r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a8b4f1afb0e830b797238d34ab9254aa
e011acef3d05c959a65205d53b651ecd18a889fe
f7ceff5b4fda083c7449b7298c232224cf48a632dcb87233b646790de207d49c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7CEFF5B4FDA083C7449B7298C232224CF48A632DCB87233B646790DE207D49C"
Last-Modified: Thu, 12 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4031
Expires: Sat, 14 Jan 2023 02:20:31 GMT
Date: Sat, 14 Jan 2023 01:13:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cab5b63e128895128726181aff42e42e
d39c36237554fcd41addec0664d7fe7f7d157c06
18e82a5b82eb8f2d8b49df824c336015f19367c5a05467ad139a56db59f88852
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "18E82A5B82EB8F2D8B49DF824C336015F19367C5A05467AD139A56DB59F88852"
Last-Modified: Wed, 11 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4257
Expires: Sat, 14 Jan 2023 02:24:17 GMT
Date: Sat, 14 Jan 2023 01:13:20 GMT
Connection: keep-alive
karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
217.21.94.112301 Moved Permanently 707 B URL HTTP/1.1 karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Sat, 14 Jan 2023 01:13:20 GMT
server: LiteSpeed
location: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
platform: hostinger
content-security-policy: upgrade-insecure-requests
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 14 Jan 2023 00:48:52 GMT
content-type: application/json
age: 1468
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0f4ecf4f26be1ba09e61135b1b488bf4
f16b8277e00033bc990a8bcce54b693cb3c87d62
3018c2a228f0a894d217e8e8b0b8dd060527f06879cd2f469bac6c8766acbbf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3018C2A228F0A894D217E8E8B0B8DD060527F06879CD2F469BAC6C8766ACBBF8"
Last-Modified: Wed, 11 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2256
Expires: Sat, 14 Jan 2023 01:50:56 GMT
Date: Sat, 14 Jan 2023 01:13:20 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: TG8dJxjzdvjl2gXP+e9+odSzfdtkPOXqTsizj/UfTd4MDpOFzSEhWXxkhQaaxC2NXlg5MiAcMFE=
x-amz-request-id: NXHFZ138PTESA1AD
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 14 Jan 2023 00:54:44 GMT
age: 1116
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 01:13:20 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Pragma, Content-Length, Alert, Expires, ETag, Last-Modified, Backoff, Content-Type, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 14 Jan 2023 00:17:25 GMT
age: 3356
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b1e3535cab3c1ac295b1412126a9325c
d1bdf1b8663817ae34b6182db29d6b20666779e7
90c4ecd4b0782647fd78110b5bacfb73d2b05aae4de789a90318574407dfb565
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2328
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 01:13:21 GMT
Etag: "63c11f26-1d7"
Last-Modified: Sat, 14 Jan 2023 00:34:33 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.163.114.208101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.163.114.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 1/MMt9U4VpTOPNqlkmmyQA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: gD5pZ6s0k3yT2PpyjVttB4YYa7I=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7221
Expires: Sat, 14 Jan 2023 03:13:44 GMT
Date: Sat, 14 Jan 2023 01:13:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7221
Expires: Sat, 14 Jan 2023 03:13:44 GMT
Date: Sat, 14 Jan 2023 01:13:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7221
Expires: Sat, 14 Jan 2023 03:13:44 GMT
Date: Sat, 14 Jan 2023 01:13:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7221
Expires: Sat, 14 Jan 2023 03:13:44 GMT
Date: Sat, 14 Jan 2023 01:13:23 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7af5e398-d86e-4aa0-bb1e-b5d82b7126bf.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7af5e398-d86e-4aa0-bb1e-b5d82b7126bf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6caf04526badc2e146f7bfe4a4ebbc43
f50c61c4c10121a407052061e2fce795989f5564
8baff27e309b1956a09a1bb0d703cd9c1507a12f5bd8806fd4288157e78830ef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7af5e398-d86e-4aa0-bb1e-b5d82b7126bf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8257
x-amzn-requestid: 605e8a38-10e9-4724-8fc9-d3e06a21a754
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ephACEUJoAMF3VA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c07b99-11445aed36ea9a7b13aba702;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 21:28:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FniXtjRzb1JVG5AC2_Pd1_a0GRjk8LNg4ICF-oNoCeO2miBd3rM8Vg==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 13 Jan 2023 04:51:48 GMT
age: 73295
etag: "f50c61c4c10121a407052061e2fce795989f5564"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash afcc8f4875f4b74ca0640829b689731e
584d0e11665ae89f9a294baf1e9bb4f0e4e9a4df
3e487396389c4330abc99bc99053eecc6aaf56f7afa398d70c30e1f4709577a0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13626
x-amzn-requestid: 4769eaeb-0c78-4054-ad47-eefdd6ab2d03
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eWHMZErbIAMF6sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b8b8b5-4c7bacfe060899044e361f70;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 00:11:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uJjDFuqKCZyyAorUVUq9PyCb_8fWukPf6YE3LwqK2FrwMFzDNkftFQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Fri, 13 Jan 2023 11:16:26 GMT
age: 50217
etag: "584d0e11665ae89f9a294baf1e9bb4f0e4e9a4df"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00c5167d-4d7e-40fb-86f7-00c3c61a3d8a.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00c5167d-4d7e-40fb-86f7-00c3c61a3d8a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c06b9b83ee9dbe95b329ed2aa7590ea7
a0589b0ba31279219ed4e8143980dcb4badd81b0
78273bc40a06cf4805d7dc7cb3a9d10d11d61e31c5606f621b0f49ef6fa1fb6d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00c5167d-4d7e-40fb-86f7-00c3c61a3d8a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7796
x-amzn-requestid: f429dfb8-42f9-40d0-88e5-8fff853da5b7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: enAlCGu4IAMFUgg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bf7aec-2fc65c774e4f2caa72a3f63f;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 03:13:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uVHUlBIoLQmwXrFL9VTyUK5HpteNUOj9P4rtMYJlSWDfdQ5LZD3dpQ==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Fri, 13 Jan 2023 03:43:23 GMT
age: 77400
etag: "a0589b0ba31279219ed4e8143980dcb4badd81b0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F198805f8-79dd-4ac3-8fb7-22c15cbb9cb9.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F198805f8-79dd-4ac3-8fb7-22c15cbb9cb9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cb8fb3720ec05dd59482cb49e4bffd5c
99b1ea4060e5332b23fdfdc679f61be5af1a7bf7
c44e3c07c1fb842a741c22862afa738e3fbdda05947e9de59267791357f9f09a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F198805f8-79dd-4ac3-8fb7-22c15cbb9cb9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5918
x-amzn-requestid: f1786e4a-9ab0-45bd-8f45-ce687f9568d9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: enAczGTJIAMFaCA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bf7ab8-4d96e5b066d83750238865b8;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 03:12:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: IB3ZGsqXLauhlwlEPDBspcYcPonvzrIfgoTpqUAMsaDgr2oGy1X73Q==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 13 Jan 2023 03:16:25 GMT
age: 79018
etag: "99b1ea4060e5332b23fdfdc679f61be5af1a7bf7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe27fa975-dca1-4275-9da9-4f794ba4053a.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe27fa975-dca1-4275-9da9-4f794ba4053a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5e40d5007919bd7f226664e3b1fa1339
73293ca2143a4ca1cbd17317fbab0aeac401df1b
