r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cf768e41672570b0a4a9fe86045915fc
2249064a86b2ba11e28208b9fba1c9f1db4f3e9e
a049499f78078df12f4d1c5180f1f36715a5c99db4f31c18ee06bcf0b6382b30
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A049499F78078DF12F4D1C5180F1F36715A5C99DB4F31C18EE06BCF0B6382B30"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3781
Expires: Sat, 08 Oct 2022 04:41:18 GMT
Date: Sat, 08 Oct 2022 03:38:17 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
54.230.111.118200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.118:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: HzB-Uw8QbBSfWGhWim5lzwa6Qpe_GZ5wmmW8cgyafwMuguElKPj3pw==
Age: 215459
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 94a09d62ab3057cda67a091c8d7478f5
b1c9d223a951d0bc9f17c9f3b84501266a552b58
582364f9f6014520c269f1f794e7c34027bd2697b53e5d02fad43e74a735e471
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "582364F9F6014520C269F1F794E7C34027BD2697B53E5D02FAD43E74A735E471"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17723
Expires: Sat, 08 Oct 2022 08:33:40 GMT
Date: Sat, 08 Oct 2022 03:38:17 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: pG7502QtwETFcZ51Mc1LY7L59QmUuvhiKX0mYZo6zMDaf5bY99hItX+KlW/iPpjGgP8N42C6uvc=
x-amz-request-id: FEF15KM7XJKVTT0N
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 08 Oct 2022 02:59:25 GMT
age: 2332
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 08 Oct 2022 03:38:17 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.118200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.118:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Sat, 08 Oct 2022 03:29:41 GMT
Cache-Control: max-age=3600
Expires: Sat, 08 Oct 2022 04:22:48 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: drVlgVh4LM0u7R4wWkf2rafgE2H-5-plu-lOqKGq9gxh65WrAduePg==
Age: 517
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d6c404502c7987174a84d8f0a3efab23
fc3a3f6d63acab3f659fb3536b65fd8564ec8628
94b5693df873bd923ffbf31f576fff01d2628e5796af4c6b91306a743e27d19b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1298
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 03:38:18 GMT
Last-Modified: Sat, 08 Oct 2022 03:16:40 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800&subset=latin,latin-ext&display=swap
142.250.74.10200 OK 1.1 kB URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800&subset=latin,latin-ext&display=swap
IP 142.250.74.10:0
Hash 728d47ab8459b1bcd3b771cfed31324e
40cfac2af92576974d4baed161e936968ecefbe8
1859e461f7cb147df59c0a0f416c3cf7368e647b09727fd9e55c598e5b5c29d6
GET /css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800&subset=latin,latin-ext&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 08 Oct 2022 03:38:18 GMT
Date: Sat, 08 Oct 2022 03:38:18 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css?ver=6.0
104.17.24.14200 OK 5.6 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css?ver=6.0
IP 104.17.24.14:0
File type ASCII text, with very long lines (30837)
Hash 109d1ed85cd01f9cdab73a4cac5bf80d
d6c6498ad46de2d8e2008a8ff68e364ae7f16b32
8b3a74fe462f5b3c0635995fd721a60eb640e237680b0b532b96711f2823e8bc
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css?ver=6.0 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://drhandyman.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 03:38:18 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2006675
expires: Thu, 28 Sep 2023 03:38:18 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LUG1PdafhKeyHT%2Fe8pH0oPsGhTtX79otP9PNi0Reicylmvgv8zODaWiPpsS1VtjpAXfWmqJjkymtJwLH5vsVOqScjpYe45p6vbgGZDovvBYJQ9epxUhZio6AHmKipyqWoQPKH3%2BY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 756bd7c948c3b50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.69.181.45101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.69.181.45:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 9F3WGLx7ilicB0QPEzaTUw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: MSpvxbVQf1b4igRxWUAcHv6OE1g=
drhandyman.com.au/wp-includes/js/wp-emoji-release.min.js?ver=6.0
99.198.101.186200 OK 19 kB URL HTTP/1.1 drhandyman.com.au/wp-includes/js/wp-emoji-release.min.js?ver=6.0
IP 99.198.101.186:0
File type ASCII text, with very long lines (15660)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:38:00 GMT
Server: Apache
Last-Modified: Sun, 29 May 2022 22:23:38 GMT
Accept-Ranges: bytes
Content-Length: 18617
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-content/themes/Divi/core/admin/fonts/modules.ttf
