r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 24cdc937930ac2ef9c8f46ba1deabcc5
397417929951bf20f235d5f91510163ac213dc71
eb128aec099dbf1919ee5d965221e904ad3a2162583683cec44518640b505447
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB128AEC099DBF1919EE5D965221E904AD3A2162583683CEC44518640B505447"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5684
Expires: Mon, 03 Oct 2022 14:24:09 GMT
Date: Mon, 03 Oct 2022 12:49:25 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
18.164.68.15200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 18.164.68.15:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 03 Oct 2022 12:03:32 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 73afe8565c6794e933a665f6672c4b12.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P4
X-Amz-Cf-Id: -j4M_5ocmReBy-XMYaB5zceQnWJmFs2JbpRp0dCoT9cLZDRU5hXYvw==
Age: 2753
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
216.137.44.94200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 216.137.44.94:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 03 Oct 2022 03:34:13 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 f4d9e5aa78d9bbc69bc2a7f8ca614182.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P2
x-amz-cf-id: DHYMPRgtKuv7wWAaGvwVP187xwQj5uKt5cTzKldr0x2aKjhASgNuVg==
age: 33368
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 12:49:25 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
18.164.68.15200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 18.164.68.15:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Mon, 03 Oct 2022 12:32:53 GMT
Expires: Mon, 03 Oct 2022 13:03:42 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 c3941d2249641ec51690205d7b1084ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P4
X-Amz-Cf-Id: nrEY9z7NHBwijBLGrAjFnIikhzydiefdSWsIlYygi3piLQlsrqom6Q==
Age: 993
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 321fa9a78e31dcb66601ac5890bfba73
c325580db79bde6fd00d2d0c7e3f675e4c0046bb
83029b324b4c36522ae47eef9614c124b0ad2994de412d7ea82f990ad8ae9d92
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4681
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 03 Oct 2022 12:49:26 GMT
Last-Modified: Mon, 03 Oct 2022 11:31:25 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
44.240.140.78101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.240.140.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: dvI9gIvrTf3YBSNCN6vxbg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: cwgNBfkbNDjLIirA435irJMrSNE=
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css?ver=6.0
104.17.25.14200 OK 5.6 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css?ver=6.0
IP 104.17.25.14:0
File type ASCII text, with very long lines (30837)
Hash 109d1ed85cd01f9cdab73a4cac5bf80d
d6c6498ad46de2d8e2008a8ff68e364ae7f16b32
8b3a74fe462f5b3c0635995fd721a60eb640e237680b0b532b96711f2823e8bc
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css?ver=6.0 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://drhandyman.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 03 Oct 2022 12:49:27 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1607744
expires: Sat, 23 Sep 2023 12:49:27 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fl6%2BzQkDCOc81vk2niOnx2GE%2BfKZtO%2FIJR4RbIF%2Fcuc%2FOd4mjkafk0x%2B6dz1Xh3uVlcvTJfwuy5PBIII9Lk0TmwjXGD0kEg0ffsJ7XOQwqgpWl91KJE%2Beuq4aRjQ0Dw3hBb%2BMZiH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7545cc400d850b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800&subset=latin,latin-ext&display=swap
142.250.74.10200 OK 1.1 kB URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800&subset=latin,latin-ext&display=swap
IP 142.250.74.10:0
Hash 728d47ab8459b1bcd3b771cfed31324e
40cfac2af92576974d4baed161e936968ecefbe8
1859e461f7cb147df59c0a0f416c3cf7368e647b09727fd9e55c598e5b5c29d6
GET /css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800&subset=latin,latin-ext&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Mon, 03 Oct 2022 12:49:27 GMT
Date: Mon, 03 Oct 2022 12:49:27 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12451
Expires: Mon, 03 Oct 2022 16:16:59 GMT
Date: Mon, 03 Oct 2022 12:49:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12451
Expires: Mon, 03 Oct 2022 16:16:59 GMT
Date: Mon, 03 Oct 2022 12:49:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12451
Expires: Mon, 03 Oct 2022 16:16:59 GMT