5396d28bba05d0775a803107ce2aef6a28cbd29bcc211dcc5e1d10326aa9dcb3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe27fa975-dca1-4275-9da9-4f794ba4053a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11798
x-amzn-requestid: 69dd4065-86d7-41cc-916c-c4a98167123c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eg8H3HSeoAMFt3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bd0d65-5c1f9f743324cabe37606cd3;Sampled=0
x-amzn-remapped-date: Tue, 10 Jan 2023 07:01:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: d2D5R-T-3hwS4VhmFV7olq3wBJGZUVOVr6W4ohxdEDmXyK_HalMeUA==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 13 Jan 2023 07:37:24 GMT
age: 63359
etag: "73293ca2143a4ca1cbd17317fbab0aeac401df1b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0a5cc8b-8d62-447a-a39c-733e1afdd415.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0a5cc8b-8d62-447a-a39c-733e1afdd415.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2363dbe7bb6a459853d8d19cab50e70b
ded76de1dd453e40dbf6eaa8607cf19fac7f71a4
f96da6354cec52143768014c36ba2b298224a58b0bf38bd2aa5f3bfce69d8670
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0a5cc8b-8d62-447a-a39c-733e1afdd415.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7447
x-amzn-requestid: dd3543b7-4e6b-4605-acea-a21d39af02ca
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: es0qSFjAIAMF7HQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c1ce41-56e2ccc63669032d70cba0ba;Sampled=0
x-amzn-remapped-date: Fri, 13 Jan 2023 21:33:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AYaeawnEmwHkyx3h-yliVx-ARcRB3W5kbtFH5tARnL3YMD6e4WYAQw==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 13 Jan 2023 21:49:01 GMT
age: 12262
etag: "ded76de1dd453e40dbf6eaa8607cf19fac7f71a4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/ucss/81b9239853fbd6be8e74b15e317445e9.css?ver=3ff62
217.21.94.112200 OK 1.2 kB URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/ucss/81b9239853fbd6be8e74b15e317445e9.css?ver=3ff62
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (4830), with no line terminators
Hash f4a52cbca05dc4410c02d7c2df381001
84395bc1d3fadb0c969b172a0fddbf45e08ebba5
d5e387a006a6be5ea6821335c821607d9d6c536ac2f60e855ce1fa06fb62899f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/ucss/81b9239853fbd6be8e74b15e317445e9.css?ver=3ff62 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 14 Jan 2024 07:13:23 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 14:54:52 GMT
etag: "12de-638228bc-64429b830103a743;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1188
date: Sat, 14 Jan 2023 01:13:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/et-cache/275/et-core-unified-cpt-deferred-275.min.css?ver=1673179365
217.21.94.112200 OK 943 B URL HTTP/2 karthikestatecottages.com/wp-content/et-cache/275/et-core-unified-cpt-deferred-275.min.css?ver=1673179365
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (9089), with no line terminators
Hash 73aae09117c847158f6b83c0cc9bb7bc
d672a6ee007db203d7292c0508a277ada5f6cdd2
35be656eeb7cb93aa0f41e2f03e514ccb39f50f770c8d159bcf280f1889c08b2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/et-cache/275/et-core-unified-cpt-deferred-275.min.css?ver=1673179365 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 14 Jan 2024 07:13:23 GMT
content-type: text/css
last-modified: Sun, 08 Jan 2023 12:02:45 GMT
etag: "2381-63bab0e5-1cd16b35e73f334d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 943
date: Sat, 14 Jan 2023 01:13:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/et-cache/notfound/et-divi-dynamic-tb-306-tb-275-late.css
217.21.94.112200 OK 6.1 kB URL HTTP/2 karthikestatecottages.com/wp-content/et-cache/notfound/et-divi-dynamic-tb-306-tb-275-late.css
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (11014)
Hash 387e9ef3738a5cb17dd4664b99e0973e
d4833aa77d571035505ea624d9d22ef19b4ccd60
00f12e17430b1cc8d2f4950da660065cb3b7ed11e0e360a8de19cee6df8038ff
GET /wp-content/et-cache/notfound/et-divi-dynamic-tb-306-tb-275-late.css HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 14 Jan 2024 07:13:23 GMT
content-type: text/css
last-modified: Sun, 08 Jan 2023 12:02:45 GMT
etag: "a1b0-63bab0e5-53429776e0865fcc;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6140
date: Sat, 14 Jan 2023 01:13:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/themes/Divi/core/admin/fonts/modules/social/modules.ttf
217.21.94.112200 OK 5.9 kB URL HTTP/2 karthikestatecottages.com/wp-content/themes/Divi/core/admin/fonts/modules/social/modules.ttf
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, ETmodules \012- data
Hash fd819149ea6e2074186c600086745092
9a99fabb54aa10741aef7014d53ae3ef0ec5e130
fee6b82cb48a3d100510e520c0e59011e0124679127034b05a736b4b9d5e63c4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/core/admin/fonts/modules/social/modules.ttf HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/litespeed/ucss/81b9239853fbd6be8e74b15e317445e9.css?ver=3ff62
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 14 Jan 2024 07:13:23 GMT
content-type: application/x-font-ttf
last-modified: Sat, 26 Nov 2022 14:52:15 GMT
etag: "289c-6382281f-dfeb4d6dc71b2d17;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5918
date: Sat, 14 Jan 2023 01:13:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/plugins/litespeed-cache/guest.vary.php
217.21.94.112200 OK 20 B URL HTTP/2 karthikestatecottages.com/wp-content/plugins/litespeed-cache/guest.vary.php
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type JSON data\012- , ASCII text, with no line terminators
Hash fa959e6aa35e467e34c09eb24f24daa8
caccea25ee198ae325d02ca3d02699ba57694b9f
ff788b96ca99d371d40e70f701f66bd58740893a83c145e9a810539ce9c02ffa
Analyzer Verdict Alert fortinet Phishing
POST /wp-content/plugins/litespeed-cache/guest.vary.php HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
Origin: https://karthikestatecottages.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/8.1.11
x-litespeed-cache-control: no-cache
set-cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; expires=Mon, 16-Jan-2023 01:13:23 GMT; Max-Age=172800; path=/; secure; HttpOnly
content-type: text/html; charset=UTF-8
content-length: 20
content-encoding: br
vary: Accept-Encoding
date: Sat, 14 Jan 2023 01:13:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.woff
217.21.94.112200 OK 92 kB URL HTTP/2 karthikestatecottages.com/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.woff
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type Web Open Font Format, TrueType, length 92476, version 2.4\012- data
Hash 7d04c782e3ec7b655cb15e50245c4c49
6ac6c03ebcebc29f36f09525ae9564f12240776d
88795f28bb66a45f9c32245dd21d6319ed5d26a45bf5afa31d91a0f83ee855f7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/core/admin/fonts/modules/all/modules.woff HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/et-cache/notfound/et-divi-dynamic-tb-306-tb-275-late.css
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 14 Jan 2024 07:13:24 GMT
content-type: application/font-woff
last-modified: Sat, 26 Nov 2022 14:52:15 GMT
etag: "1693c-6382281f-9888047295b65791;;;"
accept-ranges: bytes
content-length: 92476
date: Sat, 14 Jan 2023 01:13:24 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
217.21.94.112200 OK 30 kB URL HTTP/2 karthikestatecottages.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (65447)
Hash cdbbc979b5a5de31a3ac8296e0ef489e
b83000eb74956c3404fb58c87e95aed5bab2ed19
48a6489945365cddb4c75af60f1e6a8a15d6598a1596ef18eb1b4aaad33e96f3
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 14 Jan 2024 07:13:24 GMT
content-type: application/x-javascript
last-modified: Tue, 15 Nov 2022 23:40:32 GMT
etag: "15e54-63742370-5ac77096064010de;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30075
date: Sat, 14 Jan 2023 01:13:24 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 69c011429c0b1f8a0c091474b207c240
