r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21303
Expires: Sun, 29 Jan 2023 15:11:36 GMT
Date: Sun, 29 Jan 2023 09:16:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 81dd5c5cc5b3278876cb44dcb520a60f
c0511a59e9eccdcdda98717b87c89c5d59974808
41736c303afdb3d31e48724b107dcb22883cae02f3562308eb52d9164001a2de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41736C303AFDB3D31E48724B107DCB22883CAE02F3562308EB52D9164001A2DE"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6340
Expires: Sun, 29 Jan 2023 11:02:13 GMT
Date: Sun, 29 Jan 2023 09:16:33 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 29 Jan 2023 08:43:08 GMT
content-type: application/json
age: 2005
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 302c7548412192add063ad6c8b99cf3b
e5d178931a27db036ce8daae302594d3ff7050b8
fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4974
Expires: Sun, 29 Jan 2023 10:39:27 GMT
Date: Sun, 29 Jan 2023 09:16:33 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: WPf50CY+LrA+DhZ/B+Ot4TWBPMciN3dNwskEizjjgslxhk2oZvUZbcd5aap89xM1NCGFtZ9r0mgci+tSWz0vsQ==
x-amz-request-id: D59B8KXYE3X0VQA6
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 29 Jan 2023 08:50:15 GMT
age: 1578
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
hghousecleaning.com/179uf4/ae9f43-pick-up-lines-to-use-on-a-lawyer
162.144.21.219301 Moved Permanently 235 B URL HTTP/1.1 hghousecleaning.com/179uf4/ae9f43-pick-up-lines-to-use-on-a-lawyer
IP 162.144.21.219:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a40345b1005f9ad8357ca2a5be6ec0aa
b9fb755e023b8670f702b2efb41c072dbb44c050
df06c91c24fe27eb81a4b02c4a2680e18bd79bf23b9070a2baf95d25dee1f278
Analyzer Verdict Alert fortinet Phishing
GET /179uf4/ae9f43-pick-up-lines-to-use-on-a-lawyer HTTP/1.1
Host: hghousecleaning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 29 Jan 2023 09:16:32 GMT
Server: Apache
Location: http://hghousecleaning.com/
Content-Length: 235
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 09:16:33 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
hghousecleaning.com/
162.144.21.219301 Moved Permanently 236 B IP 162.144.21.219:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 4787fd54b8573b61f50fe2fee8cdf688
e93b3468a077b43724ef76362a27dc8b84c32a34
95824f3741ef30fe1afcb4ab1281cbdc0ff9d4f57609d8524771ef461737fb0e
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: hghousecleaning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 29 Jan 2023 09:16:33 GMT
Server: Apache
Location: https://hghousecleaning.com/
Content-Length: 236
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 29 Jan 2023 08:49:04 GMT
age: 1649
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7497
Expires: Sun, 29 Jan 2023 11:21:30 GMT
Date: Sun, 29 Jan 2023 09:16:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 7c7905def0d62970145cd435a8cd6e4c
060647755ca0650d1b4c36603824886b827a8532
cd2182ef1e377e35feb51c5d0b4158e74d2e40306138e1f4b78e37476c021395
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CD2182EF1E377E35FEB51C5D0B4158E74D2E40306138E1F4B78E37476C021395"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10215
Expires: Sun, 29 Jan 2023 12:06:48 GMT
Date: Sun, 29 Jan 2023 09:16:33 GMT
Connection: keep-alive
push.services.mozilla.com/
54.187.31.159101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.187.31.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Kjb+uZ9BMByO/DixF8/mTw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Yn2TYQxKbaBZRpPjspx0TXxfFFg=
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d45e4036ad4a742751f256b53054a5db
3854359e843d7dd78c9dba3b83ebc9a7318f0af7
f660df4eb1067c10301e0b0272bdd3437a70f8b0556eee236dd4cd5c8727e4f2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5439
Cache-Control: max-age=102056
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 09:16:34 GMT
Etag: "63d50fdb-1d7"
Expires: Mon, 30 Jan 2023 13:37:30 GMT
Last-Modified: Sat, 28 Jan 2023 12:06:51 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8c630e9bbc930d1c367efa81b67be3f7
ec536695531d40a813d99a06271c7c2d698d51d3
39ca0a60c3e2e85712757ead0830d0da82beac1e4f44b6e90243e5ca9326bf4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 09:16:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bab8a4c1e6bb2e6c9cc00222eef1235d
1a5dd108e9f9aaf33bc048b0097a9f510d295cad
fd182297a143655a9142e3ee5bbafefd76ca974094f43fb695611f6876f3ab63
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 09:16:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-238781215-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-238781215-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1759)
Hash 74cbd21a8706f1f8dfc30873094502d4
b5706a5f6cc1bb2d89cbfae73bfe311b106f0a31
bcae9b8b2a2567d5580932032ab443645ffdca035f12008042750b78485ee1f4
GET /gtag/js?id=UA-238781215-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hghousecleaning.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 29 Jan 2023 09:16:34 GMT
expires: Sun, 29 Jan 2023 09:16:34 GMT
cache-control: private, max-age=900
last-modified: Sun, 29 Jan 2023 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44098
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8c630e9bbc930d1c367efa81b67be3f7
ec536695531d40a813d99a06271c7c2d698d51d3
39ca0a60c3e2e85712757ead0830d0da82beac1e4f44b6e90243e5ca9326bf4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 09:16:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bab8a4c1e6bb2e6c9cc00222eef1235d
1a5dd108e9f9aaf33bc048b0097a9f510d295cad
fd182297a143655a9142e3ee5bbafefd76ca974094f43fb695611f6876f3ab63
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 09:16:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
hghousecleaning.com/wp-content/cache/min/1/releases/v5.7.1/css/all.css?ver=1662641660
162.144.21.219200 OK 12 kB URL HTTP/2 hghousecleaning.com/wp-content/cache/min/1/releases/v5.7.1/css/all.css?ver=1662641660
IP 162.144.21.219:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (55317), with no line terminators
Hash ce8265b0ce320ca2111670ecdff356b9
cec8fd000369a4f0bc1e26674392c36f00dfd6c7
a34b63a38f26cae54f0e3885151cf175a0cc4df825c663c133fd9d382ee92e39
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/cache/min/1/releases/v5.7.1/css/all.css?ver=1662641660 HTTP/1.1
Host: hghousecleaning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hghousecleaning.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 18:00:16 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Mon, 29 Jan 2024 09:16:34 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