99.198.101.186200 OK 92 kB URL HTTP/1.1 drhandyman.com.au/wp-content/themes/Divi/core/admin/fonts/modules.ttf
IP 99.198.101.186:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, modules \012- data
Hash de27b3e66b2f8017e000aa9d8d24d60e
e6d716de8f35ba6daf55d57e7fe0ed8d8e50f1f7
d201a2c3118a00c82cc48e89815f5139f23956bbe248107dcf522acc77b97c09
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/core/admin/fonts/modules.ttf HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:38:00 GMT
Server: Apache
Last-Modified: Mon, 29 Mar 2021 02:11:32 GMT
Accept-Ranges: bytes
Content-Length: 92400
Connection: close
Content-Type: font/ttf
drhandyman.com.au/wp-includes/css/dist/block-library/style.min.css?ver=6.0
99.198.101.186200 OK 89 kB URL HTTP/1.1 drhandyman.com.au/wp-includes/css/dist/block-library/style.min.css?ver=6.0
IP 99.198.101.186:0
File type ASCII text, with very long lines (43771)
Hash d534fc4463d84fecc2a0b4e847bec46e
a553b04e1476190984e01192467df79f9645ab70
d678ab3b4e7dddf5615012cc1a930e50dfbc967181b8fbeb1b98d61549f5ed08
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:38:00 GMT
Server: Apache
Last-Modified: Sun, 29 May 2022 22:23:32 GMT
Accept-Ranges: bytes
Content-Length: 88870
Connection: close
Content-Type: text/css
drhandyman.com.au/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4
99.198.101.186200 OK 2.6 kB URL HTTP/1.1 drhandyman.com.au/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4
IP 99.198.101.186:0
Hash 4bc19d35d9e5befbc0d4ac845aab7f5b
8a55406e44f4137b21cc518c90a7c2497ea8c5e0
f918adfae4672ad3160e57cc94881753f1c4ee02c9f7e3f569c17b4c8109594a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:38:01 GMT
Server: Apache
Last-Modified: Mon, 29 Mar 2021 02:10:00 GMT
Accept-Ranges: bytes
Content-Length: 2630
Connection: close
Content-Type: text/css
drhandyman.com.au/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.7.1
99.198.101.186200 OK 40 kB URL HTTP/1.1 drhandyman.com.au/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.7.1
IP 99.198.101.186:0
File type Unicode text, UTF-8 text, with very long lines (5178), with CRLF line terminators
Hash bbdc05bd89914457a2e2fd5c82d2169f
470d938b552c6742ab6d09073fd00ad2e5a06b41
13f6990c7c68b797db2c4f00f402e2e78858314e909c702b2ced5ff48510a9c3
GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.7.1 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:38:01 GMT
Server: Apache
Last-Modified: Fri, 15 Feb 2019 02:40:44 GMT
Accept-Ranges: bytes
Content-Length: 39755
Connection: close
Content-Type: text/css
drhandyman.com.au/error.php
99.198.101.186200 OK 29 kB URL HTTP/1.1 drhandyman.com.au/error.php
IP 99.198.101.186:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 4a36b2dde12ac699a8967651edc64b87
312936873feb57cfd6ba1b580d4bbe262ed75f8d
33ec9d9d8e8b10d923c882d54dd51488a78c40c9913d608726c63fd370de2f31
Analyzer Verdict Alert fortinet Phishing
GET /error.php HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:37:59 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20417
Expires: Sat, 08 Oct 2022 09:18:36 GMT
Date: Sat, 08 Oct 2022 03:38:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20417
Expires: Sat, 08 Oct 2022 09:18:36 GMT
Date: Sat, 08 Oct 2022 03:38:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20417
Expires: Sat, 08 Oct 2022 09:18:36 GMT
Date: Sat, 08 Oct 2022 03:38:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20417
Expires: Sat, 08 Oct 2022 09:18:36 GMT
Date: Sat, 08 Oct 2022 03:38:19 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa57a0ead-deef-46c2-985b-fb7ba539285b.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa57a0ead-deef-46c2-985b-fb7ba539285b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9bc50d1380ae8fc980ae1cc38f2371c7
be79aecfd7eefa89c409ed743402a292ff0ce6c0
43e015802ba453d4cd79984b53efa8a529ece62760f6693f9daeb2388179201f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa57a0ead-deef-46c2-985b-fb7ba539285b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6366
x-amzn-requestid: ddcd915d-2606-4243-969e-19fb02b5b6d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zp1EJGoSIAMFcSw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63409bb3-1c7bd17a2dcdd25e4da6d346;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 21:35:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aaHDHE38nByvpccXO4wHgHk6BAOPZDsFdXxi2-KgjUaXvjC58nlGUQ==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 21:55:27 GMT
age: 20572