fe2c5e1854a65d8a2b669fc54aa0c827f07e428b
409f967eeebf5472cb0d2a917b9285e52b21950f672c6c37a19285d3375edc7f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 01:13:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash c16b1530bbcd3d9226362c0a6100f014
a49685aa2869a3674bc4c8fc58acd47f655c2111
ff063e27670433897ba82fdf8048fc228587ab2f01c21e2970f03b3df9093539
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 01:13:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?render=6LcdJQMaAAAAANjL3YJ44n3_iMZptQK1omgxuuPh&ver=3.0
142.250.74.132400 Bad Request 119 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LcdJQMaAAAAANjL3YJ44n3_iMZptQK1omgxuuPh&ver=3.0
IP 142.250.74.132:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 96612d2b1b529ecfcf09798c3eb100bf
4f32d5d3ccf4d44ae71309dfa8d6f9d396614a27
7c58bfa17d0c600b7455e6bfb3d8371fbf93da20a7a53ed1efad37d692f1cba0
GET /recaptcha/api.js?render=6LcdJQMaAAAAANjL3YJ44n3_iMZptQK1omgxuuPh&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 400 Bad Request
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Sat, 14 Jan 2023 01:13:24 GMT
expires: Sat, 14 Jan 2023 01:13:24 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 119
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-M8Z9SK2
172.217.21.168200 OK 67 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-M8Z9SK2
IP 172.217.21.168:0
File type ASCII text, with very long lines (14989)
Hash ff65efed94a68adb9edd15a249713c81
23eb87309caedfb185c4e921a549e745c0fa3f28
6da4a1cc583714e802314b73e4f5b6a1da8d652a03ee548738c642cb88562969
GET /gtm.js?id=GTM-M8Z9SK2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 14 Jan 2023 01:13:24 GMT
expires: Sat, 14 Jan 2023 01:13:24 GMT
cache-control: private, max-age=900
last-modified: Sat, 14 Jan 2023 00:26:10 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 66726
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash c16b1530bbcd3d9226362c0a6100f014
a49685aa2869a3674bc4c8fc58acd47f655c2111
ff063e27670433897ba82fdf8048fc228587ab2f01c21e2970f03b3df9093539
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 01:13:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 815f1a1e0adac55b38019d2af17b9bbe
6e04467e75f83b4a692cf6716b5b564274a487c7
6d8326d418f56d57221790353c7b220088d63c133901e0b500accb5e420811db
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 01:13:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
karthikestatecottages.com/wp-content/litespeed/js/0a746710db3e9f31836ee0803b5d618a.js?ver=3ff62
217.21.94.112200 OK 98 kB URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/js/0a746710db3e9f31836ee0803b5d618a.js?ver=3ff62
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (54313)
Hash 9c45ff0f76fc56399b5027f2aad356ca
f696245c92e3954ee04eed6df9c8fb3bc180ec75
1871b2531973263a58c2b5605c210d57edd374541477a2c564d5cadb8d0f902d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/0a746710db3e9f31836ee0803b5d618a.js?ver=3ff62 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 14 Jan 2024 07:13:24 GMT
content-type: application/x-javascript
last-modified: Thu, 15 Dec 2022 09:55:09 GMT
etag: "6055e-639aeefd-4b086163767cb031;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 97912
date: Sat, 14 Jan 2023 01:13:24 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.14200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.14:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sat, 14 Jan 2023 00:21:54 GMT
expires: Sat, 14 Jan 2023 02:21:54 GMT
cache-control: public, max-age=7200
age: 3091
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash df489559868985b8815baa1cfaaff191
cb804ae84a7d8c2b6580c97caa484cfb515c1435
ecfca9383aa4ff0bc88dc975918610d1406ac9198e68d26a731a589b073b3ead
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 01:13:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 16fdc7481eb2bf489762b6b6ad440216
8ba97c0fac5d5edf8ae49bccb0ec2ba8e251f646
465edacc998277376411200c9d9e30fdc1290717d1c5857ff226e73a33bfd516
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 01:13:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/wcm/loader.js
142.250.74.35200 OK 1.3 kB URL HTTP/2 www.gstatic.com/wcm/loader.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (1123)
Hash 22300d54ba7faf32360c95915053014c
ea83f097bd99413f9d8fcb08d0312ba7ba1be99f
2c4c9c9d6af1ad12556ab11c8021eb5c254025ce04500bc885b69984dd562ce5
GET /wcm/loader.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1339
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 14 Jan 2023 01:04:17 GMT
expires: Sat, 14 Jan 2023 02:04:17 GMT
cache-control: public, max-age=3600
age: 548
last-modified: Mon, 15 Mar 2021 16:45:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/11035497740/?random=1673658788707&cv=11&fst=1673658788707&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fkarthikestatecottages.com%2Fwp-content%2Fthemes%2Ftwentytwentytwo%2Ftelstra%2Fklnmnbe84765%2Ff11faf83d216b948d5ca04a9f17c2391%2Fcc.php&tiba=Page%20not%20found%20-%20Homestay&auid=1352172011.1673658789&rfmt=3&fmt=4
142.250.74.130200 OK 946 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/11035497740/?random=1673658788707&cv=11&fst=1673658788707&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fkarthikestatecottages.com%2Fwp-content%2Fthemes%2Ftwentytwentytwo%2Ftelstra%2Fklnmnbe84765%2Ff11faf83d216b948d5ca04a9f17c2391%2Fcc.php&tiba=Page%20not%20found%20-%20Homestay&auid=1352172011.1673658789&rfmt=3&fmt=4
IP 142.250.74.130:0
File type ASCII text, with very long lines (2039), with no line terminators
Hash 0a04f770120c7ecf87f1abb947f88114
f00679715bc0368d572704b60398356c883229f0
15829b95d40dff37874d1bc6c937028afed25a70eccab0fadf7568a36c8c0aa6
GET /pagead/viewthroughconversion/11035497740/?random=1673658788707&cv=11&fst=1673658788707&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fkarthikestatecottages.com%2Fwp-content%2Fthemes%2Ftwentytwentytwo%2Ftelstra%2Fklnmnbe84765%2Ff11faf83d216b948d5ca04a9f17c2391%2Fcc.php&tiba=Page%20not%20found%20-%20Homestay&auid=1352172011.1673658789&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 14 Jan 2023 01:13:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 946
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 14-Jan-2023 01:28:25 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash df489559868985b8815baa1cfaaff191
cb804ae84a7d8c2b6580c97caa484cfb515c1435
ecfca9383aa4ff0bc88dc975918610d1406ac9198e68d26a731a589b073b3ead
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 01:13:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 16fdc7481eb2bf489762b6b6ad440216
8ba97c0fac5d5edf8ae49bccb0ec2ba8e251f646
465edacc998277376411200c9d9e30fdc1290717d1c5857ff226e73a33bfd516
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 01:13:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash f96f3b88eebd362c0208a60d27e28068
f244f8dfbc2677fbddcf0024ff7cf343e24205bb
9b3586a498232da2b246b2bd158d7fd75eb9b4ac00ed750bbe670f1b54fe0f2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 01:13:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/11035497740/?random=1673658788707&cv=11&fst=1673658000000&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fkarthikestatecottages.com%2Fwp-content%2Fthemes%2Ftwentytwentytwo%2Ftelstra%2Fklnmnbe84765%2Ff11faf83d216b948d5ca04a9f17c2391%2Fcc.php&tiba=Page%20not%20found%20-%20Homestay&fmt=3&is_vtc=1&random=2776131710&rmt_tld=1&ipr=y
142.250.74.67200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/11035497740/?random=1673658788707&cv=11&fst=1673658000000&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fkarthikestatecottages.com%2Fwp-content%2Fthemes%2Ftwentytwentytwo%2Ftelstra%2Fklnmnbe84765%2Ff11faf83d216b948d5ca04a9f17c2391%2Fcc.php&tiba=Page%20not%20found%20-%20Homestay&fmt=3&is_vtc=1&random=2776131710&rmt_tld=1&ipr=y
