r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a8b4f1afb0e830b797238d34ab9254aa
e011acef3d05c959a65205d53b651ecd18a889fe
f7ceff5b4fda083c7449b7298c232224cf48a632dcb87233b646790de207d49c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7CEFF5B4FDA083C7449B7298C232224CF48A632DCB87233B646790DE207D49C"
Last-Modified: Thu, 12 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14626
Expires: Fri, 13 Jan 2023 03:38:19 GMT
Date: Thu, 12 Jan 2023 23:34:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cab5b63e128895128726181aff42e42e
d39c36237554fcd41addec0664d7fe7f7d157c06
18e82a5b82eb8f2d8b49df824c336015f19367c5a05467ad139a56db59f88852
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "18E82A5B82EB8F2D8B49DF824C336015F19367C5A05467AD139A56DB59F88852"
Last-Modified: Wed, 11 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9072
Expires: Fri, 13 Jan 2023 02:05:45 GMT
Date: Thu, 12 Jan 2023 23:34:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0f4ecf4f26be1ba09e61135b1b488bf4
f16b8277e00033bc990a8bcce54b693cb3c87d62
3018c2a228f0a894d217e8e8b0b8dd060527f06879cd2f469bac6c8766acbbf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3018C2A228F0A894D217E8E8B0B8DD060527F06879CD2F469BAC6C8766ACBBF8"
Last-Modified: Wed, 11 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15835
Expires: Fri, 13 Jan 2023 03:58:28 GMT
Date: Thu, 12 Jan 2023 23:34:33 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 12 Jan 2023 22:48:47 GMT
content-type: application/json
age: 2746
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: bqTBud49O+7L1ZOzImE2m0lRioLtTkwxUTAf8fDEWwanpDwxWp1NEe3N1gv9M0ujmgCIwe6525A=
x-amz-request-id: F4YW0GFY8K49AAYC
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 12 Jan 2023 23:17:37 GMT
age: 1016
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
217.21.94.112301 Moved Permanently 707 B URL HTTP/1.1 karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Thu, 12 Jan 2023 23:34:33 GMT
server: LiteSpeed
location: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
platform: hostinger
content-security-policy: upgrade-insecure-requests
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 23:34:33 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 12 Jan 2023 23:17:24 GMT
age: 1030
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1362750c01a8e1a2db32aa73ae46a48d
a423b43f2bd52bd4ec38b760a674866a1294c5ad
f0f57e27c4ec8f1cd8e05f530edc37fb1e4a94ffe92e5729939998346f2e204f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2420
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 23:34:34 GMT
Last-Modified: Thu, 12 Jan 2023 22:54:14 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.164.184.133101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.164.184.133:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Dw7IIwP8pKim24dnW+XhWg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ZmWGwfCsehC+O4UQmU+t2yPz5es=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2228
Expires: Fri, 13 Jan 2023 00:11:43 GMT
Date: Thu, 12 Jan 2023 23:34:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2228
Expires: Fri, 13 Jan 2023 00:11:43 GMT
Date: Thu, 12 Jan 2023 23:34:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2228
Expires: Fri, 13 Jan 2023 00:11:43 GMT
Date: Thu, 12 Jan 2023 23:34:35 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash afcc8f4875f4b74ca0640829b689731e
584d0e11665ae89f9a294baf1e9bb4f0e4e9a4df
3e487396389c4330abc99bc99053eecc6aaf56f7afa398d70c30e1f4709577a0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13626
x-amzn-requestid: 4769eaeb-0c78-4054-ad47-eefdd6ab2d03
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eWHMZErbIAMF6sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b8b8b5-4c7bacfe060899044e361f70;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 00:11:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JRzc2Mcl4EasyH6_1kFh7sr-57f1HNDu-YN8YptDe_kcTET9x8P9LA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Thu, 12 Jan 2023 11:00:38 GMT
age: 45237
etag: "584d0e11665ae89f9a294baf1e9bb4f0e4e9a4df"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde27bb4e-483c-494f-9a03-17e4a8ef9bc3.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde27bb4e-483c-494f-9a03-17e4a8ef9bc3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a6884770b2d027f2b231d44f3920638c
cea13e4045e54143c85282c7fa93bce833f017b7
d9cd6e9e83e6a6a700505be787d6d7243d1ad1dc49c444a6a2a1d2ee2f30d1bb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde27bb4e-483c-494f-9a03-17e4a8ef9bc3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5795
x-amzn-requestid: ebc52475-b613-49bc-96d8-d244d5a6c8c8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eph5yEIHIAMFQ0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c07d0b-7d4a5e174456ff034d686ea7;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 21:35:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xZabqGA3vbPhqpIddmfuy3F_nXC6Xfgk5ZY9jy_AQsjf4DOiOlzgPw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Thu, 12 Jan 2023 21:50:03 GMT
age: 6272
etag: "cea13e4045e54143c85282c7fa93bce833f017b7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb840d484-56de-4f38-ad4b-0cb93e4b1274.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb840d484-56de-4f38-ad4b-0cb93e4b1274.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7c276d1876bfcc6ec4dfb94bcdd2f6c8
177a80d7d4d3fc273a712cada41abdd87b138a6c
abceeefeec2fc658e285a2898e38a36643501bfa1d66f33e216f100e456a8c06
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb840d484-56de-4f38-ad4b-0cb93e4b1274.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8785
x-amzn-requestid: 92e6f0ba-49c3-439f-baeb-61b920557305
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: epidYGOsIAMFn7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c07def-5e2c33e8430e4e7a75eaecf5;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 21:38:55 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3kEaSCu5zl13dK5jvG9x0lqxr8XOoH8yrKOM5UiSebEfL8MhmCE3Zw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Thu, 12 Jan 2023 21:56:57 GMT
age: 5858
etag: "177a80d7d4d3fc273a712cada41abdd87b138a6c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7792e19-fdcf-4706-b221-7d3353e6b9ae.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7792e19-fdcf-4706-b221-7d3353e6b9ae.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba61442e6ededd7b49f6244613df0e63
385f45b5920174ca20bcc2d9c02eedb4641f48a9
5e5cd1fd026dc72d0c3c5032fbae17f3383c64ee2714808c892c094353f31012
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7792e19-fdcf-4706-b221-7d3353e6b9ae.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5990
x-amzn-requestid: 54a83ca0-eb61-4212-8c98-e1e182b860ea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ejsZiEeBoAMF7kg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63be2770-3565b4d43d28ee3c0fd16ed0;Sampled=0
x-amzn-remapped-date: Wed, 11 Jan 2023 03:05:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Iyd-BB9USeueIMV1p6P3uaA6Q_6VXZ44WiOuICwzym5GpfvsFXA48Q==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Thu, 12 Jan 2023 03:21:35 GMT
age: 72780
etag: "385f45b5920174ca20bcc2d9c02eedb4641f48a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F528de87e-4c51-4e2a-90d5-fa6c5a52a300.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F528de87e-4c51-4e2a-90d5-fa6c5a52a300.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c3735c87d612da35bd07f0397b95799a
47a017ef6a57d5ec43482308cda3e15f35bfacf6
e075dd0433540b3c35030bd9312273e1ed472ab1a25cfe2912086d35e6019a60
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F528de87e-4c51-4e2a-90d5-fa6c5a52a300.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10420
x-amzn-requestid: 07ec4ee5-9bf1-4562-ace2-54878d165362
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eVx2SE-AIAMF9hQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b8968e-261039fd5a03f8bd318be3f0;Sampled=0
x-amzn-remapped-date: Fri, 06 Jan 2023 21:45:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BKoZAgzi0MGztJxdhh5yA03Z1iWLGN9jXmDGUrNkBD8qVlrpmmJ2gw==