Date: Mon, 03 Oct 2022 12:49:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12451
Expires: Mon, 03 Oct 2022 16:16:59 GMT
Date: Mon, 03 Oct 2022 12:49:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12451
Expires: Mon, 03 Oct 2022 16:16:59 GMT
Date: Mon, 03 Oct 2022 12:49:28 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98a090b5-0736-4ddd-b6ca-3c76661e7051.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98a090b5-0736-4ddd-b6ca-3c76661e7051.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 721a8d8f94c3796abf021978fcdbc831
3fc3aeae907a0ce0db21753c67c1000681e48b8e
cb497b15e7c2e49930b99f8d6659f0394acefb7b11613ca04397ee782dac759d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98a090b5-0736-4ddd-b6ca-3c76661e7051.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8158
x-amzn-requestid: 424c8c6c-7075-4ace-97e6-2b0a609d1b7e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZZXDxGRlIAMFZrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a054b-046d963a345c15e81dc74e4d;Sampled=0
x-amzn-remapped-date: Sun, 02 Oct 2022 21:40:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: AM8Ox9ObWGoXI-QnnoI7QkY5mOh8j6xBPetTrhyVktVO40ekk4X2Eg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 21:45:27 GMT
age: 54241
etag: "3fc3aeae907a0ce0db21753c67c1000681e48b8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 206fb65e75dbadf119512f71e0b78402
58ff0bf8ce7528b303d28bab01a80ad721705569
56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: TVz3oiy-Z2r9lGFDgsnGNxotvvAPeOaa7LMzqs432QjZpZo-PNt1-g==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 04:42:51 GMT
age: 29197
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F780fc623-fddc-49c7-99c9-1dd66ce64db7.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F780fc623-fddc-49c7-99c9-1dd66ce64db7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bfb6fbd0b91416a5a7cc7f7d0fcbf27c
ced4806b7cc4d08e2c3f1c5e591184f462e86ec2
9a217da43a32c70ebd39b3076b3c14b16d8931ccebfe5d41139fa706b3b3e149
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F780fc623-fddc-49c7-99c9-1dd66ce64db7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8279
x-amzn-requestid: fed6efac-3419-4ecc-89f8-d4c3e0c22915
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZZWbsHpBIAMFT1g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a044a-5fc3bf5b7126d4a835d93e3d;Sampled=0
x-amzn-remapped-date: Sun, 02 Oct 2022 21:36:10 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 7g6tucmoqeX5RFtet3L9XllP1G6fx4RWt5XqTsVvhtxZnPxV0EVpqA==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 21:57:37 GMT
age: 53511
etag: "ced4806b7cc4d08e2c3f1c5e591184f462e86ec2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd0be942-f345-4da4-974e-a9fe16b90b3c.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd0be942-f345-4da4-974e-a9fe16b90b3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 523edd86af4757d0bc5fa5b3b8a3596a
8118ee462077c291b9d6f1402b85b55a9ceba8c2
c27de9970317636df8c4a517a9ed38e573235b351bf92c9b8bb1f964cd100031
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd0be942-f345-4da4-974e-a9fe16b90b3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9083
x-amzn-requestid: fda71fd3-ef25-4a63-94ae-1bfc8aef8d14
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZZXD2H0DIAMFjrg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a054b-198915fc17ce3dab571b7575;Sampled=0
x-amzn-remapped-date: Sun, 02 Oct 2022 21:40:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _JxPe8uPQIgRKoJxtJAKjXpVy1hCW0rFcs8K_erJOHbVNpw339Pz6w==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 21:45:27 GMT
age: 54241
etag: "8118ee462077c291b9d6f1402b85b55a9ceba8c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F382faf63-655f-460a-9545-c4d888a724c6.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F382faf63-655f-460a-9545-c4d888a724c6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 36debc920b17e124779c01af9101a59e
b105f7bf041365d644c98c7e11ffa75e4656d29d
f518ccd094d0e187b91cfd36dfb282566c0d088ce13501157dc97c702211d938
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F382faf63-655f-460a-9545-c4d888a724c6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10839
x-amzn-requestid: 67718257-ee21-44f0-80bd-f15cea37ac5c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZZWcKFD0IAMFV7Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a044d-09a45a242bf4bdfe0f4608e4;Sampled=0