pragma: public
x-powered-by: Step by Step guide to speed up your VB4 (forum only)
content-length: 11843
content-type: text/css
date: Sun, 29 Jan 2023 09:16:34 GMT
server: Apache
X-Firefox-Spdy: h2
hghousecleaning.com/wp-content/cache/min/1/wp-content/plugins/WP-Customer-Reviews/css/wp-customer-reviews-generated.css?ver=1662641660
162.144.21.219200 OK 2.2 kB URL HTTP/2 hghousecleaning.com/wp-content/cache/min/1/wp-content/plugins/WP-Customer-Reviews/css/wp-customer-reviews-generated.css?ver=1662641660
IP 162.144.21.219:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (8052), with no line terminators
Hash f09622ad60be0d9e606fd7ead753d7b8
53e86146d566002f992b83ecd062880e15ca4161
101981a861638cdee939d3f7cba4ae6266a6a0a678bc2d00952196dc3c709e08
GET /wp-content/cache/min/1/wp-content/plugins/WP-Customer-Reviews/css/wp-customer-reviews-generated.css?ver=1662641660 HTTP/1.1
Host: hghousecleaning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hghousecleaning.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 18:00:16 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Mon, 29 Jan 2024 09:16:34 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
pragma: public
x-powered-by: Step by Step guide to speed up your VB4 (forum only)
content-length: 2193
content-type: text/css
date: Sun, 29 Jan 2023 09:16:34 GMT
server: Apache
X-Firefox-Spdy: h2
hghousecleaning.com/wp-content/cache/min/1/wp-content/plugins/Contact-Form-7/css/nap-style.css?ver=1662641660
162.144.21.219200 OK 6.3 kB URL HTTP/2 hghousecleaning.com/wp-content/cache/min/1/wp-content/plugins/Contact-Form-7/css/nap-style.css?ver=1662641660
IP 162.144.21.219:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (44165), with no line terminators
Hash 06b7e142266fe3b7a7a048f45317567c
951e1e3e4ec03d61e01d58f3e7413e7903615672
58abb655c93c17369aea861fecb105fada03392d396d82987c34eb499db2c513
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/cache/min/1/wp-content/plugins/Contact-Form-7/css/nap-style.css?ver=1662641660 HTTP/1.1
Host: hghousecleaning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hghousecleaning.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 18:00:16 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Mon, 29 Jan 2024 09:16:34 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
pragma: public
x-powered-by: Step by Step guide to speed up your VB4 (forum only)
content-length: 6262
content-type: text/css
date: Sun, 29 Jan 2023 09:16:34 GMT
server: Apache
X-Firefox-Spdy: h2
hghousecleaning.com/wp-content/cache/min/1/wp-content/plugins/Contact-Form-7/css/jquery-ui.css?ver=1662641660
162.144.21.219200 OK 5.7 kB URL HTTP/2 hghousecleaning.com/wp-content/cache/min/1/wp-content/plugins/Contact-Form-7/css/jquery-ui.css?ver=1662641660
IP 162.144.21.219:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (25350), with no line terminators
Hash f17268006fdfd8b7f6e777cb99fe9148
d7285982c973d434942969242aae04b9becd8ffa
947d047d49aa2e8ea5a40f564c4595d0314fde49bf133fee760f057254b19e1e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/cache/min/1/wp-content/plugins/Contact-Form-7/css/jquery-ui.css?ver=1662641660 HTTP/1.1
Host: hghousecleaning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hghousecleaning.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 18:00:16 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Mon, 29 Jan 2024 09:16:34 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
pragma: public
x-powered-by: Step by Step guide to speed up your VB4 (forum only)
content-length: 5715
content-type: text/css
date: Sun, 29 Jan 2023 09:16:34 GMT
server: Apache
X-Firefox-Spdy: h2
hghousecleaning.com/wp-content/cache/min/1/wp-content/plugins/Contact-Form-7/css/css/font-awesome.min.css?ver=1662641660
162.144.21.219200 OK 7.2 kB URL HTTP/2 hghousecleaning.com/wp-content/cache/min/1/wp-content/plugins/Contact-Form-7/css/css/font-awesome.min.css?ver=1662641660
IP 162.144.21.219:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (31219)
Hash 21827970121097fd38a3f9160b54f449
6143f4f1aa019731f7698f3d2e314e15a93d68ce
d835496dbca5e0083d8a06e49eb079d873f405779d1c7cae6a1325a045a34103
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/cache/min/1/wp-content/plugins/Contact-Form-7/css/css/font-awesome.min.css?ver=1662641660 HTTP/1.1
Host: hghousecleaning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hghousecleaning.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 18:00:16 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Mon, 29 Jan 2024 09:16:34 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
pragma: public
x-powered-by: Step by Step guide to speed up your VB4 (forum only)
content-length: 7186
content-type: text/css
date: Sun, 29 Jan 2023 09:16:34 GMT
server: Apache
X-Firefox-Spdy: h2
hghousecleaning.com/wp-content/cache/min/1/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css?ver=1662641660
162.144.21.219200 OK 7.2 kB URL HTTP/2 hghousecleaning.com/wp-content/cache/min/1/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css?ver=1662641660
IP 162.144.21.219:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (31207)
Hash e7ff3df3fd425aca3b6e9019e9f57604
c6405d7cd8d1985e7d73c77976c7f3bf861961df
6107fd02797b6d268ac3bce20f5ff0b34942c938c1712f425855a71d9d3bb4a9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/cache/min/1/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css?ver=1662641660 HTTP/1.1
Host: hghousecleaning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hghousecleaning.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 18:00:16 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Mon, 29 Jan 2024 09:16:34 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
pragma: public
x-powered-by: Step by Step guide to speed up your VB4 (forum only)
content-length: 7175
content-type: text/css
date: Sun, 29 Jan 2023 09:16:34 GMT
server: Apache
X-Firefox-Spdy: h2
hghousecleaning.com/wp-content/cache/min/1/wp-content/themes/Divi-child/css/font-awesome.min.css?ver=1662641660
162.144.21.219200 OK 7.2 kB URL HTTP/2 hghousecleaning.com/wp-content/cache/min/1/wp-content/themes/Divi-child/css/font-awesome.min.css?ver=1662641660
IP 162.144.21.219:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (31158)
Hash 675d8b3a2f345b193634eda35e16e716
86f214ee3c6ebae5fc869862c3eb59d04d23e014
bb2e41947c94c5114a68ae1b24658882b538d8e0a677ff090d57c8e050302d9d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/cache/min/1/wp-content/themes/Divi-child/css/font-awesome.min.css?ver=1662641660 HTTP/1.1