via: 1.1 60b744e5b364d04abea9fa6686121242.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 12 Jan 2023 22:09:38 GMT
age: 5097
etag: "47a017ef6a57d5ec43482308cda3e15f35bfacf6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe65902c3-48ee-4167-857a-c14e7f6464fc.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe65902c3-48ee-4167-857a-c14e7f6464fc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9c604448d6f1f1622279878df4f545cf
a412b00226d0d0ed3b9d8576d16d0ed2c516de91
16e45cd5e0ee3905a217af05d8f42e7e218551addca9d684c71bdeedde825929
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe65902c3-48ee-4167-857a-c14e7f6464fc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7020
x-amzn-requestid: 194bad3a-32af-458a-b131-5eeb73bffac1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ejsalGskoAMFeuA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63be2776-3bfeb6920bf5eeea61aaf7dd;Sampled=0
x-amzn-remapped-date: Wed, 11 Jan 2023 03:05:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: USGCzHZu-DKk3iVbXQB8JbaLfPfXBU31LR0YsTpVLcf3hDby9Nh3JA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 12 Jan 2023 03:18:55 GMT
age: 72940
etag: "a412b00226d0d0ed3b9d8576d16d0ed2c516de91"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/ucss/81b9239853fbd6be8e74b15e317445e9.css?ver=3ff62
217.21.94.112200 OK 1.2 kB URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/ucss/81b9239853fbd6be8e74b15e317445e9.css?ver=3ff62
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (4830), with no line terminators
Hash f4a52cbca05dc4410c02d7c2df381001
84395bc1d3fadb0c969b172a0fddbf45e08ebba5
d5e387a006a6be5ea6821335c821607d9d6c536ac2f60e855ce1fa06fb62899f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/ucss/81b9239853fbd6be8e74b15e317445e9.css?ver=3ff62 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 13 Jan 2024 05:34:36 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 14:54:52 GMT
etag: "12de-638228bc-64429b830103a743;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1188
date: Thu, 12 Jan 2023 23:34:36 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/et-cache/275/et-core-unified-cpt-deferred-275.min.css?ver=1673179365
217.21.94.112200 OK 943 B URL HTTP/2 karthikestatecottages.com/wp-content/et-cache/275/et-core-unified-cpt-deferred-275.min.css?ver=1673179365
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (9089), with no line terminators
Hash 73aae09117c847158f6b83c0cc9bb7bc
d672a6ee007db203d7292c0508a277ada5f6cdd2
35be656eeb7cb93aa0f41e2f03e514ccb39f50f770c8d159bcf280f1889c08b2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/et-cache/275/et-core-unified-cpt-deferred-275.min.css?ver=1673179365 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 13 Jan 2024 05:34:36 GMT
content-type: text/css
last-modified: Sun, 08 Jan 2023 12:02:45 GMT
etag: "2381-63bab0e5-1cd16b35e73f334d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 943
date: Thu, 12 Jan 2023 23:34:36 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/et-cache/notfound/et-divi-dynamic-tb-306-tb-275-late.css
217.21.94.112200 OK 6.1 kB URL HTTP/2 karthikestatecottages.com/wp-content/et-cache/notfound/et-divi-dynamic-tb-306-tb-275-late.css
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (11014)
Hash 387e9ef3738a5cb17dd4664b99e0973e
d4833aa77d571035505ea624d9d22ef19b4ccd60
00f12e17430b1cc8d2f4950da660065cb3b7ed11e0e360a8de19cee6df8038ff
GET /wp-content/et-cache/notfound/et-divi-dynamic-tb-306-tb-275-late.css HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 13 Jan 2024 05:34:36 GMT
content-type: text/css
last-modified: Sun, 08 Jan 2023 12:02:45 GMT
etag: "a1b0-63bab0e5-53429776e0865fcc;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6140
date: Thu, 12 Jan 2023 23:34:36 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/themes/Divi/core/admin/fonts/modules/social/modules.ttf
217.21.94.112200 OK 5.9 kB URL HTTP/2 karthikestatecottages.com/wp-content/themes/Divi/core/admin/fonts/modules/social/modules.ttf
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, ETmodules \012- data
Hash fd819149ea6e2074186c600086745092
9a99fabb54aa10741aef7014d53ae3ef0ec5e130
fee6b82cb48a3d100510e520c0e59011e0124679127034b05a736b4b9d5e63c4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/core/admin/fonts/modules/social/modules.ttf HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/litespeed/ucss/81b9239853fbd6be8e74b15e317445e9.css?ver=3ff62
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 13 Jan 2024 05:34:36 GMT
content-type: application/x-font-ttf
last-modified: Sat, 26 Nov 2022 14:52:15 GMT
etag: "289c-6382281f-dfeb4d6dc71b2d17;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5918
date: Thu, 12 Jan 2023 23:34:36 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/plugins/litespeed-cache/guest.vary.php
217.21.94.112200 OK 20 B URL HTTP/2 karthikestatecottages.com/wp-content/plugins/litespeed-cache/guest.vary.php
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type JSON data\012- , ASCII text, with no line terminators
Hash fa959e6aa35e467e34c09eb24f24daa8
caccea25ee198ae325d02ca3d02699ba57694b9f
ff788b96ca99d371d40e70f701f66bd58740893a83c145e9a810539ce9c02ffa
Analyzer Verdict Alert fortinet Phishing
POST /wp-content/plugins/litespeed-cache/guest.vary.php HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
Origin: https://karthikestatecottages.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/8.1.11
x-litespeed-cache-control: no-cache
set-cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; expires=Sat, 14-Jan-2023 23:34:36 GMT; Max-Age=172800; path=/; secure; HttpOnly
content-type: text/html; charset=UTF-8
content-length: 20
content-encoding: br
vary: Accept-Encoding
date: Thu, 12 Jan 2023 23:34:36 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.woff
217.21.94.112200 OK 92 kB URL HTTP/2 karthikestatecottages.com/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.woff
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type Web Open Font Format, TrueType, length 92476, version 2.4\012- data
Hash 7d04c782e3ec7b655cb15e50245c4c49
6ac6c03ebcebc29f36f09525ae9564f12240776d
88795f28bb66a45f9c32245dd21d6319ed5d26a45bf5afa31d91a0f83ee855f7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/core/admin/fonts/modules/all/modules.woff HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/et-cache/notfound/et-divi-dynamic-tb-306-tb-275-late.css
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 13 Jan 2024 05:34:36 GMT
content-type: application/font-woff
last-modified: Sat, 26 Nov 2022 14:52:15 GMT
etag: "1693c-6382281f-9888047295b65791;;;"
accept-ranges: bytes
content-length: 92476
date: Thu, 12 Jan 2023 23:34:36 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
217.21.94.112200 OK 30 kB URL HTTP/2 karthikestatecottages.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (65447)
Hash cdbbc979b5a5de31a3ac8296e0ef489e
b83000eb74956c3404fb58c87e95aed5bab2ed19
48a6489945365cddb4c75af60f1e6a8a15d6598a1596ef18eb1b4aaad33e96f3
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 13 Jan 2024 05:34:36 GMT
content-type: application/x-javascript
last-modified: Tue, 15 Nov 2022 23:40:32 GMT
etag: "15e54-63742370-5ac77096064010de;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30075
date: Thu, 12 Jan 2023 23:34:36 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6bb86817a182559a9657a84391bc0914
471d4c681cfd01c50f9d8f12f6b614e326424093
1ff17d42ac0d4d078340bd30215a525937da02da88c546a781293889fa756dac
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 23:34:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash eaefb1a377d37b185e1204ef828feb4e
9376a5af69ed0651d29df5dc04e90067375ee340
31d9af22f6f4f5340b2760e8689f91295aec751f17ca1c411cf6cc8fdb9a5f4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 23:34:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?render=6LcdJQMaAAAAANjL3YJ44n3_iMZptQK1omgxuuPh&ver=3.0
142.250.74.164400 Bad Request 119 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LcdJQMaAAAAANjL3YJ44n3_iMZptQK1omgxuuPh&ver=3.0
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 96612d2b1b529ecfcf09798c3eb100bf
4f32d5d3ccf4d44ae71309dfa8d6f9d396614a27