x-amzn-remapped-date: Sun, 02 Oct 2022 21:36:13 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: dOlitYNRYQsyiYLagdUWS2MmO34k8otqQ5yKZ7f4zzbj1HxhAzZoqQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 21:44:43 GMT
age: 54285
etag: "b105f7bf041365d644c98c7e11ffa75e4656d29d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F943d6a55-696e-4fd8-901a-a9ab097959d7.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F943d6a55-696e-4fd8-901a-a9ab097959d7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8bb7613964aef696917cb85a6d0bcac4
89ce0e6d742144439a96ace034adae4e7e167311
24b100b10aa041effad83e9379447f4f62d95dcf6eb27a6b093a7caaa484f964
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F943d6a55-696e-4fd8-901a-a9ab097959d7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6321
x-amzn-requestid: 605adeca-4345-4481-999e-d50ebc123767
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZZWabGsgIAMFcSw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a0442-68542d1b56697ab33dd63941;Sampled=0
x-amzn-remapped-date: Sun, 02 Oct 2022 21:36:02 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: xZUu90wyCNVEexHxRRNQz0aDhNy_u0WC2v8TVxHkQvW-evaDwfKTtQ==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 21:45:27 GMT
etag: "89ce0e6d742144439a96ace034adae4e7e167311"
content-type: image/jpeg
age: 54241
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
drhandyman.com.au/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4
99.198.101.186200 OK 2.6 kB URL HTTP/1.1 drhandyman.com.au/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4
IP 99.198.101.186:0
Hash 4bc19d35d9e5befbc0d4ac845aab7f5b
8a55406e44f4137b21cc518c90a7c2497ea8c5e0
f918adfae4672ad3160e57cc94881753f1c4ee02c9f7e3f569c17b4c8109594a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:49:00 GMT
Server: Apache
Last-Modified: Mon, 29 Mar 2021 02:10:00 GMT
Accept-Ranges: bytes
Content-Length: 2630
Connection: close
Content-Type: text/css
drhandyman.com.au/wp-includes/css/dist/block-library/style.min.css?ver=6.0
99.198.101.186200 OK 89 kB URL HTTP/1.1 drhandyman.com.au/wp-includes/css/dist/block-library/style.min.css?ver=6.0
IP 99.198.101.186:0
File type ASCII text, with very long lines (43771)
Hash d534fc4463d84fecc2a0b4e847bec46e
a553b04e1476190984e01192467df79f9645ab70
d678ab3b4e7dddf5615012cc1a930e50dfbc967181b8fbeb1b98d61549f5ed08
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:49:00 GMT
Server: Apache
Last-Modified: Sun, 29 May 2022 22:23:32 GMT
Accept-Ranges: bytes
Content-Length: 88870
Connection: close
Content-Type: text/css
drhandyman.com.au/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.7.1
99.198.101.186200 OK 40 kB URL HTTP/1.1 drhandyman.com.au/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.7.1
IP 99.198.101.186:0
File type Unicode text, UTF-8 text, with very long lines (5178), with CRLF line terminators
Hash bbdc05bd89914457a2e2fd5c82d2169f
470d938b552c6742ab6d09073fd00ad2e5a06b41
13f6990c7c68b797db2c4f00f402e2e78858314e909c702b2ced5ff48510a9c3
GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.7.1 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:49:00 GMT
Server: Apache
Last-Modified: Fri, 15 Feb 2019 02:40:44 GMT
Accept-Ranges: bytes
Content-Length: 39755
Connection: close
Content-Type: text/css
drhandyman.com.au/wp-content/themes/Divi/core/admin/fonts/modules.ttf
99.198.101.186200 OK 92 kB URL HTTP/1.1 drhandyman.com.au/wp-content/themes/Divi/core/admin/fonts/modules.ttf
IP 99.198.101.186:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, modules \012- data
Hash de27b3e66b2f8017e000aa9d8d24d60e
e6d716de8f35ba6daf55d57e7fe0ed8d8e50f1f7
d201a2c3118a00c82cc48e89815f5139f23956bbe248107dcf522acc77b97c09
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/core/admin/fonts/modules.ttf HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:49:00 GMT
Server: Apache
Last-Modified: Mon, 29 Mar 2021 02:11:32 GMT
Accept-Ranges: bytes
Content-Length: 92400
Connection: close
Content-Type: font/ttf
drhandyman.com.au/wp-content/themes/Divi/style.dev.css?ver=6.0
99.198.101.186200 OK 977 kB URL HTTP/1.1 drhandyman.com.au/wp-content/themes/Divi/style.dev.css?ver=6.0
IP 99.198.101.186:0
File type ASCII text, with very long lines (2488)
Size 977 kB (976839 bytes)
Hash 97bfc44d9ec7a76afb3f43fb26a76987
9879707c0011180b19feea8832b9be82978b9721
fc1653df0d151dcf47be7e8302287a7e0cc9a92337b4a45e43fe90c98f8af250
