33c15b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8552fe5-9d6e-4c48-8fdf-9aff24c27e99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3545
x-amzn-requestid: 0efb7066-a29f-4d26-97af-b6d519072748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bef9bFlQoAMF3EQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636f46bc-1196f31519cb17884dd476f0;Sampled=0
x-amzn-remapped-date: Sat, 12 Nov 2022 07:09:48 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: HN94SvMs3vtST1xjcI35y4U98Z9T74oS1R0gW-BgLZPNczJNEz7NiQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 17:01:42 GMT
age: 48801
etag: "38102ae658b239a79d016273972fa1f0386d9bc3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F520b9f3d-222d-4840-bd88-673cedf9b5fc.jpeg
200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F520b9f3d-222d-4840-bd88-673cedf9b5fc.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a698bf97cc6c0c464ed1a2b2adb1c1d3
a3977e8cde4b6ad7ef2e75a477e71b7bbbec21f0
64d52d8983b2bf30b9b1f260b8d6534664024b8dfda0da273307ee510ed33aad
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F520b9f3d-222d-4840-bd88-673cedf9b5fc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4919
x-amzn-requestid: aae0d2da-e891-40a6-bd83-8942fc3ef0c0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bqYFFEnxoAMFdCQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637406ed-6ff1cc593aa1c934659030db;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 21:38:53 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: PhUSR2Y2GRZkB5UTrMma8vnIddc44pLJ2Sppk63xQyMC2imKLn-R4A==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 21:47:46 GMT
age: 31637
etag: "a3977e8cde4b6ad7ef2e75a477e71b7bbbec21f0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d17b0a6-c7d4-4fde-a562-2c8a684badae.jpeg
200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d17b0a6-c7d4-4fde-a562-2c8a684badae.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0d11bcb05f6d52f71125159b3b91cf95
8ac81c9371c361d9e67d8cb0dc56ce3986ff0c5c
11cd7bb8813d5b88bc9b48851fa0d33a4103e52c7bb6e4c9510ea7cc1b64f76f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d17b0a6-c7d4-4fde-a562-2c8a684badae.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5869
x-amzn-requestid: dfef6fc8-6792-4393-9154-f58cf5c619c9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bqYEAEADIAMFpqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637406e6-3c3530c93c04782a2fd222e1;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 21:38:46 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: vPlQer1X13LpjFGcD9whnFC8MyTkgEo4TTi4g3RSKakAyJkibyQH-A==
via: 1.1 3dde68f1f52282c9e1ee336d97233b0a.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 22:01:24 GMT
age: 30819
etag: "8ac81c9371c361d9e67d8cb0dc56ce3986ff0c5c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b66f592-618a-4463-834d-ff9bbe8866ae.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b66f592-618a-4463-834d-ff9bbe8866ae.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 848af62ec10d0c297922f8600b6ad12d
4eadbf5f0dade92dcc6d68c8ebb70898aadb9a7d
a3b4eb6768259876819d7e6c7ac9e21c603d54f60bf70ed077cb820711e2ae74
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b66f592-618a-4463-834d-ff9bbe8866ae.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11316
x-amzn-requestid: 8456b25a-b87f-490d-86b3-fb217afea082
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWlniESaIAMF3Qg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1c96-30ed3b0972418bae4700edc8;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:10 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: CqIZqrKKIWszHFwass9Cd-GNxQ5Q9z3_2haPPGprjVDal71MQDurqw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 22:15:24 GMT
age: 29979
etag: "4eadbf5f0dade92dcc6d68c8ebb70898aadb9a7d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F923dc815-7798-469f-873f-1f96c181f34b.png
200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F923dc815-7798-469f-873f-1f96c181f34b.png
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 975138c9b284e6286203e5a3e9ca641d
4b2ba4a8f907e8b81e58a542ee463b16c5ece968
8e2b9f4182dc0d377131b68e67e2b10d3dd93eedc3027b1d224b3d83623adb8d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F923dc815-7798-469f-873f-1f96c181f34b.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15395