7c58bfa17d0c600b7455e6bfb3d8371fbf93da20a7a53ed1efad37d692f1cba0
GET /recaptcha/api.js?render=6LcdJQMaAAAAANjL3YJ44n3_iMZptQK1omgxuuPh&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 400 Bad Request
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Thu, 12 Jan 2023 23:34:37 GMT
expires: Thu, 12 Jan 2023 23:34:37 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 119
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-M8Z9SK2
142.250.74.168200 OK 67 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-M8Z9SK2
IP 142.250.74.168:0
File type ASCII text, with very long lines (14989)
Hash 2217c7557afb9045b203e0f79e05e0b7
c2c0403ea195fd0fec6c3ffffcc83d18aac6e2d1
73709e3af219a2eb1a632fd1ee07cb85d4886087bd6865524f9bba2e25edbcc7
GET /gtm.js?id=GTM-M8Z9SK2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 12 Jan 2023 23:34:37 GMT
expires: Thu, 12 Jan 2023 23:34:37 GMT
cache-control: private, max-age=900
last-modified: Thu, 12 Jan 2023 22:25:49 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 66731
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash aabd4cb92d42e0c9e2d3860118029a6c
53325cdd89f9a117ac79dff7cedfd6370b07f33b
d9bc7a65b7e179ebd42170d0d43372e90739264df1f87a511ee0aab5ab012e85
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 23:34:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash eaefb1a377d37b185e1204ef828feb4e
9376a5af69ed0651d29df5dc04e90067375ee340
31d9af22f6f4f5340b2760e8689f91295aec751f17ca1c411cf6cc8fdb9a5f4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 23:34:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
karthikestatecottages.com/wp-content/litespeed/js/0a746710db3e9f31836ee0803b5d618a.js?ver=3ff62
217.21.94.112200 OK 98 kB URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/js/0a746710db3e9f31836ee0803b5d618a.js?ver=3ff62
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (54313)
Hash 9c45ff0f76fc56399b5027f2aad356ca
f696245c92e3954ee04eed6df9c8fb3bc180ec75
1871b2531973263a58c2b5605c210d57edd374541477a2c564d5cadb8d0f902d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/0a746710db3e9f31836ee0803b5d618a.js?ver=3ff62 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 13 Jan 2024 05:34:37 GMT
content-type: application/x-javascript
last-modified: Thu, 15 Dec 2022 09:55:09 GMT
etag: "6055e-639aeefd-4b086163767cb031;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 97912
date: Thu, 12 Jan 2023 23:34:37 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d85923836060d54f16bf5e089c6cce0a
c34e8934f12a46d107086e9889e564c36fba6a51
befa234085a447c89e241c03f110bff261b59bae1dfc02e885a5b1091791901a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 23:34:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c1cc8833602dd5e367a6233f2fd9a368
88ccf284313388951cc3eb3534022c403bce8f94
814c643caa1b930bcd10ed0f83968bd7b2d313075bbdd5bb7428e3b9aa87219a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 23:34:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/wcm/loader.js
142.250.74.35200 OK 1.3 kB URL HTTP/2 www.gstatic.com/wcm/loader.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (1123)
Hash 22300d54ba7faf32360c95915053014c
ea83f097bd99413f9d8fcb08d0312ba7ba1be99f
2c4c9c9d6af1ad12556ab11c8021eb5c254025ce04500bc885b69984dd562ce5
GET /wcm/loader.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1339
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 12 Jan 2023 23:04:12 GMT
expires: Fri, 13 Jan 2023 00:04:12 GMT
cache-control: public, max-age=3600
age: 1825
last-modified: Mon, 15 Mar 2021 16:45:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 65f0c0830d6be2391df2dd2bbbf75794
264ed8ddd824620623aef3d5f68b2c027bd356a6
22ba0a0556a92482dfb6f2664d15fda8faa0768b4abfe327e530e3c90b721cd5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 23:34:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.46200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 12 Jan 2023 22:21:54 GMT
expires: Fri, 13 Jan 2023 00:21:54 GMT
cache-control: public, max-age=7200
age: 4363
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/11035497740/?random=1673566462232&cv=11&fst=1673566462232&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fkarthikestatecottages.com%2Fwp-content%2Fthemes%2Ftwentytwentytwo%2Ftelstra%2Fklnmnbe84765%2F128849cbf5e882246030c1c83a2d22b3%2Fsms.php&tiba=Page%20not%20found%20-%20Homestay&auid=1269708352.1673566462&rfmt=3&fmt=4
216.58.207.194200 OK 946 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/11035497740/?random=1673566462232&cv=11&fst=1673566462232&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fkarthikestatecottages.com%2Fwp-content%2Fthemes%2Ftwentytwentytwo%2Ftelstra%2Fklnmnbe84765%2F128849cbf5e882246030c1c83a2d22b3%2Fsms.php&tiba=Page%20not%20found%20-%20Homestay&auid=1269708352.1673566462&rfmt=3&fmt=4
IP 216.58.207.194:0
File type ASCII text, with very long lines (2041), with no line terminators
Hash 0086f94778343d588e5ed790a79b9598
7ba3a55afefa53058883a2d0e0c3a4fce671dbe5
0fe96b1fb8c54d3f32c5770ee2bed53a15f4d4a03a591fcdc5daa6e272bb46c6
GET /pagead/viewthroughconversion/11035497740/?random=1673566462232&cv=11&fst=1673566462232&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fkarthikestatecottages.com%2Fwp-content%2Fthemes%2Ftwentytwentytwo%2Ftelstra%2Fklnmnbe84765%2F128849cbf5e882246030c1c83a2d22b3%2Fsms.php&tiba=Page%20not%20found%20-%20Homestay&auid=1269708352.1673566462&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 12 Jan 2023 23:34:37 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 946
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 12-Jan-2023 23:49:37 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 71e87185e70f595e12a3613f1ac35c67
f1818783717cc0cb399a0bcddb8a9029cf7166d1
dff5f1029a06d6f1ed59e1f3e33af77d2ac550553d9fc69be48c2a81093dc2db
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 23:34:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 65f0c0830d6be2391df2dd2bbbf75794
264ed8ddd824620623aef3d5f68b2c027bd356a6
22ba0a0556a92482dfb6f2664d15fda8faa0768b4abfe327e530e3c90b721cd5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 23:34:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c1cc8833602dd5e367a6233f2fd9a368
88ccf284313388951cc3eb3534022c403bce8f94
814c643caa1b930bcd10ed0f83968bd7b2d313075bbdd5bb7428e3b9aa87219a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 23:34:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 56ed86c6ba574264fcbaf67b5a233a23
2af652f21e1e6ba1d58ee28027af55017a5206c8
8c25f30c1fc2d7cc7650a6af7f788de0297b9f52ec8806a40797a84345103860
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 23:34:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/11035497740/?random=1673566462232&cv=11&fst=1673564400000&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fkarthikestatecottages.com%2Fwp-content%2Fthemes%2Ftwentytwentytwo%2Ftelstra%2Fklnmnbe84765%2F128849cbf5e882246030c1c83a2d22b3%2Fsms.php&tiba=Page%20not%20found%20-%20Homestay&fmt=3&is_vtc=1&random=2787490924&rmt_tld=1&ipr=y
142.250.74.131200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/11035497740/?random=1673566462232&cv=11&fst=1673564400000&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fkarthikestatecottages.com%2Fwp-content%2Fthemes%2Ftwentytwentytwo%2Ftelstra%2Fklnmnbe84765%2F128849cbf5e882246030c1c83a2d22b3%2Fsms.php&tiba=Page%20not%20found%20-%20Homestay&fmt=3&is_vtc=1&random=2787490924&rmt_tld=1&ipr=y
IP 142.250.74.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/11035497740/?random=1673566462232&cv=11&fst=1673564400000&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fkarthikestatecottages.com%2Fwp-content%2Fthemes%2Ftwentytwentytwo%2Ftelstra%2Fklnmnbe84765%2F128849cbf5e882246030c1c83a2d22b3%2Fsms.php&tiba=Page%20not%20found%20-%20Homestay&fmt=3&is_vtc=1&random=2787490924&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 12 Jan 2023 23:34:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 37aa20d266327d279d1e6bca152e38fc
59cf59e36f55df3bf27846b36a3fead393fda9f1
21602ca62e31ce4109b3acba341e542392e37ec0446b627b2b66cbdfa5f17922
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 23:34:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 56ed86c6ba574264fcbaf67b5a233a23