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/style.dev.css?ver=6.0 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:49:00 GMT
Server: Apache
Last-Modified: Mon, 29 Mar 2021 02:11:33 GMT
Accept-Ranges: bytes
Content-Length: 976839
Connection: close
Content-Type: text/css
drhandyman.com.au/wp-content/themes/DrHandyMan/style.css?ver=4.9.2
99.198.101.186200 OK 3.9 kB URL HTTP/1.1 drhandyman.com.au/wp-content/themes/DrHandyMan/style.css?ver=4.9.2
IP 99.198.101.186:0
Hash 69df8f471838e497de1f4d6c3f70517c
dc175133aee75095e39c16a90bd41d25c8474238
30108a944c19f347de768e45373b127cabeacab2e61460fbf1fc6b679c1db513
GET /wp-content/themes/DrHandyMan/style.css?ver=4.9.2 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:49:02 GMT
Server: Apache
Last-Modified: Fri, 15 Feb 2019 02:40:45 GMT
Accept-Ranges: bytes
Content-Length: 3862
Connection: close
Content-Type: text/css
drhandyman.com.au/wp-content/themes/Divi/epanel/shortcodes/css/shortcodes_responsive.css?ver=4.9.2
99.198.101.186200 OK 4.0 kB URL HTTP/1.1 drhandyman.com.au/wp-content/themes/Divi/epanel/shortcodes/css/shortcodes_responsive.css?ver=4.9.2
IP 99.198.101.186:0
Hash 58f7be607923d9296d5628a2d7469422
c0f4fabc0343e8394114e64596225c6983aa5d65
cbe5066888bfd1ccdb3e39d2597f3462e531353c5648fe20d5e6ad3b9801c766
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/epanel/shortcodes/css/shortcodes_responsive.css?ver=4.9.2 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:49:02 GMT
Server: Apache
Last-Modified: Mon, 29 Mar 2021 02:11:32 GMT
Accept-Ranges: bytes
Content-Length: 3950
Connection: close
Content-Type: text/css
drhandyman.com.au/wp-content/themes/Divi/includes/builder/styles/magnific_popup.css?ver=4.9.2
99.198.101.186200 OK 6.5 kB URL HTTP/1.1 drhandyman.com.au/wp-content/themes/Divi/includes/builder/styles/magnific_popup.css?ver=4.9.2
IP 99.198.101.186:0
File type ASCII text, with very long lines (6076)
Hash 0eb18aeb0822f344a95356d4c923d386
2fa4bc8934e9984727f8a5d90075fa4b08da693a
313f1f04dfbea1e9859bef884988a6e468c63abab06f6be6b851674bcdffc21d
GET /wp-content/themes/Divi/includes/builder/styles/magnific_popup.css?ver=4.9.2 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:49:02 GMT
Server: Apache
Last-Modified: Mon, 29 Mar 2021 02:11:32 GMT
Accept-Ranges: bytes
Content-Length: 6488
Connection: close
Content-Type: text/css
drhandyman.com.au/wp-includes/js/wp-emoji-release.min.js?ver=6.0
99.198.101.186200 OK 19 kB URL HTTP/1.1 drhandyman.com.au/wp-includes/js/wp-emoji-release.min.js?ver=6.0
IP 99.198.101.186:0
File type ASCII text, with very long lines (15660)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:49:02 GMT
Server: Apache
Last-Modified: Sun, 29 May 2022 22:23:38 GMT
Accept-Ranges: bytes
Content-Length: 18617
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
99.198.101.186200 OK 11 kB URL HTTP/1.1 drhandyman.com.au/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 99.198.101.186:0
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:49:03 GMT
Server: Apache
Last-Modified: Sun, 29 May 2022 22:23:38 GMT
Accept-Ranges: bytes
Content-Length: 11224
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-includes/css/dashicons.min.css?ver=6.0
99.198.101.186200 OK 59 kB URL HTTP/1.1 drhandyman.com.au/wp-includes/css/dashicons.min.css?ver=6.0
IP 99.198.101.186:0
File type ASCII text, with very long lines (58981)
Hash d68d6bf519169d86e155bad0bed833f8
27ba9c67d0e775fc4e6dd62011daf4c3902698fc
c21e5a2b32c47bc5f9d9efc97bc0e29fd081946d1d3ebffc5621cfafb1d3960e
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dashicons.min.css?ver=6.0 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:49:03 GMT
Server: Apache
Last-Modified: Sun, 29 May 2022 22:23:31 GMT
Accept-Ranges: bytes
Content-Length: 59016
Connection: close
Content-Type: text/css
drhandyman.com.au/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
99.198.101.186200 OK 90 kB URL HTTP/1.1 drhandyman.com.au/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 99.198.101.186:0
File type ASCII text, with very long lines (65447)
Hash 02dd5d04add4759122013c5ab4dc5cc2
a45a56e396ac549b4ff39b696ce9e0c16a7612de
bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:49:03 GMT
Server: Apache
Last-Modified: Sun, 29 May 2022 22:23:38 GMT
Accept-Ranges: bytes
Content-Length: 89521
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-content/et-cache/global/et-divi-customizer-global-16398727652335.min.css