x-amzn-requestid: c7e8c712-258b-4d49-97bf-cb399c66eb6d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bqYEAHHroAMFjMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637406e6-1d1ea672266e188f3d92858c;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 21:38:46 GMT
x-amz-cf-pop: YVR50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: gwLI4XpF8tfMnYSGlgs6_BhyAbfxiW2VQ5PLxP-v-E73AK6mjEJcEA==
via: 1.1 040bad3c7f7db09654c66da40c719fb0.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 21:46:20 GMT
age: 31723
etag: "4b2ba4a8f907e8b81e58a542ee463b16c5ece968"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe91b23d2-975c-41ce-a4cd-62ca16662f15.jpeg
200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe91b23d2-975c-41ce-a4cd-62ca16662f15.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c7e673e582e83e0572d97dd45676406d
7e34946fcdc1d7a736bf0ad2f53d897fb8caab3c
4508c0896ee058f87a941b2de690cd217970845975274a32be3acecbcb49f173
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe91b23d2-975c-41ce-a4cd-62ca16662f15.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6819
x-amzn-requestid: cc5ef526-ada4-4b72-8dfc-9b59abfd1075
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bZ3boETdIAMFtzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636d6c4a-1202b7dc5d210a5a152c2f9f;Sampled=0
x-amzn-remapped-date: Thu, 10 Nov 2022 21:25:30 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: FoF1Vr-VWVYkKhoFuHl2zb_rwJdR7jL7_795w8rSlUaIhmKPAmC7fw==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 18:13:18 GMT
age: 44505
etag: "7e34946fcdc1d7a736bf0ad2f53d897fb8caab3c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
lbe.com.sg/
200 OK 11 kB IP
ASN #58621 Vodien Internet Solutions Pte Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9580)
Hash 0879ca781bc6891b9a39d598dfb5b856
52988fb1671ea1833d048a6d9a06f05847a4a726
e19ce23722e03803b2afcaafd0594552099b9c86e96f89e4ca3316dab6e15961
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: lbe.com.sg
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 06:35:03 GMT
content-type: text/html; charset=UTF-8
content-length: 10800
x-powered-by: PHP/8.1.2
cf-edge-cache: cache,platform=wordpress
link: <https://lbe.com.sg/wp-json/>; rel="https://api.w.org/", <https://lbe.com.sg/wp-json/wp/v2/pages/5>; rel="alternate"; type="application/json", <https://lbe.com.sg/>; rel=shortlink
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
lbe.com.sg/wp-includes/css/classic-themes.min.css?ver=1
200 OK 189 B URL HTTP/2 lbe.com.sg/wp-includes/css/classic-themes.min.css?ver=1
IP
ASN #58621 Vodien Internet Solutions Pte Ltd
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: lbe.com.sg
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lbe.com.sg/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 06:35:03 GMT
content-type: text/css
content-length: 189
last-modified: Wed, 02 Nov 2022 04:46:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
lbe.com.sg/wp-content/fonts/34c0883e3aa7a409dcd1ccd05493853d.css
200 OK 932 B URL HTTP/2 lbe.com.sg/wp-content/fonts/34c0883e3aa7a409dcd1ccd05493853d.css
IP
ASN #58621 Vodien Internet Solutions Pte Ltd
Hash 7b091f37bd26a3bfb6a7d480f24f5061
15cacb5339c43ab7d4b904f18e20fb89ac05d821
794da52ca55da21f58d1770ba52054a98b4cc85d8268f37f5c4f98da62d7a4cf
GET /wp-content/fonts/34c0883e3aa7a409dcd1ccd05493853d.css HTTP/1.1
Host: lbe.com.sg
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lbe.com.sg/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 06:35:03 GMT
content-type: text/css
content-length: 932
last-modified: Tue, 15 Nov 2022 07:36:00 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
lbe.com.sg/wp-content/themes/solid-construction/assets/css/blocks.css?ver=1.0
200 OK 3.1 kB URL HTTP/2 lbe.com.sg/wp-content/themes/solid-construction/assets/css/blocks.css?ver=1.0
IP
ASN #58621 Vodien Internet Solutions Pte Ltd
Hash c8787b0cf6093da04627af7497a26e4f
2c37f13711de119a1d31f75e32625b8985b8992f
eb151abed4fcf520dd92dc206d598849d8e925d817390dafa493a4a217eefa1e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/solid-construction/assets/css/blocks.css?ver=1.0 HTTP/1.1
Host: lbe.com.sg
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lbe.com.sg/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 06:35:03 GMT