2af652f21e1e6ba1d58ee28027af55017a5206c8
8c25f30c1fc2d7cc7650a6af7f788de0297b9f52ec8806a40797a84345103860
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 23:34:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googleadservices.com/pagead/conversion/11035497740/wcm?cc=ZZ&dn=7348847227&cl=JyW3CN61uIUYEIyqkY4p&ct_eid=2
216.58.207.226302 Found 0 B URL HTTP/2 www.googleadservices.com/pagead/conversion/11035497740/wcm?cc=ZZ&dn=7348847227&cl=JyW3CN61uIUYEIyqkY4p&ct_eid=2
IP 216.58.207.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/conversion/11035497740/wcm?cc=ZZ&dn=7348847227&cl=JyW3CN61uIUYEIyqkY4p&ct_eid=2 HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://karthikestatecottages.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://www.google.no/pagead/attribution/wcm?cc=ZZ&dn=7348847227&cl=JyW3CN61uIUYEIyqkY4p
access-control-allow-origin: https://karthikestatecottages.com
access-control-allow-credentials: true
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Thu, 12 Jan 2023 23:34:38 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0f0e8fc5f1f7e2f100e9d693fde1e82c
5247d0a0834b2876523969c90f8a75c847a6ceea
70884d018882b04ce0763ecac10b941e1c623f1baf435df13a7a76359ddbfa2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 23:34:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.google-analytics.com/g/collect?v=2&tid=G-MXCGE16QRD>m=2oe1a1&_p=1607294425&cid=971226018.1673566462&ul=en-us&sr=1280x1024&_s=1&sid=1673566462&sct=1&seg=0&dl=https%3A%2F%2Fkarthikestatecottages.com%2Fwp-content%2Fthemes%2Ftwentytwentytwo%2Ftelstra%2Fklnmnbe84765%2F128849cbf5e882246030c1c83a2d22b3%2Fsms.php&dt=Page%20not%20found%20-%20Homestay&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-MXCGE16QRD>m=2oe1a1&_p=1607294425&cid=971226018.1673566462&ul=en-us&sr=1280x1024&_s=1&sid=1673566462&sct=1&seg=0&dl=https%3A%2F%2Fkarthikestatecottages.com%2Fwp-content%2Fthemes%2Ftwentytwentytwo%2Ftelstra%2Fklnmnbe84765%2F128849cbf5e882246030c1c83a2d22b3%2Fsms.php&dt=Page%20not%20found%20-%20Homestay&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-MXCGE16QRD>m=2oe1a1&_p=1607294425&cid=971226018.1673566462&ul=en-us&sr=1280x1024&_s=1&sid=1673566462&sct=1&seg=0&dl=https%3A%2F%2Fkarthikestatecottages.com%2Fwp-content%2Fthemes%2Ftwentytwentytwo%2Ftelstra%2Fklnmnbe84765%2F128849cbf5e882246030c1c83a2d22b3%2Fsms.php&dt=Page%20not%20found%20-%20Homestay&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://karthikestatecottages.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://karthikestatecottages.com
date: Thu, 12 Jan 2023 23:34:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/plugins/litespeed-cache/assets/js/webfontloader.min.js
217.21.94.112200 OK 4.6 kB URL HTTP/2 karthikestatecottages.com/wp-content/plugins/litespeed-cache/assets/js/webfontloader.min.js
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 text, with very long lines (12075), with no line terminators
Hash e03020f95691b6e8f22ccf6a95273424
487f20ce26a53ce1520ce19205cb0e38b1917d26
b65d380786d26ecbba5b0bcaea54e57125e79fbbd94074050115293502aabcf1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/litespeed-cache/assets/js/webfontloader.min.js HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1269708352.1673566462; _ga_MXCGE16QRD=GS1.1.1673566462.1.0.1673566463.0.0.0; _ga=GA1.2.971226018.1673566462; _gid=GA1.2.1415590812.1673566463; _gat_UA-207024867-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 13 Jan 2024 05:34:39 GMT
content-type: application/x-javascript
last-modified: Thu, 15 Dec 2022 09:48:13 GMT
etag: "2f42-639aed5d-f5ed02905fbd67e4;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4638
date: Thu, 12 Jan 2023 23:34:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
217.21.94.112404 Not Found 54 kB URL HTTP/2 karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (27426)
Hash 5f558f7b4016e1f2f581269fde1993a6
dbb8f7c0379452042778f4f9bb4cb23c2556f746
9a7314b9ba37f116fe6c4a1d71ac624013347e0b5e6bf7cb95a097fb82b0c3a0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
x-powered-by: PHP/8.1.11
x-dns-prefetch-control: on
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <https://karthikestatecottages.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache-control: public,max-age=3600
x-litespeed-tag: 3b5_HTTP.404,3b5_404,3b5_URL.a76d399bc3d1aaaab5f16043395add79,3b5_,3b5_CCSS.29901685d9cbced33f58b45c32eb2c02
x-litespeed-cache: miss
content-encoding: br
vary: Accept-Encoding
date: Thu, 12 Jan 2023 23:34:38 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/css/eb7e6d7525599c5d35819c8614f88177.css?ver=56497
217.21.94.112200 OK 11 kB URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/css/eb7e6d7525599c5d35819c8614f88177.css?ver=56497
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (65536), with no line terminators
Hash 78bafc79c072adaf104b9221177ce381
1953f7afc4736db04681082db8af7bdc805fab9e
a1825321e7e140a96117c7842278cb042675ddcfaa2335b968c3bda9be72480b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/eb7e6d7525599c5d35819c8614f88177.css?ver=56497 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1269708352.1673566462; _ga_MXCGE16QRD=GS1.1.1673566462.1.0.1673566463.0.0.0; _ga=GA1.2.971226018.1673566462; _gid=GA1.2.1415590812.1673566463; _gat_UA-207024867-1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 13 Jan 2024 05:34:39 GMT
content-type: text/css
last-modified: Thu, 12 Jan 2023 23:34:38 GMT
etag: "17193-63c0990e-5e751c4d9ecbda77;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11302
date: Thu, 12 Jan 2023 23:34:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/css/8e1562a058441e964dd3d0daf182c272.css?ver=72e73
217.21.94.112200 OK 722 B URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/css/8e1562a058441e964dd3d0daf182c272.css?ver=72e73
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (2216), with no line terminators
Hash d86ec3eb0568f1d47aff89d3bbd13bb3
4dbc294dbdd918780d24091ee7b877a7a80aced0
3a488242b286ef86b4803de5523cd11e9d25d75d8d4f08e0426398ca3df65100
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/8e1562a058441e964dd3d0daf182c272.css?ver=72e73 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1269708352.1673566462; _ga_MXCGE16QRD=GS1.1.1673566462.1.0.1673566463.0.0.0; _ga=GA1.2.971226018.1673566462; _gid=GA1.2.1415590812.1673566463; _gat_UA-207024867-1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 13 Jan 2024 05:34:39 GMT
content-type: text/css
last-modified: Thu, 12 Jan 2023 23:34:38 GMT
etag: "8a8-63c0990e-57c71face5274d1e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 722
date: Thu, 12 Jan 2023 23:34:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/js/3a56923e62cb9e1bcbadcd7e294045ca.js?ver=496cb
217.21.94.112200 OK 4.0 kB URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/js/3a56923e62cb9e1bcbadcd7e294045ca.js?ver=496cb
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (11125)
Hash 6fcfc772873ce01c4baf5ee51d90fc81
8e504bae5c61c880f790fbc715c155bce1d5517f
88f15aaa4a648316b071a23d9241d57076f3c59d79af339dad57958f55e65184
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/3a56923e62cb9e1bcbadcd7e294045ca.js?ver=496cb HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1269708352.1673566462; _ga_MXCGE16QRD=GS1.1.1673566462.1.0.1673566463.0.0.0; _ga=GA1.2.971226018.1673566462; _gid=GA1.2.1415590812.1673566463; _gat_UA-207024867-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 13 Jan 2024 05:34:39 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 23:34:38 GMT
etag: "2bd8-63c0990e-8031e70a7b9d9b36;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3984
date: Thu, 12 Jan 2023 23:34:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/css/28d7a7b6170f194201beacbe7fd5b7ad.css?ver=a7ff3
217.21.94.112200 OK 4.6 kB URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/css/28d7a7b6170f194201beacbe7fd5b7ad.css?ver=a7ff3
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (21941), with no line terminators
Hash 1b94a8896c1bdf34021067f2dee36eef
ee1511c11d182d2fc8141ac87171484bbd0a4ceb