Host: hghousecleaning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hghousecleaning.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 18:00:16 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Mon, 29 Jan 2024 09:16:34 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
pragma: public
x-powered-by: Step by Step guide to speed up your VB4 (forum only)
content-length: 7172
content-type: text/css
date: Sun, 29 Jan 2023 09:16:34 GMT
server: Apache
X-Firefox-Spdy: h2
hghousecleaning.com/wp-content/cache/min/1/wp-content/et-cache/45/et-divi-dynamic-45.css?ver=1662641660
162.144.21.219200 OK 6.9 kB URL HTTP/2 hghousecleaning.com/wp-content/cache/min/1/wp-content/et-cache/45/et-divi-dynamic-45.css?ver=1662641660
IP 162.144.21.219:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (30496), with no line terminators
Hash 11ffa8fabc5fc51510d217bae3b72439
a3ddf23a4e214a3b0a531c4418c022fa464c9c14
24f84a58a96b5bbe23bee6fa5903e8c52e63e907c352a357a39103597cbca188
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/cache/min/1/wp-content/et-cache/45/et-divi-dynamic-45.css?ver=1662641660 HTTP/1.1
Host: hghousecleaning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hghousecleaning.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 18:00:16 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Mon, 29 Jan 2024 09:16:34 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
pragma: public
x-powered-by: Step by Step guide to speed up your VB4 (forum only)
content-length: 6853
content-type: text/css
date: Sun, 29 Jan 2023 09:16:34 GMT
server: Apache
X-Firefox-Spdy: h2
hghousecleaning.com/wp-content/cache/min/1/wp-content/plugins/WP-Customer-Reviews/js/wp-customer-reviews.js?ver=1662641660
162.144.21.219200 OK 2.4 kB URL HTTP/2 hghousecleaning.com/wp-content/cache/min/1/wp-content/plugins/WP-Customer-Reviews/js/wp-customer-reviews.js?ver=1662641660
IP 162.144.21.219:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1728)
Hash 8e10cf7f40cce3da053874a8a488cab7
acb353e7409084f247189e5434fde3d5c41b67b3
72f101e2efac54c67c14fe98f136415970a0edead3f48742fab69a931c45a873
GET /wp-content/cache/min/1/wp-content/plugins/WP-Customer-Reviews/js/wp-customer-reviews.js?ver=1662641660 HTTP/1.1
Host: hghousecleaning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hghousecleaning.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 18:00:20 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Mon, 29 Jan 2024 09:16:34 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
pragma: public
x-powered-by: Step by Step guide to speed up your VB4 (forum only)
content-length: 2398
content-type: application/x-javascript
date: Sun, 29 Jan 2023 09:16:34 GMT
server: Apache
X-Firefox-Spdy: h2
hghousecleaning.com/wp-content/cache/min/1/wp-content/plugins/Contact-Form-7/js/submitter.js?ver=1662641660
162.144.21.219200 OK 2.3 kB URL HTTP/2 hghousecleaning.com/wp-content/cache/min/1/wp-content/plugins/Contact-Form-7/js/submitter.js?ver=1662641660
IP 162.144.21.219:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5087), with no line terminators
Hash 74fe3249c75cb7e696a3eced4d78665b
34f003901d24b564f473971f4377dcee582bdb5a
2a4da08d8cc73b5ea9bc543b281787fc7bed4338a56fbaacdc31c422ebb8ff01
GET /wp-content/cache/min/1/wp-content/plugins/Contact-Form-7/js/submitter.js?ver=1662641660 HTTP/1.1
Host: hghousecleaning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hghousecleaning.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 18:00:20 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Mon, 29 Jan 2024 09:16:34 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
pragma: public
x-powered-by: Step by Step guide to speed up your VB4 (forum only)
content-length: 2332
content-type: application/x-javascript
date: Sun, 29 Jan 2023 09:16:34 GMT
server: Apache
X-Firefox-Spdy: h2
hghousecleaning.com/wp-content/cache/min/1/wp-content/plugins/Contact-Form-7/js/lightbox.js?ver=1662641660
162.144.21.219200 OK 206 B URL HTTP/2 hghousecleaning.com/wp-content/cache/min/1/wp-content/plugins/Contact-Form-7/js/lightbox.js?ver=1662641660
IP 162.144.21.219:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (447), with no line terminators
Hash eb5792b974f69c81ab696adf525b9a52
b3b353105f461b30165f065c617b6d8b845d5c40
3243a097e86aa85725a9a1a8024dcb312ffc04e1af305507ff92399fffe6849d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/cache/min/1/wp-content/plugins/Contact-Form-7/js/lightbox.js?ver=1662641660 HTTP/1.1
Host: hghousecleaning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hghousecleaning.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 18:00:20 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Mon, 29 Jan 2024 09:16:34 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
pragma: public
x-powered-by: Step by Step guide to speed up your VB4 (forum only)
content-length: 206
content-type: application/x-javascript
date: Sun, 29 Jan 2023 09:16:34 GMT
server: Apache
X-Firefox-Spdy: h2
hghousecleaning.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
162.144.21.219200 OK 4.6 kB URL HTTP/2 hghousecleaning.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 162.144.21.219:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: hghousecleaning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hghousecleaning.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 18:00:20 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Mon, 29 Jan 2024 09:16:34 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
pragma: public
x-powered-by: Step by Step guide to speed up your VB4 (forum only)
content-length: 4618
content-type: application/x-javascript
date: Sun, 29 Jan 2023 09:16:34 GMT
server: Apache
X-Firefox-Spdy: h2
hghousecleaning.com/wp-content/cache/min/1/wp-content/themes/Divi-child/style.css?ver=1662641660
162.144.21.219200 OK 7.0 kB URL HTTP/2 hghousecleaning.com/wp-content/cache/min/1/wp-content/themes/Divi-child/style.css?ver=1662641660
IP 162.144.21.219:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (21630), with no line terminators
Hash fe8e1a1f6e0a886a1f37351e43106946
c859fc1df09039e17a662eb545a0b4b14edd44d1
2043f0967d37d6cb9b6739d9a3c04a6365717f17c0449f66c3192ffd3422f664
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/cache/min/1/wp-content/themes/Divi-child/style.css?ver=1662641660 HTTP/1.1
