Overview

URL rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
IP137.63.144.2
ASNRENU
Location Uganda
Report completed2022-09-23 21:47:51 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-23 2 rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php Phishing
2022-09-23 2 rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php Phishing
2022-09-23 2 rif.mak.ac.ug/wp-content/plugins/accesspress-social-counter/css/frontend.cs (...) Phishing
2022-09-23 2 rif.mak.ac.ug/wp-content/plugins/the-events-calendar/common/src/resources/c (...) Phishing
2022-09-23 2 rif.mak.ac.ug/wp-content/plugins/drag-and-drop-multiple-file-upload-contact (...) Phishing
2022-09-23 2 rif.mak.ac.ug/wp-content/plugins/registrations-for-the-events-calendar/css/ (...) Phishing
2022-09-23 2 rif.mak.ac.ug/wp-content/plugins/tablepress/css/default.min.css?ver=1.10 Phishing
2022-09-23 2 rif.mak.ac.ug/wp-content/plugins/elementor/assets/lib/font-awesome/css/font (...) Phishing
2022-09-23 2 rif.mak.ac.ug/wp-content/plugins/elementskit-lite/modules/controls/assets/c (...) Phishing
2022-09-23 2 rif.mak.ac.ug/wp-content/themes/digiqole/assets/css/bootstrap.min.css?ver=1 (...) Phishing
2022-09-23 2 rif.mak.ac.ug/wp-content/themes/digiqole/assets/css/animate.css?ver=1663969662 Phishing
2022-09-23 2 rif.mak.ac.ug/wp-content/themes/digiqole/assets/css/magnific-popup.css?ver= (...) Phishing
2022-09-23 2 rif.mak.ac.ug/wp-content/themes/digiqole/assets/css/owl.carousel.min.css?ve (...) Phishing
2022-09-23 2 rif.mak.ac.ug/wp-content/themes/digiqole/assets/css/jquery.mCustomScrollbar (...) Phishing
2022-09-23 2 rif.mak.ac.ug/wp-content/plugins/material-design-for-contact-form-7/assets/ (...) Phishing
2022-09-23 2 rif.mak.ac.ug/wp-content/themes/digiqole/assets/css/woocommerce.css?ver=166 (...) Phishing
2022-09-23 2 rif.mak.ac.ug/wp-content/themes/digiqole/assets/css/blog.css?ver=1663969662 Phishing
2022-09-23 2 rif.mak.ac.ug/wp-content/themes/digiqole/assets/css/gutenberg-custom.css?ve (...) Phishing
2022-09-23 2 rif.mak.ac.ug/wp-content/plugins/accordions/assets/frontend/js/scripts.js?v (...) Phishing
2022-09-23 2 rif.mak.ac.ug/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 Phishing
2022-09-23 2 rif.mak.ac.ug/wp-content/plugins/elementskit-lite/widgets/init/assets/css/r (...) Phishing
2022-09-23 2 rif.mak.ac.ug/wp-content/plugins/wp-ultimate-review/assets/public/script/co (...) Phishing
2022-09-23 2 rif.mak.ac.ug/wp-content/plugins/drag-and-drop-multiple-file-upload-contact (...) Phishing
2022-09-23 2 rif.mak.ac.ug/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.7 Phishing
2022-09-23 2 rif.mak.ac.ug/wp-content/plugins/material-design-for-contact-form-7/assets/ (...) Phishing
2022-09-23 2 rif.mak.ac.ug/wp-content/plugins/elementskit-lite/libs/framework/assets/js/ (...) Phishing
2022-09-23 2 rif.mak.ac.ug/wp-content/plugins/elementskit-lite/widgets/init/assets/css/w (...) Phishing
2022-09-23 2 rif.mak.ac.ug/wp-content/themes/digiqole/assets/js/popper.min.js?ver=1663969662 Phishing
2022-09-23 2 rif.mak.ac.ug/wp-content/themes/digiqole/assets/js/jquery.magnific-popup.mi (...) Phishing
2022-09-23 2 rif.mak.ac.ug/wp-content/themes/digiqole/assets/js/bootstrap.min.js?ver=166 (...) Phishing
2022-09-23 2 rif.mak.ac.ug/wp-content/themes/digiqole/assets/js/jquery.mCustomScrollbar. (...) Phishing
2022-09-23 2 rif.mak.ac.ug/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp Phishing
2022-09-23 2 rif.mak.ac.ug/wp-content/themes/digiqole/assets/js/script.js?ver=1663969662 Phishing
2022-09-23 2 rif.mak.ac.ug/wp-content/plugins/mailchimp-for-wp/assets/js/forms.min.js?ve (...) Phishing
2022-09-23 2 rif.mak.ac.ug/wp-content/themes/digiqole/assets/js/owl.carousel.min.js?ver= (...) Phishing
2022-09-23 2 rif.mak.ac.ug/wp-content/plugins/elementskit-lite/modules/controls/assets/f (...) Phishing
2022-09-23 2 rif.mak.ac.ug/wp-content/themes/digiqole/assets/fonts/iconfont.ttf?cpfcy1 Phishing
2022-09-23 2 rif.mak.ac.ug/wp-content/plugins/elementskit-lite/widgets/init/assets/js/wi (...) Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (12)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS img-getpocket.cdn.mozilla.net (7) 1631 2017-09-01 03:40:57 UTC 2022-09-23 12:37:00 UTC 34.120.237.76
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-23 16:32:04 UTC 18.165.201.17
mnemonic passive DNS rif.mak.ac.ug (58) 0 2019-11-03 17:13:28 UTC 2022-09-23 21:44:23 UTC 137.63.144.2 Domain (mak.ac.ug) ranked at: 526454
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-23 04:33:41 UTC 34.117.237.239
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-23 13:41:12 UTC 93.184.220.29
mnemonic passive DNS fonts.googleapis.com (3) 8877 2013-06-10 20:14:26 UTC 2022-09-23 17:07:29 UTC 142.250.74.10
mnemonic passive DNS www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-09-23 04:33:31 UTC 142.250.74.72
mnemonic passive DNS fonts.gstatic.com (3) 0 2014-08-29 13:43:22 UTC 2022-09-23 04:33:31 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS r3.o.lencr.org (7) 344 2020-12-02 08:52:13 UTC 2022-09-23 04:34:39 UTC 23.36.77.32
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-23 04:49:01 UTC 108.156.28.39
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-23 05:02:25 UTC 52.27.12.161
mnemonic passive DNS ocsp.pki.goog (9) 175 2017-06-14 07:23:31 UTC 2022-09-23 04:33:33 UTC 142.250.74.3