IP 142.250.74.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/11035497740/?random=1673658788707&cv=11&fst=1673658000000&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fkarthikestatecottages.com%2Fwp-content%2Fthemes%2Ftwentytwentytwo%2Ftelstra%2Fklnmnbe84765%2Ff11faf83d216b948d5ca04a9f17c2391%2Fcc.php&tiba=Page%20not%20found%20-%20Homestay&fmt=3&is_vtc=1&random=2776131710&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 14 Jan 2023 01:13:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash d0d692a2403153097519cb8408ffee82
accd7fc0529aec289266c18bac196bbb975562e4
7046f0e8b35e0d4988a63346d3d1f273ca78ed9e3414a50e0690abcc578bd322
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 01:13:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash f96f3b88eebd362c0208a60d27e28068
f244f8dfbc2677fbddcf0024ff7cf343e24205bb
9b3586a498232da2b246b2bd158d7fd75eb9b4ac00ed750bbe670f1b54fe0f2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 01:13:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googleadservices.com/pagead/conversion/11035497740/wcm?cc=ZZ&dn=7348847227&cl=JyW3CN61uIUYEIyqkY4p&ct_eid=2
142.250.74.34302 Found 0 B URL HTTP/2 www.googleadservices.com/pagead/conversion/11035497740/wcm?cc=ZZ&dn=7348847227&cl=JyW3CN61uIUYEIyqkY4p&ct_eid=2
IP 142.250.74.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/conversion/11035497740/wcm?cc=ZZ&dn=7348847227&cl=JyW3CN61uIUYEIyqkY4p&ct_eid=2 HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://karthikestatecottages.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://www.google.no/pagead/attribution/wcm?cc=ZZ&dn=7348847227&cl=JyW3CN61uIUYEIyqkY4p
access-control-allow-origin: https://karthikestatecottages.com
access-control-allow-credentials: true
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Sat, 14 Jan 2023 01:13:25 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash aa60c680c7a1735cdaea7e7b08e7fa92
fdf5e35c5ccb7f1c8bc43bcbe9fa5d3a9284c613
d0f0833a46c376208ad78cafb1077c56f0c5465386b676fc075b77b13e9aa31f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 01:13:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.google-analytics.com/g/collect?v=2&tid=G-MXCGE16QRD>m=2oe1a1&_p=678798544&cid=445109841.1673658789&ul=en-us&sr=1280x1024&_s=1&sid=1673658788&sct=1&seg=0&dl=https%3A%2F%2Fkarthikestatecottages.com%2Fwp-content%2Fthemes%2Ftwentytwentytwo%2Ftelstra%2Fklnmnbe84765%2Ff11faf83d216b948d5ca04a9f17c2391%2Fcc.php&dt=Page%20not%20found%20-%20Homestay&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-MXCGE16QRD>m=2oe1a1&_p=678798544&cid=445109841.1673658789&ul=en-us&sr=1280x1024&_s=1&sid=1673658788&sct=1&seg=0&dl=https%3A%2F%2Fkarthikestatecottages.com%2Fwp-content%2Fthemes%2Ftwentytwentytwo%2Ftelstra%2Fklnmnbe84765%2Ff11faf83d216b948d5ca04a9f17c2391%2Fcc.php&dt=Page%20not%20found%20-%20Homestay&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-MXCGE16QRD>m=2oe1a1&_p=678798544&cid=445109841.1673658789&ul=en-us&sr=1280x1024&_s=1&sid=1673658788&sct=1&seg=0&dl=https%3A%2F%2Fkarthikestatecottages.com%2Fwp-content%2Fthemes%2Ftwentytwentytwo%2Ftelstra%2Fklnmnbe84765%2Ff11faf83d216b948d5ca04a9f17c2391%2Fcc.php&dt=Page%20not%20found%20-%20Homestay&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://karthikestatecottages.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://karthikestatecottages.com
date: Sat, 14 Jan 2023 01:13:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/plugins/litespeed-cache/assets/js/webfontloader.min.js
217.21.94.112200 OK 4.6 kB URL HTTP/2 karthikestatecottages.com/wp-content/plugins/litespeed-cache/assets/js/webfontloader.min.js
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 text, with very long lines (12075), with no line terminators
Hash e03020f95691b6e8f22ccf6a95273424
487f20ce26a53ce1520ce19205cb0e38b1917d26
b65d380786d26ecbba5b0bcaea54e57125e79fbbd94074050115293502aabcf1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/litespeed-cache/assets/js/webfontloader.min.js HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1352172011.1673658789; _ga_MXCGE16QRD=GS1.1.1673658788.1.0.1673658790.0.0.0; _ga=GA1.2.445109841.1673658789; _gid=GA1.2.1757840883.1673658789; _gat_UA-207024867-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 14 Jan 2024 07:13:26 GMT
content-type: application/x-javascript
last-modified: Thu, 15 Dec 2022 09:48:13 GMT
etag: "2f42-639aed5d-f5ed02905fbd67e4;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4638
date: Sat, 14 Jan 2023 01:13:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/css/8e1562a058441e964dd3d0daf182c272.css?ver=72e73
217.21.94.112200 OK 722 B URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/css/8e1562a058441e964dd3d0daf182c272.css?ver=72e73
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (2216), with no line terminators
Hash d86ec3eb0568f1d47aff89d3bbd13bb3
4dbc294dbdd918780d24091ee7b877a7a80aced0
3a488242b286ef86b4803de5523cd11e9d25d75d8d4f08e0426398ca3df65100
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/8e1562a058441e964dd3d0daf182c272.css?ver=72e73 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1352172011.1673658789; _ga_MXCGE16QRD=GS1.1.1673658788.1.0.1673658790.0.0.0; _ga=GA1.2.445109841.1673658789; _gid=GA1.2.1757840883.1673658789; _gat_UA-207024867-1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 14 Jan 2024 07:13:26 GMT
content-type: text/css
last-modified: Sat, 14 Jan 2023 01:13:25 GMT
etag: "8a8-63c201b5-57c71face5274d1e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 722
date: Sat, 14 Jan 2023 01:13:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
217.21.94.112200 OK 30 kB URL HTTP/2 karthikestatecottages.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (65447)
Hash cdbbc979b5a5de31a3ac8296e0ef489e
b83000eb74956c3404fb58c87e95aed5bab2ed19
48a6489945365cddb4c75af60f1e6a8a15d6598a1596ef18eb1b4aaad33e96f3
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1352172011.1673658789; _ga_MXCGE16QRD=GS1.1.1673658788.1.0.1673658790.0.0.0; _ga=GA1.2.445109841.1673658789; _gid=GA1.2.1757840883.1673658789; _gat_UA-207024867-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 14 Jan 2024 07:13:26 GMT
content-type: application/x-javascript
last-modified: Tue, 15 Nov 2022 23:40:32 GMT
etag: "15e54-63742370-5ac77096064010de;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30075
date: Sat, 14 Jan 2023 01:13:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/js/3a56923e62cb9e1bcbadcd7e294045ca.js?ver=496cb
217.21.94.112200 OK 4.0 kB URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/js/3a56923e62cb9e1bcbadcd7e294045ca.js?ver=496cb
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (11125)
Hash 6fcfc772873ce01c4baf5ee51d90fc81
8e504bae5c61c880f790fbc715c155bce1d5517f
88f15aaa4a648316b071a23d9241d57076f3c59d79af339dad57958f55e65184
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/3a56923e62cb9e1bcbadcd7e294045ca.js?ver=496cb HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1352172011.1673658789; _ga_MXCGE16QRD=GS1.1.1673658788.1.0.1673658790.0.0.0; _ga=GA1.2.445109841.1673658789; _gid=GA1.2.1757840883.1673658789; _gat_UA-207024867-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 14 Jan 2024 07:13:26 GMT
content-type: application/x-javascript
last-modified: Sat, 14 Jan 2023 01:13:25 GMT
etag: "2bd8-63c201b5-8031e70a7b9d9b36;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3984
date: Sat, 14 Jan 2023 01:13:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/css/f5d9ceb442b128ee5879bc7cc7c6247b.css?ver=e7d53
217.21.94.112200 OK 581 B URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/css/f5d9ceb442b128ee5879bc7cc7c6247b.css?ver=e7d53
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (3290), with no line terminators
Hash 1570bcfdc804ea32e06b14959006627c
1c197798673a5e7370b2e095aad6602b79144732