Host: hghousecleaning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hghousecleaning.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 18:00:16 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Mon, 29 Jan 2024 09:16:34 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
pragma: public
x-powered-by: Step by Step guide to speed up your VB4 (forum only)
content-length: 6977
content-type: text/css
date: Sun, 29 Jan 2023 09:16:34 GMT
server: Apache
X-Firefox-Spdy: h2
kit.fontawesome.com/b721d27ab5.js
104.18.22.52200 OK 81 kB URL HTTP/2 kit.fontawesome.com/b721d27ab5.js
IP 104.18.22.52:0
Hash a397145077994ef64f07e963df83d908
df322dafd459cca81446ddc872a55348f74f1368
698a797dd49e72e15b18f3dcbf6345baac29405952bd9109338d1de735ad50f0
GET /b721d27ab5.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hghousecleaning.com
Connection: keep-alive
Referer: https://hghousecleaning.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 09:16:34 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: Fz6ye4x80Md0Ne7gEn7h
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 7910dea94dbbb50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
hghousecleaning.com/
162.144.21.219200 OK 47 kB IP 162.144.21.219:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (26345), with CRLF, LF line terminators
Hash 4fe31354b49c0e90fa696dc5c5ccf885
f9bc0fb8e01372870458a52054312723517f2685
2725e0159283aca55eb5d347c119fcc62d502ae4a2bf377f5dc3598aa80dcac2
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: hghousecleaning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 18:00:06 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: text/html
date: Sun, 29 Jan 2023 09:16:33 GMT
server: Apache
X-Firefox-Spdy: h2
hghousecleaning.com/wp-content/themes/Divi/core/admin/fonts/modules.ttf
162.144.21.219301 Moved Permanently 236 B URL HTTP/2 hghousecleaning.com/wp-content/themes/Divi/core/admin/fonts/modules.ttf
IP 162.144.21.219:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 4787fd54b8573b61f50fe2fee8cdf688
e93b3468a077b43724ef76362a27dc8b84c32a34
95824f3741ef30fe1afcb4ab1281cbdc0ff9d4f57609d8524771ef461737fb0e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/core/admin/fonts/modules.ttf HTTP/1.1
Host: hghousecleaning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hghousecleaning.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 301 Moved Permanently
location: https://hghousecleaning.com/
content-length: 236
content-type: text/html; charset=iso-8859-1
date: Sun, 29 Jan 2023 09:16:34 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Dosis%3A600%2C700%7COpen%20Sans%3A400%2C600&display=swap
142.250.74.106200 OK 1.8 kB URL HTTP/2 fonts.googleapis.com/css?family=Dosis%3A600%2C700%7COpen%20Sans%3A400%2C600&display=swap
IP 142.250.74.106:0
File type ASCII text, with very long lines (593)
Hash 5c69f0d692ec7d6d82b381fb68927e38
c598fb39b79c285fe35ab040de0fb51038acb55b
5b2dec6505fb6fd523a3b72809cbacba11b4ce5a0dc1a7cad89355bbce05d0fa
GET /css?family=Dosis%3A600%2C700%7COpen%20Sans%3A400%2C600&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hghousecleaning.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 29 Jan 2023 09:16:34 GMT
date: Sun, 29 Jan 2023 09:16:34 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
hghousecleaning.com/wp-content/cache/min/1/wp-content/themes/Divi/core/admin/js/common.js?ver=1662641660
162.144.21.219200 OK 429 B URL HTTP/2 hghousecleaning.com/wp-content/cache/min/1/wp-content/themes/Divi/core/admin/js/common.js?ver=1662641660
IP 162.144.21.219:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (413)
Hash 47d23d8e917dfe62be34d9e5843a0989
01539cf40e6452eda03e3113b4f1d42786be88c0
1a7ea7543ddb9c0313225db8f9d40d2a8543096ef4a3922cdebd42d02afb56d0
GET /wp-content/cache/min/1/wp-content/themes/Divi/core/admin/js/common.js?ver=1662641660 HTTP/1.1
Host: hghousecleaning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hghousecleaning.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 18:00:20 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Mon, 29 Jan 2024 09:16:34 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
pragma: public
x-powered-by: Step by Step guide to speed up your VB4 (forum only)
content-length: 429
content-type: application/x-javascript
date: Sun, 29 Jan 2023 09:16:34 GMT
server: Apache
X-Firefox-Spdy: h2
hghousecleaning.com/wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.mobile.js?ver=1662641660
162.144.21.219200 OK 3.3 kB URL HTTP/2 hghousecleaning.com/wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.mobile.js?ver=1662641660
IP 162.144.21.219:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (7583)
Hash 0f943394eb80ebde25ee027c7c031fc8
a50246db577f7f518c540e84cbbda0a299c31473
74b5fa033088cb2745f6fe28b880299cdcbba1383e1380e0bb675b68df1eb1c8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.mobile.js?ver=1662641660 HTTP/1.1
Host: hghousecleaning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hghousecleaning.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 18:00:20 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Mon, 29 Jan 2024 09:16:34 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
pragma: public
x-powered-by: Step by Step guide to speed up your VB4 (forum only)
content-length: 3306
content-type: application/x-javascript
date: Sun, 29 Jan 2023 09:16:34 GMT
server: Apache
X-Firefox-Spdy: h2
hghousecleaning.com/wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/salvattore.js?ver=1662641660
162.144.21.219200 OK 3.1 kB URL HTTP/2 hghousecleaning.com/wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/salvattore.js?ver=1662641660
IP 162.144.21.219:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6309)
Hash 8077c8ae11657b6b095ceb6e6919d568
fd49fc6c2c16f175ba76976d0d84b1414d976e18
8f213e2bf5d7f9b76b4711697d7c35898831d6f21d23e0ba9be835376cfa0846
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/salvattore.js?ver=1662641660 HTTP/1.1
Host: hghousecleaning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hghousecleaning.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 18:00:20 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Mon, 29 Jan 2024 09:16:34 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
pragma: public
x-powered-by: Step by Step guide to speed up your VB4 (forum only)
content-length: 3102
content-type: application/x-javascript
date: Sun, 29 Jan 2023 09:16:34 GMT
server: Apache
X-Firefox-Spdy: h2
hghousecleaning.com/wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/magnific-popup.js?ver=1662641660
162.144.21.219200 OK 9.9 kB URL HTTP/2 hghousecleaning.com/wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/magnific-popup.js?ver=1662641660