2b4bd018f13bdb3693d37c737f775f80971ac14d8fa71a0efdd1dd14a14d9289
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/28d7a7b6170f194201beacbe7fd5b7ad.css?ver=a7ff3 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1269708352.1673566462; _ga_MXCGE16QRD=GS1.1.1673566462.1.0.1673566463.0.0.0; _ga=GA1.2.971226018.1673566462; _gid=GA1.2.1415590812.1673566463; _gat_UA-207024867-1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 13 Jan 2024 05:34:39 GMT
content-type: text/css
last-modified: Thu, 12 Jan 2023 23:34:38 GMT
etag: "55b5-63c0990e-f02e2ae57073ee8a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4640
date: Thu, 12 Jan 2023 23:34:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/css/c238ec3dbb66d139abe9642101d15490.css?ver=0ef9e
217.21.94.112200 OK 6.1 kB URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/css/c238ec3dbb66d139abe9642101d15490.css?ver=0ef9e
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (28710)
Hash 18def2ee9247c732010a4e6dd988562d
d6527b6a930a6bc3a4833894576573fe83ec7fca
10637ef1d303479ae08da09b9c95d0644d386ab48606e558724ccd971a0e7429
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/c238ec3dbb66d139abe9642101d15490.css?ver=0ef9e HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1269708352.1673566462; _ga_MXCGE16QRD=GS1.1.1673566462.1.0.1673566463.0.0.0; _ga=GA1.2.971226018.1673566462; _gid=GA1.2.1415590812.1673566463; _gat_UA-207024867-1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 13 Jan 2024 05:34:39 GMT
content-type: text/css
last-modified: Thu, 12 Jan 2023 23:34:38 GMT
etag: "a1b0-63c0990e-dc9c55b67a30ed2a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6134
date: Thu, 12 Jan 2023 23:34:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/css/f730e910073d3407fc066c352d75ef27.css?ver=77eaa
217.21.94.112200 OK 5.3 kB URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/css/f730e910073d3407fc066c352d75ef27.css?ver=77eaa
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (42873), with no line terminators
Hash 841cbef9783716c9d2c1096cbcc379d3
07941a598874ebf14e2fe4ea01cdc88d298db2d9
7d24dd6724e2093c4c08f1dc502fdfdb90b797f41d587b893cef50bc4f694c21
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/f730e910073d3407fc066c352d75ef27.css?ver=77eaa HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1269708352.1673566462; _ga_MXCGE16QRD=GS1.1.1673566462.1.0.1673566463.0.0.0; _ga=GA1.2.971226018.1673566462; _gid=GA1.2.1415590812.1673566463; _gat_UA-207024867-1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 13 Jan 2024 05:34:39 GMT
content-type: text/css
last-modified: Thu, 12 Jan 2023 23:34:38 GMT
etag: "a779-63c0990e-9cfa010c723bdff6;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5291
date: Thu, 12 Jan 2023 23:34:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/js/e7c1d41e270196d688189a9f163b0202.js?ver=cbd88
217.21.94.112200 OK 14 kB URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/js/e7c1d41e270196d688189a9f163b0202.js?ver=cbd88
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (58141)
Hash 58ba9252e425c1c2b0bf6f9eb0e30309
8eaa7ab296a7720e66205454a734f3e947d9e3a1
e677eb91650ac420df9cfc58ad415417cfb5d9fe5e1f630b5dace289bc2779ac
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/e7c1d41e270196d688189a9f163b0202.js?ver=cbd88 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1269708352.1673566462; _ga_MXCGE16QRD=GS1.1.1673566462.1.0.1673566463.0.0.0; _ga=GA1.2.971226018.1673566462; _gid=GA1.2.1415590812.1673566463; _gat_UA-207024867-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 13 Jan 2024 05:34:39 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 23:34:38 GMT
etag: "e31f-63c0990e-d8d442c5ad056fe3;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 14231
date: Thu, 12 Jan 2023 23:34:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/css/f5d9ceb442b128ee5879bc7cc7c6247b.css?ver=e7d53
217.21.94.112200 OK 581 B URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/css/f5d9ceb442b128ee5879bc7cc7c6247b.css?ver=e7d53
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (3290), with no line terminators
Hash 1570bcfdc804ea32e06b14959006627c
1c197798673a5e7370b2e095aad6602b79144732
38c25ed721ec38d7f825f660e705bed942e28044021b3d6fb2ea05d0c088a74f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/f5d9ceb442b128ee5879bc7cc7c6247b.css?ver=e7d53 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1269708352.1673566462; _ga_MXCGE16QRD=GS1.1.1673566462.1.0.1673566463.0.0.0; _ga=GA1.2.971226018.1673566462; _gid=GA1.2.1415590812.1673566463; _gat_UA-207024867-1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 13 Jan 2024 05:34:39 GMT
content-type: text/css
last-modified: Thu, 12 Jan 2023 23:34:38 GMT
etag: "cda-63c0990e-3511ee1f3a71d061;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 581
date: Thu, 12 Jan 2023 23:34:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 709dbdc77e1779e7c77865fa27f2573a
8781ced82c5109fbe49e8897844c7c1b89f4c340
8b02e05fc2de10b7aa4115870138f3b4e2a1f79a844924d7c50072b002405dc1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 23:34:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
karthikestatecottages.com/wp-content/et-cache/275/et-core-unified-cpt-deferred-275.min.css?ver=1673179365
217.21.94.112200 OK 943 B URL HTTP/2 karthikestatecottages.com/wp-content/et-cache/275/et-core-unified-cpt-deferred-275.min.css?ver=1673179365
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (9089), with no line terminators
Hash 73aae09117c847158f6b83c0cc9bb7bc
d672a6ee007db203d7292c0508a277ada5f6cdd2
35be656eeb7cb93aa0f41e2f03e514ccb39f50f770c8d159bcf280f1889c08b2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/et-cache/275/et-core-unified-cpt-deferred-275.min.css?ver=1673179365 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1269708352.1673566462; _ga_MXCGE16QRD=GS1.1.1673566462.1.0.1673566463.0.0.0; _ga=GA1.2.971226018.1673566462; _gid=GA1.2.1415590812.1673566463; _gat_UA-207024867-1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 13 Jan 2024 05:34:39 GMT
content-type: text/css
last-modified: Sun, 08 Jan 2023 12:02:45 GMT
etag: "2381-63bab0e5-1cd16b35e73f334d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 943
date: Thu, 12 Jan 2023 23:34:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/css/417fb907586e584e0d226d2b21711b92.css?ver=33072
217.21.94.112200 OK 930 B URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/css/417fb907586e584e0d226d2b21711b92.css?ver=33072
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (7397), with no line terminators
Hash 352832de6465ee04d80245443fe0c516
ae053adcfb86d8ed0b201371595785e6f4a6a9d3
d0af500576df26554b62e1b724a712e5f0265d34b82e7dfa583989fff1b64127
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/417fb907586e584e0d226d2b21711b92.css?ver=33072 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1269708352.1673566462; _ga_MXCGE16QRD=GS1.1.1673566462.1.0.1673566463.0.0.0; _ga=GA1.2.971226018.1673566462; _gid=GA1.2.1415590812.1673566463; _gat_UA-207024867-1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 13 Jan 2024 05:34:39 GMT
content-type: text/css
last-modified: Thu, 12 Jan 2023 23:34:38 GMT
etag: "1ce5-63c0990e-969e8c8b3d16ad2b;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 930
date: Thu, 12 Jan 2023 23:34:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/css/da19b69de124bba871c59f991d5abb78.css?ver=4cb11
217.21.94.112200 OK 942 B URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/css/da19b69de124bba871c59f991d5abb78.css?ver=4cb11
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (8674), with no line terminators
Hash b0e72376ea3b304725bc6c8fdbced34b
391af0626aa6e075c3304af07a6dc5fae16cab1a
280a9ba71ff0f571a47d007a541569adffba5b7d35b5ff1e19dd10d6c8188c98
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/da19b69de124bba871c59f991d5abb78.css?ver=4cb11 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1269708352.1673566462; _ga_MXCGE16QRD=GS1.1.1673566462.1.0.1673566463.0.0.0; _ga=GA1.2.971226018.1673566462; _gid=GA1.2.1415590812.1673566463; _gat_UA-207024867-1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 13 Jan 2024 05:34:39 GMT