etag: "be79aecfd7eefa89c409ed743402a292ff0ce6c0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16e61df5-fe75-4fed-824a-c69f55d6adeb.jpeg
34.120.237.76200 OK 3.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16e61df5-fe75-4fed-824a-c69f55d6adeb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fcc922c965cbed13b5763e0242d3f820
0a864bd93975df7e8705cb1e03789e07f547c97b
1531a15d39c8e62e2a93c238ebc5f3bb1909c485f4499ba67cbfa35e6c5632d2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16e61df5-fe75-4fed-824a-c69f55d6adeb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3873
x-amzn-requestid: 2347c4ce-a610-4ce0-88b3-b835f6b90cf2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zp1DkHaRIAMFSfw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63409bb0-32ede0a255d3058753a14c3a;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 21:35:44 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: JY2A7z-RbYv-Pa4XYgVCnGslXr74MZkmCXqK8CnJOZbQi9MHVO_-gg==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 22:09:06 GMT
age: 19753
etag: "0a864bd93975df7e8705cb1e03789e07f547c97b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0b7bc4b-b79a-4bab-9bec-87695d757b08.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0b7bc4b-b79a-4bab-9bec-87695d757b08.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 53b7ffdc3799e0ac7a225145242579ef
c47f0525fe5354ee13fe63c0ec31f0f826a58005
4bb518afc9b3e7bfb976d343e46b306155834adbe71fa35b0d6f509959f78aca
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0b7bc4b-b79a-4bab-9bec-87695d757b08.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10987
x-amzn-requestid: c2ab1012-1afd-4d74-8114-97977b43da24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZgCHwGdGoAMFvyg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633cb097-3237927a0c1e081d22c902f7;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 22:15:51 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: JYDg0-KelCPr__4bKtpARLrwiE1CHGICcFI6I9_TFCMcmESbykNhXQ==
via: 1.1 3dde68f1f52282c9e1ee336d97233b0a.cloudfront.net (CloudFront), 1.1 27f6faf9790b5a2877fb528fa31f7922.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 22:08:50 GMT
age: 19769
etag: "c47f0525fe5354ee13fe63c0ec31f0f826a58005"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56d7dd70-3706-4d51-94da-88fa19a58ad8.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56d7dd70-3706-4d51-94da-88fa19a58ad8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e5c4757ceb6dce32d0f9d26d5b3df038
d8209d82f61c7a09e00756e5dd32c99bc61af4a8
6aa007279ba4cdea3f772e0601e4082d40ee947ef8cc1201ce0009fb42ca9885
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56d7dd70-3706-4d51-94da-88fa19a58ad8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5185
x-amzn-requestid: 3c3ff89f-8a8c-44ae-981a-0e9adaf7d959
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zj_dSEs8IAMFqFA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633e45ee-6c97b82d137c2f1951270b82;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 03:05:18 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: -7rVFMBT_fVlJgzvfdqaTs-4ngjAZC51W0axkB6lAT9gRN8pLRxDJA==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 f62c9ca47e35df5c65764381977823a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 04:26:43 GMT
age: 83496
etag: "d8209d82f61c7a09e00756e5dd32c99bc61af4a8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9176a06a-294d-4b65-8535-846b9386ccc6.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9176a06a-294d-4b65-8535-846b9386ccc6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 97c7f371036a91fd437db5abc3decdfd
46583b7657dadcffbea286bd45fad99a10f81335
7da3c89d51447ee13c701c892e6b7a4094da97cd1cd7c08322e085d0f49586b9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9176a06a-294d-4b65-8535-846b9386ccc6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6766
x-amzn-requestid: 8534c4a9-161b-4f7d-a956-36f5d35fde26
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zp1DmGLzIAMFxbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63409bb0-7b2d96e3559d6d057f27d9cf;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 21:35:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NV1e4Qk40mQQBEQsD87vjiyz0yqsw8UYCfyq27LIgA5aOfZkRpKmFQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 21:56:05 GMT
age: 20534
etag: "46583b7657dadcffbea286bd45fad99a10f81335"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e9e3511-179a-47a1-a41a-7b5f6ecbf14f.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e9e3511-179a-47a1-a41a-7b5f6ecbf14f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a6207431ae268d805fb92237925c8fc0