99.198.101.186200 OK 12 kB URL HTTP/1.1 drhandyman.com.au/wp-content/et-cache/global/et-divi-customizer-global-16398727652335.min.css
IP 99.198.101.186:0
File type ASCII text, with very long lines (12054), with no line terminators
Hash a6490167bb7c125efaff259660458c3a
af40173e353633a639a869ee9c169ee028067907
f194cf3d1e9f4211c67c161a3165446071a4866892bcd223d93efd852b1d36c3
GET /wp-content/et-cache/global/et-divi-customizer-global-16398727652335.min.css HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:49:03 GMT
Server: Apache
Last-Modified: Sun, 19 Dec 2021 00:12:45 GMT
Accept-Ranges: bytes
Content-Length: 12054
Connection: close
Content-Type: text/css
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.195200 OK 45 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://drhandyman.com.au
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 44856
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 26 Sep 2022 21:39:32 GMT
Expires: Tue, 26 Sep 2023 21:39:32 GMT
Cache-Control: public, max-age=31536000
Age: 572998
Last-Modified: Mon, 15 Aug 2022 18:20:18 GMT
Content-Type: font/woff2
drhandyman.com.au/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.7.1
99.198.101.186200 OK 65 kB URL HTTP/1.1 drhandyman.com.au/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.7.1
IP 99.198.101.186:0
File type ASCII text, with very long lines (64567), with CRLF line terminators
Hash 01fc8cb5a3ed7fe7a527714b39ac1381
0f16b498aeacc6bbce52431b5165b959cc81c8bd
7ea819c32bebb49aeb9678b2152d4802a5498ee44d85861b846745a06a1035c1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.7.1 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:49:03 GMT
Server: Apache
Last-Modified: Fri, 15 Feb 2019 02:40:44 GMT
Accept-Ranges: bytes
Content-Length: 64904
Connection: close
Content-Type: application/javascript
drhandyman.com.au/error.php
99.198.101.186200 OK 29 kB URL HTTP/1.1 drhandyman.com.au/error.php
IP 99.198.101.186:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 96d45e287b6619573aff24a7fed55296
3986e60d063c1a8d9109839e8d4260f0b059129b
c3465624d08a302e8eea335d042ca632113220aaf003230c59c9483e119b4254
Analyzer Verdict Alert fortinet Phishing
GET /error.php HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:48:59 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
drhandyman.com.au/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.7.1
99.198.101.186200 OK 111 kB URL HTTP/1.1 drhandyman.com.au/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.7.1
IP 99.198.101.186:0
File type ASCII text, with very long lines (27287), with CRLF line terminators
Size 111 kB (110563 bytes)
Hash a748a9e56b2c639013c770506f1fd529
537edd9b364ac005df2d1c57be873945b2fecdf6
6eabb193731278713f4208ea84b8c7334c3dfc98f01cb074778280e1df536e62
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.7.1 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:49:03 GMT
Server: Apache
Last-Modified: Fri, 15 Feb 2019 02:40:44 GMT
Accept-Ranges: bytes
Content-Length: 110563
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-content/themes/Divi/includes/builder/frontend-builder/build/frontend-builder-global-functions.js?ver=4.9.2
99.198.101.186200 OK 38 kB URL HTTP/1.1 drhandyman.com.au/wp-content/themes/Divi/includes/builder/frontend-builder/build/frontend-builder-global-functions.js?ver=4.9.2
IP 99.198.101.186:0
File type ASCII text, with very long lines (35076)
Hash d980dc072a02e253a4e98fa02abf4689
c210110b221340bf34b5c208967ccbd6149bee44
3069721de2ad43071476498e1cb70becc50b50adaaf829e6c7871e7ee62445ea
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/includes/builder/frontend-builder/build/frontend-builder-global-functions.js?ver=4.9.2 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:49:03 GMT
Server: Apache
Last-Modified: Mon, 29 Mar 2021 02:11:32 GMT
Accept-Ranges: bytes
Content-Length: 38472
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
99.198.101.186200 OK 4.9 kB URL HTTP/1.1 drhandyman.com.au/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
IP 99.198.101.186:0
File type ASCII text, with very long lines (4875)
Hash b33ab4d5dcf02436276a717e9d1b7c18
f47b9a9c41b3b11c9dffabca22945727c3ec6566
9bd82960d99b3a76f4af77a88a346bd61f87bac5ff2f385ee28cd669d8f22134
GET /wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:49:03 GMT
Server: Apache
Last-Modified: Sun, 29 May 2022 22:23:36 GMT