38c25ed721ec38d7f825f660e705bed942e28044021b3d6fb2ea05d0c088a74f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/f5d9ceb442b128ee5879bc7cc7c6247b.css?ver=e7d53 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1352172011.1673658789; _ga_MXCGE16QRD=GS1.1.1673658788.1.0.1673658790.0.0.0; _ga=GA1.2.445109841.1673658789; _gid=GA1.2.1757840883.1673658789; _gat_UA-207024867-1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 14 Jan 2024 07:13:26 GMT
content-type: text/css
last-modified: Sat, 14 Jan 2023 01:13:25 GMT
etag: "cda-63c201b5-3511ee1f3a71d061;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 581
date: Sat, 14 Jan 2023 01:13:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
217.21.94.112404 Not Found 35 kB URL HTTP/2 karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (27426)
Hash 4dfa624df884c8ccd93429b0cfba2b1e
faa02bde4ee794701c758fd3583624a4c833dc95
3a170f9de920a84cf856ef09690a2daae1e98e7bee188a49cd7b0cb93353f16c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
x-powered-by: PHP/8.1.11
x-dns-prefetch-control: on
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <https://karthikestatecottages.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache-control: public,max-age=3600
x-litespeed-tag: 3b5_HTTP.404,3b5_404,3b5_URL.e746f3da874ee3267ba7dccd2cbc2858,3b5_,3b5_CCSS.29901685d9cbced33f58b45c32eb2c02
x-litespeed-cache: miss
content-encoding: br
vary: Accept-Encoding
date: Sat, 14 Jan 2023 01:13:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/css/28d7a7b6170f194201beacbe7fd5b7ad.css?ver=a7ff3
217.21.94.112200 OK 4.6 kB URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/css/28d7a7b6170f194201beacbe7fd5b7ad.css?ver=a7ff3
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (21941), with no line terminators
Hash 1b94a8896c1bdf34021067f2dee36eef
ee1511c11d182d2fc8141ac87171484bbd0a4ceb
2b4bd018f13bdb3693d37c737f775f80971ac14d8fa71a0efdd1dd14a14d9289
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/28d7a7b6170f194201beacbe7fd5b7ad.css?ver=a7ff3 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1352172011.1673658789; _ga_MXCGE16QRD=GS1.1.1673658788.1.0.1673658790.0.0.0; _ga=GA1.2.445109841.1673658789; _gid=GA1.2.1757840883.1673658789; _gat_UA-207024867-1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 14 Jan 2024 07:13:26 GMT
content-type: text/css
last-modified: Sat, 14 Jan 2023 01:13:25 GMT
etag: "55b5-63c201b5-f02e2ae57073ee8a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4640
date: Sat, 14 Jan 2023 01:13:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/css/c238ec3dbb66d139abe9642101d15490.css?ver=0ef9e
217.21.94.112200 OK 6.1 kB URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/css/c238ec3dbb66d139abe9642101d15490.css?ver=0ef9e
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (28710)
Hash 18def2ee9247c732010a4e6dd988562d
d6527b6a930a6bc3a4833894576573fe83ec7fca
10637ef1d303479ae08da09b9c95d0644d386ab48606e558724ccd971a0e7429
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/c238ec3dbb66d139abe9642101d15490.css?ver=0ef9e HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1352172011.1673658789; _ga_MXCGE16QRD=GS1.1.1673658788.1.0.1673658790.0.0.0; _ga=GA1.2.445109841.1673658789; _gid=GA1.2.1757840883.1673658789; _gat_UA-207024867-1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 14 Jan 2024 07:13:26 GMT
content-type: text/css
last-modified: Sat, 14 Jan 2023 01:13:25 GMT
etag: "a1b0-63c201b5-dc9c55b67a30ed2a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6134
date: Sat, 14 Jan 2023 01:13:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/css/f730e910073d3407fc066c352d75ef27.css?ver=77eaa
217.21.94.112200 OK 5.3 kB URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/css/f730e910073d3407fc066c352d75ef27.css?ver=77eaa
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (42873), with no line terminators
Hash 841cbef9783716c9d2c1096cbcc379d3
07941a598874ebf14e2fe4ea01cdc88d298db2d9
7d24dd6724e2093c4c08f1dc502fdfdb90b797f41d587b893cef50bc4f694c21
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/f730e910073d3407fc066c352d75ef27.css?ver=77eaa HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1352172011.1673658789; _ga_MXCGE16QRD=GS1.1.1673658788.1.0.1673658790.0.0.0; _ga=GA1.2.445109841.1673658789; _gid=GA1.2.1757840883.1673658789; _gat_UA-207024867-1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 14 Jan 2024 07:13:26 GMT
content-type: text/css
last-modified: Sat, 14 Jan 2023 01:13:25 GMT
etag: "a779-63c201b5-9cfa010c723bdff6;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5291
date: Sat, 14 Jan 2023 01:13:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/js/e7c1d41e270196d688189a9f163b0202.js?ver=cbd88
217.21.94.112200 OK 14 kB URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/js/e7c1d41e270196d688189a9f163b0202.js?ver=cbd88
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (58141)
Hash 58ba9252e425c1c2b0bf6f9eb0e30309
8eaa7ab296a7720e66205454a734f3e947d9e3a1
e677eb91650ac420df9cfc58ad415417cfb5d9fe5e1f630b5dace289bc2779ac
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/e7c1d41e270196d688189a9f163b0202.js?ver=cbd88 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1352172011.1673658789; _ga_MXCGE16QRD=GS1.1.1673658788.1.0.1673658790.0.0.0; _ga=GA1.2.445109841.1673658789; _gid=GA1.2.1757840883.1673658789; _gat_UA-207024867-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 14 Jan 2024 07:13:26 GMT
content-type: application/x-javascript
last-modified: Sat, 14 Jan 2023 01:13:25 GMT
etag: "e31f-63c201b5-d8d442c5ad056fe3;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 14231
date: Sat, 14 Jan 2023 01:13:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash b5628887325331ad3d660f7208e1995c
9e4bf04468a7aed126488ccb5552a8e02610f6dd
5cd181d6728fc5f0f4d88407b97af61db39c5a38feebdeb2c21335cf4402fca4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 01:13:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
karthikestatecottages.com/wp-content/et-cache/275/et-core-unified-cpt-deferred-275.min.css?ver=1673179365
217.21.94.112200 OK 943 B URL HTTP/2 karthikestatecottages.com/wp-content/et-cache/275/et-core-unified-cpt-deferred-275.min.css?ver=1673179365
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (9089), with no line terminators
Hash 73aae09117c847158f6b83c0cc9bb7bc
d672a6ee007db203d7292c0508a277ada5f6cdd2
35be656eeb7cb93aa0f41e2f03e514ccb39f50f770c8d159bcf280f1889c08b2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/et-cache/275/et-core-unified-cpt-deferred-275.min.css?ver=1673179365 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1352172011.1673658789; _ga_MXCGE16QRD=GS1.1.1673658788.1.0.1673658790.0.0.0; _ga=GA1.2.445109841.1673658789; _gid=GA1.2.1757840883.1673658789; _gat_UA-207024867-1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 14 Jan 2024 07:13:26 GMT
content-type: text/css
last-modified: Sun, 08 Jan 2023 12:02:45 GMT
etag: "2381-63bab0e5-1cd16b35e73f334d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 943
date: Sat, 14 Jan 2023 01:13:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash b5628887325331ad3d660f7208e1995c
9e4bf04468a7aed126488ccb5552a8e02610f6dd
5cd181d6728fc5f0f4d88407b97af61db39c5a38feebdeb2c21335cf4402fca4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 01:13:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
karthikestatecottages.com/wp-content/litespeed/css/417fb907586e584e0d226d2b21711b92.css?ver=33072
217.21.94.112200 OK 930 B URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/css/417fb907586e584e0d226d2b21711b92.css?ver=33072
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (7397), with no line terminators
Hash 352832de6465ee04d80245443fe0c516
ae053adcfb86d8ed0b201371595785e6f4a6a9d3
d0af500576df26554b62e1b724a712e5f0265d34b82e7dfa583989fff1b64127