Recent reports on same IP/ASN/Domain/Screenshot

Last 4 reports on IP: 137.63.144.2

Date UQ / IDS / BL URL IP
2022-12-03 03:59:42 +0000
0 - 0 - 38 rif.mak.ac.ug/wp-content/plugins/suavizar/log (...) 137.63.144.2
2022-09-23 21:47:51 +0000
0 - 0 - 38 rif.mak.ac.ug/wp-content/plugins/suavizar/log (...) 137.63.144.2
2022-09-11 13:46:47 +0000
0 - 0 - 39 rif.mak.ac.ug/wp-content/plugins/suavizar/log (...) 137.63.144.2
2022-09-07 15:40:45 +0000
0 - 0 - 35 rif.mak.ac.ug/wp-content/plugins/suavizar/log (...) 137.63.144.2

Last 4 reports on ASN: RENU

Date UQ / IDS / BL URL IP
2022-12-03 03:59:42 +0000
0 - 0 - 38 rif.mak.ac.ug/wp-content/plugins/suavizar/log (...) 137.63.144.2
2022-09-23 21:47:51 +0000
0 - 0 - 38 rif.mak.ac.ug/wp-content/plugins/suavizar/log (...) 137.63.144.2
2022-09-11 13:46:47 +0000
0 - 0 - 39 rif.mak.ac.ug/wp-content/plugins/suavizar/log (...) 137.63.144.2
2022-09-07 15:40:45 +0000
0 - 0 - 35 rif.mak.ac.ug/wp-content/plugins/suavizar/log (...) 137.63.144.2

Last 4 reports on domain: mak.ac.ug

Date UQ / IDS / BL URL IP
2022-12-03 03:59:42 +0000
0 - 0 - 38 rif.mak.ac.ug/wp-content/plugins/suavizar/log (...) 137.63.144.2
2022-09-23 21:47:51 +0000
0 - 0 - 38 rif.mak.ac.ug/wp-content/plugins/suavizar/log (...) 137.63.144.2
2022-09-11 13:46:47 +0000
0 - 0 - 39 rif.mak.ac.ug/wp-content/plugins/suavizar/log (...) 137.63.144.2
2022-09-07 15:40:45 +0000
0 - 0 - 35 rif.mak.ac.ug/wp-content/plugins/suavizar/log (...) 137.63.144.2

Last 2 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-09-11 13:46:47 +0000
0 - 0 - 39 rif.mak.ac.ug/wp-content/plugins/suavizar/log (...) 137.63.144.2
2022-12-03 03:59:42 +0000
0 - 0 - 38 rif.mak.ac.ug/wp-content/plugins/suavizar/log (...) 137.63.144.2


JavaScript

Executed Scripts (34)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (94)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         18.165.201.17
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 23 Sep 2022 21:05:15 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 680c9e756bdd27fcfeee763a87afaa06.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: wbiR1Tu4C1m9ZEOEs-5A82QrNglCFFiaf-Da2D_EIek5Dvnx_fOiaw==
Age: 2545


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9248
Expires: Sat, 24 Sep 2022 00:21:49 GMT
Date: Fri, 23 Sep 2022 21:47:41 GMT
Connection: keep-alive

                                        
                                            GET /wp-content/plugins/suavizar/login/mkbnetbankar/login.php HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         137.63.144.2
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 23 Sep 2022 21:47:41 GMT
Server: Apache
Location: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Content-Length: 286
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   286
Md5:    730358d312ddbf5dabdf40f55f0e9e97
Sha1:   bf3b223666385f151bf12eb5795698de82f01a0d
Sha256: 938906f6bb8949e51c07d28655521064dcf2442c5ef843e283ff934d0c5a3347

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         108.156.28.39
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 23 Sep 2022 04:13:03 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 ce738519b722f3350531751d4205f8f4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: 9btn-GNfxpFSNCXrhepxfIP532s8LNAAHDrLMBUZY9v1NoQ8m6xpCQ==
age: 63279
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Fri, 23 Sep 2022 21:47:41 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         18.165.201.17
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Fri, 23 Sep 2022 21:33:00 GMT
Expires: Fri, 23 Sep 2022 21:34:05 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 f5db034a9eef3b097715a6b5d2c824a8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: LAl9WrbqIdC6_h1Fa2rM2DYl_wLgPdTKP20biBXjYQ3FOLqrlYKBbQ==
Age: 881