content-type: text/css
last-modified: Thu, 12 Jan 2023 23:34:38 GMT
etag: "21e2-63c0990e-45267b20d1758b16;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 942
date: Thu, 12 Jan 2023 23:34:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/js/cfe9f73e6db21967110cbb9e7d6b872b.js?ver=9bf4c
217.21.94.112200 OK 2.8 kB URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/js/cfe9f73e6db21967110cbb9e7d6b872b.js?ver=9bf4c
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (9936)
Hash f3872a7035110eefef692d7c374e3510
661bdafb532a89dc5d25a429ca31d0b395663e04
a898f1bb3087ef50045f0f32b632266669a25ae66502b27e87c3633496a34e15
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/cfe9f73e6db21967110cbb9e7d6b872b.js?ver=9bf4c HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1269708352.1673566462; _ga_MXCGE16QRD=GS1.1.1673566462.1.0.1673566463.0.0.0; _ga=GA1.2.971226018.1673566462; _gid=GA1.2.1415590812.1673566463; _gat_UA-207024867-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 13 Jan 2024 05:34:39 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 23:34:38 GMT
etag: "26d2-63c0990e-c1bd25cf69e90e6d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2806
date: Thu, 12 Jan 2023 23:34:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/js/c85f03e1a7cc5be42fa7fa7c1b037401.js?ver=41d40
217.21.94.112200 OK 3.7 kB URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/js/c85f03e1a7cc5be42fa7fa7c1b037401.js?ver=41d40
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type HTML document, ASCII text, with very long lines (12309)
Hash e5ed5f6cd0d263d8d07d0d66e9464ea9
6174407a0b59fc129644dc44aed5bf3e53ca11bd
e5c88710daa953488ab74e46966a9900f1903c05960fa84612abf16587a166be
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/c85f03e1a7cc5be42fa7fa7c1b037401.js?ver=41d40 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1269708352.1673566462; _ga_MXCGE16QRD=GS1.1.1673566462.1.0.1673566463.0.0.0; _ga=GA1.2.971226018.1673566462; _gid=GA1.2.1415590812.1673566463; _gat_UA-207024867-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 13 Jan 2024 05:34:39 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 23:34:38 GMT
etag: "3017-63c0990e-9e59245d9636223a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3700
date: Thu, 12 Jan 2023 23:34:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/js/12337bc2d6f5fc0d02755cbd085a32d4.js?ver=a5970
217.21.94.112200 OK 906 B URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/js/12337bc2d6f5fc0d02755cbd085a32d4.js?ver=a5970
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type HTML document, ASCII text, with very long lines (593)
Hash 0b893d3066047a59732e9c9cd7529240
f52b5c012a8e27a3bff6ba4adb25e51896079ee9
3673b2db64a04f1453353cac89f9d8291a6500b4b900cf086a308ebd3d28f426
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/12337bc2d6f5fc0d02755cbd085a32d4.js?ver=a5970 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1269708352.1673566462; _ga_MXCGE16QRD=GS1.1.1673566462.1.0.1673566463.0.0.0; _ga=GA1.2.971226018.1673566462; _gid=GA1.2.1415590812.1673566463; _gat_UA-207024867-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 13 Jan 2024 05:34:39 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 23:34:38 GMT
etag: "995-63c0990e-1e1996578e3fbf46;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 906
date: Thu, 12 Jan 2023 23:34:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/js/91aa9e0adf0c8c2ae3f443d1848ace02.js?ver=1f875
217.21.94.112200 OK 358 B URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/js/91aa9e0adf0c8c2ae3f443d1848ace02.js?ver=1f875
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (413)
Hash 737b0a6cae20374e611649d2ce2ca530
687a2990c5621362297568d618f440ed84484904
36e239cc947006bbaa9bec76873e225fefc96f581f060e793aa07f412573a732
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/91aa9e0adf0c8c2ae3f443d1848ace02.js?ver=1f875 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1269708352.1673566462; _ga_MXCGE16QRD=GS1.1.1673566462.1.0.1673566463.0.0.0; _ga=GA1.2.971226018.1673566462; _gid=GA1.2.1415590812.1673566463; _gat_UA-207024867-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 13 Jan 2024 05:34:39 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 23:34:38 GMT
etag: "37c-63c0990e-273e8902a07ad094;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 358
date: Thu, 12 Jan 2023 23:34:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/js/fee2d6f9c7e7dd016098681f67c4fe44.js?ver=5978d
217.21.94.112200 OK 2.4 kB URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/js/fee2d6f9c7e7dd016098681f67c4fe44.js?ver=5978d
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (6475)
Hash 89b6f15fa77dad71dba8755f12d05130
3167ce7803f8738fd8eefe28307bbe4f868fa992
e0c7449122833fa33b579336b340259da3f705ae8258741b9144560cc20d2066
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/fee2d6f9c7e7dd016098681f67c4fe44.js?ver=5978d HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1269708352.1673566462; _ga_MXCGE16QRD=GS1.1.1673566462.1.0.1673566463.0.0.0; _ga=GA1.2.971226018.1673566462; _gid=GA1.2.1415590812.1673566463; _gat_UA-207024867-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 13 Jan 2024 05:34:39 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 23:34:38 GMT
etag: "194d-63c0990e-b4c94f021d8fc0ec;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2353
date: Thu, 12 Jan 2023 23:34:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/js/43561677c57e5b1d434f961aa7435971.js?ver=35971
217.21.94.112200 OK 442 B URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/js/43561677c57e5b1d434f961aa7435971.js?ver=35971
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (999)
Hash 0ab7d4cc5db38fbaa88bbe787c9d6834
17fac5fa9429b9e9420d116b3053d34410deb600
a340f5e83a224c57adcc4d49ad444739cdc9e7d6a93f4dc4f46776304d4fc562
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/43561677c57e5b1d434f961aa7435971.js?ver=35971 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1269708352.1673566462; _ga_MXCGE16QRD=GS1.1.1673566462.1.0.1673566463.0.0.0; _ga=GA1.2.971226018.1673566462; _gid=GA1.2.1415590812.1673566463; _gat_UA-207024867-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 13 Jan 2024 05:34:39 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 23:34:38 GMT
etag: "3e9-63c0990e-be28dfc350b55b61;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 442
date: Thu, 12 Jan 2023 23:34:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/js/370f679cbafa77014ada20d864a14360.js?ver=257f6
217.21.94.112200 OK 6.3 kB URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/js/370f679cbafa77014ada20d864a14360.js?ver=257f6
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 text, with very long lines (17818)
Hash 3f241bce496ac2e0642a607788563901
4b0e8ccc4e95958adbab41a88942dc9ea68a0ea1
444d480feb917b81aac80c37230cb8ea1e02f8ff94bd398ee6d7cc928faabe7c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/370f679cbafa77014ada20d864a14360.js?ver=257f6 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1269708352.1673566462; _ga_MXCGE16QRD=GS1.1.1673566462.1.0.1673566463.0.0.0; _ga=GA1.2.971226018.1673566462; _gid=GA1.2.1415590812.1673566463; _gat_UA-207024867-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 13 Jan 2024 05:34:39 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 23:34:38 GMT
etag: "45a0-63c0990e-cf6f872a1aae97cd;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6295
date: Thu, 12 Jan 2023 23:34:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800%7CMontserrat:100,200,300,regular,500,600,700,800,900,100italic,200italic,300italic,italic,500italic,600italic,700italic,800italic,900italic&subset=latin,latin-ext,latin,latin-ext&display=swap
216.58.207.202200 OK 2.1 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800%7CMontserrat:100,200,300,regular,500,600,700,800,900,100italic,200italic,300italic,italic,500italic,600italic,700italic,800italic,900italic&subset=latin,latin-ext,latin,latin-ext&display=swap
IP 216.58.207.202:0
Hash 1553aad07d82ab158a4794bc0a55c673
48c986a31b88266929afd7b4c1acc34aec508411