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/417fb907586e584e0d226d2b21711b92.css?ver=33072 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1352172011.1673658789; _ga_MXCGE16QRD=GS1.1.1673658788.1.0.1673658790.0.0.0; _ga=GA1.2.445109841.1673658789; _gid=GA1.2.1757840883.1673658789; _gat_UA-207024867-1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 14 Jan 2024 07:13:26 GMT
content-type: text/css
last-modified: Sat, 14 Jan 2023 01:13:25 GMT
etag: "1ce5-63c201b5-969e8c8b3d16ad2b;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 930
date: Sat, 14 Jan 2023 01:13:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/css/da19b69de124bba871c59f991d5abb78.css?ver=4cb11
217.21.94.112200 OK 942 B URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/css/da19b69de124bba871c59f991d5abb78.css?ver=4cb11
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (8674), with no line terminators
Hash b0e72376ea3b304725bc6c8fdbced34b
391af0626aa6e075c3304af07a6dc5fae16cab1a
280a9ba71ff0f571a47d007a541569adffba5b7d35b5ff1e19dd10d6c8188c98
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/da19b69de124bba871c59f991d5abb78.css?ver=4cb11 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1352172011.1673658789; _ga_MXCGE16QRD=GS1.1.1673658788.1.0.1673658790.0.0.0; _ga=GA1.2.445109841.1673658789; _gid=GA1.2.1757840883.1673658789; _gat_UA-207024867-1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 14 Jan 2024 07:13:26 GMT
content-type: text/css
last-modified: Sat, 14 Jan 2023 01:13:25 GMT
etag: "21e2-63c201b5-45267b20d1758b16;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 942
date: Sat, 14 Jan 2023 01:13:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/js/cfe9f73e6db21967110cbb9e7d6b872b.js?ver=9bf4c
217.21.94.112200 OK 2.8 kB URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/js/cfe9f73e6db21967110cbb9e7d6b872b.js?ver=9bf4c
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (9936)
Hash f3872a7035110eefef692d7c374e3510
661bdafb532a89dc5d25a429ca31d0b395663e04
a898f1bb3087ef50045f0f32b632266669a25ae66502b27e87c3633496a34e15
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/cfe9f73e6db21967110cbb9e7d6b872b.js?ver=9bf4c HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1352172011.1673658789; _ga_MXCGE16QRD=GS1.1.1673658788.1.0.1673658790.0.0.0; _ga=GA1.2.445109841.1673658789; _gid=GA1.2.1757840883.1673658789; _gat_UA-207024867-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 14 Jan 2024 07:13:26 GMT
content-type: application/x-javascript
last-modified: Sat, 14 Jan 2023 01:13:25 GMT
etag: "26d2-63c201b5-c1bd25cf69e90e6d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2806
date: Sat, 14 Jan 2023 01:13:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/js/c85f03e1a7cc5be42fa7fa7c1b037401.js?ver=41d40
217.21.94.112200 OK 3.7 kB URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/js/c85f03e1a7cc5be42fa7fa7c1b037401.js?ver=41d40
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type HTML document, ASCII text, with very long lines (12309)
Hash e5ed5f6cd0d263d8d07d0d66e9464ea9
6174407a0b59fc129644dc44aed5bf3e53ca11bd
e5c88710daa953488ab74e46966a9900f1903c05960fa84612abf16587a166be
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/c85f03e1a7cc5be42fa7fa7c1b037401.js?ver=41d40 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1352172011.1673658789; _ga_MXCGE16QRD=GS1.1.1673658788.1.0.1673658790.0.0.0; _ga=GA1.2.445109841.1673658789; _gid=GA1.2.1757840883.1673658789; _gat_UA-207024867-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 14 Jan 2024 07:13:26 GMT
content-type: application/x-javascript
last-modified: Sat, 14 Jan 2023 01:13:25 GMT
etag: "3017-63c201b5-9e59245d9636223a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3700
date: Sat, 14 Jan 2023 01:13:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
216.58.207.227200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Hash 17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 13 Jan 2023 13:33:12 GMT
expires: Sat, 13 Jan 2024 13:33:12 GMT
cache-control: public, max-age=31536000
age: 42014
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/js/29fb4cef923a216602b788d65cf5cc5d.js?ver=e8bb9
217.21.94.112200 OK 127 kB URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/js/29fb4cef923a216602b788d65cf5cc5d.js?ver=e8bb9
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (65467)
Size 127 kB (126701 bytes)
Hash f184f988e5c590a480c3b7c6909bfa7e
9e48089bd84e6eb409325052ceb9aeae89c944ea
350d056454d4d55dd19a8812297a11dc5211171c82beaf1ab5837a73ce580845
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/29fb4cef923a216602b788d65cf5cc5d.js?ver=e8bb9 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1352172011.1673658789; _ga_MXCGE16QRD=GS1.1.1673658788.1.0.1673658790.0.0.0; _ga=GA1.2.445109841.1673658789; _gid=GA1.2.1757840883.1673658789; _gat_UA-207024867-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 14 Jan 2024 07:13:26 GMT
content-type: application/x-javascript
last-modified: Sat, 14 Jan 2023 01:13:26 GMT
etag: "42f6a-63c201b6-bc0be01c141ac877;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 14 Jan 2023 01:13:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 09 Jan 2023 18:52:41 GMT
expires: Tue, 09 Jan 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 368445
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 13 Jan 2023 07:08:09 GMT
expires: Sat, 13 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 65117
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 13 Jan 2023 07:08:09 GMT
expires: Sat, 13 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 65117
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 13 Jan 2023 07:08:09 GMT
expires: Sat, 13 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 65117
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 13 Jan 2023 07:08:09 GMT
expires: Sat, 13 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 65117
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/js/fee2d6f9c7e7dd016098681f67c4fe44.js?ver=5978d
217.21.94.112200 OK 48 kB URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/js/fee2d6f9c7e7dd016098681f67c4fe44.js?ver=5978d
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (6475)
Hash d96ea36af0552497b1a9bc3e035efcda
789ea8e02c7bfdca69b251e3dc2c8e56095f08c9
0d29d17ed4c34ee26911b6b06c779429b98bca8bc062d36798534040525e7b1f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/fee2d6f9c7e7dd016098681f67c4fe44.js?ver=5978d HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1352172011.1673658789; _ga_MXCGE16QRD=GS1.1.1673658788.1.0.1673658790.0.0.0; _ga=GA1.2.445109841.1673658789; _gid=GA1.2.1757840883.1673658789; _gat_UA-207024867-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 14 Jan 2024 07:13:26 GMT
content-type: application/x-javascript
last-modified: Sat, 14 Jan 2023 01:13:26 GMT
etag: "194d-63c201b6-b4c94f021d8fc0ec;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 14 Jan 2023 01:13:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 13 Jan 2023 07:08:09 GMT
expires: Sat, 13 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 65117
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 09 Jan 2023 18:52:41 GMT
expires: Tue, 09 Jan 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 368445
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 09 Jan 2023 18:52:41 GMT
expires: Tue, 09 Jan 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 368445
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 13 Jan 2023 07:08:09 GMT
expires: Sat, 13 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 65117
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 09 Jan 2023 18:52:41 GMT
expires: Tue, 09 Jan 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 368445
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/js/12337bc2d6f5fc0d02755cbd085a32d4.js?ver=a5970
217.21.94.112200 OK 32 kB URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/js/12337bc2d6f5fc0d02755cbd085a32d4.js?ver=a5970