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "44856906F7E113595FCD31D21F4E2DCB8E245EF7143DEB58F7DF084AC42EC4B0"
Last-Modified: Wed, 21 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 24 Sep 2022 03:47:41 GMT
Date: Fri, 23 Sep 2022 21:47:41 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5388
Cache-Control: 'max-age=158059'
Date: Fri, 23 Sep 2022 21:47:41 GMT
Last-Modified: Fri, 23 Sep 2022 20:17:53 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0yIDV1CrprN/s4O+vWHjqA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.27.12.161
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: bMb3QFC+DchCgqY4W50tubWbzNU=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5764
Expires: Fri, 23 Sep 2022 23:23:46 GMT
Date: Fri, 23 Sep 2022 21:47:42 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5764
Expires: Fri, 23 Sep 2022 23:23:46 GMT
Date: Fri, 23 Sep 2022 21:47:42 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5764
Expires: Fri, 23 Sep 2022 23:23:46 GMT
Date: Fri, 23 Sep 2022 21:47:42 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5764
Expires: Fri, 23 Sep 2022 23:23:46 GMT
Date: Fri, 23 Sep 2022 21:47:42 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5764
Expires: Fri, 23 Sep 2022 23:23:46 GMT
Date: Fri, 23 Sep 2022 21:47:42 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56968ed0-3207-4af0-8229-5f3698c6c55f.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5936
x-amzn-requestid: 39e79389-c158-4427-aae0-b1d0dc1d0377
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4VowElZoAMF2Ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632ccfd1-2da28eb66f876af76158b090;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:12:49 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: -DSp0__jaBzizsfagTtIpwhkPqkvjS1L6T17J0OS5W0QhZww03ywpw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:11:29 GMT
age: 84973
etag: "370d166426ad83fc04ccb6e300238d8cb6ab644a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5936
Md5:    61059307f07edc4e2ba9d07a258bca43
Sha1:   370d166426ad83fc04ccb6e300238d8cb6ab644a
Sha256: 55ec802097ab49f275686e99844ff4a3b554c8998213bb9c3f0380709297c55b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8029
x-amzn-requestid: 2fc5c63d-5cef-42f4-a6d2-b55f51c57af6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y0tHjGoAMFcFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4ea-73f2f78a2d1ca8fc666d2571;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 7DX67a-HmEh76IorINvRU61AKtSiimdPnHFnYeR2OJezZJ1_mJq0MA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 21:48:22 GMT
age: 86360
etag: "1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8029
Md5:    02a682b4703bb9d6381c762726c05531
Sha1:   1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54
Sha256: fb672de67420a239fe5d7e2588f640150ed29883fe2a46ded160385e3265004c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ca56e32-b483-4063-a12c-be8fa8c3d85e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8497
x-amzn-requestid: 8543ac70-48ab-4523-856f-5d5fa1191c97
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yin-pEryoAMFTfQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324205d-660bba3f655f940d143bc437;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 07:06:05 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: e9KUFhjuFMzjuh37rFiNKaMNVaGZwPGBkLrv0zgfSTT7dCIuWj4G9Q==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:11:27 GMT
age: 84975
etag: "d47db5fcd83023b4a8de40a47d4510e183de387a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8497
Md5:    7606ff88f05062b66970d9805f38987a
Sha1:   d47db5fcd83023b4a8de40a47d4510e183de387a
Sha256: 20f89dd859e5715e27c289040fac6a121248e5b6c06da0a7f186984ffb029eb2
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1500786-3bbf-46d0-b16e-4aff6d48a585.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 14579
x-amzn-requestid: bce2c126-0883-4255-9246-d8055860f898
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YcCj6FYCoAMF9Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63217e18-66ba2e5d64b6a5b32b7ab36b;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 07:09:12 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 92Pj9IQp3mBJQOW-XuHSK8laPqXOSBOmNbYcm4hSFzc1xqYscQKxMA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:11:48 GMT
age: 84954
etag: "16e42ba7b20555bf5a8615e5f4bb561204aeeb5a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   14579
Md5:    f10a12719b387d176497669ba75f0acc
Sha1:   16e42ba7b20555bf5a8615e5f4bb561204aeeb5a
Sha256: 0cb2231817387d43a490565b61e24ea7a3cfcff3281f4ab4379a882cc5c3173f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98db69a9-8416-4b0b-b1b4-1ed196b985e5.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5340
x-amzn-requestid: b13bc974-e15d-43a4-a918-fbc35b09a36f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y19HljIAMFY8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4f2-2cb226ba4bd7c7e74d9ab2db;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8DCVWC4Ihr4R21i3ySyiWdUK0aGymTE22B842ZKolG-ZThiKSMX-uQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:11:26 GMT
age: 84976
etag: "0264e73c4cfff0bb255757c7e1c760a5ad3ece80"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5340
Md5:    3b318ea5c36d2b22b925f7dfe382df5f
Sha1:   0264e73c4cfff0bb255757c7e1c760a5ad3ece80
Sha256: 0c2f58ea4f5f32bb327f292e1b8fb5a4a60230bffc3abc440a624df27ec0d6bc
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ac88c56-4515-47b4-9c1e-7745782bd306.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10127
x-amzn-requestid: 456e3c6a-e173-433e-8d54-d787cb50b7e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y0sHmCoAMFVSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4ea-7a07b336571396533e48b4cb;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: gWZNsIn_FEbYwMeR1JArmPEgyuHEGgWsfb-wB6P_NrmoHhNgvGWoPw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:07:28 GMT
age: 85214
etag: "48c10714503e8dfdd3e3c3d39b919ef2792f0d15"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10127
Md5:    b877ead4a15221fdd278ef27f281a7ec
Sha1:   48c10714503e8dfdd3e3c3d39b919ef2792f0d15
Sha256: f4a1d5abcfa4092828e004b6c0605a7a24e4133d275312f613dceff875971daf
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 21:47:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/suavizar/login/mkbnetbankar/login.php HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         137.63.144.2
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 23 Sep 2022 21:47:41 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Set-Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj; path=/
Pragma: no-cache
Link: <https://rif.mak.ac.ug/wp-json/>; rel="https://api.w.org/"
X-TEC-API-VERSION: v1
X-TEC-API-ROOT: https://rif.mak.ac.ug/wp-json/tribe/events/v1/
X-TEC-API-ORIGIN: https://rif.mak.ac.ug
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1911), with CRLF, LF line terminators
Size:   42616
Md5:    3e06ca6fa29ee17f7eb931ed606b86e0
Sha1:   ab4e60f43cc1f14a978a8f89de361f82f9e8e9d6
Sha256: 69a112896fd0a8c040242e9736c74c483c51151a3e0f2e63c31c0804f025904f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 21:47:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 21:47:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 21:47:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /css?family=Roboto:400,500 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 23 Sep 2022 21:47:45 GMT
date: Fri, 23 Sep 2022 21:47:45 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1064
Md5:    14a40d353a1f589a3300bd768aaf830f
Sha1:   aec80920ff8fb0f10a124d5898cb5de9a87c9fbe
Sha256: 116d01111d87d9c1235c5eab2b43b6c0d05f14409bb05457e444ab00f5b55b7b
                                        
                                            GET /wp-content/plugins/accesspress-social-counter/css/frontend.css?ver=1.8.8 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 23 Sep 2022 21:47:46 GMT
Server: Apache
Last-Modified: Sat, 14 Mar 2020 08:48:05 GMT
ETag: "3d13-5a0cca5057d87"
Accept-Ranges: bytes
Content-Length: 15635
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   15635
Md5:    c6efcd93a4cca2bebf58de385f65ca80
Sha1:   172f3dcd8fe44ed28d77c9996f376f998c85dd38
Sha256: b1c9554ecb00cdeff91028b6df899fe66a69b51c6001a95133a07558b37495da

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /gtag/js?id=G-F041G50W6C HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 23 Sep 2022 21:47:46 GMT
expires: Fri, 23 Sep 2022 21:47:46 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 74490
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (17807)
Size:   74490
Md5:    8962e493f1c18d64d836474adad21ab9
Sha1:   61f581b5c64666594a2a4986b936d9426ca6f9c3
Sha256: 0d78502471128369fba239cb0a4bdd5e7ed2545b34f3cf769aa9a986db898f62
                                        
                                            GET /wp-content/plugins/the-events-calendar/common/src/resources/css/tooltip.min.css?ver=4.12.12.1 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 23 Sep 2022 21:47:46 GMT
Server: Apache
Last-Modified: Wed, 02 Dec 2020 09:09:00 GMT
ETag: "662-5b5779816e0ae"
Accept-Ranges: bytes
Content-Length: 1634
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1634), with no line terminators
Size:   1634
Md5:    5f209d26ccda9892a1fa030b3062a59d
Sha1:   7d6522a7107d3e8d60e37740f2f91844be48689b
Sha256: 872454cbfd47b444a3fa6cfa9a74b0f57e5f6b3a47b9870108d2b0e5ce4aace5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/css/dist/block-library/theme.min.css?ver=5.3.2 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 23 Sep 2022 21:47:46 GMT
Server: Apache
Last-Modified: Wed, 22 Jan 2020 05:35:25 GMT
ETag: "793-59cb3e43e5aab"
Accept-Ranges: bytes
Content-Length: 1939
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1939), with no line terminators
Size:   1939
Md5:    80145dc9e4908a34d14ca5a87d33c6d7
Sha1:   45524ba47da72574c224ed819104e4ce251b3cd6
Sha256: 45f461bf78813a1ee5c3a025b6b9bf83f9c78da98390f7208826dbd64573ec10
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 21:47:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/drag-and-drop-multiple-file-upload-contact-form-7/assets/css/dnd-upload-cf7.css?ver=1.3.6.2 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 23 Sep 2022 21:47:46 GMT
Server: Apache
Last-Modified: Tue, 11 Jan 2022 12:57:34 GMT
ETag: "15ca-5d54dff31d0a6"
Accept-Ranges: bytes
Content-Length: 5578
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1146), with CRLF line terminators
Size:   5578
Md5:    8d517df24eb8309c995b98404b5845f6
Sha1:   7f63d83fc86dc430e7c30026a313d1ca6b53ae4c
Sha256: 11df23d06c2fdaab8008791b75abea58621728637c7c4b00cb9d1117584400df