content-type: text/css
content-length: 3096
last-modified: Fri, 16 Sep 2022 06:58:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
lbe.com.sg/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
200 OK 7.1 kB URL HTTP/2 lbe.com.sg/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP
ASN #58621 Vodien Internet Solutions Pte Ltd
File type ASCII text, with very long lines (30837)
Hash 09b8b6cbc1b0486aa66786792e8c6984
73a077a16ce58b6b5c7169a61989f7421a913936
a8e462cb54773ddf7cd4fdc03715c0cd12a537c633c026635d5810b621246db6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: lbe.com.sg
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lbe.com.sg/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 06:35:03 GMT
content-type: text/css
content-length: 7112
last-modified: Sun, 30 Oct 2022 06:08:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
lbe.com.sg/wp-content/uploads/2020/07/cropped-Artboard-1-copy-1-1.png
200 OK 15 kB URL HTTP/2 lbe.com.sg/wp-content/uploads/2020/07/cropped-Artboard-1-copy-1-1.png
IP
ASN #58621 Vodien Internet Solutions Pte Ltd
File type PNG image data, 1080 x 1081, 8-bit/color RGBA, non-interlaced\012- data
Hash d554cb985e7d726d973486694aee2618
31c89fa180f8f2c065d7ce18133db06456f609c1
91012c448c9ed9abbd1b820bb0ef0140a8533911ee8c9722a7f7c5811d3c60f4
GET /wp-content/uploads/2020/07/cropped-Artboard-1-copy-1-1.png HTTP/1.1
Host: lbe.com.sg
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lbe.com.sg/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 06:35:03 GMT
content-type: image/png
content-length: 15408
last-modified: Wed, 05 Aug 2020 05:53:59 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
lbe.com.sg/wp-content/plugins/elementor/assets/css/modules/lazyload/frontend.min.css?ver=3.9.0-dev4
200 OK 138 B URL HTTP/2 lbe.com.sg/wp-content/plugins/elementor/assets/css/modules/lazyload/frontend.min.css?ver=3.9.0-dev4
IP
ASN #58621 Vodien Internet Solutions Pte Ltd
File type ASCII text, with no line terminators
Hash a879bf3d485ce9346cda4959531725d3
630cb5261f219a9cbd51af78cb9d1944d80e6a59
dfb24eace14c2ea2a8380f9ef2ba2f6005a6a8bd7aa84b50f7a567558ce2365f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/css/modules/lazyload/frontend.min.css?ver=3.9.0-dev4 HTTP/1.1
Host: lbe.com.sg
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lbe.com.sg/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 06:35:03 GMT
content-type: text/css
content-length: 138
last-modified: Sun, 30 Oct 2022 06:07:53 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
lbe.com.sg/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
200 OK 4.6 kB URL HTTP/2 lbe.com.sg/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
ASN #58621 Vodien Internet Solutions Pte Ltd
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: lbe.com.sg
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lbe.com.sg/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 06:35:03 GMT
content-type: application/javascript
content-length: 4618
last-modified: Sat, 19 Dec 2020 02:07:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
lbe.com.sg/wp-content/themes/solid-construction/assets/js/fitvids.min.js?ver=1.1
200 OK 688 B URL HTTP/2 lbe.com.sg/wp-content/themes/solid-construction/assets/js/fitvids.min.js?ver=1.1
IP
ASN #58621 Vodien Internet Solutions Pte Ltd
File type HTML document, ASCII text, with very long lines (1484), with no line terminators
Hash 83b3de4fcd420a31a3b10a7a94a581f1
1972af23845652f8e14c618696b8ee22f78283a1
2ef15340aba0f9ca87a6b3a965ab3a1ebdeaf9868fa5a516787a5daa5648ac6f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/solid-construction/assets/js/fitvids.min.js?ver=1.1 HTTP/1.1
Host: lbe.com.sg
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lbe.com.sg/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 06:35:03 GMT
content-type: application/javascript
content-length: 688
last-modified: Fri, 16 Sep 2022 06:58:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
lbe.com.sg/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
200 OK 5.3 kB URL HTTP/2 lbe.com.sg/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP
ASN #58621 Vodien Internet Solutions Pte Ltd
File type ASCII text, with very long lines (15660)