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type HTML document, ASCII text, with very long lines (593)
Hash 5926485b3923be06ac5cb0d83f44619c
48968f8f1ab8c58f44035558e8e9e5a16e7c846c
55b9b1523b198b3f935ca1875b74b545e316dc1ac292f61a71c969a9dc64d687
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/12337bc2d6f5fc0d02755cbd085a32d4.js?ver=a5970 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1352172011.1673658789; _ga_MXCGE16QRD=GS1.1.1673658788.1.0.1673658790.0.0.0; _ga=GA1.2.445109841.1673658789; _gid=GA1.2.1757840883.1673658789; _gat_UA-207024867-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 14 Jan 2024 07:13:26 GMT
content-type: application/x-javascript
last-modified: Sat, 14 Jan 2023 01:13:26 GMT
etag: "995-63c201b6-1e1996578e3fbf46;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 14 Jan 2023 01:13:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 13 Jan 2023 07:08:09 GMT
expires: Sat, 13 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 65117
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
216.58.207.227200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 13 Jan 2023 13:33:16 GMT
expires: Sat, 13 Jan 2024 13:33:16 GMT
cache-control: public, max-age=31536000
age: 42010
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
216.58.207.227200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 13 Jan 2023 13:33:16 GMT
expires: Sat, 13 Jan 2024 13:33:16 GMT
cache-control: public, max-age=31536000
age: 42010
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
216.58.207.227200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 13 Jan 2023 13:33:16 GMT
expires: Sat, 13 Jan 2024 13:33:16 GMT
cache-control: public, max-age=31536000
age: 42010
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
216.58.207.227200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 13 Jan 2023 13:33:16 GMT
expires: Sat, 13 Jan 2024 13:33:16 GMT
cache-control: public, max-age=31536000
age: 42010
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
216.58.207.227200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 13 Jan 2023 13:33:16 GMT
expires: Sat, 13 Jan 2024 13:33:16 GMT
cache-control: public, max-age=31536000
age: 42010
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
216.58.207.227200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 13 Jan 2023 13:33:16 GMT
expires: Sat, 13 Jan 2024 13:33:16 GMT
cache-control: public, max-age=31536000
age: 42010
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
216.58.207.227200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 13 Jan 2023 13:33:16 GMT
expires: Sat, 13 Jan 2024 13:33:16 GMT
cache-control: public, max-age=31536000
age: 42010
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
216.58.207.227200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Hash 17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 13 Jan 2023 13:33:12 GMT
expires: Sat, 13 Jan 2024 13:33:12 GMT
cache-control: public, max-age=31536000
age: 42014
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
216.58.207.227200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Hash 17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 13 Jan 2023 13:33:12 GMT
expires: Sat, 13 Jan 2024 13:33:12 GMT
cache-control: public, max-age=31536000
age: 42014
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800%7CMontserrat:100,200,300,regular,500,600,700,800,900,100italic,200italic,300italic,italic,500italic,600italic,700italic,800italic,900italic&subset=latin,latin-ext,latin,latin-ext&display=swap
142.250.74.74200 OK 50 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800%7CMontserrat:100,200,300,regular,500,600,700,800,900,100italic,200italic,300italic,italic,500italic,600italic,700italic,800italic,900italic&subset=latin,latin-ext,latin,latin-ext&display=swap
IP 142.250.74.74:0
Hash 22f90068bbc16952625dd66e810e0a32
d082a2832d64ab432dcfaee2062efba24595af45
19aa086691337a096d1de6deca5bfda588e13b4e3d1bb6607b6bad268da91536
GET /css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800%7CMontserrat:100,200,300,regular,500,600,700,800,900,100italic,200italic,300italic,italic,500italic,600italic,700italic,800italic,900italic&subset=latin,latin-ext,latin,latin-ext&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 14 Jan 2023 01:13:26 GMT
date: Sat, 14 Jan 2023 01:13:26 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
216.58.207.227200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Hash 17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 13 Jan 2023 13:33:12 GMT
expires: Sat, 13 Jan 2024 13:33:12 GMT
cache-control: public, max-age=31536000
age: 42014
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
216.58.207.227200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 13 Jan 2023 13:33:16 GMT
expires: Sat, 13 Jan 2024 13:33:16 GMT
cache-control: public, max-age=31536000
age: 42010
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
216.58.207.227200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 13 Jan 2023 13:33:16 GMT
expires: Sat, 13 Jan 2024 13:33:16 GMT
cache-control: public, max-age=31536000
age: 42010
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/js/91aa9e0adf0c8c2ae3f443d1848ace02.js?ver=1f875
217.21.94.112200 OK 3.6 kB URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/js/91aa9e0adf0c8c2ae3f443d1848ace02.js?ver=1f875
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (413)
Hash 23773dc20c460cb65f6a6bb17f74323b
b66352e69e8b7283e896a2483d3d497bd996da15
d61055c1293be14c3cab153f0c07fecfc12ceebe35a1cd0367ed0b7a52acee89
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/91aa9e0adf0c8c2ae3f443d1848ace02.js?ver=1f875 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1352172011.1673658789; _ga_MXCGE16QRD=GS1.1.1673658788.1.0.1673658790.0.0.0; _ga=GA1.2.445109841.1673658789; _gid=GA1.2.1757840883.1673658789; _gat_UA-207024867-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 14 Jan 2024 07:13:26 GMT
content-type: application/x-javascript
last-modified: Sat, 14 Jan 2023 01:13:26 GMT
etag: "37c-63c201b6-273e8902a07ad094;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 14 Jan 2023 01:13:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/et-cache/notfound/et-divi-dynamic-tb-306-tb-275-late.css
217.21.94.112200 OK 6.1 kB URL HTTP/2 karthikestatecottages.com/wp-content/et-cache/notfound/et-divi-dynamic-tb-306-tb-275-late.css
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (11014)
Hash 387e9ef3738a5cb17dd4664b99e0973e
d4833aa77d571035505ea624d9d22ef19b4ccd60
00f12e17430b1cc8d2f4950da660065cb3b7ed11e0e360a8de19cee6df8038ff
GET /wp-content/et-cache/notfound/et-divi-dynamic-tb-306-tb-275-late.css HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1352172011.1673658789; _ga_MXCGE16QRD=GS1.1.1673658788.1.0.1673658790.0.0.0; _ga=GA1.2.445109841.1673658789; _gid=GA1.2.1757840883.1673658789; _gat_UA-207024867-1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 14 Jan 2024 07:13:26 GMT
content-type: text/css
last-modified: Sun, 08 Jan 2023 12:02:45 GMT
etag: "a1b0-63bab0e5-53429776e0865fcc;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6140
date: Sat, 14 Jan 2023 01:13:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/uploads/2020/12/Logo-1-white.png.webp
217.21.94.112200 OK 3.9 kB URL HTTP/2 karthikestatecottages.com/wp-content/uploads/2020/12/Logo-1-white.png.webp
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image\012- data
Hash f55ac4812010cb55d5b6ed20e9ee480d
ea20922ad6b4d6a122948a76390859834969c144
575671cd4b3d599ba3385b0257a7485e67d8173132e051249e628bd29ec0dfc7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/12/Logo-1-white.png.webp HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1352172011.1673658789; _ga_MXCGE16QRD=GS1.1.1673658788.1.0.1673658790.0.0.0; _ga=GA1.2.445109841.1673658789; _gid=GA1.2.1757840883.1673658789; _gat_UA-207024867-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 14 Jan 2024 07:13:26 GMT