c1981ca4ba083692212e4c5781485834f35ae909044ea8efa7a69eaea1675d0e
GET /css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800%7CMontserrat:100,200,300,regular,500,600,700,800,900,100italic,200italic,300italic,italic,500italic,600italic,700italic,800italic,900italic&subset=latin,latin-ext,latin,latin-ext&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 12 Jan 2023 23:34:39 GMT
date: Thu, 12 Jan 2023 23:34:39 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 07:08:09 GMT
expires: Sat, 06 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 577590
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 09 Jan 2023 18:52:41 GMT
expires: Tue, 09 Jan 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 276118
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 09 Jan 2023 18:52:41 GMT
expires: Tue, 09 Jan 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 276118
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 09 Jan 2023 18:52:41 GMT
expires: Tue, 09 Jan 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 276118
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/themes/Divi/core/admin/fonts/modules/base/modules.ttf
217.21.94.112200 OK 3.2 kB URL HTTP/2 karthikestatecottages.com/wp-content/themes/Divi/core/admin/fonts/modules/base/modules.ttf
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, ETmodules \012- data
Hash 965ac7379acba737860d3d00f2e79dcc
aa3eec20c7eac5e0e9426382779c356e4d43d7d7
5cd0b36cd53bbcb023eb72e85235fbc5e4b664272f4396156823c98c3c349869
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/core/admin/fonts/modules/base/modules.ttf HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/litespeed/css/f730e910073d3407fc066c352d75ef27.css?ver=77eaa
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1269708352.1673566462; _ga_MXCGE16QRD=GS1.1.1673566462.1.0.1673566463.0.0.0; _ga=GA1.2.971226018.1673566462; _gid=GA1.2.1415590812.1673566463; _gat_UA-207024867-1=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 13 Jan 2024 05:34:39 GMT
content-type: application/x-font-ttf
last-modified: Sat, 26 Nov 2022 14:52:15 GMT
etag: "1854-6382281f-47f19337847d9287;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3164
date: Thu, 12 Jan 2023 23:34:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/et-cache/notfound/et-divi-dynamic-tb-306-tb-275-late.css
217.21.94.112200 OK 6.1 kB URL HTTP/2 karthikestatecottages.com/wp-content/et-cache/notfound/et-divi-dynamic-tb-306-tb-275-late.css
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (11014)
Hash 387e9ef3738a5cb17dd4664b99e0973e
d4833aa77d571035505ea624d9d22ef19b4ccd60
00f12e17430b1cc8d2f4950da660065cb3b7ed11e0e360a8de19cee6df8038ff
GET /wp-content/et-cache/notfound/et-divi-dynamic-tb-306-tb-275-late.css HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1269708352.1673566462; _ga_MXCGE16QRD=GS1.1.1673566462.1.0.1673566463.0.0.0; _ga=GA1.2.971226018.1673566462; _gid=GA1.2.1415590812.1673566463; _gat_UA-207024867-1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 13 Jan 2024 05:34:39 GMT
content-type: text/css
last-modified: Sun, 08 Jan 2023 12:02:45 GMT
etag: "a1b0-63bab0e5-53429776e0865fcc;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6140
date: Thu, 12 Jan 2023 23:34:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/uploads/2020/12/Logo-1-white.png.webp
217.21.94.112200 OK 3.9 kB URL HTTP/2 karthikestatecottages.com/wp-content/uploads/2020/12/Logo-1-white.png.webp
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image\012- data
Hash f55ac4812010cb55d5b6ed20e9ee480d
ea20922ad6b4d6a122948a76390859834969c144
575671cd4b3d599ba3385b0257a7485e67d8173132e051249e628bd29ec0dfc7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/12/Logo-1-white.png.webp HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1269708352.1673566462; _ga_MXCGE16QRD=GS1.1.1673566462.1.0.1673566463.0.0.0; _ga=GA1.2.971226018.1673566462; _gid=GA1.2.1415590812.1673566463; _gat_UA-207024867-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 13 Jan 2024 05:34:39 GMT
content-type: image/webp
last-modified: Mon, 28 Nov 2022 17:23:35 GMT
etag: "f64-6384ee97-4a3380b2f4a5b5ad;;;"
accept-ranges: bytes
content-length: 3940
date: Thu, 12 Jan 2023 23:34:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/uploads/2020/12/03-a.png.webp
217.21.94.112200 OK 1.5 kB URL HTTP/2 karthikestatecottages.com/wp-content/uploads/2020/12/03-a.png.webp
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image\012- data
Hash c74ead7b0feb3ace4aa1c0d31e3dfeec
3915416d9cbbfe6a8d57f7da3d945ee720098d92
4e35d6ce524adf3e9615fa5d223d9fc3e4db93359562166e150014004b735ba5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/12/03-a.png.webp HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1269708352.1673566462; _ga_MXCGE16QRD=GS1.1.1673566462.1.0.1673566463.0.0.0; _ga=GA1.2.971226018.1673566462; _gid=GA1.2.1415590812.1673566463; _gat_UA-207024867-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 13 Jan 2024 05:34:39 GMT
content-type: image/webp
last-modified: Mon, 28 Nov 2022 17:35:57 GMT
etag: "5c4-6384f17d-91a0774678322357;;;"
accept-ranges: bytes
content-length: 1476
date: Thu, 12 Jan 2023 23:34:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
216.58.207.227200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Hash 17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 13:33:12 GMT
expires: Sat, 06 Jan 2024 13:33:12 GMT
cache-control: public, max-age=31536000
age: 554487
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
216.58.207.227200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Hash 17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 13:33:12 GMT
expires: Sat, 06 Jan 2024 13:33:12 GMT
cache-control: public, max-age=31536000
age: 554487
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
216.58.207.227200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Hash 17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 13:33:12 GMT
expires: Sat, 06 Jan 2024 13:33:12 GMT
cache-control: public, max-age=31536000
age: 554487
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
216.58.207.227200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Hash 17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 13:33:12 GMT
expires: Sat, 06 Jan 2024 13:33:12 GMT
cache-control: public, max-age=31536000
age: 554487
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
216.58.207.227200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Hash 17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 13:33:12 GMT
expires: Sat, 06 Jan 2024 13:33:12 GMT
cache-control: public, max-age=31536000
age: 554487
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 09 Jan 2023 18:52:41 GMT
expires: Tue, 09 Jan 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 276118
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 09 Jan 2023 18:52:41 GMT
expires: Tue, 09 Jan 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 276118
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 07:08:09 GMT
expires: Sat, 06 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 577590
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 07:08:09 GMT
expires: Sat, 06 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 577590
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 07:08:09 GMT
expires: Sat, 06 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 577590
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 07:08:09 GMT
expires: Sat, 06 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 577590
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 07:08:09 GMT
expires: Sat, 06 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 577590
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 07:08:09 GMT
expires: Sat, 06 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 577590
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 07:08:09 GMT
expires: Sat, 06 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 577590
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 07:08:09 GMT
expires: Sat, 06 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 577590
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