Hash 710f8b142ea44c0682dc2c30f318f065
49144e9b3a76d3d383b1d4359cf7a25e947f4233
708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: lbe.com.sg
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lbe.com.sg/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 06:35:03 GMT
content-type: application/javascript
content-length: 5321
last-modified: Thu, 30 Jun 2022 12:49:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
lbe.com.sg/wp-content/themes/solid-construction/assets/js/skip-link-focus-fix.min.js?ver=20171226
200 OK 240 B URL HTTP/2 lbe.com.sg/wp-content/themes/solid-construction/assets/js/skip-link-focus-fix.min.js?ver=20171226
IP
ASN #58621 Vodien Internet Solutions Pte Ltd
File type ASCII text, with very long lines (323), with no line terminators
Hash ffe1e2fbb8bf5c7d55266c184a683641
8fa249eb102008d1e6924c24f5fb28247fda0e7b
7e2bef01488dcd81ebf19940502f168cde767cfccc00024aa645a64ce784b906
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/solid-construction/assets/js/skip-link-focus-fix.min.js?ver=20171226 HTTP/1.1
Host: lbe.com.sg
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lbe.com.sg/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 06:35:03 GMT
content-type: application/javascript
content-length: 240
last-modified: Fri, 16 Sep 2022 06:58:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
lbe.com.sg/wp-content/themes/solid-construction/assets/js/navigation.min.js?ver=20171226
200 OK 629 B URL HTTP/2 lbe.com.sg/wp-content/themes/solid-construction/assets/js/navigation.min.js?ver=20171226
IP
ASN #58621 Vodien Internet Solutions Pte Ltd
File type ASCII text, with very long lines (1403), with no line terminators
Hash 9234097b7d65170992c954ee1e62a6d6
c1272ac00a51319b55cb6901240b1f15afd39837
48f7b030271abdda864b0aae86406812cdfc67fccd9676f377841d6f992f0d66
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/solid-construction/assets/js/navigation.min.js?ver=20171226 HTTP/1.1
Host: lbe.com.sg
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lbe.com.sg/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 06:35:03 GMT
content-type: application/javascript
content-length: 629
last-modified: Fri, 16 Sep 2022 06:58:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
lbe.com.sg/wp-content/themes/solid-construction/assets/js/jquery.matchHeight.min.js?ver=20171226
200 OK 1.4 kB URL HTTP/2 lbe.com.sg/wp-content/themes/solid-construction/assets/js/jquery.matchHeight.min.js?ver=20171226
IP
ASN #58621 Vodien Internet Solutions Pte Ltd
File type ASCII text, with very long lines (3228), with no line terminators
Hash 1157b93ab3805ded55e8a03adc8916c5
f4c610560133fb1b398ae67a2a60fb52d73e5f6b
8f7c5fd124afb752c20c38633cb00d39c55860483b791ca08bec142b894bbf8c
GET /wp-content/themes/solid-construction/assets/js/jquery.matchHeight.min.js?ver=20171226 HTTP/1.1
Host: lbe.com.sg
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lbe.com.sg/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 06:35:03 GMT
content-type: application/javascript
content-length: 1356
last-modified: Fri, 16 Sep 2022 06:58:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
lbe.com.sg/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.9.0-dev4
200 OK 2.3 kB URL HTTP/2 lbe.com.sg/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.9.0-dev4
IP
ASN #58621 Vodien Internet Solutions Pte Ltd
File type ASCII text, with very long lines (4918)
Hash 481af3241e7a40cee0a5ce9c28f0ee82
76e4ae62179969ca4a9a6c1b6d39c5384a8599af
442f7269ba8f5045380b08c56d6a873b298d3ebd5e7248767684e499b222889f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.9.0-dev4 HTTP/1.1
Host: lbe.com.sg
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lbe.com.sg/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 06:35:03 GMT
content-type: application/javascript
content-length: 2313
last-modified: Sun, 30 Oct 2022 06:08:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
lbe.com.sg/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.9.0-dev4
200 OK 13 kB URL HTTP/2 lbe.com.sg/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.9.0-dev4
IP
ASN #58621 Vodien Internet Solutions Pte Ltd
File type Unicode text, UTF-8 text, with very long lines (31482)
Hash bc09b924653cd5a53cb2885715e65772
723e11d3d758241814c91d71234a1ef7b5f9c6e5