075b576b0d47e0f6cbbb9dc85f87e8ca4e8eca87
bb8966bd5b80f1ba6c974925df0610e0a219759ab92df062e135baae02fa0071
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e9e3511-179a-47a1-a41a-7b5f6ecbf14f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5440
x-amzn-requestid: c9408e3c-29f6-4a53-b09d-0c3f49e99287
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zp3AzFQ3oAMF_Ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63409ed1-1da6e8c500879b080c66fdfe;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 21:49:05 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: M8TN3UdactHymyCJFQHV86X0fYsS-_V7Yu-7dUWFnOUyRonAqQHpGw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 22:14:30 GMT
age: 19429
etag: "075b576b0d47e0f6cbbb9dc85f87e8ca4e8eca87"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
drhandyman.com.au/wp-content/themes/DrHandyMan/style.css?ver=4.9.2
99.198.101.186200 OK 3.9 kB URL HTTP/1.1 drhandyman.com.au/wp-content/themes/DrHandyMan/style.css?ver=4.9.2
IP 99.198.101.186:0
Hash 69df8f471838e497de1f4d6c3f70517c
dc175133aee75095e39c16a90bd41d25c8474238
30108a944c19f347de768e45373b127cabeacab2e61460fbf1fc6b679c1db513
GET /wp-content/themes/DrHandyMan/style.css?ver=4.9.2 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:38:01 GMT
Server: Apache
Last-Modified: Fri, 15 Feb 2019 02:40:45 GMT
Accept-Ranges: bytes
Content-Length: 3862
Connection: close
Content-Type: text/css
drhandyman.com.au/wp-content/themes/Divi/epanel/shortcodes/css/shortcodes_responsive.css?ver=4.9.2
99.198.101.186200 OK 4.0 kB URL HTTP/1.1 drhandyman.com.au/wp-content/themes/Divi/epanel/shortcodes/css/shortcodes_responsive.css?ver=4.9.2
IP 99.198.101.186:0
Hash 58f7be607923d9296d5628a2d7469422
c0f4fabc0343e8394114e64596225c6983aa5d65
cbe5066888bfd1ccdb3e39d2597f3462e531353c5648fe20d5e6ad3b9801c766
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/epanel/shortcodes/css/shortcodes_responsive.css?ver=4.9.2 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:38:02 GMT
Server: Apache
Last-Modified: Mon, 29 Mar 2021 02:11:32 GMT
Accept-Ranges: bytes
Content-Length: 3950
Connection: close
Content-Type: text/css
drhandyman.com.au/wp-content/themes/Divi/includes/builder/styles/magnific_popup.css?ver=4.9.2
99.198.101.186200 OK 6.5 kB URL HTTP/1.1 drhandyman.com.au/wp-content/themes/Divi/includes/builder/styles/magnific_popup.css?ver=4.9.2
IP 99.198.101.186:0
File type ASCII text, with very long lines (6076)
Hash 0eb18aeb0822f344a95356d4c923d386
2fa4bc8934e9984727f8a5d90075fa4b08da693a
313f1f04dfbea1e9859bef884988a6e468c63abab06f6be6b851674bcdffc21d
GET /wp-content/themes/Divi/includes/builder/styles/magnific_popup.css?ver=4.9.2 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:38:02 GMT
Server: Apache
Last-Modified: Mon, 29 Mar 2021 02:11:32 GMT
Accept-Ranges: bytes
Content-Length: 6488
Connection: close
Content-Type: text/css
drhandyman.com.au/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
99.198.101.186200 OK 11 kB URL HTTP/1.1 drhandyman.com.au/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 99.198.101.186:0
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:38:02 GMT
Server: Apache
Last-Modified: Sun, 29 May 2022 22:23:38 GMT
Accept-Ranges: bytes
Content-Length: 11224
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-content/themes/Divi/style.dev.css?ver=6.0
99.198.101.186200 OK 977 kB URL HTTP/1.1 drhandyman.com.au/wp-content/themes/Divi/style.dev.css?ver=6.0
IP 99.198.101.186:0
File type ASCII text, with very long lines (2488)
Size 977 kB (976839 bytes)
Hash 97bfc44d9ec7a76afb3f43fb26a76987
9879707c0011180b19feea8832b9be82978b9721
fc1653df0d151dcf47be7e8302287a7e0cc9a92337b4a45e43fe90c98f8af250
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/style.dev.css?ver=6.0 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:38:01 GMT
Server: Apache
Last-Modified: Mon, 29 Mar 2021 02:11:33 GMT
Accept-Ranges: bytes
Content-Length: 976839
Connection: close
Content-Type: text/css
drhandyman.com.au/wp-includes/css/dashicons.min.css?ver=6.0
99.198.101.186200 OK 59 kB URL HTTP/1.1 drhandyman.com.au/wp-includes/css/dashicons.min.css?ver=6.0
IP 99.198.101.186:0
File type ASCII text, with very long lines (58981)
Hash d68d6bf519169d86e155bad0bed833f8
27ba9c67d0e775fc4e6dd62011daf4c3902698fc
c21e5a2b32c47bc5f9d9efc97bc0e29fd081946d1d3ebffc5621cfafb1d3960e