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/the-events-calendar/common/src/resources/css/common-skeleton.min.css?ver=4.12.12.1 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 23 Sep 2022 21:47:46 GMT
Server: Apache
Last-Modified: Wed, 02 Dec 2020 09:09:00 GMT
ETag: "68db-5b5779816dcc6"
Accept-Ranges: bytes
Content-Length: 26843
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (26843), with no line terminators
Size:   26843
Md5:    243eb3ecefba8d3f5e9bcc9ba2e2d743
Sha1:   39a83a22e3ebac8ca17e414e6f069ddc442a07d3
Sha256: 7c6d3da39b43a0322a762fd047157070ae066272f31a9863b39152bfb102b273
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.7 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 23 Sep 2022 21:47:46 GMT
Server: Apache
Last-Modified: Fri, 20 Mar 2020 07:25:05 GMT
ETag: "6d2-5a1442f35e87b"
Accept-Ranges: bytes
Content-Length: 1746
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   1746
Md5:    8983e25a91f5c9981fb973bdbe189d33
Sha1:   30cd5e3a1f0cd121cfd1893b3c078b89ecba3f9c
Sha256: 811e8960b8f79f14983e30df80a4ccc69d82430ccc0520d2a1a3d1405cfbb2a1
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=5.3.2 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 23 Sep 2022 21:47:46 GMT
Server: Apache
Last-Modified: Wed, 22 Jan 2020 05:35:25 GMT
ETag: "a1fb-59cb3e43e5aab"
Accept-Ranges: bytes
Content-Length: 41467
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (41467), with no line terminators
Size:   41467
Md5:    9eeddc51b0b4a2580a959042d50f826e
Sha1:   e42006973f24baf82c96ee3ae594eedfa1719f82
Sha256: d9662b4b9ba6c2c3691ce0acd4572e027366eb97d6070550a13429262bb0037f
                                        
                                            GET /wp-content/plugins/registrations-for-the-events-calendar/css/rtec-styles.css?ver=2.6.2 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 23 Sep 2022 21:47:46 GMT
Server: Apache
Last-Modified: Wed, 02 Dec 2020 09:06:04 GMT
ETag: "2150-5b5778d93cf39"
Accept-Ranges: bytes
Content-Length: 8528
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   8528
Md5:    6e22824fb51ac8dc8b33ec0bc75f3412
Sha1:   42eed8ac9886accf13d99d616356e3d0bc681fc4
Sha256: 5f893bb95c126000ea6836ce2b92c4fd43a17bc62ca32a6f3f77f8f67584503a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/accesspress-social-counter/css/fontawesome-all.css?ver=1.8.8 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 23 Sep 2022 21:47:46 GMT
Server: Apache
Last-Modified: Sat, 14 Mar 2020 08:48:05 GMT
ETag: "b425-5a0cca5057d87"
Accept-Ranges: bytes
Content-Length: 46117
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (317)
Size:   46117
Md5:    c33e55a3e79984d24f3309545701cb1b
Sha1:   f86033f1ec21a3b20803a290318a9e7c4caa1de4
Sha256: df583a3e1a03dd7122c020eea80b2747d9553e4161c22bfe112ff406f9e9b7dc
                                        
                                            GET /wp-content/plugins/wp-ultimate-review/assets/public/css/content-page.css?ver=5.3.2 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 23 Sep 2022 21:47:46 GMT
Server: Apache
Last-Modified: Mon, 09 Mar 2020 15:44:50 GMT
ETag: "4b89-5a06de2371e21"
Accept-Ranges: bytes
Content-Length: 19337
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   19337
Md5:    03566d33926ecd53e5a06232492fe13c
Sha1:   692019f870d23884d9868f8038326fc46403a5d9
Sha256: df67f156612b6329078b52d0d790bba08e7885b7320bc8d9a0fa80f5670adc47
                                        
                                            GET /wp-content/plugins/tablepress/css/default.min.css?ver=1.10 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 23 Sep 2022 21:47:46 GMT
Server: Apache
Last-Modified: Mon, 09 Mar 2020 16:02:05 GMT
ETag: "16ef-5a06e1fe6c3eb"
Accept-Ranges: bytes
Content-Length: 5871
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (5871), with no line terminators
Size:   5871
Md5:    17a42baaae8926c5f8df316b9a3db617
Sha1:   4cd76dc34f8e2f31952b99db1b3b29f404d2996c
Sha256: 760bc4d420605c167dd90147b0e0d82b4e761a18bc35be7aeffaa4192b371635

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 23 Sep 2022 21:47:46 GMT
Server: Apache
Last-Modified: Wed, 02 Dec 2020 09:02:28 GMT
ETag: "7917-5b57780b3fbbc"
Accept-Ranges: bytes
Content-Length: 30999
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (30837)
Size:   30999
Md5:    008e0bb5ebfa7bc298a042f95944df25
Sha1:   93897ebc560b38a1d2bff43c22dd6a3b7ee90c0c
Sha256: c4047043368afb4baf1aed25d358a5c2a333842a3b436b58491ab36aeee65b9d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementskit-lite/modules/controls/assets/css/ekiticons.css?ver=5.9.0 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 23 Sep 2022 21:47:46 GMT
Server: Apache
Last-Modified: Wed, 02 Dec 2020 09:03:35 GMT
ETag: "1cc0c-5b57784b63954"
Accept-Ranges: bytes
Content-Length: 117772
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   117772
Md5:    57d175c50adce0f293d975f4e2771f8f
Sha1:   fae18070c3edfb714081edcec6e33ac4e5e90503
Sha256: 851c7de0c776256e8ef9e62ebb510c4ac1ef9f7fc78dcc014c77bbea83786743

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/digiqole/assets/css/icon-font.css?ver=1663969662 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 23 Sep 2022 21:47:46 GMT
Server: Apache
Last-Modified: Wed, 22 Jan 2020 05:35:25 GMT
ETag: "416c-59cb3e43c2059"
Accept-Ranges: bytes
Content-Length: 16748
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   16748
Md5:    83275cd4aeaa3131bf07a012983efb76
Sha1:   a9e19cb375bd0a0bf118796bfbc4f0441c5d802a
Sha256: de00e784dae37086c9269b2fdd7204bff5d41ef3040328ace9a38f616b593dde
                                        