78f13ead553df79eb61959cd6d342627e63151874426e2cbb6eb229de99f0c9e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.9.0-dev4 HTTP/1.1
Host: lbe.com.sg
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lbe.com.sg/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 06:35:03 GMT
content-type: application/javascript
content-length: 12649
last-modified: Sun, 30 Oct 2022 06:08:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
lbe.com.sg/wp-content/plugins/elementor/assets/js/lazyload.min.js?ver=3.9.0-dev4
200 OK 320 B URL HTTP/2 lbe.com.sg/wp-content/plugins/elementor/assets/js/lazyload.min.js?ver=3.9.0-dev4
IP
ASN #58621 Vodien Internet Solutions Pte Ltd
File type ASCII text, with very long lines (443)
Hash 5c73847eebc5420fe2cbcb570655b6c3
0a4494c803f29fd2ff80972e79c7ad34489a6c3c
3f97982dcd3dacc532ffe8a8cc605896ff941a91f990dde0f25f41012dc502d8
GET /wp-content/plugins/elementor/assets/js/lazyload.min.js?ver=3.9.0-dev4 HTTP/1.1
Host: lbe.com.sg
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lbe.com.sg/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 06:35:03 GMT
content-type: application/javascript
content-length: 320
last-modified: Sun, 30 Oct 2022 06:08:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
lbe.com.sg/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
200 OK 8.3 kB URL HTTP/2 lbe.com.sg/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP
ASN #58621 Vodien Internet Solutions Pte Ltd
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 838560e989767f2ef5951b9eeee20352
6bf8419cb4d68d9beced9e4b79b22b347ae16a46
72e6d275c5229613a59aef94523fc6a96330553976aee003d8544d5806fa0c3d
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: lbe.com.sg
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lbe.com.sg/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 06:35:03 GMT
content-type: application/javascript
content-length: 8344
last-modified: Wed, 02 Nov 2022 04:46:31 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
lbe.com.sg/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.9.0-dev4
200 OK 16 kB URL HTTP/2 lbe.com.sg/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.9.0-dev4
IP
ASN #58621 Vodien Internet Solutions Pte Ltd
File type ASCII text, with very long lines (40510)
Hash 2d5b107073cef587f3ed4aec38321e03
cfabfb9e0fe53036d0a7d8e80747c49ec7af09a8
3ff8343e423a7d945ba91bc2306588d926f7c413eacafddcd6f7dab501b3d745
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.9.0-dev4 HTTP/1.1
Host: lbe.com.sg
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lbe.com.sg/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 06:35:03 GMT
content-type: application/javascript
content-length: 16167
last-modified: Sun, 30 Oct 2022 06:08:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
lbe.com.sg/wp-content/themes/solid-construction/assets/js/custom-scripts.min.js?ver=20171226
200 OK 835 B URL HTTP/2 lbe.com.sg/wp-content/themes/solid-construction/assets/js/custom-scripts.min.js?ver=20171226
IP
ASN #58621 Vodien Internet Solutions Pte Ltd
File type ASCII text, with very long lines (2039), with no line terminators
Hash 6528f9d55dc7f71b660c2b20c2ed5b20
22fa26024859479160d10eb2cfa2e5bc973e9708
1d98dc7f7082d3be7fce81acec177f6fe0f5f3ba5b36da2b8b7e86eaa649c52b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/solid-construction/assets/js/custom-scripts.min.js?ver=20171226 HTTP/1.1
Host: lbe.com.sg
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lbe.com.sg/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 06:35:03 GMT
content-type: application/javascript
content-length: 835
last-modified: Fri, 16 Sep 2022 06:58:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
lbe.com.sg/wp-content/themes/solid-construction/assets/js/jquery.cycle/jquery.cycle2.min.js?ver=2.1.5
200 OK 9.2 kB URL HTTP/2 lbe.com.sg/wp-content/themes/solid-construction/assets/js/jquery.cycle/jquery.cycle2.min.js?ver=2.1.5
IP
ASN #58621 Vodien Internet Solutions Pte Ltd
File type ASCII text, with very long lines (10280)
Hash 8d3a33ee8bbb9bfb8303e23b3e391c71
d05302e49c4465521a8f64bf00ca36509118f598
5d55ff7e1b5c6e972ebf31770c47ea71e37720f6026092fce57ad9bee2b38d95
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/solid-construction/assets/js/jquery.cycle/jquery.cycle2.min.js?ver=2.1.5 HTTP/1.1