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dashicons.min.css?ver=6.0 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:38:02 GMT
Server: Apache
Last-Modified: Sun, 29 May 2022 22:23:31 GMT
Accept-Ranges: bytes
Content-Length: 59016
Connection: close
Content-Type: text/css
drhandyman.com.au/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
99.198.101.186200 OK 90 kB URL HTTP/1.1 drhandyman.com.au/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 99.198.101.186:0
File type ASCII text, with very long lines (65447)
Hash 02dd5d04add4759122013c5ab4dc5cc2
a45a56e396ac549b4ff39b696ce9e0c16a7612de
bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:38:02 GMT
Server: Apache
Last-Modified: Sun, 29 May 2022 22:23:38 GMT
Accept-Ranges: bytes
Content-Length: 89521
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-content/et-cache/global/et-divi-customizer-global-16398727652335.min.css
99.198.101.186200 OK 12 kB URL HTTP/1.1 drhandyman.com.au/wp-content/et-cache/global/et-divi-customizer-global-16398727652335.min.css
IP 99.198.101.186:0
File type ASCII text, with very long lines (12054), with no line terminators
Hash a6490167bb7c125efaff259660458c3a
af40173e353633a639a869ee9c169ee028067907
f194cf3d1e9f4211c67c161a3165446071a4866892bcd223d93efd852b1d36c3
GET /wp-content/et-cache/global/et-divi-customizer-global-16398727652335.min.css HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:38:02 GMT
Server: Apache
Last-Modified: Sun, 19 Dec 2021 00:12:45 GMT
Accept-Ranges: bytes
Content-Length: 12054
Connection: close
Content-Type: text/css
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.195200 OK 45 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://drhandyman.com.au
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 44856
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 03 Oct 2022 21:39:33 GMT
Expires: Tue, 03 Oct 2023 21:39:33 GMT
Cache-Control: public, max-age=31536000
Age: 367127
Last-Modified: Mon, 15 Aug 2022 18:20:18 GMT
Content-Type: font/woff2
drhandyman.com.au/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.7.1
99.198.101.186200 OK 65 kB URL HTTP/1.1 drhandyman.com.au/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.7.1
IP 99.198.101.186:0
File type ASCII text, with very long lines (64567), with CRLF line terminators
Hash 01fc8cb5a3ed7fe7a527714b39ac1381
0f16b498aeacc6bbce52431b5165b959cc81c8bd
7ea819c32bebb49aeb9678b2152d4802a5498ee44d85861b846745a06a1035c1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.7.1 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:38:02 GMT
Server: Apache
Last-Modified: Fri, 15 Feb 2019 02:40:44 GMT
Accept-Ranges: bytes
Content-Length: 64904
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.7.1
99.198.101.186200 OK 111 kB URL HTTP/1.1 drhandyman.com.au/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.7.1
IP 99.198.101.186:0
File type ASCII text, with very long lines (27287), with CRLF line terminators
Size 111 kB (110563 bytes)
Hash a748a9e56b2c639013c770506f1fd529
537edd9b364ac005df2d1c57be873945b2fecdf6
6eabb193731278713f4208ea84b8c7334c3dfc98f01cb074778280e1df536e62
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.7.1 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:38:02 GMT
Server: Apache
Last-Modified: Fri, 15 Feb 2019 02:40:44 GMT
Accept-Ranges: bytes
Content-Length: 110563
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
99.198.101.186200 OK 19 kB URL HTTP/1.1 drhandyman.com.au/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 99.198.101.186:0
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Hash 57459b58fd7665a5e20b2345463df9c9
71c3b177ad1412d5e0b56d99f18bc345148df88b
6fecb89a29ee2bd397bb1bf58ecaa530a76f0654db71fadefd3cc70b0bc302bf
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:38:02 GMT
Server: Apache
Last-Modified: Sun, 29 May 2022 22:23:36 GMT
Accept-Ranges: bytes
Content-Length: 19142
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-content/themes/Divi/includes/builder/frontend-builder/build/frontend-builder-global-functions.js?ver=4.9.2
99.198.101.186200 OK 38 kB URL HTTP/1.1 drhandyman.com.au/wp-content/themes/Divi/includes/builder/frontend-builder/build/frontend-builder-global-functions.js?ver=4.9.2
IP 99.198.101.186:0
File type ASCII text, with very long lines (35076)
Hash d980dc072a02e253a4e98fa02abf4689
c210110b221340bf34b5c208967ccbd6149bee44
3069721de2ad43071476498e1cb70becc50b50adaaf829e6c7871e7ee62445ea