IP 162.144.21.219:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (21183)
Hash e3b263f9f475f5dd43f53dbcc4eefd0d
f1748047e44f9d189c1633d3c787eb491a5c6a1d
94b78bb59d9f1eccf2fcfc308ad57b6ee5aad412b4697916f2c676e713db3151
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/magnific-popup.js?ver=1662641660 HTTP/1.1
Host: hghousecleaning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hghousecleaning.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 18:00:20 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Mon, 29 Jan 2024 09:16:34 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
pragma: public
x-powered-by: Step by Step guide to speed up your VB4 (forum only)
content-length: 9882
content-type: application/x-javascript
date: Sun, 29 Jan 2023 09:16:34 GMT
server: Apache
X-Firefox-Spdy: h2
hghousecleaning.com/wp-content/plugins/wp-rocket/assets/js/lazyload/16.1/lazyload.min.js
162.144.21.219200 OK 3.0 kB URL HTTP/2 hghousecleaning.com/wp-content/plugins/wp-rocket/assets/js/lazyload/16.1/lazyload.min.js
IP 162.144.21.219:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (7889)
Hash d839d85cd4fdbfc8eba220c43025a8f2
d99db2f7f2e6533d048b2322f6299fdb6614f2bb
ac0653967d34949e67d1e26822a4c62efad1ced59501d8c11d67e6b99a780b72
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-rocket/assets/js/lazyload/16.1/lazyload.min.js HTTP/1.1
Host: hghousecleaning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hghousecleaning.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 18:00:20 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Mon, 29 Jan 2024 09:16:34 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
pragma: public
x-powered-by: Step by Step guide to speed up your VB4 (forum only)
content-length: 3036
content-type: application/x-javascript
date: Sun, 29 Jan 2023 09:16:34 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8cf65fcdafa84b63cf7005fe57927fcb
3f7d163a96e7f00eb2de9828624ec46e22b4b40a
dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 09:16:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
hghousecleaning.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
162.144.21.219200 OK 40 kB URL HTTP/2 hghousecleaning.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 162.144.21.219:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 5086e7960b8e09f5c337a5fe6834e668
928e6a35ad8c32d006b05071a25a38965615a113
9b8fec67f027786a508f23b3b3d3f96cfe97a80ded6a62f4d1586b9b8c0192b1
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: hghousecleaning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hghousecleaning.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 18:00:20 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Mon, 29 Jan 2024 09:16:34 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
pragma: public
x-powered-by: Step by Step guide to speed up your VB4 (forum only)
content-type: application/x-javascript
date: Sun, 29 Jan 2023 09:16:34 GMT
server: Apache
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v6.2.1/css/free-v4-font-face.min.css?token=b721d27ab5
172.64.168.22200 OK 46 kB URL HTTP/2 ka-f.fontawesome.com/releases/v6.2.1/css/free-v4-font-face.min.css?token=b721d27ab5
IP 172.64.168.22:0
File type ASCII text, with very long lines (1560)
Hash 9f1eae6c669acb0c684c4e77b150ad5a
245d563f61da5a466ebf2a1814a80cee849db656
6c1c29a65a365acd032f9db0b6a655f343bfa3ee5d3ee729861fc7ce79d37797
GET /releases/v6.2.1/css/free-v4-font-face.min.css?token=b721d27ab5 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hghousecleaning.com/
Origin: https://hghousecleaning.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 09:16:34 GMT
content-type: text/css
last-modified: Mon, 14 Nov 2022 15:06:07 GMT
etag: W/"075b2106ba08d32bc88fff3724503b1e"
cache-control: max-age=31556926
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: fa-kit-token
access-control-max-age: 3000
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 14ac9ebde59a0d49d111dc4e4f5e846c.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-C2
x-amz-cf-id: RCO58nTkcb7sxnbjkZyjAjIta5wFssKs8mF4fRbYs666YKEjcQQQRA==
age: 18362
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LVNa44FId3NLevsNUAU6W%2F4tEWlHAsej9wImOnhEQ79Cp18ZyCGU8l8ye2OS%2BxA%2FR6jyem7N%2BySxIKOw93QeAaVw%2FjuwnenVvPWVDGQRh%2BlOkKtg5gexo6daDpDquI2YYf07EQYeeA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7910deacbf322406-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/dosis/v27/HhyaU5sn9vOmLzloC_U.woff2
142.250.74.35200 OK 29 kB URL HTTP/2 fonts.gstatic.com/s/dosis/v27/HhyaU5sn9vOmLzloC_U.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 29436, version 1.0\012- data
Hash 4e29aceac72b453671f585e88f69c24a
35115af67eca17e02698954f1533b69515ecbbf9
b9d88c1280c412b1bccb32e6d99da3369feeb3fae8b64900e7066a1829385699
GET /s/dosis/v27/HhyaU5sn9vOmLzloC_U.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hghousecleaning.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29436
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 11:58:10 GMT
expires: Fri, 26 Jan 2024 11:58:10 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 20:56:41 GMT
content-type: font/woff2
age: 249504
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8cf65fcdafa84b63cf7005fe57927fcb
3f7d163a96e7f00eb2de9828624ec46e22b4b40a
dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 09:16:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
hghousecleaning.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.1
162.144.21.219200 OK 17 kB URL HTTP/2 hghousecleaning.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.1
IP 162.144.21.219:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (43771)
Hash 2a67a4888baa44de739f3fe56203ce07
da175eae57f26b655747d79f055477e3fee1abb9
3a4d7627476a0099ca4bcc101685f27de04cb49dd66ef842d72c6cda270599dd
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.1 HTTP/1.1
Host: hghousecleaning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hghousecleaning.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 18:00:20 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Mon, 29 Jan 2024 09:16:34 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
pragma: public
x-powered-by: Step by Step guide to speed up your VB4 (forum only)
content-length: 16594
content-type: text/css
date: Sun, 29 Jan 2023 09:16:34 GMT
server: Apache
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v6.2.1/css/free.min.css?token=b721d27ab5