Host: lbe.com.sg
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lbe.com.sg/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 06:35:03 GMT
content-type: application/javascript
content-length: 9219
last-modified: Fri, 16 Sep 2022 06:58:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
lbe.com.sg/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
200 OK 3.7 kB URL HTTP/2 lbe.com.sg/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP
ASN #58621 Vodien Internet Solutions Pte Ltd
File type ASCII text, with very long lines (12198), with no line terminators
Hash e2a8decccf4d0a6b925af707a36077a9
26a0febc9c3d91e75410f74b9ec62099ba1cbe90
09e0e638a6f53c0fdcfeeb8ae91f3a404bef47b471324e335e29be14a2aa87f7
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: lbe.com.sg
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lbe.com.sg/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 06:35:03 GMT
content-type: application/javascript
content-length: 3747
last-modified: Sun, 30 Oct 2022 06:08:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
lbe.com.sg/wp-content/fonts/hind/5aU19_a8oxmIfNJdERySjQ.woff2
200 OK 16 kB URL HTTP/2 lbe.com.sg/wp-content/fonts/hind/5aU19_a8oxmIfNJdERySjQ.woff2
IP
ASN #58621 Vodien Internet Solutions Pte Ltd
File type Web Open Font Format (Version 2), TrueType, length 16268, version 1.0\012- data
Hash 376d4202f0309c9a844661c230736ccb
10731308876ef0b8b9763815352d6b18020026e0
5aed4a8f357d7edc1ac50eb4de07867c83e69a10a1711e10053bddce99294b7e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/fonts/hind/5aU19_a8oxmIfNJdERySjQ.woff2 HTTP/1.1
Host: lbe.com.sg
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://lbe.com.sg/wp-content/fonts/34c0883e3aa7a409dcd1ccd05493853d.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 06:35:04 GMT
content-type: font/woff2
content-length: 16268
last-modified: Tue, 15 Nov 2022 07:36:00 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
lbe.com.sg/wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
200 OK 77 kB URL HTTP/2 lbe.com.sg/wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
ASN #58621 Vodien Internet Solutions Pte Ltd
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: lbe.com.sg
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://lbe.com.sg/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 06:35:04 GMT
content-type: font/woff2
content-length: 77160
last-modified: Sun, 30 Oct 2022 06:08:06 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
lbe.com.sg/wp-content/fonts/hind/5aU19_a8oxmIfLZcERySjQ.woff2
200 OK 17 kB URL HTTP/2 lbe.com.sg/wp-content/fonts/hind/5aU19_a8oxmIfLZcERySjQ.woff2
IP
ASN #58621 Vodien Internet Solutions Pte Ltd
File type Web Open Font Format (Version 2), TrueType, length 16612, version 1.0\012- data
Hash e9224cf8a465a5349decdad3fd1412eb
53503e38c6c13a2d0cb2189ec56527b5340e3673
078751117ee4d17e09b4d4ac5d9f7358bc4487cb94561df738c6ee000eeffb4d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/fonts/hind/5aU19_a8oxmIfLZcERySjQ.woff2 HTTP/1.1
Host: lbe.com.sg
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://lbe.com.sg/wp-content/fonts/34c0883e3aa7a409dcd1ccd05493853d.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 06:35:04 GMT
content-type: font/woff2
content-length: 16612
last-modified: Tue, 15 Nov 2022 07:36:00 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
lbe.com.sg/wp-content/fonts/hind/5aU69_a8oxmIdGl4BA.woff2
200 OK 16 kB URL HTTP/2 lbe.com.sg/wp-content/fonts/hind/5aU69_a8oxmIdGl4BA.woff2
IP
ASN #58621 Vodien Internet Solutions Pte Ltd
File type Web Open Font Format (Version 2), TrueType, length 16216, version 1.0\012- data
Hash 4c5bc71b3cf6f2584725c0bb3e25d391
f051f482061dc48d09c328c45459dd04db5b5547
aca5dec430a7470ff1d8a16f9e7bb3ca30f2ff58f3bd60432cf1dddfa30c9d71
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/fonts/hind/5aU69_a8oxmIdGl4BA.woff2 HTTP/1.1
Host: lbe.com.sg
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://lbe.com.sg/wp-content/fonts/34c0883e3aa7a409dcd1ccd05493853d.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 06:35:04 GMT
content-type: font/woff2
content-length: 16216
last-modified: Tue, 15 Nov 2022 07:36:00 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