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/includes/builder/frontend-builder/build/frontend-builder-global-functions.js?ver=4.9.2 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:38:02 GMT
Server: Apache
Last-Modified: Mon, 29 Mar 2021 02:11:32 GMT
Accept-Ranges: bytes
Content-Length: 38472
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
99.198.101.186200 OK 4.9 kB URL HTTP/1.1 drhandyman.com.au/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
IP 99.198.101.186:0
File type ASCII text, with very long lines (4875)
Hash b33ab4d5dcf02436276a717e9d1b7c18
f47b9a9c41b3b11c9dffabca22945727c3ec6566
9bd82960d99b3a76f4af77a88a346bd61f87bac5ff2f385ee28cd669d8f22134
GET /wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:38:02 GMT
Server: Apache
Last-Modified: Sun, 29 May 2022 22:23:36 GMT
Accept-Ranges: bytes
Content-Length: 4910
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
99.198.101.186200 OK 10 kB URL HTTP/1.1 drhandyman.com.au/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
IP 99.198.101.186:0
Hash f270dd1f483179fdcfb29ce5f91aea13
166661187a97f0b6b685ec4dbdff871e9824168f
1dc4b29dd0acbed77ec2fd81036c33efd4ab5989e8182705a30615a00a0117f7
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:38:03 GMT
Server: Apache
Last-Modified: Sun, 29 May 2022 22:23:37 GMT
Accept-Ranges: bytes
Content-Length: 10222
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-content/uploads/2020/08/logo-320.png
99.198.101.186200 OK 51 kB URL HTTP/1.1 drhandyman.com.au/wp-content/uploads/2020/08/logo-320.png
IP 99.198.101.186:0
File type PNG image data, 320 x 343, 8-bit/color RGBA, non-interlaced\012- data
Hash 654ff501b2b124786693e23b305a0f72
a806b6a0aefd2efc21b8e2988f0ed8311951ba13
712edaa65ba61cda82176b4a10affabf2d7114d024ce18833236410d49cc62f2
GET /wp-content/uploads/2020/08/logo-320.png HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://drhandyman.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:38:02 GMT
Server: Apache
Last-Modified: Wed, 12 Aug 2020 23:10:09 GMT
Accept-Ranges: bytes
Content-Length: 51378
Connection: close
Content-Type: image/png
drhandyman.com.au/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4
99.198.101.186200 OK 11 kB URL HTTP/1.1 drhandyman.com.au/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4
IP 99.198.101.186:0
File type HTML document, ASCII text, with very long lines (10946), with no line terminators
Hash 2fdf3cc1d0fcf824759f5287d4bd7b74
1ce98ae8bbada6cb3188a88408ff461162aac89d
ccff49c86ee1937dd371734a05307e1abc057b3c255587ed918e47b1cf728d93
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:38:03 GMT
Server: Apache
Last-Modified: Mon, 29 Mar 2021 02:10:00 GMT
Accept-Ranges: bytes
Content-Length: 10946
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-includes/js/dist/api-fetch.min.js?ver=63050163caffa6aac54e9ebf21fe0472
99.198.101.186200 OK 5.3 kB URL HTTP/1.1 drhandyman.com.au/wp-includes/js/dist/api-fetch.min.js?ver=63050163caffa6aac54e9ebf21fe0472
IP 99.198.101.186:0
File type ASCII text, with very long lines (5290)
Hash a1a09ff7531304767f85729061aecf3a
a088b7f0da099a17b0f26ddaff8edaf94dd2fe3f
0598e98bc97e5b9aeb32aa40cae407814d13a7333e055071107519d7b4fcb0d7
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/api-fetch.min.js?ver=63050163caffa6aac54e9ebf21fe0472 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:38:03 GMT
Server: Apache
Last-Modified: Sun, 29 May 2022 22:23:37 GMT
Accept-Ranges: bytes
Content-Length: 5325
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-includes/js/dist/url.min.js?ver=16385e4d69da65c7283790971de6b297
99.198.101.186200 OK 4.9 kB URL HTTP/1.1 drhandyman.com.au/wp-includes/js/dist/url.min.js?ver=16385e4d69da65c7283790971de6b297
IP 99.198.101.186:0
File type Unicode text, UTF-8 text, with very long lines (4852)
Hash 3a56903b3309fdd2c03077415b095203
b41a02f6a6c2ad43ef22e3488980625969cd02a0
ef1f54c7e88d119aefa425d8619021ca658d4bb694d031bd38fed7b52ecd1c8f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/url.min.js?ver=16385e4d69da65c7283790971de6b297 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:38:03 GMT
Server: Apache
Last-Modified: Sun, 29 May 2022 22:23:37 GMT
Accept-Ranges: bytes
Content-Length: 4891
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-content/themes/DrHandyMan/js/custom.js?ver=1.0.0
99.198.101.186200 OK 116 B URL HTTP/1.1 drhandyman.com.au/wp-content/themes/DrHandyMan/js/custom.js?ver=1.0.0
IP 99.198.101.186:0
Hash 22b73e5eeb85f0fe4853a30954c977a2
7c62510f95db1cfd2b4a1069c259d69ce4f67cf6
d6699ed724a5f042fa4eeb0b781762c2024a0b4e37209f621d165cbfa0a4b064