172.64.168.22200 OK 24 kB URL HTTP/2 ka-f.fontawesome.com/releases/v6.2.1/css/free.min.css?token=b721d27ab5
IP 172.64.168.22:0
File type ASCII text, with very long lines (65321)
Hash 85e137a01c7b17f95c3ad051ca0f7547
6555049c279264b55442d5dea0d45eea0fea7652
2698cc30885dff5044ae546027c0a0163b52edf2a18312f038e37de3e7886f90
GET /releases/v6.2.1/css/free.min.css?token=b721d27ab5 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hghousecleaning.com/
Origin: https://hghousecleaning.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 09:16:34 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 14 Nov 2022 15:06:08 GMT
etag: W/"2dbe34367e935e2684b01124b0860d71"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 82777fa0f27d9abf367ed3f40e63e5a8.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-C2
x-amz-cf-id: Q2pZ6ABpQxp4Rn0uIpAUZIP3waXCx5seiCuumHQYPXr9BRYfjro-8A==
age: 18362
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oa7CQ9K0yCEtSX6E4phNSkhahvaOj27A7FGyBwRKFW7zmAIKdNWEqhqVbcZqTyPz7yQ1PtN1PY3lBoDYaQYTS0rRdVvrG96bVe7IvUrda48EQsjhus%2BW1K%2FQzvUPkL1JMAUxnEAEqQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7910deac8f002406-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v6.2.1/css/free-v5-font-face.min.css?token=b721d27ab5
172.64.168.22200 OK 889 B URL HTTP/2 ka-f.fontawesome.com/releases/v6.2.1/css/free-v5-font-face.min.css?token=b721d27ab5
IP 172.64.168.22:0
File type ASCII text, with very long lines (608)
Hash a2ce03e9a74fed957b0bb32f337f4ee0
b18761404f1285f924a2054a9cc51cb23875725a
c013d982c9d3996c48a052dc7c426c160d0ad32a34c5f4de48a1718ea12d3842
GET /releases/v6.2.1/css/free-v5-font-face.min.css?token=b721d27ab5 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hghousecleaning.com/
Origin: https://hghousecleaning.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 09:16:34 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 14 Nov 2022 15:06:07 GMT
etag: W/"15e2713dff942747406520edde3fd0bf"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 2d8c1be3a836cdc603d84dd4ca5e1234.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR52-C1
x-amz-cf-id: iHZ4aRmwDrFr1mj3HwpwmVoNMdav-olXxRI-un74MF9y1UQlgLIqhg==
age: 18362
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rlVErtx%2BOuwEIODZhvV7V9bw%2FIzjoO7zSHBLGDUytHrLrpxdwNzYE%2Fk8Vuc%2FM6qXA18LUK%2BM6NBtTaOR6RERWkbmH2tyD2FDzPLEewlt8byHvluD1Abi8UWp5JFaZ8KCB4K2vr0EHw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7910deacaf142406-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
hghousecleaning.com/wp-content/themes/Divi/core/admin/fonts/fontawesome/fa-brands-400.woff2
162.144.21.219200 OK 78 kB URL HTTP/2 hghousecleaning.com/wp-content/themes/Divi/core/admin/fonts/fontawesome/fa-brands-400.woff2
IP 162.144.21.219:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 78460, version 331.-31392\012- data
Hash f075c50f89795e4cdb4d45b51f1a6800
f726c4275bb494a045fde059175f072de06c01df
71b3ce72680f4183d28db86b184542051fd533bb1146933233e4f6a20cf98cba
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/core/admin/fonts/fontawesome/fa-brands-400.woff2 HTTP/1.1
Host: hghousecleaning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://hghousecleaning.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 18:00:20 GMT
accept-ranges: bytes
content-length: 78460
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Mon, 29 Jan 2024 09:16:34 GMT
vary: User-Agent
pragma: public
x-powered-by: Step by Step guide to speed up your VB4 (forum only)
content-type: application/x-font-woff
date: Sun, 29 Jan 2023 09:16:34 GMT
server: Apache
X-Firefox-Spdy: h2
hghousecleaning.com/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.ttf
162.144.21.219200 OK 92 kB URL HTTP/2 hghousecleaning.com/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.ttf
IP 162.144.21.219:0
ASN #46606 UNIFIEDLAYER-AS-1
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, modules \012- data
Hash de27b3e66b2f8017e000aa9d8d24d60e
e6d716de8f35ba6daf55d57e7fe0ed8d8e50f1f7
d201a2c3118a00c82cc48e89815f5139f23956bbe248107dcf522acc77b97c09
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/core/admin/fonts/modules/all/modules.ttf HTTP/1.1
Host: hghousecleaning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hghousecleaning.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 18:00:20 GMT
accept-ranges: bytes
content-length: 92400
cache-control: max-age=31536000
expires: Mon, 29 Jan 2024 09:16:34 GMT
vary: User-Agent
content-type: image/tiff
date: Sun, 29 Jan 2023 09:16:34 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8942
Expires: Sun, 29 Jan 2023 11:45:37 GMT
Date: Sun, 29 Jan 2023 09:16:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8942
Expires: Sun, 29 Jan 2023 11:45:37 GMT
Date: Sun, 29 Jan 2023 09:16:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8942
Expires: Sun, 29 Jan 2023 11:45:37 GMT
Date: Sun, 29 Jan 2023 09:16:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8942
Expires: Sun, 29 Jan 2023 11:45:37 GMT
Date: Sun, 29 Jan 2023 09:16:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8942
Expires: Sun, 29 Jan 2023 11:45:37 GMT
Date: Sun, 29 Jan 2023 09:16:35 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 21:56:46 GMT
age: 40789
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4c77437e3a7361861aed8bfecbfe6bd6
fefd238c13c0fdfb7d964c90fcc8a8cbbf953034
282d15c443cb6232ae0a30046a0dc24360617355a4651cdba59b11e6f7313d8a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5594
x-amzn-requestid: d56c9b84-dc1f-4d5c-91bf-7db55058bf67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fLyeEGOloAMFpzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ce3126-5013a6b971d6800c5c85a4eb;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 07:03:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uPJu2SzvWcfqukF9t0PKG5iK7LrTnk1Cn5nioD4MklQgDAZnbiH8Gw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 14:55:48 GMT
age: 66047
etag: "fefd238c13c0fdfb7d964c90fcc8a8cbbf953034"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 43c4a8e963936a8064dbd2bd3c67b905
8508727c97127c98b886833af28b3470306216c2
070c29fe7c0a227029483d675eac863904ab6b291467acdf62167f4845699c21
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8652
x-amzn-requestid: 21c734f0-cd73-4691-812e-7cd3908f8f89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fRbH4HtPIAMFUGA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d07232-291e20fb41c53db7664d04b2;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 00:05:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: j2zDtHz3pZLHJKG3-PaITyUzHOQBEELzuDIt7sbB8X_B10OxG394tg==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 06:49:29 GMT