                                            GET /wp-content/themes/digiqole/assets/css/bootstrap.min.css?ver=1663969662 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 23 Sep 2022 21:47:46 GMT
Server: Apache
Last-Modified: Wed, 22 Jan 2020 05:35:25 GMT
ETag: "235ed-59cb3e43c2059"
Accept-Ranges: bytes
Content-Length: 144877
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65325)
Size:   144877
Md5:    450fc463b8b1a349df717056fbb3e078
Sha1:   895125a4522a3b10ee7ada06ee6503587cbf95c5
Sha256: 2c0f3dcfe93d7e380c290fe4ab838ed8cadff1596d62697f5444be460d1f876d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/css/dashicons.min.css?ver=5.3.2 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 23 Sep 2022 21:47:46 GMT
Server: Apache
Last-Modified: Wed, 22 Jan 2020 05:35:25 GMT
ETag: "b9c6-59cb3e43e5e93"
Accept-Ranges: bytes
Content-Length: 47558
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (47523)
Size:   47558
Md5:    c8956481e00463f838b45364f45756df
Sha1:   256d7293ac07bb9b43a9757ba11057cad148818c
Sha256: 18aa66c192cbef43a61b1398c292ae5c6c1d40d679428ee998b1c6bfaf61d75a
                                        
                                            GET /wp-content/themes/digiqole/assets/css/animate.css?ver=1663969662 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 23 Sep 2022 21:47:47 GMT
Server: Apache
Last-Modified: Wed, 22 Jan 2020 05:35:25 GMT
ETag: "5d28-59cb3e43c2441"
Accept-Ranges: bytes
Content-Length: 23848
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   23848
Md5:    ef07eb63e3d54fcef0fe398abf4fdace
Sha1:   acbaa5775aa754ec7d4feca4eab63e1f587ce715
Sha256: c4c6695d2db9b640a6ece790b2961c3157cc740662e9337869c5a26e5487feca

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/digiqole/assets/css/magnific-popup.css?ver=1663969662 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 23 Sep 2022 21:47:47 GMT
Server: Apache
Last-Modified: Wed, 22 Jan 2020 05:35:25 GMT
ETag: "2167-59cb3e43c2059"
Accept-Ranges: bytes
Content-Length: 8551
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   8551
Md5:    fdd21658e6611d0a656a3be8cb66054c
Sha1:   922d4fe7f98aa4d30e7212b73e1f2c94cface4b0
Sha256: a726e517a12addb48c0030f9e595a0a6412050ce1673d43bba7709a45aa8a8aa

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/digiqole/assets/css/owl.carousel.min.css?ver=1663969662 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 23 Sep 2022 21:47:47 GMT
Server: Apache
Last-Modified: Wed, 22 Jan 2020 05:35:25 GMT
ETag: "b78-59cb3e43c2441"
Accept-Ranges: bytes
Content-Length: 2936
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (2846)
Size:   2936
Md5:    de0dfbabe627afa1b718d848b6b58e97
Sha1:   73d8a692734089983b00005d99ef8e5e5b0dadeb
Sha256: 016ab0bd0de4839680e4a717a57db9b182a8c2c5fdeec4c24db7a8df761fca4d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/digiqole/assets/css/owl.theme.default.min.css?ver=1663969662 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 23 Sep 2022 21:47:47 GMT
Server: Apache
Last-Modified: Wed, 22 Jan 2020 05:35:25 GMT
ETag: "3f5-59cb3e43c2059"
Accept-Ranges: bytes
Content-Length: 1013
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (846)
Size:   1013
Md5:    594b81805a98b267e47c70a8fad30d9f
Sha1:   684d84ec40b305ca14efc88c91f12972cb6342b4
Sha256: 924b0dc630d1c5dff9fa31aead9509775b1d476bfe0a5ac2977b2f11205a26ac
                                        
                                            GET /wp-content/themes/digiqole/assets/css/jquery.mCustomScrollbar.css?ver=1663969662 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 23 Sep 2022 21:47:47 GMT
Server: Apache
Last-Modified: Wed, 22 Jan 2020 05:35:25 GMT
ETag: "d14f-59cb3e43c2059"
Accept-Ranges: bytes
Content-Length: 53583
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   53583
Md5:    77d0c92e92f34d1257252fd4be039116
Sha1:   29875998aba85af131a8fecc10ded5ac1d69f609
Sha256: 5879a94b1b727b7ede08cffd69d13d79c663e7de221027d75b64832c9bf0d5c6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/material-design-for-contact-form-7/assets/css/cf7-material-design.css?ver=2.6.3 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 23 Sep 2022 21:47:46 GMT
Server: Apache
Last-Modified: Wed, 02 Dec 2020 09:04:15 GMT
ETag: "3d533-5b57787118842"
Accept-Ranges: bytes
Content-Length: 251187
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   251187
Md5:    a2694a0bd894090949de0b952b47d4f9
Sha1:   ae22b3651974712e76ea65582b97a144d029dda1
Sha256: f7088fa78690fe80377c0954b92635912868e876d1b6098d6b31f0d6ae2a95cb

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/digiqole/assets/css/woocommerce.css?ver=1663969662 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 23 Sep 2022 21:47:47 GMT
Server: Apache
Last-Modified: Wed, 22 Jan 2020 05:35:25 GMT
ETag: "1937-59cb3e43c2441"
Accept-Ranges: bytes
Content-Length: 6455
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   6455
Md5:    77a86369cb3f1547c0f4eb96f5ffa4cc
Sha1:   6cac11684a73a837b4c66de0d12723644fb4b84d
Sha256: 5f443d62bda0cf802312ae87b617a0b46447b35ac770e7d0df866e1196d462b2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/digiqole/assets/css/blog.css?ver=1663969662 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 23 Sep 2022 21:47:47 GMT
Server: Apache
Last-Modified: Wed, 22 Jan 2020 05:35:25 GMT
ETag: "4f67-59cb3e43c2059"
Accept-Ranges: bytes
Content-Length: 20327
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   20327
Md5:    efdc8ce96b5ff7cc0ae2cb3b49970acf
Sha1:   dfeebb7b08548c3531a9d7867d4d971b6af8dc68
Sha256: c3422004ce1285d7b6237041a8f9be028ccda40f4c681e2e360797dbeba94ba1