GET /wp-content/themes/DrHandyMan/js/custom.js?ver=1.0.0 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:38:03 GMT
Server: Apache
Last-Modified: Fri, 15 Feb 2019 02:40:45 GMT
Accept-Ranges: bytes
Content-Length: 116
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-includes/js/dist/vendor/lodash.min.js?ver=4.17.19
99.198.101.186200 OK 71 kB URL HTTP/1.1 drhandyman.com.au/wp-includes/js/dist/vendor/lodash.min.js?ver=4.17.19
IP 99.198.101.186:0
File type Unicode text, UTF-8 text, with very long lines (65004)
Hash 1ca735a2bc6289de8c31917a50f9442e
04021574593449fdddbe29a58b3041c9f861bec1
be7a8a75a7a589c5a1747ea85846bded2393219f42478979c91b86d2ebbea94a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/lodash.min.js?ver=4.17.19 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:38:03 GMT
Server: Apache
Last-Modified: Sun, 29 May 2022 22:23:36 GMT
Accept-Ranges: bytes
Content-Length: 71098
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-content/themes/Divi/includes/builder/scripts/ext/jquery.fitvids.js?ver=4.9.2
99.198.101.186200 OK 3.3 kB URL HTTP/1.1 drhandyman.com.au/wp-content/themes/Divi/includes/builder/scripts/ext/jquery.fitvids.js?ver=4.9.2
IP 99.198.101.186:0
File type HTML document, ASCII text
Hash fa07f10043b891dacdb82f26fd2b42bc
9c1dc49e9747758e033c0e9a7d016401bd78602c
462747422c6af30aa81a0373fa1cfd736455cef52bdbb816f67be9531d84eace
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/includes/builder/scripts/ext/jquery.fitvids.js?ver=4.9.2 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:38:03 GMT
Server: Apache
Last-Modified: Mon, 29 Mar 2021 02:11:33 GMT
Accept-Ranges: bytes
Content-Length: 3349
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-content/themes/Divi/includes/builder/scripts/ext/jquery.mobile.custom.min.js?ver=4.9.2
99.198.101.186200 OK 8.0 kB URL HTTP/1.1 drhandyman.com.au/wp-content/themes/Divi/includes/builder/scripts/ext/jquery.mobile.custom.min.js?ver=4.9.2
IP 99.198.101.186:0
File type ASCII text, with very long lines (7584)
Hash 984977dc184f8059f2a679b324893e4c
d60a246ba584ba892a87bcf446e71d26adbcb91a
55a084b5f4c439a2786141108b266370e0e4accc4e72629b2177dc6aa658d6c8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/includes/builder/scripts/ext/jquery.mobile.custom.min.js?ver=4.9.2 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:38:03 GMT
Server: Apache
Last-Modified: Mon, 29 Mar 2021 02:11:33 GMT
Accept-Ranges: bytes
Content-Length: 7960
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-content/themes/Divi/includes/builder/scripts/ext/waypoints.min.js?ver=4.9.2
99.198.101.186200 OK 9.0 kB URL HTTP/1.1 drhandyman.com.au/wp-content/themes/Divi/includes/builder/scripts/ext/waypoints.min.js?ver=4.9.2
IP 99.198.101.186:0
File type Unicode text, UTF-8 text, with very long lines (8673)
Hash addf699e328fcfdd249528570e364c87
55ded71a753f720993d7fc985e2b87c32ab59792
484d6f61912f38df954203d9d4878fac9ba3805bafd8f0782b47924719eba33a
GET /wp-content/themes/Divi/includes/builder/scripts/ext/waypoints.min.js?ver=4.9.2 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:38:03 GMT
Server: Apache
Last-Modified: Mon, 29 Mar 2021 02:11:33 GMT
Accept-Ranges: bytes
Content-Length: 8991
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-content/uploads/2019/02/fotr.jpeg
99.198.101.186200 OK 76 kB URL HTTP/1.1 drhandyman.com.au/wp-content/uploads/2019/02/fotr.jpeg
IP 99.198.101.186:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1280x851, components 3\012- data
Hash 922b1fd1b4b1c1e691b22c89f61bfa1c
dc6d4609fd706a42574875448ef4d9d4aee17e75
bcc49cf86a241e25fdc882c5c8c5bbfa9a059d89aa511cdacad6e308edacfac4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2019/02/fotr.jpeg HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://drhandyman.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:38:03 GMT
Server: Apache
Last-Modified: Fri, 15 Feb 2019 02:40:46 GMT
Accept-Ranges: bytes
Content-Length: 75721
Connection: close
Content-Type: image/jpeg
drhandyman.com.au/wp-content/themes/Divi/core/admin/js/common.js?ver=4.9.2
99.198.101.186200 OK 1.3 kB URL HTTP/1.1 drhandyman.com.au/wp-content/themes/Divi/core/admin/js/common.js?ver=4.9.2
IP 99.198.101.186:0
Hash d71b75b2327258b1d01d50590c1f67ca
b7820e4ffb6becc133c48f66d9f683545530b959
1ca76922f55b389b8f590ae7e3bcc3a2dccdce3aff1e5a4335af081b76a414ea
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/core/admin/js/common.js?ver=4.9.2 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:38:03 GMT