lbe.com.sg/wp-content/uploads/2020/07/cropped-Artboard-1-copy-1-2-192x192.png
200 OK 5.0 kB URL HTTP/2 lbe.com.sg/wp-content/uploads/2020/07/cropped-Artboard-1-copy-1-2-192x192.png
IP
ASN #58621 Vodien Internet Solutions Pte Ltd
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash ea632434f029033cc9e1478587e44ee5
cc31df10c495e0077aae02f8b8381f98e29bb0c6
e4002fc2cd69b44b2377b5921f9eaaace21173fb2e04fe0b78482da75aee86d4
GET /wp-content/uploads/2020/07/cropped-Artboard-1-copy-1-2-192x192.png HTTP/1.1
Host: lbe.com.sg
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lbe.com.sg/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 06:35:04 GMT
content-type: image/png
content-length: 5027
last-modified: Wed, 05 Aug 2020 05:54:21 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
lbe.com.sg/wp-content/uploads/2020/07/cropped-Artboard-1-copy-1-2-32x32.png
200 OK 704 B URL HTTP/2 lbe.com.sg/wp-content/uploads/2020/07/cropped-Artboard-1-copy-1-2-32x32.png
IP
ASN #58621 Vodien Internet Solutions Pte Ltd
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash e79da9e89b283e289971b99de9eb4299
13a8d3efe919a821f7da3f91327228182d113621
751f0787d0b504ae2b27c3ebe93265cecf1c144bcf5f810afd606375eca9a38d
GET /wp-content/uploads/2020/07/cropped-Artboard-1-copy-1-2-32x32.png HTTP/1.1
Host: lbe.com.sg
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lbe.com.sg/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 06:35:04 GMT
content-type: image/png
content-length: 704
last-modified: Wed, 05 Aug 2020 05:54:21 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13c6687a-9b8a-4756-a759-c0d0a1271c56.jpeg
200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13c6687a-9b8a-4756-a759-c0d0a1271c56.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fc7b74ead8472be5a3e9254bc2f59d6c
0e1ea7cff856101474578045555779543c286f29
d89f5fa280c33ab3bd1c21043df91d7628c83243ff3f31d8dfba04fe6a2836bf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13c6687a-9b8a-4756-a759-c0d0a1271c56.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7854
x-amzn-requestid: 7c17852a-92f1-4894-8c20-c94d58cdf8e2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bqYFtEzHIAMFrDg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637406f1-342dd91b636585b66682c6d3;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 21:38:57 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: lWmZWkON4s_yC9hq3XOoKLdReBy4iv1mFqdaamkptqiCF0REz9eYzg==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 21:44:46 GMT
age: 31823
etag: "0e1ea7cff856101474578045555779543c286f29"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
lbe.com.sg/wp-content/themes/solid-construction/style.css?ver=20220916-65805
200 OK 0 B URL HTTP/2 lbe.com.sg/wp-content/themes/solid-construction/style.css?ver=20220916-65805
IP
ASN #58621 Vodien Internet Solutions Pte Ltd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/solid-construction/style.css?ver=20220916-65805 HTTP/1.1
Host: lbe.com.sg
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lbe.com.sg/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 06:35:03 GMT
content-type: text/css
last-modified: Fri, 16 Sep 2022 06:58:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
lbe.com.sg/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
200 OK 0 B URL HTTP/2 lbe.com.sg/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
ASN #58621 Vodien Internet Solutions Pte Ltd
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: lbe.com.sg
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lbe.com.sg/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 06:35:03 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 04:46:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
lbe.com.sg/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
200 OK 0 B URL HTTP/2 lbe.com.sg/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP
ASN #58621 Vodien Internet Solutions Pte Ltd
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: lbe.com.sg
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lbe.com.sg/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 06:35:03 GMT
content-type: text/css
last-modified: Wed, 16 Nov 2022 04:46:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
43.243.118.145
44.237.163.41
23.36.76.226
93.184.220.29