content-type: image/webp
last-modified: Mon, 28 Nov 2022 17:23:35 GMT
etag: "f64-6384ee97-4a3380b2f4a5b5ad;;;"
accept-ranges: bytes
content-length: 3940
date: Sat, 14 Jan 2023 01:13:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/uploads/2020/12/03-a.png.webp
217.21.94.112200 OK 1.5 kB URL HTTP/2 karthikestatecottages.com/wp-content/uploads/2020/12/03-a.png.webp
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image\012- data
Hash c74ead7b0feb3ace4aa1c0d31e3dfeec
3915416d9cbbfe6a8d57f7da3d945ee720098d92
4e35d6ce524adf3e9615fa5d223d9fc3e4db93359562166e150014004b735ba5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/12/03-a.png.webp HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1352172011.1673658789; _ga_MXCGE16QRD=GS1.1.1673658788.1.0.1673658790.0.0.0; _ga=GA1.2.445109841.1673658789; _gid=GA1.2.1757840883.1673658789; _gat_UA-207024867-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 14 Jan 2024 07:13:26 GMT
content-type: image/webp
last-modified: Mon, 28 Nov 2022 17:35:57 GMT
etag: "5c4-6384f17d-91a0774678322357;;;"
accept-ranges: bytes
content-length: 1476
date: Sat, 14 Jan 2023 01:13:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/uploads/2020/12/favicon.png
217.21.94.112200 OK 922 B URL HTTP/2 karthikestatecottages.com/wp-content/uploads/2020/12/favicon.png
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash c29c04f3ade9a3e3645e662cb22aed5e
224edb0765d28f7398b8918b27b4dc85ebac49bf
ec1f90d418fb4a7546dbb25bf2775731e49949fcfb584057428090de5d7f25af
GET /wp-content/uploads/2020/12/favicon.png HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1352172011.1673658789; _ga_MXCGE16QRD=GS1.1.1673658788.1.0.1673658790.0.0.0; _ga=GA1.2.445109841.1673658789; _gid=GA1.2.1757840883.1673658789; _gat_UA-207024867-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 14 Jan 2024 07:13:26 GMT
content-type: image/png
last-modified: Mon, 28 Nov 2022 17:26:28 GMT
etag: "39a-6384ef44-b305bb83a2bd16f6;;;"
accept-ranges: bytes
content-length: 922
date: Sat, 14 Jan 2023 01:13:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/uploads/2020/12/favicon.png
217.21.94.112200 OK 922 B URL HTTP/2 karthikestatecottages.com/wp-content/uploads/2020/12/favicon.png
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash c29c04f3ade9a3e3645e662cb22aed5e
224edb0765d28f7398b8918b27b4dc85ebac49bf
ec1f90d418fb4a7546dbb25bf2775731e49949fcfb584057428090de5d7f25af
GET /wp-content/uploads/2020/12/favicon.png HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1352172011.1673658789; _ga_MXCGE16QRD=GS1.1.1673658788.1.0.1673658790.0.0.0; _ga=GA1.2.445109841.1673658789; _gid=GA1.2.1757840883.1673658789; _gat_UA-207024867-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 14 Jan 2024 07:13:26 GMT
content-type: image/png
last-modified: Mon, 28 Nov 2022 17:26:28 GMT
etag: "39a-6384ef44-b305bb83a2bd16f6;;;"
accept-ranges: bytes
content-length: 922
date: Sat, 14 Jan 2023 01:13:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.ttf
217.21.94.112200 OK 36 kB URL HTTP/2 karthikestatecottages.com/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.ttf
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, modules \012- data
Hash 92d4c4b52b85bddba9e00893d78a9228
ef9dab27a60868e213d2b56da5f7ee40a5b713ea
392b1fd700e55cbc3279f35f7d60c3ee75e2b7698e83e55349dbfca9b664a06c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/core/admin/fonts/modules/all/modules.ttf HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/litespeed/css/c238ec3dbb66d139abe9642101d15490.css?ver=0ef9e
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1352172011.1673658789; _ga_MXCGE16QRD=GS1.1.1673658788.1.0.1673658790.0.0.0; _ga=GA1.2.445109841.1673658789; _gid=GA1.2.1757840883.1673658789; _gat_UA-207024867-1=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 14 Jan 2024 07:13:26 GMT
content-type: application/x-font-ttf
last-modified: Sat, 26 Nov 2022 14:52:15 GMT
etag: "168f0-6382281f-c0dd069465cf74ce;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 36345
date: Sat, 14 Jan 2023 01:13:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/plugins/chaty/images/whatsapp.png
217.21.94.112200 OK 106 kB URL HTTP/2 karthikestatecottages.com/wp-content/plugins/chaty/images/whatsapp.png
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type PNG image data, 550 x 999, 8-bit colormap, non-interlaced\012- data
Size 106 kB (105898 bytes)
Hash ac16b58dab286451f37dc9e0286ccbea
763cbea1c8a9a97f60fc8abecc8304d6e67aadc5
69c383a1cca56628ad0bc45c83a67112b0851d57a77c18252f79de50364af9d4
GET /wp-content/plugins/chaty/images/whatsapp.png HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/litespeed/css/28d7a7b6170f194201beacbe7fd5b7ad.css?ver=a7ff3
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1352172011.1673658789; _ga_MXCGE16QRD=GS1.1.1673658788.1.0.1673658790.0.0.0; _ga=GA1.2.445109841.1673658789; _gid=GA1.2.1757840883.1673658789; _gat_UA-207024867-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 14 Jan 2024 07:13:26 GMT
content-type: image/png
last-modified: Thu, 15 Dec 2022 09:44:11 GMT
etag: "19daa-639aec6b-1f93abf7bd896b75;;;"
accept-ranges: bytes
content-length: 105898
date: Sat, 14 Jan 2023 01:13:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/js/43561677c57e5b1d434f961aa7435971.js?ver=35971
217.21.94.112200 OK 0 B URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/js/43561677c57e5b1d434f961aa7435971.js?ver=35971
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/43561677c57e5b1d434f961aa7435971.js?ver=35971 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1352172011.1673658789; _ga_MXCGE16QRD=GS1.1.1673658788.1.0.1673658790.0.0.0; _ga=GA1.2.445109841.1673658789; _gid=GA1.2.1757840883.1673658789; _gat_UA-207024867-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 14 Jan 2024 07:13:26 GMT
content-type: application/x-javascript
last-modified: Sat, 14 Jan 2023 01:13:26 GMT
etag: "3e9-63c201b6-be28dfc350b55b61;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 14 Jan 2023 01:13:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/js/370f679cbafa77014ada20d864a14360.js?ver=257f6
217.21.94.112200 OK 0 B URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/js/370f679cbafa77014ada20d864a14360.js?ver=257f6
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/370f679cbafa77014ada20d864a14360.js?ver=257f6 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1352172011.1673658789; _ga_MXCGE16QRD=GS1.1.1673658788.1.0.1673658790.0.0.0; _ga=GA1.2.445109841.1673658789; _gid=GA1.2.1757840883.1673658789; _gat_UA-207024867-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sun, 14 Jan 2024 07:13:26 GMT
content-type: application/x-javascript
last-modified: Sat, 14 Jan 2023 01:13:26 GMT
etag: "45a0-63c201b6-cf6f872a1aae97cd;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 14 Jan 2023 01:13:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
217.21.94.112404 Not Found 0 B URL HTTP/2 karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/f11faf83d216b948d5ca04a9f17c2391/cc.php HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 404 Not Found
x-powered-by: PHP/8.1.11
x-dns-prefetch-control: on
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <https://karthikestatecottages.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache-control: public,max-age=3600
x-litespeed-tag: 3b5_HTTP.404,3b5_404,3b5_URL.e746f3da874ee3267ba7dccd2cbc2858,3b5_guest,3b5_,3b5_CCSS.7befda9636ba492231eff827c679fbce,3b5_MIN.81b9239853fbd6be8e74b15e317445e9.css,3b5_MIN.0a746710db3e9f31836ee0803b5d618a.js
x-litespeed-cache: miss
content-encoding: br
vary: Accept-Encoding
date: Sat, 14 Jan 2023 01:13:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2