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/digiqole/assets/css/gutenberg-custom.css?ver=1663969662 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 23 Sep 2022 21:47:47 GMT
Server: Apache
Last-Modified: Wed, 22 Jan 2020 05:35:25 GMT
ETag: "6d9c-59cb3e43c2441"
Accept-Ranges: bytes
Content-Length: 28060
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (432)
Size:   28060
Md5:    d940186729052f99506538117967bb64
Sha1:   1bb339abea3b2d8de3735c7c5a603a24b1e5c598
Sha256: ecb47cf8d19149540a5b5593aad4a46199051ab5f307c5c23bde277dfe55d5b2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/accordions/assets/frontend/js/scripts.js?ver=5.3.2 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 23 Sep 2022 21:47:47 GMT
Server: Apache
Last-Modified: Wed, 02 Dec 2020 09:01:36 GMT
ETag: "2b-5b5777d94faa0"
Accept-Ranges: bytes
Content-Length: 43
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   43
Md5:    d91f3cef00a21c1f34e9ec59d0e57283
Sha1:   76a0273ba69ca7a499a0578f0d63eba8e7aabb5d
Sha256: abbff281326efaaf147ef1fd2ad7bdf23c69073fb7e826b9c41cac1ebd27332e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/digiqole/assets/css/master.css?ver=1663969662 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 23 Sep 2022 21:47:47 GMT
Server: Apache
Last-Modified: Wed, 22 Jan 2020 05:35:25 GMT
ETag: "295bd-59cb3e43c2059"
Accept-Ranges: bytes
Content-Length: 169405
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (504)
Size:   169405
Md5:    00837687097a8deddd4dc8552e4e1f3c
Sha1:   6407a74d5d60d97ae75633b4862bb3c53ab64722
Sha256: 551f80eefa1d10922a57c6997ab2f97904c1b7478be225da944c44b54602d64e
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 23 Sep 2022 21:47:47 GMT
Server: Apache
Last-Modified: Wed, 22 Jan 2020 05:35:25 GMT
ETag: "2748-59cb3e43e433b"
Accept-Ranges: bytes
Content-Length: 10056
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (9959)
Size:   10056
Md5:    7121994eec5320fbe6586463bf9651c2
Sha1:   90532aff6d4121954254cdf04994d834f7ec169b
Sha256: 48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.0.10 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 23 Sep 2022 21:47:47 GMT
Server: Apache
Last-Modified: Wed, 02 Dec 2020 09:03:35 GMT
ETag: "6d83-5b57784b73355"
Accept-Ranges: bytes
Content-Length: 28035
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (28035), with no line terminators
Size:   28035
Md5:    5bf41e8704f9c1e250182eb6f8ff8212
Sha1:   c716565c820ecb6593f387554ed285c973654870
Sha256: 34d36ff0aafe4dd8d250a7d1d67bac7e5c7f4f28aa3c8db91d0ec0e649eb9dac

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/wp-ultimate-review/assets/public/script/content-page.js?ver=5.3.2 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 23 Sep 2022 21:47:47 GMT
Server: Apache
Last-Modified: Mon, 09 Mar 2020 15:44:50 GMT
ETag: "6f3-5a06de2372209"
Accept-Ranges: bytes
Content-Length: 1779
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   1779
Md5:    953aef0cf9ee8fb1f07d304f3cf4c0dd
Sha1:   60d2fec7b069a73b2f34a78662eb7165400c95a3
Sha256: 2931bc0b780acd6d3cd2fc6cea2492ee55703ccc3bc0b8f866d0c371e5f4bd2e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/drag-and-drop-multiple-file-upload-contact-form-7/assets/js/codedropz-uploader-min.js?ver=1.3.6.2 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 23 Sep 2022 21:47:47 GMT
Server: Apache
Last-Modified: Tue, 11 Jan 2022 12:57:34 GMT
ETag: "1918-5d54dff31d48e"
Accept-Ranges: bytes
Content-Length: 6424
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (6226)
Size:   6424
Md5:    c0c5e34bbe8095cb5173dc77ae2e36a8
Sha1:   3091570090d44faf045deaa1a91d27d13803e0e5
Sha256: a64f1976c04df67406f792945f8171c91a44498eeb6b06239b22b1c416370437

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.7 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 23 Sep 2022 21:47:47 GMT
Server: Apache
Last-Modified: Fri, 20 Mar 2020 07:25:05 GMT
ETag: "3868-5a1442f35f04b"
Accept-Ranges: bytes
Content-Length: 14440
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   14440
Md5:    1534f06aa2b1b721a45372f8238e2461
Sha1:   86f7e7b926e1a88209d171b56dadbccc2c96f578
Sha256: b7e17926b30342edecee8b3a93029ac51462e2b479277d8e077ba57173eb1900

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/drag-and-drop-multiple-file-upload-contact-form-7/assets/js/dnd-upload-cf7.js?ver=1.3.6.2 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 23 Sep 2022 21:47:47 GMT
Server: Apache
Last-Modified: Tue, 11 Jan 2022 12:57:34 GMT
ETag: "9b5-5d54dff31d48e"
Accept-Ranges: bytes
Content-Length: 2485
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   2485
Md5:    f9341a7fadb42d823e89288af1efce90
Sha1:   e57b4060013e9d5bc1f98670b99208ea48c8a289
Sha256: db71ca026f0fe23da093b81b732f0fe9062bacaa90fde9dce5bef7f1e7e03c15
                                        
                                            GET /wp-content/plugins/material-design-for-contact-form-7/assets/js/lib/autosize.min.js?ver=1.0 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 23 Sep 2022 21:47:48 GMT
Server: Apache
Last-Modified: Wed, 02 Dec 2020 09:04:15 GMT
ETag: "dfa-5b577871197e2"
Accept-Ranges: bytes
Content-Length: 3578
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (3504)
Size:   3578
Md5:    bd5ce81bfb5b4f3e2ac487ac65f4daf8
Sha1:   514dc1ea30ea9e4b84a55a689ba1f2c0fa7335c3
Sha256: 280df42702ec950d12b698c40b45c507fc362089f53eb8376d3152dc1d5898dd

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.0.10 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 23 Sep 2022 21:47:48 GMT
Server: Apache
Last-Modified: Wed, 02 Dec 2020 09:03:35 GMT
ETag: "26-5b57784b60a74"
Accept-Ranges: bytes
Content-Length: 38
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   38
Md5:    ee9d2c70ab0a5f44eb2df422198a07b9
Sha1:   abc45613f773509b869e78a42a817d9e09da8bce
Sha256: 25bf40064888964eb06e0980211b378b28d210737786e3d10546da7013398899

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.0.10 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 23 Sep 2022 21:47:47 GMT
Server: Apache
Last-Modified: Wed, 02 Dec 2020 09:03:35 GMT
ETag: "53efd-5b57784b73355"
Accept-Ranges: bytes
Content-Length: 343805
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Size:   343805
Md5:    dac31169b5d033b049af2d107c81f0f6
Sha1:   68dde13066c786c6085c5377320d9988c6dd6947
Sha256: 256777f442a1ac7caba081909e82012367031079583494f2c82fae1f972991b8

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/digiqole/assets/js/popper.min.js?ver=1663969662 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 23 Sep 2022 21:47:48 GMT
Server: Apache
Last-Modified: Wed, 22 Jan 2020 05:35:25 GMT
ETag: "4b24-59cb3e43c0501"
Accept-Ranges: bytes
Content-Length: 19236
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (19063)
Size:   19236
Md5:    aad2475f1e2615224fa9716b53954be2
Sha1:   4f08d328c845410583e0a05c8d5a5bc61c23db47
Sha256: 8e95b881702116fa860c3e41ef7ebaac83c3ecf0db026aaae023b46671db74ce