216.58.207.227200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 13:33:16 GMT
expires: Sat, 06 Jan 2024 13:33:16 GMT
cache-control: public, max-age=31536000
age: 554483
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
216.58.207.227200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 13:33:16 GMT
expires: Sat, 06 Jan 2024 13:33:16 GMT
cache-control: public, max-age=31536000
age: 554483
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
216.58.207.227200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 13:33:16 GMT
expires: Sat, 06 Jan 2024 13:33:16 GMT
cache-control: public, max-age=31536000
age: 554483
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
216.58.207.227200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 13:33:16 GMT
expires: Sat, 06 Jan 2024 13:33:16 GMT
cache-control: public, max-age=31536000
age: 554483
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
216.58.207.227200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 13:33:16 GMT
expires: Sat, 06 Jan 2024 13:33:16 GMT
cache-control: public, max-age=31536000
age: 554483
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
216.58.207.227200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 13:33:16 GMT
expires: Sat, 06 Jan 2024 13:33:16 GMT
cache-control: public, max-age=31536000
age: 554483
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
216.58.207.227200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 13:33:16 GMT
expires: Sat, 06 Jan 2024 13:33:16 GMT
cache-control: public, max-age=31536000
age: 554483
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
216.58.207.227200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 13:33:16 GMT
expires: Sat, 06 Jan 2024 13:33:16 GMT
cache-control: public, max-age=31536000
age: 554483
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
216.58.207.227200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://karthikestatecottages.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 13:33:16 GMT
expires: Sat, 06 Jan 2024 13:33:16 GMT
cache-control: public, max-age=31536000
age: 554483
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/uploads/2020/12/favicon.png
217.21.94.112200 OK 922 B URL HTTP/2 karthikestatecottages.com/wp-content/uploads/2020/12/favicon.png
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash c29c04f3ade9a3e3645e662cb22aed5e
224edb0765d28f7398b8918b27b4dc85ebac49bf
ec1f90d418fb4a7546dbb25bf2775731e49949fcfb584057428090de5d7f25af
GET /wp-content/uploads/2020/12/favicon.png HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1269708352.1673566462; _ga_MXCGE16QRD=GS1.1.1673566462.1.0.1673566463.0.0.0; _ga=GA1.2.971226018.1673566462; _gid=GA1.2.1415590812.1673566463; _gat_UA-207024867-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 13 Jan 2024 05:34:39 GMT
content-type: image/png
last-modified: Mon, 28 Nov 2022 17:26:28 GMT
etag: "39a-6384ef44-b305bb83a2bd16f6;;;"
accept-ranges: bytes
content-length: 922
date: Thu, 12 Jan 2023 23:34:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/uploads/2020/12/favicon.png
217.21.94.112200 OK 922 B URL HTTP/2 karthikestatecottages.com/wp-content/uploads/2020/12/favicon.png
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash c29c04f3ade9a3e3645e662cb22aed5e
224edb0765d28f7398b8918b27b4dc85ebac49bf
ec1f90d418fb4a7546dbb25bf2775731e49949fcfb584057428090de5d7f25af
GET /wp-content/uploads/2020/12/favicon.png HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1269708352.1673566462; _ga_MXCGE16QRD=GS1.1.1673566462.1.0.1673566463.0.0.0; _ga=GA1.2.971226018.1673566462; _gid=GA1.2.1415590812.1673566463; _gat_UA-207024867-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 13 Jan 2024 05:34:39 GMT
content-type: image/png
last-modified: Mon, 28 Nov 2022 17:26:28 GMT
etag: "39a-6384ef44-b305bb83a2bd16f6;;;"
accept-ranges: bytes
content-length: 922
date: Thu, 12 Jan 2023 23:34:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.ttf
217.21.94.112200 OK 36 kB URL HTTP/2 karthikestatecottages.com/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.ttf
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, modules \012- data
Hash 92d4c4b52b85bddba9e00893d78a9228
ef9dab27a60868e213d2b56da5f7ee40a5b713ea
392b1fd700e55cbc3279f35f7d60c3ee75e2b7698e83e55349dbfca9b664a06c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/core/admin/fonts/modules/all/modules.ttf HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/litespeed/css/c238ec3dbb66d139abe9642101d15490.css?ver=0ef9e
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1269708352.1673566462; _ga_MXCGE16QRD=GS1.1.1673566462.1.0.1673566463.0.0.0; _ga=GA1.2.971226018.1673566462; _gid=GA1.2.1415590812.1673566463; _gat_UA-207024867-1=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 13 Jan 2024 05:34:39 GMT
content-type: application/x-font-ttf
last-modified: Sat, 26 Nov 2022 14:52:15 GMT
etag: "168f0-6382281f-c0dd069465cf74ce;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 36345
date: Thu, 12 Jan 2023 23:34:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/plugins/chaty/images/whatsapp.png
217.21.94.112200 OK 106 kB URL HTTP/2 karthikestatecottages.com/wp-content/plugins/chaty/images/whatsapp.png
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
File type PNG image data, 550 x 999, 8-bit colormap, non-interlaced\012- data
Size 106 kB (105898 bytes)
Hash ac16b58dab286451f37dc9e0286ccbea
763cbea1c8a9a97f60fc8abecc8304d6e67aadc5
69c383a1cca56628ad0bc45c83a67112b0851d57a77c18252f79de50364af9d4
GET /wp-content/plugins/chaty/images/whatsapp.png HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/litespeed/css/28d7a7b6170f194201beacbe7fd5b7ad.css?ver=a7ff3
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1269708352.1673566462; _ga_MXCGE16QRD=GS1.1.1673566462.1.0.1673566463.0.0.0; _ga=GA1.2.971226018.1673566462; _gid=GA1.2.1415590812.1673566463; _gat_UA-207024867-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 13 Jan 2024 05:34:39 GMT
content-type: image/png
last-modified: Thu, 15 Dec 2022 09:44:11 GMT
etag: "19daa-639aec6b-1f93abf7bd896b75;;;"
accept-ranges: bytes
content-length: 105898
date: Thu, 12 Jan 2023 23:34:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/litespeed/js/29fb4cef923a216602b788d65cf5cc5d.js?ver=e8bb9
217.21.94.112200 OK 0 B URL HTTP/2 karthikestatecottages.com/wp-content/litespeed/js/29fb4cef923a216602b788d65cf5cc5d.js?ver=e8bb9
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/29fb4cef923a216602b788d65cf5cc5d.js?ver=e8bb9 HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
Cookie: _lscache_vary=0bc660362587ed43ece4d55bcfb15013; _gcl_au=1.1.1269708352.1673566462; _ga_MXCGE16QRD=GS1.1.1673566462.1.0.1673566463.0.0.0; _ga=GA1.2.971226018.1673566462; _gid=GA1.2.1415590812.1673566463; _gat_UA-207024867-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 13 Jan 2024 05:34:39 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 23:34:38 GMT
etag: "42f6a-63c0990e-bc0be01c141ac877;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 64357
date: Thu, 12 Jan 2023 23:34:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
217.21.94.112404 Not Found 0 B URL HTTP/2 karthikestatecottages.com/wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php
IP 217.21.94.112:0
ASN #47583 Hostinger International Limited
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/twentytwentytwo/telstra/klnmnbe84765/128849cbf5e882246030c1c83a2d22b3/sms.php HTTP/1.1
Host: karthikestatecottages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 404 Not Found
x-powered-by: PHP/8.1.11
x-dns-prefetch-control: on
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <https://karthikestatecottages.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache-control: public,max-age=3600
x-litespeed-tag: 3b5_HTTP.404,3b5_404,3b5_URL.a76d399bc3d1aaaab5f16043395add79,3b5_guest,3b5_,3b5_CCSS.7befda9636ba492231eff827c679fbce,3b5_MIN.81b9239853fbd6be8e74b15e317445e9.css,3b5_MIN.0a746710db3e9f31836ee0803b5d618a.js
x-litespeed-cache: miss
content-encoding: br
vary: Accept-Encoding
date: Thu, 12 Jan 2023 23:34:35 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2