Accept-Ranges: bytes
Content-Length: 4910
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
99.198.101.186200 OK 10 kB URL HTTP/1.1 drhandyman.com.au/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
IP 99.198.101.186:0
Hash f270dd1f483179fdcfb29ce5f91aea13
166661187a97f0b6b685ec4dbdff871e9824168f
1dc4b29dd0acbed77ec2fd81036c33efd4ab5989e8182705a30615a00a0117f7
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:49:03 GMT
Server: Apache
Last-Modified: Sun, 29 May 2022 22:23:37 GMT
Accept-Ranges: bytes
Content-Length: 10222
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
99.198.101.186200 OK 19 kB URL HTTP/1.1 drhandyman.com.au/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 99.198.101.186:0
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Hash 57459b58fd7665a5e20b2345463df9c9
71c3b177ad1412d5e0b56d99f18bc345148df88b
6fecb89a29ee2bd397bb1bf58ecaa530a76f0654db71fadefd3cc70b0bc302bf
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:49:03 GMT
Server: Apache
Last-Modified: Sun, 29 May 2022 22:23:36 GMT
Accept-Ranges: bytes
Content-Length: 19142
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-content/uploads/2020/08/logo-320.png
99.198.101.186200 OK 51 kB URL HTTP/1.1 drhandyman.com.au/wp-content/uploads/2020/08/logo-320.png
IP 99.198.101.186:0
File type PNG image data, 320 x 343, 8-bit/color RGBA, non-interlaced\012- data
Hash 654ff501b2b124786693e23b305a0f72
a806b6a0aefd2efc21b8e2988f0ed8311951ba13
712edaa65ba61cda82176b4a10affabf2d7114d024ce18833236410d49cc62f2
GET /wp-content/uploads/2020/08/logo-320.png HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://drhandyman.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:49:03 GMT
Server: Apache
Last-Modified: Wed, 12 Aug 2020 23:10:09 GMT
Accept-Ranges: bytes
Content-Length: 51378
Connection: close
Content-Type: image/png
drhandyman.com.au/wp-includes/js/dist/url.min.js?ver=16385e4d69da65c7283790971de6b297
99.198.101.186200 OK 4.9 kB URL HTTP/1.1 drhandyman.com.au/wp-includes/js/dist/url.min.js?ver=16385e4d69da65c7283790971de6b297
IP 99.198.101.186:0
File type Unicode text, UTF-8 text, with very long lines (4852)
Hash 3a56903b3309fdd2c03077415b095203
b41a02f6a6c2ad43ef22e3488980625969cd02a0
ef1f54c7e88d119aefa425d8619021ca658d4bb694d031bd38fed7b52ecd1c8f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/url.min.js?ver=16385e4d69da65c7283790971de6b297 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:49:03 GMT
Server: Apache
Last-Modified: Sun, 29 May 2022 22:23:37 GMT
Accept-Ranges: bytes
Content-Length: 4891
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-includes/js/dist/api-fetch.min.js?ver=63050163caffa6aac54e9ebf21fe0472
99.198.101.186200 OK 5.3 kB URL HTTP/1.1 drhandyman.com.au/wp-includes/js/dist/api-fetch.min.js?ver=63050163caffa6aac54e9ebf21fe0472
IP 99.198.101.186:0
File type ASCII text, with very long lines (5290)
Hash a1a09ff7531304767f85729061aecf3a
a088b7f0da099a17b0f26ddaff8edaf94dd2fe3f
0598e98bc97e5b9aeb32aa40cae407814d13a7333e055071107519d7b4fcb0d7
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/api-fetch.min.js?ver=63050163caffa6aac54e9ebf21fe0472 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:49:03 GMT
Server: Apache
Last-Modified: Sun, 29 May 2022 22:23:37 GMT
Accept-Ranges: bytes
Content-Length: 5325
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4
99.198.101.186200 OK 11 kB URL HTTP/1.1 drhandyman.com.au/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4
IP 99.198.101.186:0
File type HTML document, ASCII text, with very long lines (10946), with no line terminators
Hash 2fdf3cc1d0fcf824759f5287d4bd7b74
1ce98ae8bbada6cb3188a88408ff461162aac89d
ccff49c86ee1937dd371734a05307e1abc057b3c255587ed918e47b1cf728d93
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:49:03 GMT
Server: Apache
Last-Modified: Mon, 29 Mar 2021 02:10:00 GMT
Accept-Ranges: bytes
Content-Length: 10946
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-includes/js/dist/vendor/lodash.min.js?ver=4.17.19
99.198.101.186200 OK 71 kB URL HTTP/1.1 drhandyman.com.au/wp-includes/js/dist/vendor/lodash.min.js?ver=4.17.19
IP 99.198.101.186:0
File type Unicode text, UTF-8 text, with very long lines (65004)
Hash 1ca735a2bc6289de8c31917a50f9442e
04021574593449fdddbe29a58b3041c9f861bec1