age: 8826
etag: "8508727c97127c98b886833af28b3470306216c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8f2806c-ec5e-41a0-85d8-007f6d34d108.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8f2806c-ec5e-41a0-85d8-007f6d34d108.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6021d6a06bff2826eb341747e82484f7
a817ff1ba206234627706551820d0d9856b398de
f0ba6de8709fdb73e94dbdace635232c76b9d70dad73badaca0542d9ad49604d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8f2806c-ec5e-41a0-85d8-007f6d34d108.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11624
x-amzn-requestid: be28746a-a238-4718-a307-3a15dde1ed3d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVqzvF57oAMFUdw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d224e4-5d9eb5ec3f2041c71d7c6fce;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 06:59:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: HDcUb2ol2cYtxbpXtbXXM4aKulevAnfl7r65-Fy2NvA8gND3TRjepw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 06:43:30 GMT
age: 9185
etag: "a817ff1ba206234627706551820d0d9856b398de"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61c84a42-94fd-4328-97f3-9602ba58a2d1.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61c84a42-94fd-4328-97f3-9602ba58a2d1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d19ea264e32a923808112293d74b97c7
19a01a961cca989ee07ff53e50d6f2e65d73729a
16792f5d3ff24bda8f7ac4b6b522c736c4e070b5aa9fd109fa868906064278c8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61c84a42-94fd-4328-97f3-9602ba58a2d1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5021
x-amzn-requestid: 040ca906-0e98-4919-a238-06ad180d6260
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fcj5zESeoAMFqUg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4e6a4-7f81446e78d233f16fc9b73f;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 09:11:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XeoloS-lP9UvWYMvblLHSIJdYMAU3yDj5AmJsYwxHtH3l2UjMkkung==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 21:46:36 GMT
age: 41399
etag: "19a01a961cca989ee07ff53e50d6f2e65d73729a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3be81f83687ddb6c93d3ff3c09a9dba2
50a48e737310d3f31840db4301b25927fbcc12c5
e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: f644ca78-a07a-43d1-96e4-95bcdecff7fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPGLfFtOIAMFp7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf83e2-202ca7160544acd24259bd5d;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:08:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xRwqrWS66l4qJfg2HnGphN1dbrIUod9XKW3zTk_-Km9AQRPyV2UqWg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 20:46:16 GMT
age: 45019
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v6.2.1/webfonts/free-fa-brands-400.woff2
172.64.168.22200 OK 108 kB URL HTTP/2 ka-f.fontawesome.com/releases/v6.2.1/webfonts/free-fa-brands-400.woff2
IP 172.64.168.22:0
File type Web Open Font Format (Version 2), TrueType, length 107656, version 770.768\012- data
Size 108 kB (107656 bytes)
Hash d3c93d772e2ec6d8c7c7e726f92a7dbf
4bed608cc63253a50fe7e1abbb28396066902d0e
4f04c94b287d7dfdfad36e60915eefbef7127a073546e6c21512b5052c6ac48d
GET /releases/v6.2.1/webfonts/free-fa-brands-400.woff2 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hghousecleaning.com
Connection: keep-alive
Referer: https://hghousecleaning.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 09:16:35 GMT
content-type: font/woff2
content-length: 107656
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 14 Nov 2022 15:15:23 GMT
etag: "d3c93d772e2ec6d8c7c7e726f92a7dbf"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 073930fa982e49355f5b7af46de37fc6.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: CwkMiJv9fKaFJMd4d1LkrE8kJcY67pkPo4BhjYmXuJWdS-fTpk0EwA==
age: 18307
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=id2oQIGDtGK2D2zG133Quua2nEw%2F%2Fqc9kt0onc%2FVUV0g6gdMymesewkvJSqC3sVScP5IWdiDW9Uk8E%2BBF927dEL1zvqbhlfff9ZknFvaAuxtpvGWoPWe9ZiHivnTs9DcclYuWC0Ndw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7910deafdb092406-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
hghousecleaning.com/wp-content/uploads/2022/05/background.jpg
162.144.21.219200 OK 156 kB URL HTTP/2 hghousecleaning.com/wp-content/uploads/2022/05/background.jpg
IP 162.144.21.219:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1731x1732, components 3\012- data
Size 156 kB (155977 bytes)
Hash 1de2c5ea37f1b4abc1d9b6ddb48a3523
e5c848f705ef4d40936f688751781beee2459b71
00c49fa8ae612b6adee1583d581a210d79c9cbb15f703dac0773dcd43f001a28
GET /wp-content/uploads/2022/05/background.jpg HTTP/1.1
Host: hghousecleaning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hghousecleaning.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 18:00:10 GMT
accept-ranges: bytes
content-length: 155977
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Mon, 29 Jan 2024 09:16:35 GMT
vary: User-Agent
pragma: public
x-powered-by: Step by Step guide to speed up your VB4 (forum only)
content-type: image/jpeg
date: Sun, 29 Jan 2023 09:16:35 GMT
server: Apache
X-Firefox-Spdy: h2
hghousecleaning.com/wp-content/uploads/2022/05/header.jpg
162.144.21.219200 OK 241 kB URL HTTP/2 hghousecleaning.com/wp-content/uploads/2022/05/header.jpg
IP 162.144.21.219:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1900x777, components 3\012- data
Size 241 kB (240878 bytes)
Hash 318e76e561549e6a86c422d07ea25b13
0f9e06165e062d1f12143b830bf9ff0941a03cfe
cb9231a6794ee2d54fcbf28fd04e8a82056960e329c14d61f4a605ac424acb81
GET /wp-content/uploads/2022/05/header.jpg HTTP/1.1
Host: hghousecleaning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hghousecleaning.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 18:00:08 GMT
accept-ranges: bytes
content-length: 240878
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Mon, 29 Jan 2024 09:16:35 GMT
vary: User-Agent
pragma: public
x-powered-by: Step by Step guide to speed up your VB4 (forum only)
content-type: image/jpeg
date: Sun, 29 Jan 2023 09:16:35 GMT
server: Apache
X-Firefox-Spdy: h2
hghousecleaning.com/wp-content/uploads/2022/08/Cleaning-2-1280x853.jpg
162.144.21.219200 OK 168 kB URL HTTP/2 hghousecleaning.com/wp-content/uploads/2022/08/Cleaning-2-1280x853.jpg
IP 162.144.21.219:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 1280x853, components 3\012- data