Server: Apache
Last-Modified: Mon, 29 Mar 2021 02:11:32 GMT
Accept-Ranges: bytes
Content-Length: 1343
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-content/themes/Divi/includes/builder/scripts/ext/jquery.magnific-popup.js?ver=4.9.2
99.198.101.186200 OK 23 kB URL HTTP/1.1 drhandyman.com.au/wp-content/themes/Divi/includes/builder/scripts/ext/jquery.magnific-popup.js?ver=4.9.2
IP 99.198.101.186:0
File type ASCII text, with very long lines (21184)
Hash b709961dd29d261ee0ce8fb17101874a
9a286eaaa964091528b256c81bb446c7072b7e19
0a47c6e6f24e634cb79f886e70bbfd65e1e85b0d2aa4fc133488fd1bc1910e3e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/includes/builder/scripts/ext/jquery.magnific-popup.js?ver=4.9.2 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:38:03 GMT
Server: Apache
Last-Modified: Mon, 29 Mar 2021 02:11:33 GMT
Accept-Ranges: bytes
Content-Length: 22786
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-content/themes/Divi/js/custom.js?ver=4.9.2
99.198.101.186200 OK 190 kB URL HTTP/1.1 drhandyman.com.au/wp-content/themes/Divi/js/custom.js?ver=4.9.2
IP 99.198.101.186:0
Size 190 kB (190520 bytes)
Hash ed9956e42c4e999d73e08ba97027a861
a028695f87e47fdcf8632316541ff27b98808799
4619a689885cd50fca641d0425347203f1160075a493cdf0d1aac1434ae38bb8
GET /wp-content/themes/Divi/js/custom.js?ver=4.9.2 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:38:03 GMT
Server: Apache
Last-Modified: Mon, 29 Mar 2021 02:11:33 GMT
Accept-Ranges: bytes
Content-Length: 190520
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-content/themes/Divi/includes/builder/frontend-builder/build/frontend-builder-scripts.js?ver=4.9.2
99.198.101.186200 OK 351 kB URL HTTP/1.1 drhandyman.com.au/wp-content/themes/Divi/includes/builder/frontend-builder/build/frontend-builder-scripts.js?ver=4.9.2
IP 99.198.101.186:0
File type ASCII text, with very long lines (48311)
Size 351 kB (350657 bytes)
Hash f82ce0a3c106830f38894dd441fe82ab
ff60b0c35a7fc604c377e37b36da2f8b1f99c3f4
11d4f1de2061bea79f858323d8265bf889906dc8a34d401e651f5d86e0748497
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/includes/builder/frontend-builder/build/frontend-builder-scripts.js?ver=4.9.2 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:38:03 GMT
Server: Apache
Last-Modified: Mon, 29 Mar 2021 02:11:32 GMT
Accept-Ranges: bytes
Content-Length: 350657
Connection: close
Content-Type: application/javascript
drhandyman.com.au/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
99.198.101.186404 Not Found 29 kB URL HTTP/1.1 drhandyman.com.au/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 99.198.101.186:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 31251a033f56decc8d1d11afd4ee5274
677deb5dda6696ff3b2711e8d79ff69e1a1cb188
138c2595b0abeacb5094d736b6370adec356996d64f446fcdd3d95c6efe52661
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drhandyman.com.au/error.php
HTTP/1.1 404 Not Found
Date: Sat, 08 Oct 2022 03:38:02 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
drhandyman.com.au/wp-content/uploads/2020/06/cropped-favi-32x32.png
99.198.101.186200 OK 1.7 kB URL HTTP/1.1 drhandyman.com.au/wp-content/uploads/2020/06/cropped-favi-32x32.png
IP 99.198.101.186:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 2b83efa55093baacc57b2e3649e68b97
3ca60e386dba986bf605364813e30164a7bddaa1
68486fa11c9351ca5b3502ec3a4b227c18e553abb8316e858cd290e169235827
GET /wp-content/uploads/2020/06/cropped-favi-32x32.png HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://drhandyman.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:38:06 GMT
Server: Apache
Last-Modified: Mon, 22 Jun 2020 10:36:00 GMT
Accept-Ranges: bytes
Content-Length: 1743
Connection: close
Content-Type: image/png
drhandyman.com.au/wp-content/uploads/2020/06/cropped-favi-192x192.png
99.198.101.186200 OK 22 kB URL HTTP/1.1 drhandyman.com.au/wp-content/uploads/2020/06/cropped-favi-192x192.png
IP 99.198.101.186:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 726c2bfc8991cb673483e9d564711d49
3a3d6bd089fb4ee120a68d86bd3710c97ae0dffd
b0a0e52c7530cc629708e2db2a75b2a942562ba5d43e274763866c5a4f5f0fa5
GET /wp-content/uploads/2020/06/cropped-favi-192x192.png HTTP/1.1
Host: drhandyman.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://drhandyman.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 03:38:06 GMT
Server: Apache
Last-Modified: Mon, 22 Jun 2020 10:36:00 GMT
Accept-Ranges: bytes
Content-Length: 21670
Connection: close
Content-Type: image/png