be7a8a75a7a589c5a1747ea85846bded2393219f42478979c91b86d2ebbea94a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/lodash.min.js?ver=4.17.19 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:49:03 GMT
Server: Apache
Last-Modified: Sun, 29 May 2022 22:23:36 GMT
Accept-Ranges: bytes
Content-Length: 71098
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-content/themes/DrHandyMan/js/custom.js?ver=1.0.0
99.198.101.186200 OK 116 B URL HTTP/1.1 drhandyman.com.au/wp-content/themes/DrHandyMan/js/custom.js?ver=1.0.0
IP 99.198.101.186:0
Hash 22b73e5eeb85f0fe4853a30954c977a2
7c62510f95db1cfd2b4a1069c259d69ce4f67cf6
d6699ed724a5f042fa4eeb0b781762c2024a0b4e37209f621d165cbfa0a4b064
GET /wp-content/themes/DrHandyMan/js/custom.js?ver=1.0.0 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:49:04 GMT
Server: Apache
Last-Modified: Fri, 15 Feb 2019 02:40:45 GMT
Accept-Ranges: bytes
Content-Length: 116
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-content/uploads/2019/02/fotr.jpeg
99.198.101.186200 OK 76 kB URL HTTP/1.1 drhandyman.com.au/wp-content/uploads/2019/02/fotr.jpeg
IP 99.198.101.186:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1280x851, components 3\012- data
Hash 922b1fd1b4b1c1e691b22c89f61bfa1c
dc6d4609fd706a42574875448ef4d9d4aee17e75
bcc49cf86a241e25fdc882c5c8c5bbfa9a059d89aa511cdacad6e308edacfac4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2019/02/fotr.jpeg HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://drhandyman.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:49:03 GMT
Server: Apache
Last-Modified: Fri, 15 Feb 2019 02:40:46 GMT
Accept-Ranges: bytes
Content-Length: 75721
Connection: close
Content-Type: image/jpeg
drhandyman.com.au/wp-content/themes/Divi/includes/builder/scripts/ext/jquery.mobile.custom.min.js?ver=4.9.2
99.198.101.186200 OK 8.0 kB URL HTTP/1.1 drhandyman.com.au/wp-content/themes/Divi/includes/builder/scripts/ext/jquery.mobile.custom.min.js?ver=4.9.2
IP 99.198.101.186:0
File type ASCII text, with very long lines (7584)
Hash 984977dc184f8059f2a679b324893e4c
d60a246ba584ba892a87bcf446e71d26adbcb91a
55a084b5f4c439a2786141108b266370e0e4accc4e72629b2177dc6aa658d6c8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/includes/builder/scripts/ext/jquery.mobile.custom.min.js?ver=4.9.2 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:49:04 GMT
Server: Apache
Last-Modified: Mon, 29 Mar 2021 02:11:33 GMT
Accept-Ranges: bytes
Content-Length: 7960
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-content/themes/Divi/includes/builder/scripts/ext/jquery.fitvids.js?ver=4.9.2
99.198.101.186200 OK 3.3 kB URL HTTP/1.1 drhandyman.com.au/wp-content/themes/Divi/includes/builder/scripts/ext/jquery.fitvids.js?ver=4.9.2
IP 99.198.101.186:0
File type HTML document, ASCII text
Hash fa07f10043b891dacdb82f26fd2b42bc
9c1dc49e9747758e033c0e9a7d016401bd78602c
462747422c6af30aa81a0373fa1cfd736455cef52bdbb816f67be9531d84eace
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/includes/builder/scripts/ext/jquery.fitvids.js?ver=4.9.2 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:49:04 GMT
Server: Apache
Last-Modified: Mon, 29 Mar 2021 02:11:33 GMT
Accept-Ranges: bytes
Content-Length: 3349
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-content/themes/Divi/includes/builder/scripts/ext/waypoints.min.js?ver=4.9.2
99.198.101.186200 OK 9.0 kB URL HTTP/1.1 drhandyman.com.au/wp-content/themes/Divi/includes/builder/scripts/ext/waypoints.min.js?ver=4.9.2
IP 99.198.101.186:0
File type Unicode text, UTF-8 text, with very long lines (8673)
Hash addf699e328fcfdd249528570e364c87
55ded71a753f720993d7fc985e2b87c32ab59792
484d6f61912f38df954203d9d4878fac9ba3805bafd8f0782b47924719eba33a
GET /wp-content/themes/Divi/includes/builder/scripts/ext/waypoints.min.js?ver=4.9.2 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:49:04 GMT
Server: Apache
Last-Modified: Mon, 29 Mar 2021 02:11:33 GMT
Accept-Ranges: bytes
Content-Length: 8991
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-content/themes/Divi/includes/builder/scripts/ext/jquery.magnific-popup.js?ver=4.9.2
99.198.101.186200 OK 23 kB URL HTTP/1.1 drhandyman.com.au/wp-content/themes/Divi/includes/builder/scripts/ext/jquery.magnific-popup.js?ver=4.9.2
IP 99.198.101.186:0
File type ASCII text, with very long lines (21184)
Hash b709961dd29d261ee0ce8fb17101874a
9a286eaaa964091528b256c81bb446c7072b7e19
0a47c6e6f24e634cb79f886e70bbfd65e1e85b0d2aa4fc133488fd1bc1910e3e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/includes/builder/scripts/ext/jquery.magnific-popup.js?ver=4.9.2 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:49:04 GMT
Server: Apache
Last-Modified: Mon, 29 Mar 2021 02:11:33 GMT
Accept-Ranges: bytes
Content-Length: 22786
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-content/themes/Divi/core/admin/js/common.js?ver=4.9.2
99.198.101.186200 OK 1.3 kB URL HTTP/1.1 drhandyman.com.au/wp-content/themes/Divi/core/admin/js/common.js?ver=4.9.2
IP 99.198.101.186:0
Hash d71b75b2327258b1d01d50590c1f67ca
b7820e4ffb6becc133c48f66d9f683545530b959
1ca76922f55b389b8f590ae7e3bcc3a2dccdce3aff1e5a4335af081b76a414ea
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/core/admin/js/common.js?ver=4.9.2 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:49:04 GMT
Server: Apache
Last-Modified: Mon, 29 Mar 2021 02:11:32 GMT
Accept-Ranges: bytes
Content-Length: 1343
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-content/themes/Divi/js/custom.js?ver=4.9.2
99.198.101.186200 OK 190 kB URL HTTP/1.1 drhandyman.com.au/wp-content/themes/Divi/js/custom.js?ver=4.9.2
IP 99.198.101.186:0
Size 190 kB (190520 bytes)
Hash ed9956e42c4e999d73e08ba97027a861
a028695f87e47fdcf8632316541ff27b98808799
4619a689885cd50fca641d0425347203f1160075a493cdf0d1aac1434ae38bb8
GET /wp-content/themes/Divi/js/custom.js?ver=4.9.2 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:49:04 GMT
Server: Apache
Last-Modified: Mon, 29 Mar 2021 02:11:33 GMT
Accept-Ranges: bytes
Content-Length: 190520
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-content/themes/Divi/includes/builder/frontend-builder/build/frontend-builder-scripts.js?ver=4.9.2
99.198.101.186200 OK 351 kB URL HTTP/1.1 drhandyman.com.au/wp-content/themes/Divi/includes/builder/frontend-builder/build/frontend-builder-scripts.js?ver=4.9.2
IP 99.198.101.186:0
File type ASCII text, with very long lines (48311)
Size 351 kB (350657 bytes)
Hash f82ce0a3c106830f38894dd441fe82ab
ff60b0c35a7fc604c377e37b36da2f8b1f99c3f4
11d4f1de2061bea79f858323d8265bf889906dc8a34d401e651f5d86e0748497
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/includes/builder/frontend-builder/build/frontend-builder-scripts.js?ver=4.9.2 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:49:04 GMT
Server: Apache
Last-Modified: Mon, 29 Mar 2021 02:11:32 GMT
Accept-Ranges: bytes
Content-Length: 350657
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-content/uploads/2020/06/cropped-favi-32x32.png
99.198.101.186200 OK 1.7 kB URL HTTP/1.1 drhandyman.com.au/wp-content/uploads/2020/06/cropped-favi-32x32.png
IP 99.198.101.186:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 2b83efa55093baacc57b2e3649e68b97
3ca60e386dba986bf605364813e30164a7bddaa1
68486fa11c9351ca5b3502ec3a4b227c18e553abb8316e858cd290e169235827
GET /wp-content/uploads/2020/06/cropped-favi-32x32.png HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://drhandyman.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:49:06 GMT
Server: Apache
Last-Modified: Mon, 22 Jun 2020 10:36:00 GMT
Accept-Ranges: bytes
Content-Length: 1743
Connection: close
Content-Type: image/png
drhandyman.com.au/wp-content/uploads/2020/06/cropped-favi-192x192.png
99.198.101.186200 OK 22 kB URL HTTP/1.1 drhandyman.com.au/wp-content/uploads/2020/06/cropped-favi-192x192.png
IP 99.198.101.186:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 726c2bfc8991cb673483e9d564711d49
3a3d6bd089fb4ee120a68d86bd3710c97ae0dffd
b0a0e52c7530cc629708e2db2a75b2a942562ba5d43e274763866c5a4f5f0fa5
GET /wp-content/uploads/2020/06/cropped-favi-192x192.png HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://drhandyman.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 12:49:06 GMT
Server: Apache
Last-Modified: Mon, 22 Jun 2020 10:36:00 GMT
Accept-Ranges: bytes
Content-Length: 21670
Connection: close
Content-Type: image/png
drhandyman.com.au/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
99.198.101.186404 Not Found 29 kB URL HTTP/1.1 drhandyman.com.au/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 99.198.101.186:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 72722f9ed009ed3e166fc6828eaba916
8a61a07c779c52389f8303af2468767cd82980eb
60e0056978e29197bf6a37f406b5cbb698555533560d3eb68935f4fb1bfee717
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 404 Not Found
Date: Mon, 03 Oct 2022 12:49:03 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8