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/registrations-for-the-events-calendar/js/rtec-scripts.js?ver=2.6.2 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 23 Sep 2022 21:47:48 GMT
Server: Apache
Last-Modified: Wed, 02 Dec 2020 09:06:04 GMT
ETag: "6e15-5b5778d93e6a9"
Accept-Ranges: bytes
Content-Length: 28181
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   28181
Md5:    54b2ba4e65cd4cfa7569a75fdd68f71d
Sha1:   a40d4940a2296a0f95f97705a0b9b5e3cfe5136d
Sha256: ecb16ea1a740d524b507e3fc75e14556877ec2d3886b2f8e0b2ec9704b3fc36b
                                        
                                            GET /wp-content/themes/digiqole/assets/js/jquery.magnific-popup.min.js?ver=1663969662 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 23 Sep 2022 21:47:48 GMT
Server: Apache
Last-Modified: Wed, 22 Jan 2020 05:35:25 GMT
ETag: "4ef8-59cb3e43c0501"
Accept-Ranges: bytes
Content-Length: 20216
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (20087)
Size:   20216
Md5:    ba6cf724c8bb1cf5b084e79ff230626e
Sha1:   f455c5f153f872e52265f87a644ff89fe14a6fb6
Sha256: 3fddc6d28aba3c13d64cfd4847c333ff48c71d4a5a58bd1a0494ca6ae8ac1bb4

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/digiqole/assets/js/jquery.appear.min.js?ver=1663969662 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 23 Sep 2022 21:47:48 GMT
Server: Apache
Last-Modified: Wed, 22 Jan 2020 05:35:25 GMT
ETag: "3c4-59cb3e43c0501"
Accept-Ranges: bytes
Content-Length: 964
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (964), with no line terminators
Size:   964
Md5:    51abc4b947baae5e46545f0f0ada7eb4
Sha1:   348f8638545bf38e9f319652939bb0c9280d4501
Sha256: 94a8d6d2593de2028174575095e9fdf58a65aecbb4257c021bf11bb882e0254e
                                        
                                            GET /wp-content/themes/digiqole/assets/js/raphael.min.js?ver=1663969662 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 23 Sep 2022 21:47:48 GMT
Server: Apache
Last-Modified: Wed, 22 Jan 2020 05:35:25 GMT
ETag: "16bf0-59cb3e43c0501"
Accept-Ranges: bytes
Content-Length: 93168
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65518), with no line terminators
Size:   93168
Md5:    334f1f87a34c59a498b7d7b74d00a07d
Sha1:   2f04614e11ab6310cd5fbda2df7db42d9e564bbb
Sha256: 0609b067a8f4e38b77182421989b698879141956338daa5c1968c11f87559deb
                                        
                                            GET /wp-content/themes/digiqole/assets/js/bootstrap.min.js?ver=1663969662 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 23 Sep 2022 21:47:48 GMT
Server: Apache
Last-Modified: Wed, 22 Jan 2020 05:35:25 GMT
ETag: "bf30-59cb3e43c0501"
Accept-Ranges: bytes
Content-Length: 48944
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (48664)
Size:   48944
Md5:    14d449eb8876fa55e1ef3c2cc52b0c17
Sha1:   a9545831803b1359cfeed47e3b4d6bae68e40e99
Sha256: e7ed36ceee5450b4243bbc35188afabdfb4280c7c57597001de0ed167299b01b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/digiqole/assets/js/jquery.mCustomScrollbar.concat.min.js?ver=1663969662 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 23 Sep 2022 21:47:49 GMT
Server: Apache
Last-Modified: Wed, 22 Jan 2020 05:35:25 GMT
ETag: "ae4d-59cb3e43c0501"
Accept-Ranges: bytes
Content-Length: 44621
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (32011)
Size:   44621
Md5:    7d039583fef369577e9161d12c8c6ba2
Sha1:   15430bc876026d813c21e03a7a72ab4d6dcfe31a
Sha256: c81b01b32b51fc61a3818d12e051effc099374c7436ff0146ed76fe1d0bbfa09

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 23 Sep 2022 21:47:47 GMT
Server: Apache
Last-Modified: Wed, 22 Jan 2020 05:35:25 GMT
ETag: "17a69-59cb3e43e433b"
Accept-Ranges: bytes
Content-Length: 96873
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (31997)
Size:   96873
Md5:    49edccea2e7ba985cadc9ba0531cbed1
Sha1:   f8747f8ee704d9af31d0950015e01d3f9635b070
Sha256: 1db21d816296e6939ba1f42962496e4134ae2b0081e26970864c40c6d02bb1df

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 21:47:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 21:47:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://rif.mak.ac.ug
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 180821
last-modified: Wed, 11 May 2022 19:24:48 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size:   15744
Md5:    15d9f621c3bd1599f0169dcf0bd5e63e
Sha1:   7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
                                        
                                            GET /wp-content/themes/digiqole/assets/js/jquery.easypiechart.min.js?ver=1663969662 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 23 Sep 2022 21:47:49 GMT
Server: Apache
Last-Modified: Wed, 22 Jan 2020 05:35:25 GMT
ETag: "f96-59cb3e43c0501"
Accept-Ranges: bytes
Content-Length: 3990
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (3765)
Size:   3990
Md5:    eac43429f465cc28ab77b033b7e0686e
Sha1:   add547d05e8c9ce8d3ddab731a133421416bb30b
Sha256: f73f452b5961dbe04bffdc40586dc8c689e172c2dcbfa90353d92acb7a08c444
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 21:47:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://rif.mak.ac.ug
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 180821
last-modified: Wed, 11 May 2022 19:24:42 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size:   15860
Md5:    e9f5aaf547f165386cd313b995dddd8e
Sha1:   acdef5603c2387b0e5bffd744b679a24a8bc1968
Sha256: f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
                                        
                                            GET /s/barlow/v12/7cHqv4kjgoGqM7E3t-4s51os.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://rif.mak.ac.ug
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21724
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 22:36:56 GMT
expires: Wed, 20 Sep 2023 22:36:56 GMT
cache-control: public, max-age=31536000
age: 256253
last-modified: Tue, 19 Apr 2022 19:29:44 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 21724, version 1.0\012- data
Size:   21724
Md5:    c3609c36a150ce088ea4dcab92b7c00b
Sha1:   0c18236a183e962533a4f61bff3ae2581313561a
Sha256: 65a47caa5183b035bf78d0f93adbe5cea500333410259c54abf2de356740df7e
                                        
                                            GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/goodshare.min.js?ver=5.3.2 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 23 Sep 2022 21:47:49 GMT
Server: Apache
Last-Modified: Wed, 02 Dec 2020 09:03:35 GMT
ETag: "90be-5b57784b7567d"
Accept-Ranges: bytes
Content-Length: 37054
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (37054), with no line terminators
Size:   37054
Md5:    0cfbff3b001f601bec2937518e73a321
Sha1:   24d39cb83535eca8899993996c2e65dd0316135e
Sha256: af51d2ee1c2757427220da779db814760be6fb92590b01436c2b46c706116469
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 21:47:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-includes/js/wp-embed.min.js?ver=5.3.2 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 23 Sep 2022 21:47:49 GMT
Server: Apache
Last-Modified: Wed, 22 Jan 2020 05:35:25 GMT
ETag: "577-59cb3e43e3b6b"
Accept-Ranges: bytes
Content-Length: 1399
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1399), with no line terminators
Size:   1399
Md5:    04133d37cfd0f08267530b905a5ffff3
Sha1:   6eb207e57c92ee341f57998cb191e5c9dc4fc738
Sha256: 0284cbccebf1682452d62d06efa3665c874d642d4e03f5f5f9bb0f555da9251b
                                        