Size 168 kB (167870 bytes)
Hash 871fb8050f0e6933865db26e843d716d
2dce13bec8c4484df4aa94f83e82e1edf9cdcc93
44c012ba7a993ce1389dba864e96091db0124dedd19d755f3bd0bd91454f58f9
GET /wp-content/uploads/2022/08/Cleaning-2-1280x853.jpg HTTP/1.1
Host: hghousecleaning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hghousecleaning.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 18:00:10 GMT
accept-ranges: bytes
content-length: 167870
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Mon, 29 Jan 2024 09:16:35 GMT
vary: User-Agent
pragma: public
x-powered-by: Step by Step guide to speed up your VB4 (forum only)
content-type: image/jpeg
date: Sun, 29 Jan 2023 09:16:35 GMT
server: Apache
X-Firefox-Spdy: h2
hghousecleaning.com/wp-content/themes/Divi/core/admin/fonts/fontawesome/fa-regular-400.woff2
162.144.21.219200 OK 14 kB URL HTTP/2 hghousecleaning.com/wp-content/themes/Divi/core/admin/fonts/fontawesome/fa-regular-400.woff2
IP 162.144.21.219:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 13548, version 331.-31392\012- data
Hash 4a74738e7728e93c4394b8604081da62
fb9648469530a05fa9aac80e47d4d6960472a242
ce20ed8a323117c8a718ff1ddc6dabb997373b575a8e896f2bf02b846c082c9d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/core/admin/fonts/fontawesome/fa-regular-400.woff2 HTTP/1.1
Host: hghousecleaning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://hghousecleaning.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 18:00:20 GMT
accept-ranges: bytes
content-length: 13548
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Mon, 29 Jan 2024 09:16:35 GMT
vary: User-Agent
pragma: public
x-powered-by: Step by Step guide to speed up your VB4 (forum only)
content-type: application/x-font-woff
date: Sun, 29 Jan 2023 09:16:35 GMT
server: Apache
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hghousecleaning.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sun, 29 Jan 2023 07:46:59 GMT
expires: Sun, 29 Jan 2023 09:46:59 GMT
cache-control: public, max-age=7200
age: 5376
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
hghousecleaning.com/favicon.ico
162.144.21.219301 Moved Permanently 236 B URL HTTP/2 hghousecleaning.com/favicon.ico
IP 162.144.21.219:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 4787fd54b8573b61f50fe2fee8cdf688
e93b3468a077b43724ef76362a27dc8b84c32a34
95824f3741ef30fe1afcb4ab1281cbdc0ff9d4f57609d8524771ef461737fb0e
GET /favicon.ico HTTP/1.1
Host: hghousecleaning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hghousecleaning.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 301 Moved Permanently
location: https://hghousecleaning.com/
content-length: 236
content-type: text/html; charset=iso-8859-1
date: Sun, 29 Jan 2023 09:16:35 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df8e551-afc5-4ea3-a9ef-8af42c4cbea5.jpeg
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df8e551-afc5-4ea3-a9ef-8af42c4cbea5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 47514f1386d4e6962ac2c931647f60f4
c8da685b6a5aee80c98d4173ffe226b672f054c3
474d462b5d4dbd15b7f759457fe1ed084819cea563ef7c1285028dad9a4a404c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df8e551-afc5-4ea3-a9ef-8af42c4cbea5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7201
x-amzn-requestid: ba830369-3a5f-45bc-9af9-5ad9ee58f43f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fbvRREJqIAMF8Uw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4926e-6983a44e506dcd4d203c2688;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 03:11:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: k8zu8NNW1XfVlVQuIh495I2sE9YzQQXRooJmVFb2Yqav_D5UCehhLw==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 21:53:26 GMT
age: 66533
etag: "c8da685b6a5aee80c98d4173ffe226b672f054c3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
hghousecleaning.com/wp-content/plugins/Contact-Form-7/js/jquery-ui.min.js?ver=1.8.2
162.144.21.219200 OK 0 B URL HTTP/2 hghousecleaning.com/wp-content/plugins/Contact-Form-7/js/jquery-ui.min.js?ver=1.8.2
IP 162.144.21.219:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/Contact-Form-7/js/jquery-ui.min.js?ver=1.8.2 HTTP/1.1
Host: hghousecleaning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hghousecleaning.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 18:00:20 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Mon, 29 Jan 2024 09:16:34 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
pragma: public
x-powered-by: Step by Step guide to speed up your VB4 (forum only)
content-type: application/x-javascript
date: Sun, 29 Jan 2023 09:16:34 GMT
server: Apache
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v6.2.1/css/free-v4-shims.min.css?token=b721d27ab5
172.64.168.22200 OK 0 B URL HTTP/2 ka-f.fontawesome.com/releases/v6.2.1/css/free-v4-shims.min.css?token=b721d27ab5
IP 172.64.168.22:0
GET /releases/v6.2.1/css/free-v4-shims.min.css?token=b721d27ab5 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hghousecleaning.com/
Origin: https://hghousecleaning.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 09:16:34 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 14 Nov 2022 15:06:08 GMT
etag: W/"0d00741459c51dd7330d97cd19326a7b"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2ef58ed55caca3380e66558d27160ee8.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR52-C1
x-amz-cf-id: -oF5FcSTAyds5hSE3eSAV3YlbwHHqnPA3pq_uCRKSKvZYvjQzVPtYw==
age: 18362
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D7OHv8yy7Ef4d9VnIk6Kj7D5bHLQ7Y200Rr5lkH9ityKyU8aHq0QNfVXsnNbcGCLq1kq3JIbpJE90djD%2FVoKtIsW%2FX4g8LdAuS1oFNAmJW3KJcmoMaiFWaes3%2Ff%2FNhf8ZFcnkjbzgA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7910deacbf2c2406-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
hghousecleaning.com/wp-content/themes/Divi/js/scripts.min.js?ver=4.17.4
162.144.21.219200 OK 0 B URL HTTP/2 hghousecleaning.com/wp-content/themes/Divi/js/scripts.min.js?ver=4.17.4
IP 162.144.21.219:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/js/scripts.min.js?ver=4.17.4 HTTP/1.1
Host: hghousecleaning.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hghousecleaning.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 18:00:20 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Mon, 29 Jan 2024 09:16:34 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
pragma: public
x-powered-by: Step by Step guide to speed up your VB4 (forum only)
content-type: application/x-javascript
date: Sun, 29 Jan 2023 09:16:34 GMT
server: Apache
X-Firefox-Spdy: h2