                                            GET /wp-content/themes/digiqole/assets/js/script.js?ver=1663969662 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 23 Sep 2022 21:47:49 GMT
Server: Apache
Last-Modified: Wed, 22 Jan 2020 05:35:25 GMT
ETag: "317f-59cb3e43c0501"
Accept-Ranges: bytes
Content-Length: 12671
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   12671
Md5:    c846202915c15c3542cd337a3428cbae
Sha1:   6c449485eda989e1c572b778ffd2c55357b604be
Sha256: 4f0e911454dbb139072c660bb5cd6dcfaf745c6f1c8607a8144d7a6fee1c1218

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/mailchimp-for-wp/assets/js/forms.min.js?ver=4.7.5 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 23 Sep 2022 21:47:49 GMT
Server: Apache
Last-Modified: Sat, 14 Mar 2020 13:47:50 GMT
ETag: "1a6e-5a0d0d4f601c3"
Accept-Ranges: bytes
Content-Length: 6766
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (6727)
Size:   6766
Md5:    0f00149954d5420af7b22c1fa979a663
Sha1:   68f65a314a8f3e40945bd2fde054e74ab3f3d649
Sha256: e42d4d1224ddfc10b3953543711bdbfa58ca8beb3732a5456c1bfc1e4687dc16

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/material-design-for-contact-form-7/assets/js/cf7-material-design-bundle.js?ver=2.6.3 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 23 Sep 2022 21:47:48 GMT
Server: Apache
Last-Modified: Wed, 02 Dec 2020 09:04:15 GMT
ETag: "887e0-5b57787119bca"
Accept-Ranges: bytes
Content-Length: 559072
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (10285)
Size:   559072
Md5:    7b41ae0a65d6f8258f1e6ecc6aea3e86
Sha1:   e5e00bcba64246746533f8c3407a22011de8efa8
Sha256: 1ce4e942133b764ef7d8991bd2ac4d9bf9370d52d2d08ca76908b97b5aa5c03d
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F155952bd-256a-4103-9017-437efcfb03bf.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7005
x-amzn-requestid: c805d882-7a00-4abd-a239-d8313d7df0c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4aBwEaMIAMF09A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd6d7-6d6a417f10c9628a16d438e1;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:42:47 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 7edV0FJytVSpHH-WkCiYzhW1JP4L6i6bpPCq9MTxPdhwFQTryf06BQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 21:53:16 GMT
age: 86073
etag: "4584bff61bf4d5c9b8fd3b97c048a8e6975e4323"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7005
Md5:    1985a957e6bc0c15d8489fa731e7f14e
Sha1:   4584bff61bf4d5c9b8fd3b97c048a8e6975e4323
Sha256: 9f3e1fd6e18d85d4f6645d077da643a3bc2cca611d5e85f534ba798102dca243
                                        
                                            GET /css?family=Barlow%3A300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CRoboto%3A300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i%2C900%2C900i&ver=1663969662 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 23 Sep 2022 21:47:46 GMT
date: Fri, 23 Sep 2022 21:47:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   15283
Md5:    79e840399a796ef02190a3b44cfe406a
Sha1:   e48b4237523a1b93524f4b7c21d23627cfa42101
Sha256: 673220624a12ffb9ab97115f43618907d1ec7c75eb4b623543d9750b8ac3baba
                                        
                                            GET /wp-content/uploads/2022/03/logo-rif-makerere-1.png HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 23 Sep 2022 21:47:49 GMT
Server: Apache
Last-Modified: Tue, 29 Mar 2022 11:21:31 GMT
ETag: "ae93-5db59a182fc1d"
Accept-Ranges: bytes
Content-Length: 44691
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 270 x 66, 8-bit/color RGBA, non-interlaced\012- data
Size:   44691
Md5:    80ac4e75144ec5b43650861f73db0bee
Sha1:   ab827fd76a30dd56c25b23f5e1b4f1466efe216a
Sha256: f18384b4b9869024693db67e9ec4698bb1f1ea6c4a28fe36e85817ddf43f9ee7
                                        
                                            GET /css?family=Roboto%3A700%2C%2C400%2C900%7CBarlow%3A700%2C400%2C900 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 23 Sep 2022 21:47:46 GMT
date: Fri, 23 Sep 2022 21:47:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/themes/digiqole/assets/js/owl.carousel.min.js?ver=1663969662 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 23 Sep 2022 21:47:48 GMT
Server: Apache
Last-Modified: Wed, 22 Jan 2020 05:35:25 GMT
ETag: "a70e-59cb3e43c0501"
Accept-Ranges: bytes
Content-Length: 42766
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementskit-lite/modules/controls/assets/fonts/elementskit.woff?y24e1e HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/elementskit-lite/modules/controls/assets/css/ekiticons.css?ver=5.9.0
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: application/font-woff
                                        
Date: Fri, 23 Sep 2022 21:47:49 GMT
Server: Apache
Last-Modified: Wed, 02 Dec 2020 09:03:35 GMT
ETag: "6c1f0-5b57784b63d3c"
Accept-Ranges: bytes
Content-Length: 442864
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
                                        
Date: Fri, 23 Sep 2022 21:47:49 GMT
Server: Apache
Last-Modified: Wed, 02 Dec 2020 09:02:28 GMT
ETag: "12d68-5b57780b40774"
Accept-Ranges: bytes
Content-Length: 77160
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
                                        
                                            GET /wp-content/themes/digiqole/assets/fonts/iconfont.ttf?cpfcy1 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/themes/digiqole/assets/css/icon-font.css?ver=1663969662
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: application/font-sfnt
                                        
Date: Fri, 23 Sep 2022 21:47:49 GMT
Server: Apache
Last-Modified: Wed, 22 Jan 2020 05:35:25 GMT
ETag: "27470-59cb3e43bf949"
Accept-Ranges: bytes
Content-Length: 160880
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.0.10 HTTP/1.1 
Host: rif.mak.ac.ug
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rif.mak.ac.ug/wp-content/plugins/suavizar/login/mkbnetbankar/login.php
Cookie: PHPSESSID=ir8fpqh4adtkmimegv6avkb2lj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         137.63.144.2
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 23 Sep 2022 21:47:48 GMT
Server: Apache
Last-Modified: Wed, 02 Dec 2020 09:03:35 GMT
ETag: "22969-5b57784b7567d"
Accept-Ranges: bytes
Content-Length: 141673
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing