Report - epicdesign.nz/

Report Overview

Submitted URL
epicdesign.nz/
IP
192.185.225.9
ASN
#46606 UNIFIEDLAYER-AS-1
Submitted
2022-12-06 02:29:25
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
194

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
maps.google.com	1899	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	885 B	110 kB	142.250.74.46
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	43 kB	142.250.74.106
www.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	426 B	2.7 kB	142.250.74.35
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	4.4 kB	23.36.77.32
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
www.epicdesign.nz	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	27 kB	1.4 MB	192.185.225.9
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	52 kB	34.120.237.76
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.6 kB	93.184.220.29
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	54.189.139.67
translate.google.com	1156	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	411 B	807 B	216.58.211.14
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
epicdesign.nz	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	788 B	511 B	192.185.225.9
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	340 B	963 B	104.18.32.68
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.1 kB	6.3 kB	142.250.74.131
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	54 kB	216.58.207.227
maps.googleapis.com	33876	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	850 B	1.4 kB	142.250.74.138

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-06	medium	epicdesign.nz/	Malware
2022-12-06	medium	epicdesign.nz/	Malware
2022-12-06	medium	www.epicdesign.nz/	Malware
2022-12-06	medium	www.epicdesign.nz/wp-content/plugins/complianz-gdpr/assets/css/cookieblocker.min.css?ver=6.3.5	Malware
2022-12-06	medium	www.epicdesign.nz/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.5	Malware
2022-12-06	medium	www.epicdesign.nz/wp-content/uploads/style_dark.css?ver=81582bdb254a94e4464424087c6479a8	Malware
2022-12-06	medium	www.epicdesign.nz/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4	Malware
2022-12-06	medium	www.epicdesign.nz/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4	Malware
2022-12-06	medium	www.epicdesign.nz/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4	Malware
2022-12-06	medium	www.epicdesign.nz/wp-content/themes/bauhaus/js/wow.min.js?ver=1	Malware
2022-12-06	medium	www.epicdesign.nz/wp-content/themes/bauhaus/js/bootstrap.min.js?ver=1	Malware
2022-12-06	medium	www.epicdesign.nz/wp-content/themes/bauhaus/js/main.js?ver=1	Malware
2022-12-06	medium	www.epicdesign.nz/wp-includes/js/imagesloaded.min.js?ver=4.1.4	Malware
2022-12-06	medium	www.epicdesign.nz/wp-content/themes/bauhaus/js/isotope.pkgd.min.js?ver=1	Malware
2022-12-06	medium	www.epicdesign.nz/wp-content/themes/bauhaus/js/sly.min.js?ver=1	Malware
2022-12-06	medium	www.epicdesign.nz/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2	Malware
2022-12-06	medium	www.epicdesign.nz/wp-content/themes/bauhaus/js/animsition.min.js?ver=1	Malware
2022-12-06	medium	www.epicdesign.nz/wp-content/themes/bauhaus/js/jquery.magnific-popup.min.js?ver=1	Malware
2022-12-06	medium	www.epicdesign.nz/wp-content/themes/bauhaus/js/gmap.js?ver=1	Malware
2022-12-06	medium	www.epicdesign.nz/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	Malware
2022-12-06	medium	www.epicdesign.nz/wp-content/themes/bauhaus/js/plugins.js?ver=1	Malware
2022-12-06	medium	www.epicdesign.nz/wp-content/plugins/burst-statistics/helpers/timeme/timeme.min.js?ver=1.3.1	Malware
2022-12-06	medium	www.epicdesign.nz/wp-content/plugins/burst-statistics/assets/js/build/burst.min.js?ver=1.3.1	Malware
2022-12-06	medium	www.epicdesign.nz/wp-content/themes/bauhaus/js/jquery.validate.min.js?ver=1	Malware
2022-12-06	medium	www.epicdesign.nz/wp-content/themes/bauhaus/js/jquery.pagepiling.js?ver=1	Malware
2022-12-06	medium	www.epicdesign.nz/wp-content/themes/bauhaus/js/owl.carousel.min.js?ver=1	Malware
2022-12-06	medium	www.epicdesign.nz/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4	Malware
2022-12-06	medium	www.epicdesign.nz/wp-content/uploads/2022/07/1-2.png?id=1211	Malware
2022-12-06	medium	www.epicdesign.nz/burst-statistics-endpoint.php	Malware
2022-12-06	medium	www.epicdesign.nz/wp-content/themes/bauhaus/fonts/fontawesome-webfont.woff2?v=4.7.0	Malware
2022-12-06	medium	www.epicdesign.nz/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4	Malware
2022-12-06	medium	www.epicdesign.nz/wp-content/themes/bauhaus/fonts/Linearicons.ttf	Malware
2022-12-06	medium	www.epicdesign.nz/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.0.5	Malware
2022-12-06	medium	www.epicdesign.nz/wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0	Malware
2022-12-06	medium	www.epicdesign.nz/wp-includes/css/dist/block-library/style.min.css?ver=81582bdb254a94e4464424087c6479a8	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed
2022-12-06	medium	epicdesign.nz	Sinkholed

JavaScript (39)

	URL	Size	First Seen	Last Seen
	translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2	76 kB	2023-03-08	2023-03-08
Pretty URL translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2 IP 216.58.211.14 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:59:44 Last Seen2023-03-08 20:00:22 Times Seen1 Hash 511341c9bb8e4743701d1bfb093bba1c 571a8cff119a94c3c32245361654bc6df3af89c7 65e66fb0675533ea577f7653686c8b33140fd501f6b807b1868d17453dd5810f Loading...

	www.epicdesign.nz/wp-content/themes/bauhaus/js/wow.min.js?ver=1	8.4 kB	2023-03-07	2024-03-14
Pretty URL www.epicdesign.nz/wp-content/themes/bauhaus/js/wow.min.js?ver=1 IP 192.185.225.9 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:44 Last Seen2024-03-14 15:22:44 Times Seen32 Hash 8e07cda88f9676c77993ad801996c794 78484d346781b0e64d0cd1ac316854c0fe075395 dd4ecb9dddb1d967b09f3e8c1a12c5c4f4200461c17bf6bf0f0384f1166236ea Loading...

	www.epicdesign.nz/wp-content/themes/bauhaus/js/jquery.stellar.min.js?ver=1	13 kB	2023-03-07	2024-04-18
Pretty URL www.epicdesign.nz/wp-content/themes/bauhaus/js/jquery.stellar.min.js?ver=1 IP 192.185.225.9 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:01 Last Seen2024-04-18 13:51:05 Times Seen2089 Hash 257c1e014bfdf359297cf2a80440a0ba c0655887944d3b358be98b7d6cd0dcdc975a6b3e 1dd583c8ff8eaeeb2f5622845527acbf0e4a875e335b4b706b305590d5a7b456 Loading...

	www.epicdesign.nz/wp-content/themes/bauhaus/js/owl.carousel.min.js?ver=1	43 kB	2023-03-07	2024-04-17
Pretty URL www.epicdesign.nz/wp-content/themes/bauhaus/js/owl.carousel.min.js?ver=1 IP 192.185.225.9 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:02 Last Seen2024-04-17 17:16:00 Times Seen1085 Hash 6473747d818f47587036ccde48050d82 75560ff8e721a6344a927f369debcf80004c9d24 63c97e11ea143afafc4aa123fe04f28c16fc0aa86dac0e8653d3f8c81fb8d5c1 Loading...

	www.epicdesign.nz/	260 B	2023-03-08	2023-03-08
Pretty URL www.epicdesign.nz/ IP 192.185.225.9 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:00:22 Last Seen2023-03-08 20:00:22 Times Seen1 Hash 820e6d0a067cb6ae472957c8229c9b49 a4020f46089cb63da26ebda8a1f16a16e1f47610 0ef0abb81f413c4b48244188fcc6075b53d852d1dabe2fe126a99e67811102e6 Loading...

	www.epicdesign.nz/	2.2 kB	2023-03-08	2023-03-08
Pretty URL www.epicdesign.nz/ IP 192.185.225.9 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:00:22 Last Seen2023-03-08 20:00:22 Times Seen1 Hash 606d8b4c36223e387cd4e5cd244543a6 23e83fba71bd3cbab4bf50c627b09b6a6d957017 18c140b97c583609d13f30022cc090e970a6b33fa0167d3118a01c65a94cecca Loading...

	www.epicdesign.nz/wp-content/themes/bauhaus/js/plugins.js?ver=1	4.8 kB	2023-03-07	2024-03-05
Pretty URL www.epicdesign.nz/wp-content/themes/bauhaus/js/plugins.js?ver=1 IP 192.185.225.9 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:07 Last Seen2024-03-05 00:42:08 Times Seen148 Hash 3a7365937dd8f0e858da711755d4a059 c00f16c8e40886b0eb31a3ef0670df4db50df23d 9a2261452883e198c4d240618f9ac2dbf46c1c478d5473c92a69caf802e6cdc1 Loading...

	www.epicdesign.nz/wp-includes/js/comment-reply.min.js?ver=81582bdb254a94e4464424087c6479a8	3.0 kB	2023-03-07	2024-04-19
Pretty URL www.epicdesign.nz/wp-includes/js/comment-reply.min.js?ver=81582bdb254a94e4464424087c6479a8 IP 192.185.225.9 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-04-19 11:19:34 Times Seen29163 Hash 492f2c1a7ea7eb83fe42e0ff7cb51aa2 db36a77f6aaa2063bfbec02c2c0e967438c5a245 e174a58a503ab84b3d1b9de12fd3895788204485170f1289e445f7b5b98ec789 Loading...

	www.epicdesign.nz/	211 B	2023-03-07	2023-12-17
Pretty URL www.epicdesign.nz/ IP 192.185.225.9 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:59:13 Last Seen2023-12-17 22:49:41 Times Seen19 Hash 1db3e72ff49a8e2c47fdcf2785d284d9 7ffbf53677e5499c893fba97d7536f4ce560a2d8 2ef5533ca0230b0500b4976360ad1e5c7934ba582b3f818c5be78252ebd73712 Loading...

	www.epicdesign.nz/	2.0 kB	2023-03-08	2023-03-08
Pretty URL www.epicdesign.nz/ IP 192.185.225.9 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:00:22 Last Seen2023-03-08 20:00:22 Times Seen1 Hash c373962c5f3b67e47d5fabdb402bd958 3f3d6d7b85590da3012e42090c2e4cfe0ee7b6c4 f4994c66cde618ca4009c451af5e30c0ba8a26b6bd44f5a3ca5657f7454600d7 Loading...

	www.epicdesign.nz/	145 B	2023-03-08	2023-03-08
Pretty URL www.epicdesign.nz/ IP 192.185.225.9 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:00:22 Last Seen2023-03-08 20:00:22 Times Seen1 Hash 3e14e8b3ee0c7bd797619716d86f2209 66aa2a51dceffa950ad094264fdfc588b84c9c25 cc204e1e8aad89754b010d897e2e52501e715265973700b3ad43028e3e3a5d9b Loading...

	www.epicdesign.nz/	298 B	2023-03-08	2023-03-08
Pretty URL www.epicdesign.nz/ IP 192.185.225.9 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:00:22 Last Seen2023-03-08 20:00:22 Times Seen1 Hash 5cae2e63bfe18d2e3bf1b3292afeba52 cfd308a6f1083782270657abce204399e8d956e1 95bc82bb8755b56169fa394249ce755e611ee46ecb417e63033491662d92d02a Loading...

	www.epicdesign.nz/wp-content/themes/bauhaus/js/main.js?ver=1	4.0 kB	2023-03-08	2023-05-09
Pretty URL www.epicdesign.nz/wp-content/themes/bauhaus/js/main.js?ver=1 IP 192.185.225.9 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:00:22 Last Seen2023-05-09 03:30:23 Times Seen3 Hash 18a8725615547f401a22eb78627dcfcc ee3144cdb5c962cfaefac0950575b1a0c0ce16a3 9cafc04b6c949ae731bd08ab00bb66d9fa87bcaaa1c4560794d2890fe8e0a593 Loading...

	www.epicdesign.nz/	918 B	2023-03-08	2023-03-08
Pretty URL www.epicdesign.nz/ IP 192.185.225.9 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:00:22 Last Seen2023-03-08 20:00:22 Times Seen1 Hash 034229965df62d6cfd8b69fdb78e3296 6e6d29f8e6a1c1cc68085c6ec0f5f5ebf899d90f a348dc02e6f2b381e31e4e3fa3fc66f9f41ce0c12699bce19e77fc3f9ec154f5 Loading...

	maps.google.com/maps-api-v3/api/js/51/2/common.js	255 kB	2023-03-08	2023-03-12
Pretty URL maps.google.com/maps-api-v3/api/js/51/2/common.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:47 Last Seen2023-03-12 16:22:26 Times Seen1 Hash c189cf894d42e8a36254fe06edfbef0b 41fc57570e3544edbd83110bb812503c1608b034 32a21f5208395435a2607c4980b663c15b20d0ecb57647193fccedf6fe2772cb Loading...

	www.epicdesign.nz/wp-content/themes/bauhaus/js/animsition.min.js?ver=1	5.6 kB	2023-03-07	2024-04-19
Pretty URL www.epicdesign.nz/wp-content/themes/bauhaus/js/animsition.min.js?ver=1 IP 192.185.225.9 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:22:38 Last Seen2024-04-19 10:18:28 Times Seen419 Hash 72d24e37ce242ffdad389c26d6b9de57 815a7b276e3674932e6f16cbdf7262d80bdf1d25 f32da6bf81134c664b32582076b8260b3b614d508d5c651d0907b581df2a9323 Loading...

	www.epicdesign.nz/wp-content/themes/bauhaus/js/sly.min.js?ver=1	19 kB	2023-03-07	2024-04-15
Pretty URL www.epicdesign.nz/wp-content/themes/bauhaus/js/sly.min.js?ver=1 IP 192.185.225.9 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:17 Last Seen2024-04-15 04:38:53 Times Seen497 Hash 836a3db3f2b3a883371f39b1e78e62a1 1c4b1b03254ca3a51ceeafa6ef21cdc381dcaaad e8dc09e4ddc3c326ef6341498e7e8e70af3a848713429b909be53c947b43da10 Loading...

	www.epicdesign.nz/wp-content/themes/bauhaus/js/scripts-dark.js?ver=1	15 kB	2023-03-08	2023-03-08
Pretty URL www.epicdesign.nz/wp-content/themes/bauhaus/js/scripts-dark.js?ver=1 IP 192.185.225.9 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:00:22 Last Seen2023-03-08 20:00:22 Times Seen1 Hash b5272be49412a63689ad65b1e791e8da aa9a7f57ec04784565a40412966dfec9ad3c7c66 dcfe15638cfd216d236cc81fa541dd75f29c645e928b999469d1c9f2b0ca7662 Loading...

	www.epicdesign.nz/wp-content/themes/bauhaus/js/smoothscroll.js?ver=1	21 kB	2023-03-08	2024-02-27
Pretty URL www.epicdesign.nz/wp-content/themes/bauhaus/js/smoothscroll.js?ver=1 IP 192.185.225.9 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:00:22 Last Seen2024-02-27 14:13:51 Times Seen9 Hash 3a27614e652697ec0b3063cb8e71ecca cd1495b722b75252e700570aece5d0ed52aa0297 67a3b2cae170e68ca9179200ba9eaf1d01d0735f4ce9c4e16a25ce6be994939a Loading...

	www.epicdesign.nz/wp-includes/js/wp-emoji-release.min.js?ver=81582bdb254a94e4464424087c6479a8	19 kB	2023-03-07	2024-04-19
Pretty URL www.epicdesign.nz/wp-includes/js/wp-emoji-release.min.js?ver=81582bdb254a94e4464424087c6479a8 IP 192.185.225.9 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-19 12:23:33 Times Seen37994 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	www.epicdesign.nz/wp-content/plugins/complianz-gdpr/cookiebanner/js/complianz.min.js?ver=6.3.5	49 kB	2023-03-08	2024-02-28
Pretty URL www.epicdesign.nz/wp-content/plugins/complianz-gdpr/cookiebanner/js/complianz.min.js?ver=6.3.5 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:57 Last Seen2024-02-28 18:02:20 Times Seen88 Hash 876a724f32ecab9859a9f863e1c3823a cd145be32664d85d2d1e8385443e549e1cfc2152 667cf079e0c4ea0eac896d368aacf29aa7b4a53f1a1685e14748840ed70a67b0 Loading...

	www.epicdesign.nz/wp-content/plugins/burst-statistics/assets/js/build/burst.min.js?ver=1.3.1	6.2 kB	2023-03-08	2023-07-12
Pretty URL www.epicdesign.nz/wp-content/plugins/burst-statistics/assets/js/build/burst.min.js?ver=1.3.1 IP 192.185.225.9 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:45:53 Last Seen2023-07-12 18:52:40 Times Seen21 Hash 1712ae77b3d64edd1adafb786c7c3d58 b4d4bb561b5b7b47bb626d8e14f686c241451b79 1fe55d1e37191ff5010ae25dc7f0333d8b56c4f9ddb1ad64a8882fd0cd3306b9 Loading...

	www.epicdesign.nz/wp-includes/js/imagesloaded.min.js?ver=4.1.4	5.6 kB	2023-03-07	2024-04-18
Pretty URL www.epicdesign.nz/wp-includes/js/imagesloaded.min.js?ver=4.1.4 IP 192.185.225.9 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:40 Last Seen2024-04-18 13:42:00 Times Seen30936 Hash 3a56752b736635bf69cb069b8818cbfd 42e0951fe74bb3f56a30f51291823bcd4a84d76e ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869 Loading...

	www.epicdesign.nz/wp-content/themes/bauhaus/js/jquery.pagepiling.js?ver=1	35 kB	2023-03-08	2023-05-25
Pretty URL www.epicdesign.nz/wp-content/themes/bauhaus/js/jquery.pagepiling.js?ver=1 IP 192.185.225.9 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:00:22 Last Seen2023-05-25 01:42:04 Times Seen9 Hash c5cf6c91a13298c644c43c6766dbd502 a9b2201c05c24d04dddac90be22c2c04dbd9d7ee a782a947d970e34e02d2919ebb3c93580530098f8fb253ab5119e6a8af336760 Loading...

	www.epicdesign.nz/wp-content/themes/bauhaus/js/gmap.js?ver=1	295 B	2023-03-08	2023-05-09
Pretty URL www.epicdesign.nz/wp-content/themes/bauhaus/js/gmap.js?ver=1 IP 192.185.225.9 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:00:22 Last Seen2023-05-09 03:30:23 Times Seen3 Hash 6c54bec5002ef77bf7a0f6ee5c3e59e2 1127cc1f126aceafcb84358a4d0adb3d4af2236c b88ae92bdc21d00c6e458dabf7c9738bb45f2f80b8a8261d414a3e763cdcad1c Loading...

	translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.-1M3Gp9Xl7M.O/d=1/exm=el_conf/ed=1/rs=AN8SPfq0ggZFoVeigagsNVCTXEiRqpVJTQ/m=el_main	212 kB	2023-03-08	2023-03-08
Pretty URL translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.-1M3Gp9Xl7M.O/d=1/exm=el_conf/ed=1/rs=AN8SPfq0ggZFoVeigagsNVCTXEiRqpVJTQ/m=el_main IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:52:54 Last Seen2023-03-08 21:11:40 Times Seen1 Hash 51cb27a01f4f4befa00bb995565e51ae f7fa7bca5937b82a38ceb7eed4c324e32b1ad549 13baec7e8be3c4f28a4f61dfa8a40ca67d7075d99ffc5f802d755a2f2878ea2f Loading...

	www.epicdesign.nz/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	90 kB	2023-03-08	2024-04-19
Pretty URL www.epicdesign.nz/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 IP 192.185.225.9 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-19 12:23:33 Times Seen31780 Hash 17738318d61d394f1de8890d589afaec f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3 cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981 Loading...

	www.epicdesign.nz/wp-content/themes/bauhaus/js/bootstrap.min.js?ver=1	37 kB	2023-03-07	2024-04-19
Pretty URL www.epicdesign.nz/wp-content/themes/bauhaus/js/bootstrap.min.js?ver=1 IP 192.185.225.9 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-04-19 12:27:42 Times Seen54344 Hash 5869c96cc8f19086aee625d670d741f9 430a443d74830fe9be26efca431f448c1b3740f9 53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef Loading...

	www.epicdesign.nz/wp-content/themes/bauhaus/js/jquery.magnific-popup.min.js?ver=1	20 kB	2023-03-07	2024-04-19
Pretty URL www.epicdesign.nz/wp-content/themes/bauhaus/js/jquery.magnific-popup.min.js?ver=1 IP 192.185.225.9 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-19 12:02:33 Times Seen19434 Hash ba6cf724c8bb1cf5b084e79ff230626e f455c5f153f872e52265f87a644ff89fe14a6fb6 3fddc6d28aba3c13d64cfd4847c333ff48c71d4a5a58bd1a0494ca6ae8ac1bb4 Loading...

	www.epicdesign.nz/	1.5 kB	2023-03-07	2024-04-15
Pretty URL www.epicdesign.nz/ IP 192.185.225.9 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:22 Last Seen2024-04-15 02:37:40 Times Seen690 Hash 0f34278c49ba25db1ef359dd2641dc9a 916c0b1bc083867813188c84bb055cfce331c44c 44134cbf94a69a4a21b2805d17b869ad1d5ce8ad563f96b6cd218e71fab9d07e Loading...

	www.epicdesign.nz/	1.6 kB	2023-03-07	2024-03-14
Pretty URL www.epicdesign.nz/ IP 192.185.225.9 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:17:05 Last Seen2024-03-14 11:01:06 Times Seen157 Hash 2ecac6b161cf12ee34bb408070b69f93 7f6a2f65812fabe770c88743237700513adda8e0 c518045f30a82a2095b9644c42dac220d916292eb9666325850b2e23eada5e68 Loading...

	unknown	0 B	2023-03-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 12:36:53 Times Seen36959714 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.epicdesign.nz/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-19
Pretty URL www.epicdesign.nz/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 192.185.225.9 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-19 12:23:33 Times Seen68493 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	www.epicdesign.nz/	316 B	2023-03-08	2023-03-08
Pretty URL www.epicdesign.nz/ IP 192.185.225.9 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:00:22 Last Seen2023-03-08 20:00:22 Times Seen1 Hash 22e94c74a5e75429171a763617340731 c80727be2870d692510375296b5c1c81c213e7d4 289b678916be866e90cf459f544f4037ddbcb22a54d814bb294add99359a7f41 Loading...

	www.epicdesign.nz/wp-content/plugins/burst-statistics/helpers/timeme/timeme.min.js?ver=1.3.1	6.4 kB	2023-03-07	2024-04-18
Pretty URL www.epicdesign.nz/wp-content/plugins/burst-statistics/helpers/timeme/timeme.min.js?ver=1.3.1 IP 192.185.225.9 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:17:05 Last Seen2024-04-18 13:54:25 Times Seen1005 Hash 421e614656f7380a73fff0417c2c5c29 3d78737fe7c0436160cda8678e9fdcd84525417b 683c9b0530c613523f1b02a246d7bccaa9f68af46df061f4d9f72c178c01b874 Loading...

	maps.google.com/maps-api-v3/api/js/51/2/util.js	170 kB	2023-03-08	2023-03-12
Pretty URL maps.google.com/maps-api-v3/api/js/51/2/util.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:47 Last Seen2023-03-12 16:22:26 Times Seen1 Hash 57abc24730c5e3098df038528852b6bb bc15e0c81c4aaca2cbf840a357622a398d0299c6 ab0897fa86882119e4c205194b220af856781975b3485fd97df8ffda72835f0e Loading...

	www.epicdesign.nz/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2	21 kB	2023-03-08	2024-04-18
Pretty URL www.epicdesign.nz/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 IP 192.185.225.9 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-18 13:42:00 Times Seen9796 Hash 034bd11ecaf6fb9240d905245e42e202 ff136c394ed95badfc0107fb98a890dcff642828 ca7154cdda62b535ceaba9ad2a2b2217ff49de94c069a2c4e89733f3f06b3651 Loading...

	www.epicdesign.nz/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.0.5	21 kB	2023-03-07	2024-04-11
Pretty URL www.epicdesign.nz/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.0.5 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:03 Last Seen2024-04-11 16:14:22 Times Seen2010 Hash 5a627237805ba8fde358e571c3333197 b7365a7674259f505dc10e24e1b06c7e64555ed1 43cdf46f331fec5ba92e402e3d5cad473099892cbdafca02e607cd03705104bf Loading...

	www.epicdesign.nz/wp-content/themes/bauhaus/js/isotope.pkgd.min.js?ver=1	35 kB	2023-03-07	2024-04-04
Pretty URL www.epicdesign.nz/wp-content/themes/bauhaus/js/isotope.pkgd.min.js?ver=1 IP 192.185.225.9 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:15 Last Seen2024-04-04 13:09:33 Times Seen116 Hash 4ae7e90fb95e2a908e5699c24f5653c9 f45f11104fcb523455c4130ed61b79e4284a7b7e 625503ddbed92974eb98acad3b007e335e791694c54a40057062689cd64b4bdd Loading...

HTTP Transactions (100)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5604
Expires: Tue, 06 Dec 2022 04:02:38 GMT
Date: Tue, 06 Dec 2022 02:29:14 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
ee088fab9b287e174cfd1f2c735a909f
25c3335b514a36ad1a24d00413d60c3d394f5161
494e96358ff12366213d7cc0f9197648c6c62ec14fa0d2c78732a683fa26b192

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3436
Cache-Control: max-age=118761
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:29:14 GMT
Etag: "638dc877-1d7"
Expires: Wed, 07 Dec 2022 11:28:35 GMT
Last-Modified: Mon, 05 Dec 2022 10:31:19 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 06 Dec 2022 02:20:20 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 534
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4443
Expires: Tue, 06 Dec 2022 03:43:17 GMT
Date: Tue, 06 Dec 2022 02:29:14 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: sPT9HDa1ZBoUCBR6he3jtvRfa+hXA7jykq9jvPWyWR5CiAro9FivKTkPHRH2GkJ1usM/BC0mE/s=
x-amz-request-id: KS84VF9ZAJYWMBGA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 06 Dec 2022 01:48:44 GMT
age: 2430
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

epicdesign.nz/

192.185.225.9

301 Moved Permanently

0 B

URL HTTP/1.1
epicdesign.nz/
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 02:29:14 GMT
Server: Apache
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://epicdesign.nz/
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 02:29:14 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 06 Dec 2022 02:08:58 GMT
cache-control: public,max-age=3600
age: 1216
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
2b9d6a686aa3c4ea24568425e43a5221
d53bb4c9579bd1db78a0520619e888aec79f750f
c38734a8dbe51217d73896c0bf7f5c38c107fd79e0dee24b717f130377e9b5f7

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3422
Cache-Control: max-age=113679
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:29:15 GMT
Etag: "638db4ac-1d7"
Expires: Wed, 07 Dec 2022 10:03:54 GMT
Last-Modified: Mon, 05 Dec 2022 09:06:52 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
2b0a75f10318a190295fe44e13368e39
3f5854f6cd634091e1a7b62ec895e28427e85eec
15822422db0579fb59c0d9c9ca49a079ab53b1c32a897b18c4fadf2c11127ba4

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 02:29:15 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 03 Dec 2022 15:56:17 GMT
Expires: Sat, 10 Dec 2022 15:56:16 GMT
Etag: "3f5854f6cd634091e1a7b62ec895e28427e85eec"
Cache-Control: max-age=393420,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 775197c099130b4d-OSL

push.services.mozilla.com/

54.189.139.67

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.189.139.67:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 36U+hTZ4faDuKWbQ+bP3XA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: XKvhsCjAiLBsCsMEA+8Pd433qQU=

epicdesign.nz/

192.185.225.9

301 Moved Permanently

0 B

URL HTTP/2
epicdesign.nz/
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 301 Moved Permanently
x-redirect-by: WordPress
location: https://www.epicdesign.nz/
content-length: 0
content-type: text/html; charset=UTF-8
date: Tue, 06 Dec 2022 02:29:15 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/

192.185.225.9

200 OK

16 kB

URL HTTP/2
www.epicdesign.nz/
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Size
16 kB (15936 bytes)
Hash
f875627f272267a5dd1f94f3cd4ba3e0
5e2d5122d4334813959a967bfaadd0f0c85a5c5e
247ee4e010fa600e68938365be0a8d7bdb556df6752d2bbc7fbc9b104acf9952

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

HTTP/2 200 OK
link: <https://www.epicdesign.nz/index.php?rest_route=/>; rel="https://api.w.org/", <https://www.epicdesign.nz/index.php?rest_route=/wp/v2/pages/75>; rel="alternate"; type="application/json", <https://www.epicdesign.nz/>; rel=shortlink
vary: Accept-Encoding
content-encoding: gzip
content-length: 15936
content-type: text/html; charset=UTF-8
date: Tue, 06 Dec 2022 02:29:15 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
7dfb548d8f8a99d32050803775fad5d6
8b47999a01db7c2217d76a1cec576809a229cf1b
68dd2a1e5a0002f4d25d3b5884ab55bc6b5a91e38f6dc464c4261b19c6e5887e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:29:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c10bc583c46449dc192a809398b4e814
ff0f7ad905d32d7f3d01e4054552d0ad551503a5
defd2b2559e55c9c6c0f8be9b23c53c4e781a736feae3dd73b4d203b69cfcc57

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:29:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
7dfb548d8f8a99d32050803775fad5d6
8b47999a01db7c2217d76a1cec576809a229cf1b
68dd2a1e5a0002f4d25d3b5884ab55bc6b5a91e38f6dc464c4261b19c6e5887e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:29:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8ead0ac4ce19cef2471bae0458759d89
af02fd3fcd2e10cfa2458407c0c2e59a43e18517
507b93c64bab73e393cf8d8131415ef4d4b01e65e0f2ab73597715197845e75e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:29:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ee6bfe50f8e4b9c142f971a55496ac26
8c3fd42aaa7fa3ebdedc4f7b0271b8caae166e64
4582e8e1ada92a279cbc5d82904c7fd27b9d4b95bc06c7a8b3c13168978f0b33

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:29:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

maps.google.com/maps/api/js?key=AIzaSyCw7_RyRXnKIBCCek4PWOao0eViAlvtaiA&libraries=places&language=en&region=NZ&ver=6.1.1

142.250.74.46

200 OK

56 kB

URL HTTP/2
maps.google.com/maps/api/js?key=AIzaSyCw7_RyRXnKIBCCek4PWOao0eViAlvtaiA&libraries=places&language=en&region=NZ&ver=6.1.1
IP
142.250.74.46:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2353)
Size
56 kB (55743 bytes)
Hash
615a9e56e2b17f9c057e76a8e103d283
bddfb89b1ac5ce324591fb14f9b6cf2794864378
46d74588f996d034f2ef4e497db43f3d1e7a6dc4c91cdf6f8e3a85a333ce7a68

HTTP Headers

GET /maps/api/js?key=AIzaSyCw7_RyRXnKIBCCek4PWOao0eViAlvtaiA&libraries=places&language=en&region=NZ&ver=6.1.1 HTTP/1.1
Host: maps.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Tue, 06 Dec 2022 02:29:16 GMT
expires: Tue, 06 Dec 2022 02:59:16 GMT
cache-control: public, max-age=1800
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 55743
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=21
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
7dfb548d8f8a99d32050803775fad5d6
8b47999a01db7c2217d76a1cec576809a229cf1b
68dd2a1e5a0002f4d25d3b5884ab55bc6b5a91e38f6dc464c4261b19c6e5887e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:29:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6231
Expires: Tue, 06 Dec 2022 04:13:07 GMT
Date: Tue, 06 Dec 2022 02:29:16 GMT
Connection: keep-alive

www.epicdesign.nz/wp-includes/css/classic-themes.min.css?ver=1

192.185.225.9

200 OK

189 B

URL HTTP/2
www.epicdesign.nz/wp-includes/css/classic-themes.min.css?ver=1
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
189 B (189 bytes)
Hash
5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 26 Nov 2022 09:22:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 189
content-type: text/css
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2

maps.google.com/maps/api/js?key=AIzaSyAQ0FBrS86laigd1gOb6NniK5MkwRZAZ5k&ver=1

142.250.74.46

200 OK

54 kB

URL HTTP/2
maps.google.com/maps/api/js?key=AIzaSyAQ0FBrS86laigd1gOb6NniK5MkwRZAZ5k&ver=1
IP
142.250.74.46:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2380)
Size
54 kB (53531 bytes)
Hash
ee19f00da1f82441aabba6470b647d36
70778c4fc98eeb4fbda80cc02a9799f6d911bb08
59d7ef817a3b4edcd04250e06d1aec57d88cd14003695bb6284d146ae4be1659

HTTP Headers

GET /maps/api/js?key=AIzaSyAQ0FBrS86laigd1gOb6NniK5MkwRZAZ5k&ver=1 HTTP/1.1
Host: maps.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Tue, 06 Dec 2022 02:29:16 GMT
expires: Tue, 06 Dec 2022 02:59:16 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 53531
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=21
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6231
Expires: Tue, 06 Dec 2022 04:13:07 GMT
Date: Tue, 06 Dec 2022 02:29:16 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6231
Expires: Tue, 06 Dec 2022 04:13:07 GMT
Date: Tue, 06 Dec 2022 02:29:16 GMT
Connection: keep-alive

fonts.googleapis.com/css?family=Alegreya:regular%7CRaleway:regular

142.250.74.106

200 OK

16 kB

URL HTTP/2
fonts.googleapis.com/css?family=Alegreya:regular%7CRaleway:regular
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
data
Size
16 kB (16367 bytes)
Hash
2040e815296a9b4ba65860df43fde049
41faa948ef28c0313833a1c10f6a32f62be4fdff
b7dca1830b3fcd3fb6a7ade59cc5c309a4d03af31710985fc108ab89677fd9d2

HTTP Headers

GET /css?family=Alegreya:regular%7CRaleway:regular HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 06 Dec 2022 02:29:16 GMT
date: Tue, 06 Dec 2022 02:29:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8469 bytes)
Hash
2f60a6490f38a772dcd50a1132e98e1b
ff254a1df087d2c157d88a6ef04e395dc49efe5e
653e40becd103cd76cc2f194a87e933e8c548d346f87520fefca3b16430fc4ab

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8469
x-amzn-requestid: c17eff92-da62-4f0f-9e75-2741012ec43a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_sqFSjoAMFQ6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d131d-61d61d2f0bb01ecb21b809ea;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: i6QasBBRK9APW19sH0DdOipvUJA3gWj0CAMTzt7ejRCOk_V2psz-Xw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:45:47 GMT
age: 17009
etag: "ff254a1df087d2c157d88a6ef04e395dc49efe5e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11224 bytes)
Hash
b15136d60fd0a5e0f657a4f5c75d540f
36082b7329d473829178f280cb71a83b1531e486
79478269b1f5dcfd1e45ccd4264fa44805b37c5c8fec820bcbd2fa1689dfbbd8

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11224
x-amzn-requestid: 938de0b8-1055-4416-9ad7-162ab5f4db9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUINEwdoAMFuOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6701-38b079ef341bb17e567de773;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:45 GMT
x-amz-cf-pop: YVR50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tGtiCE9C3j0BUruNaFN2j1mKxCSouLmocmTXpmLMBJaLNyVwkXu1gQ==
via: 1.1 f0ac467993db44dbfc36b778dfcaf73c.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:23:09 GMT
age: 14767
etag: "36082b7329d473829178f280cb71a83b1531e486"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F273773ed-3135-47d7-b4ff-5e390a90fecf.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.3 kB (5273 bytes)
Hash
49c08cd33e41826af9dd4a8a912e0ddf
bde85bd98858e4b13484a9cc3263b4db7fb5d348
43471e7b4da8e4e58b842d05cb073ef150ff119eaa6890c86162f03a140459cf

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F273773ed-3135-47d7-b4ff-5e390a90fecf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5273
x-amzn-requestid: 5ab71aaf-6757-46dc-86fc-0a866958d22f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSz2EqfIAMFqng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64e5-15ae9d330e005f547161b4df;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xcEI729NEfORs3fT_fHi-BkyqA1sHl0dA6fAGd9hYkJNePUlM4vKQg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:05:52 GMT
age: 15804
etag: "bde85bd98858e4b13484a9cc3263b4db7fb5d348"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaf0de04-19bf-4944-9ac5-5178afafb192.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11352 bytes)
Hash
7f2c354a00ab51d4a41221b6bf191c10
01ceb7233fe05ad8dff3a0a43eef879ea2b83ec4
7d3c8417e1db0db41ceb8b4bf3f506864392dd1ad29319a06a8a6055f6f2ed12

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaf0de04-19bf-4944-9ac5-5178afafb192.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11352
x-amzn-requestid: 7c3fc7bb-eb1f-46ec-8e92-b6ffc6261848
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSwuF1ToAMFiIA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64d1-7c53152a279f00595b9886bd;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:25 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aYf5d6wAJlPSXVwF5uQXUb1g_65z-v6tInk7IF64bBV-w31d3MKeIQ==
via: 1.1 b6d577696b14c86cbfeb5b3459f38c50.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:22:23 GMT
age: 14813
etag: "01ceb7233fe05ad8dff3a0a43eef879ea2b83ec4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8ead0ac4ce19cef2471bae0458759d89
af02fd3fcd2e10cfa2458407c0c2e59a43e18517
507b93c64bab73e393cf8d8131415ef4d4b01e65e0f2ab73597715197845e75e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:29:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.epicdesign.nz/wp-content/plugins/complianz-gdpr/assets/css/cookieblocker.min.css?ver=6.3.5

192.185.225.9

200 OK

753 B

URL HTTP/2
www.epicdesign.nz/wp-content/plugins/complianz-gdpr/assets/css/cookieblocker.min.css?ver=6.3.5
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (2723), with no line terminators
Size
753 B (753 bytes)
Hash
0bb8069e7e55e60c0dfadc43ca040a4e
0e684028a1e38a4786aff00d7fa5bb07b6e9063d
707510b3ddc56393e114cc66436b159130ebc437bbccd1a7f135d19b11dc8844

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/complianz-gdpr/assets/css/cookieblocker.min.css?ver=6.3.5 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 26 Nov 2022 09:25:50 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 753
content-type: text/css
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d62ac4e-2ac8-4e49-a61b-a48cff80ffd2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (9987 bytes)
Hash
8055d0db573ab34924db3b60ed788bb2
a4aae05e7a929fc7f652f56748d2a2da9c44ac45
f6a9555f112882d4ac284c6dc26ae0f02f6ccf8ee312615e01ebec8242bade1f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d62ac4e-2ac8-4e49-a61b-a48cff80ffd2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9987
x-amzn-requestid: 3d4d7dd0-2be0-46c1-a9c0-aa3cce2e8c81
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSvUHhJIAMFZYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64c8-63a6960043564aa762caaabe;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:16 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XaKRGgDJdys5Ufgv2QasOrlxuXHRnb8dJWc_tHiXa72QvQ-egpRDsQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:25:37 GMT
age: 14619
etag: "a4aae05e7a929fc7f652f56748d2a2da9c44ac45"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.5

192.185.225.9

200 OK

16 kB

URL HTTP/2
www.epicdesign.nz/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.5
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Size
16 kB (16038 bytes)
Hash
9c59cb4faeac5a6ca077df679e4c2f7a
60e0e7e52f16112702c52b7903071b91f774ae5f
427cab6b0083b8d4ed6c3d9c8442a9b493a491998b0255439a7de7a5c25262b7

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.5 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:11:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 16038
content-type: text/css
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/uploads/style_dark.css?ver=81582bdb254a94e4464424087c6479a8

192.185.225.9

200 OK

14 kB

URL HTTP/2
www.epicdesign.nz/wp-content/uploads/style_dark.css?ver=81582bdb254a94e4464424087c6479a8
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (47670), with no line terminators
Size
14 kB (14444 bytes)
Hash
7a3cfad351ab76d280546191bcb69c6a
92ed3c6bcb09c62a0a4cc6cdee1da3e99ac94509
eddb63cbe5c69b6f651085f5ba1379f8b41207d5c632084304d0956f59a47eb7

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/style_dark.css?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 05 Dec 2022 08:09:42 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 14444
content-type: text/css
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4

192.185.225.9

409 Conflict

83 B

URL HTTP/2
www.epicdesign.nz/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 409 Conflict
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4

192.185.225.9

409 Conflict

83 B

URL HTTP/2
www.epicdesign.nz/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 409 Conflict
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4

192.185.225.9

409 Conflict

83 B

URL HTTP/2
www.epicdesign.nz/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 409 Conflict
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/themes/bauhaus/js/wow.min.js?ver=1

192.185.225.9

200 OK

3.2 kB

URL HTTP/2
www.epicdesign.nz/wp-content/themes/bauhaus/js/wow.min.js?ver=1
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (8396), with CRLF line terminators
Size
3.2 kB (3227 bytes)
Hash
ad1b2b40dabd21de8619613fcbd5d863
fdf0f38f99887e97132efee79f57a015a4baca6c
56e0be436ff7596e482ca5cc9c8cc69ec5b1f76010e582910bb97851ab3408fd

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bauhaus/js/wow.min.js?ver=1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3227
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/themes/bauhaus/js/bootstrap.min.js?ver=1

192.185.225.9

200 OK

14 kB

URL HTTP/2
www.epicdesign.nz/wp-content/themes/bauhaus/js/bootstrap.min.js?ver=1
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (32033)
Size
14 kB (14394 bytes)
Hash
ad7339964f395566ac9d75903d96b9de
ea5756ab8d399418e0f862a8ff1249df3f77790f
3adfc0a685bd6eee9638948b1085d3db733c75caff8409b7582e356671588491

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bauhaus/js/bootstrap.min.js?ver=1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 14394
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/themes/bauhaus/js/main.js?ver=1

192.185.225.9

200 OK

1.3 kB

URL HTTP/2
www.epicdesign.nz/wp-content/themes/bauhaus/js/main.js?ver=1
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
1.3 kB (1294 bytes)
Hash
5319317101f34af7b7b2a92ddb2bd733
1b7924b95626b36966bc48a352b007783312b229
e740adbd573281971d0b2fff0115391759ce336060e96a7b0e83ec45cd96ea9d

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bauhaus/js/main.js?ver=1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1294
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-includes/js/imagesloaded.min.js?ver=4.1.4

192.185.225.9

200 OK

2.1 kB

URL HTTP/2
www.epicdesign.nz/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (5477)
Size
2.1 kB (2103 bytes)
Hash
f0bd7ad12acdee26cbb2701c1ba3610b
53c5d15129860868b60b74cb010b2c6050a64f69
e6d0cb19e56d22e8e511c23ca2bd233bedb40e3c7cf4ff38fe6f059bc7e0c64f

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 14 Jun 2020 05:23:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2103
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/themes/bauhaus/js/jquery.stellar.min.js?ver=1

192.185.225.9

200 OK

4.1 kB

URL HTTP/2
www.epicdesign.nz/wp-content/themes/bauhaus/js/jquery.stellar.min.js?ver=1
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (12453)
Size
4.1 kB (4109 bytes)
Hash
3525f2201b4f09032255aa580b5ffb6f
00b2c0b860cdc0a4d466575d57b6f3d9b748decc
700f7e51cd1033335fd0dff2838e02e9cbf3fd206eb4635de5fd07ccaa92dfaa

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bauhaus/js/jquery.stellar.min.js?ver=1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4109
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-includes/js/comment-reply.min.js?ver=81582bdb254a94e4464424087c6479a8

192.185.225.9

200 OK

1.5 kB

URL HTTP/2
www.epicdesign.nz/wp-includes/js/comment-reply.min.js?ver=81582bdb254a94e4464424087c6479a8
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (2946)
Size
1.5 kB (1477 bytes)
Hash
92712acce6ce836d0a929b1800b4f9d6
8157d1380bb1d6dadfd85565dd464bb5b0ed06bd
2f82d181a2cadadf7d898d7f5ea2eb527106fb6413044b55fbfa4fb0081a2e09

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/comment-reply.min.js?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Jul 2022 09:15:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1477
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/themes/bauhaus/js/isotope.pkgd.min.js?ver=1

192.185.225.9

200 OK

13 kB

URL HTTP/2
www.epicdesign.nz/wp-content/themes/bauhaus/js/isotope.pkgd.min.js?ver=1
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (32009)
Size
13 kB (12794 bytes)
Hash
66fe04b37e5bf32636f1c7d1524b365f
4652cbbc5dee3476024086f1053fb27ded0c2478
ee77a893ebdc95d7b8f4f5564a66be182fc84b6e74279450ceac91eb069bbb33

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bauhaus/js/isotope.pkgd.min.js?ver=1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12794
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/themes/bauhaus/js/sly.min.js?ver=1

192.185.225.9

200 OK

8.4 kB

URL HTTP/2
www.epicdesign.nz/wp-content/themes/bauhaus/js/sly.min.js?ver=1
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (18589)
Size
8.4 kB (8359 bytes)
Hash
8077c460e8c63bd7230d35a77b6ca5fa
5e44617be9381e62d1c61d198153211fe96d8517
3b1e86d1158d73cdabc2197845a52e8243adf9641c73bac538edfd52c2fdfcb9

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bauhaus/js/sly.min.js?ver=1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8359
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/themes/bauhaus/style.css?ver=81582bdb254a94e4464424087c6479a8

192.185.225.9

200 OK

1.6 kB

URL HTTP/2
www.epicdesign.nz/wp-content/themes/bauhaus/style.css?ver=81582bdb254a94e4464424087c6479a8
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (684), with CRLF line terminators
Size
1.6 kB (1631 bytes)
Hash
55a366d95c1bad1507393623939b2454
74b0b4cf146eae0dcc485ce32f2e10460e9d2e74
563d4b519a97c19fadfe64a60ad57d19b4c948221ed404ed9e8c417627d4f13c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bauhaus/style.css?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1631
content-type: text/css
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/themes/bauhaus/js/scripts-dark.js?ver=1

192.185.225.9

200 OK

3.8 kB

URL HTTP/2
www.epicdesign.nz/wp-content/themes/bauhaus/js/scripts-dark.js?ver=1
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
3.8 kB (3792 bytes)
Hash
9f390450a648a4d9aab9c6a0cb3d325d
51299431f9e7d58985e871314041407bb93fb9bc
ada07fb546fce410c5016973966e979f65101618beced2f57bf12270380c3a12

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bauhaus/js/scripts-dark.js?ver=1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3792
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/themes/bauhaus/js/smoothscroll.js?ver=1

192.185.225.9

200 OK

7.4 kB

URL HTTP/2
www.epicdesign.nz/wp-content/themes/bauhaus/js/smoothscroll.js?ver=1
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
7.4 kB (7352 bytes)
Hash
37793d3e0e711814bf4769f4191652bf
79b5406534955d8533930fcec262321484a56f3a
b5453bd2671d7542a5b918a37ac1ede7cd501537e8b9b2fa6a10bb99c209e190

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bauhaus/js/smoothscroll.js?ver=1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7352
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2

192.185.225.9

200 OK

8.3 kB

URL HTTP/2
www.epicdesign.nz/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 text, with very long lines (8189)
Size
8.3 kB (8344 bytes)
Hash
838560e989767f2ef5951b9eeee20352
6bf8419cb4d68d9beced9e4b79b22b347ae16a46
72e6d275c5229613a59aef94523fc6a96330553976aee003d8544d5806fa0c3d

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 26 Nov 2022 09:22:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8344
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/uploads/2022/03/4.png

192.185.225.9

200 OK

6.6 kB

URL HTTP/2
www.epicdesign.nz/wp-content/uploads/2022/03/4.png
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 310 x 310, 8-bit/color RGBA, non-interlaced\012- data
Size
6.6 kB (6646 bytes)
Hash
c77d7cb17bb40e5b115090ebd92e67c8
1476a76750b9625e09562e35cfcfa110d955274f
fb7756da6002b13bdd797c9f04a591b366161381344906d0a8bff56fa5f405f9

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/03/4.png HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 10 Mar 2022 21:57:37 GMT
accept-ranges: bytes
content-length: 6646
content-type: image/png
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/themes/bauhaus/js/animsition.min.js?ver=1

192.185.225.9

200 OK

2.2 kB

URL HTTP/2
www.epicdesign.nz/wp-content/themes/bauhaus/js/animsition.min.js?ver=1
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (5415)
Size
2.2 kB (2164 bytes)
Hash
ffa67ed25cc4519c5edb415bb7e3b560
e2bc07caad35c056dd7a322d171f5e45703c596e
0540dbf57b36e14f96aaa69041d3f8298917a1f2483f181047736cb1ceb9f649

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bauhaus/js/animsition.min.js?ver=1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2164
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-includes/js/wp-emoji-release.min.js?ver=81582bdb254a94e4464424087c6479a8

192.185.225.9

200 OK

5.3 kB

URL HTTP/2
www.epicdesign.nz/wp-includes/js/wp-emoji-release.min.js?ver=81582bdb254a94e4464424087c6479a8
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (15660)
Size
5.3 kB (5321 bytes)
Hash
710f8b142ea44c0682dc2c30f318f065
49144e9b3a76d3d383b1d4359cf7a25e947f4233
708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Jul 2022 09:15:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5321
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/themes/bauhaus/js/jquery.magnific-popup.min.js?ver=1

192.185.225.9

200 OK

9.2 kB

URL HTTP/2
www.epicdesign.nz/wp-content/themes/bauhaus/js/jquery.magnific-popup.min.js?ver=1
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (20087)
Size
9.2 kB (9204 bytes)
Hash
7a10ae63b238729dc4da7f7bd8986219
654c47168dca0ec7080f6c57e8c4482b57f879d4
b782185399b361358f7c409d6f23f22d45f695dcbb63876c35752c7b1de72db3

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bauhaus/js/jquery.magnific-popup.min.js?ver=1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9204
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/themes/bauhaus/js/gmap.js?ver=1

192.185.225.9

200 OK

208 B

URL HTTP/2
www.epicdesign.nz/wp-content/themes/bauhaus/js/gmap.js?ver=1
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
208 B (208 bytes)
Hash
e283188199f7acbddca2a5cb7b01c46c
b785ef57d0a866adbd55b1c915be8a44f6018b3e
1bc87a8d2d4d2f3f4d8eb813907032861787b33f0c4e0211d2be59e0e59b2b2a

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bauhaus/js/gmap.js?ver=1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 208
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

192.185.225.9

200 OK

4.6 kB

URL HTTP/2
www.epicdesign.nz/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (11126)
Size
4.6 kB (4618 bytes)
Hash
acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 18 Nov 2020 20:36:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4618
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/themes/bauhaus/js/plugins.js?ver=1

192.185.225.9

200 OK

1.6 kB

URL HTTP/2
www.epicdesign.nz/wp-content/themes/bauhaus/js/plugins.js?ver=1
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (522)
Size
1.6 kB (1628 bytes)
Hash
35d404fc2cde7c49f8104762b95573fa
fd8f8a8c6a1357fb871e29de81f87a5c9d5ab107
3421b6c2e718d8e561a3709609c9edf2d0b6882e8da88e9f86d69034e4e01fe1

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bauhaus/js/plugins.js?ver=1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1628
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/plugins/burst-statistics/helpers/timeme/timeme.min.js?ver=1.3.1

192.185.225.9

200 OK

2.2 kB

URL HTTP/2
www.epicdesign.nz/wp-content/plugins/burst-statistics/helpers/timeme/timeme.min.js?ver=1.3.1
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (6448), with no line terminators
Size
2.2 kB (2220 bytes)
Hash
2986700b92e0307a35cee4656aaf986c
446bd212c3600405ddca22ff0be7cda33ada380a
bd273a815f3be153a1a17010371fe1abbf376159724713dd01c40aef8b88c20c

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/burst-statistics/helpers/timeme/timeme.min.js?ver=1.3.1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 26 Nov 2022 09:25:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2220
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/plugins/burst-statistics/assets/js/build/burst.min.js?ver=1.3.1

192.185.225.9

200 OK

2.9 kB

URL HTTP/2
www.epicdesign.nz/wp-content/plugins/burst-statistics/assets/js/build/burst.min.js?ver=1.3.1
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (6204), with no line terminators
Size
2.9 kB (2869 bytes)
Hash
6891274e0dce7a3ee64de3ced5c675b1
af8dbd45b8affdc1a7f13a546378e3dbb8ccda42
d5e1a67e446b8bda360e6a171dc6461fc80ebe4894154b9d93dbfefe8d7fda28

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/burst-statistics/assets/js/build/burst.min.js?ver=1.3.1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 26 Nov 2022 09:25:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2869
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Playfair+Display%3A400%2C400i%2C700%2C700i%7CPoppins%3A300%2C400%2C500%2C600%2C700&ver=6.1.1

142.250.74.106

200 OK

8.1 kB

URL HTTP/2
fonts.googleapis.com/css?family=Playfair+Display%3A400%2C400i%2C700%2C700i%7CPoppins%3A300%2C400%2C500%2C600%2C700&ver=6.1.1
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (20382)
Size
8.1 kB (8065 bytes)
Hash
7fd3878263f49db2f5ba381c03976164
c7bad4c133dc7cd01e1de2aea7d633c088180d9b
a306d0f65889b32e2ce3df3d4e2a620801068fd7acb22d358b9666aadeb5157b

HTTP Headers

GET /css?family=Playfair+Display%3A400%2C400i%2C700%2C700i%7CPoppins%3A300%2C400%2C500%2C600%2C700&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 06 Dec 2022 02:29:16 GMT
date: Tue, 06 Dec 2022 02:29:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/themes/bauhaus/js/jquery.validate.min.js?ver=1

192.185.225.9

200 OK

9.2 kB

URL HTTP/2
www.epicdesign.nz/wp-content/themes/bauhaus/js/jquery.validate.min.js?ver=1
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 text, with very long lines (22932)
Size
9.2 kB (9179 bytes)
Hash
3451419235cb60e66def9ef452507d2d
cbe1032290afb6b7b0ad15da697a4680e8c10c59
87b4ad2c30487e9c16dd79d3436df6b72eb408a0265861abc1c07091b2042046

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bauhaus/js/jquery.validate.min.js?ver=1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9179
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/themes/bauhaus/js/jquery.pagepiling.js?ver=1

192.185.225.9

200 OK

10 kB

URL HTTP/2
www.epicdesign.nz/wp-content/themes/bauhaus/js/jquery.pagepiling.js?ver=1
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
10 kB (10394 bytes)
Hash
7f00980194ed539fc6c54a1f2f836fdb
35e6a56c748c05dc185d892da3adb2ce22f808c3
0938a61e31d0d171daa50343878598ff1099c58aa956d1ad7b61c47f7fb90ff2

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bauhaus/js/jquery.pagepiling.js?ver=1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 10394
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/themes/bauhaus/js/owl.carousel.min.js?ver=1

192.185.225.9

200 OK

15 kB

URL HTTP/2
www.epicdesign.nz/wp-content/themes/bauhaus/js/owl.carousel.min.js?ver=1
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (32012)
Size
15 kB (15384 bytes)
Hash
ea94bfb22256c906d657a26b1c90b05c
d33be4c782c22b1e6630b0665f283c68a465669c
ace96c6af30f6292392735c759fe6d92dae6fa2957f7d92dda9bf8ee08bfbb17

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bauhaus/js/owl.carousel.min.js?ver=1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 15384
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Libre+Baskerville%3A400i&ver=6.1.1

142.250.74.106

200 OK

16 kB

URL HTTP/2
fonts.googleapis.com/css?family=Libre+Baskerville%3A400i&ver=6.1.1
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
C source textAlgol 68 source text\012- Pascal source, ASCII text, with very long lines (48616)
Size
16 kB (16262 bytes)
Hash
77d715854b6a6669a69d35d76223e294
4cd5caf953397264866c5990679c27e7b27e0236
11ffc844991533e92b3cea6e1e7a01b66a13df3a9c354561cda6d5431d58c2cc

HTTP Headers

GET /css?family=Libre+Baskerville%3A400i&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 06 Dec 2022 02:29:16 GMT
date: Tue, 06 Dec 2022 02:29:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/themes/bauhaus/css/settings.css

192.185.225.9

200 OK

10 kB

URL HTTP/2
www.epicdesign.nz/wp-content/themes/bauhaus/css/settings.css
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 text, with very long lines (352), with CRLF line terminators
Size
10 kB (10372 bytes)
Hash
4102dd581a0b847ebe436728a31d528b
09cb0b1ecc844cd05bdf899ee92d24ab12bfd88e
46c50516286031c97c5eab6fe7673a82883bc69560b28bdd20d5e210ebd9a450

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bauhaus/css/settings.css HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/wp-content/themes/bauhaus/css/dark-style.css?ver=81582bdb254a94e4464424087c6479a8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 10372
content-type: text/css
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/themes/bauhaus/css/animsition.css

192.185.225.9

200 OK

3.3 kB

URL HTTP/2
www.epicdesign.nz/wp-content/themes/bauhaus/css/animsition.css
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
3.3 kB (3321 bytes)
Hash
e553ded34e1f37547a4907072d309e9e
1e1ab007de2beaab207d6c4aafd7c135457ceee3
df65a125b4a0d06197a4c19373f6c5f1e7f5406adc8388118e52d5b75d365bb3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bauhaus/css/animsition.css HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/wp-content/themes/bauhaus/css/dark-style.css?ver=81582bdb254a94e4464424087c6479a8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3321
content-type: text/css
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/themes/bauhaus/css/linearicons.css

192.185.225.9

200 OK

7.8 kB

URL HTTP/2
www.epicdesign.nz/wp-content/themes/bauhaus/css/linearicons.css
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
7.8 kB (7780 bytes)
Hash
ee8f80625b1c287943facf26ca26380a
e3f3e5c258baf6e10e9dabc7a44dafa657fa91c1
74c0965e2e920f495a611bce83cfaa5d05e2007bf84a5757d2628370bf6af1e1

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bauhaus/css/linearicons.css HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/wp-content/themes/bauhaus/css/dark-style.css?ver=81582bdb254a94e4464424087c6479a8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7780
content-type: text/css
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/themes/bauhaus/css/jquery.pagepiling.css

192.185.225.9

200 OK

907 B

URL HTTP/2
www.epicdesign.nz/wp-content/themes/bauhaus/css/jquery.pagepiling.css
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
907 B (907 bytes)
Hash
83fce19758a9f44b9a40acdc7b58dba9
55d3af00257ae57c38414ccfd5ffcc9f8ee3c12f
662f2658c16cb7217ccee575144dfbeebf3c12ff5fc5aa090b966a17bc1be08c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bauhaus/css/jquery.pagepiling.css HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/wp-content/themes/bauhaus/css/dark-style.css?ver=81582bdb254a94e4464424087c6479a8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 907
content-type: text/css
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/themes/bauhaus/css/magnific-popup.css

192.185.225.9

200 OK

2.2 kB

URL HTTP/2
www.epicdesign.nz/wp-content/themes/bauhaus/css/magnific-popup.css
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
2.2 kB (2190 bytes)
Hash
5691b07253c4a30382130c2da4be8343
4c12d34016c7061965c996599c4086683958e0f1
095326e797678e4aa4be8217bf991180f7b79cdcce552897123ffa68981a0747

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bauhaus/css/magnific-popup.css HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/wp-content/themes/bauhaus/css/dark-style.css?ver=81582bdb254a94e4464424087c6479a8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2190
content-type: text/css
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/themes/bauhaus/css/owl.carousel.css

192.185.225.9

200 OK

1.3 kB

URL HTTP/2
www.epicdesign.nz/wp-content/themes/bauhaus/css/owl.carousel.css
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
1.3 kB (1263 bytes)
Hash
790401c8013134c23de0d6a780bbfeb3
ce5d266403de88cecfdf4b481f08a5d040000337
0de8fdb4c3efbf31d0f19dfe6d51647e67b706534c53eb3ec8d5a227f8fe6aec

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bauhaus/css/owl.carousel.css HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/wp-content/themes/bauhaus/css/dark-style.css?ver=81582bdb254a94e4464424087c6479a8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1263
content-type: text/css
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/themes/bauhaus/css/animate.css

192.185.225.9

200 OK

7.1 kB

URL HTTP/2
www.epicdesign.nz/wp-content/themes/bauhaus/css/animate.css
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
7.1 kB (7114 bytes)
Hash
2e3e181ba09aeef1598179afb032952b
0628d62595a6ba3ebcd6140bbaad6e171bd82240
a6ba0f79e8f4e59774bbd380cbfa624208b960c7cb11a8d76bc4f9b8566a8c1c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bauhaus/css/animate.css HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/wp-content/themes/bauhaus/css/dark-style.css?ver=81582bdb254a94e4464424087c6479a8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7114
content-type: text/css
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/themes/bauhaus/css/layers.css

192.185.225.9

200 OK

16 kB

URL HTTP/2
www.epicdesign.nz/wp-content/themes/bauhaus/css/layers.css
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF, CR line terminators
Size
16 kB (15888 bytes)
Hash
6cab205b8417bb2bce8bfe3372cd7cdd
f934012b30ee28f9f429b466864e69d918d4efb9
38f4e04b66f369bafeadd64a8fe5d949155a2b73561f8f5518e8c5fe87264bb0

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bauhaus/css/layers.css HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/wp-content/themes/bauhaus/css/dark-style.css?ver=81582bdb254a94e4464424087c6479a8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 15888
content-type: text/css
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/themes/bauhaus/css/font-awesome.min.css

192.185.225.9

200 OK

7.1 kB

URL HTTP/2
www.epicdesign.nz/wp-content/themes/bauhaus/css/font-awesome.min.css
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (30837)
Size
7.1 kB (7114 bytes)
Hash
82a55032c4b614390aea6ef6870d3e90
bb21577feea531540a8d4f27ac3730ffac111e1b
4f068500ef9ef0dbffa5b76ac10f1970a7a9de8ff033f84228971a140eb20069

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bauhaus/css/font-awesome.min.css HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/wp-content/themes/bauhaus/css/dark-style.css?ver=81582bdb254a94e4464424087c6479a8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7114
content-type: text/css
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e24f2da4ed2e3cd07b0999a67550d634
6e2277e734fd0015849c3554dd2cf2ae289c2cf2
74dc14d7d9ba8bba4a162680e59801af1d7c2995639df51f32ff2f3d4d0b0051

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:29:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrE.woff2

216.58.207.227

200 OK

21 kB

URL HTTP/2
fonts.gstatic.com/s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrE.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 21280, version 1.0\012- data
Size
21 kB (21280 bytes)
Hash
16911581ab7ea10687a5aee74cbc5612
b0b24248345739209d753a4ac77ccfc1f627b219
c78a1da5fd0868a547cf285748c7fb73006571190385eb71c0d601b6b240ffaf

HTTP Headers

GET /s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.epicdesign.nz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21280
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 21:18:36 GMT
expires: Tue, 05 Dec 2023 21:18:36 GMT
cache-control: public, max-age=31536000
age: 18641
last-modified: Mon, 18 Jul 2022 19:57:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e24f2da4ed2e3cd07b0999a67550d634
6e2277e734fd0015849c3554dd2cf2ae289c2cf2
74dc14d7d9ba8bba4a162680e59801af1d7c2995639df51f32ff2f3d4d0b0051

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:29:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.epicdesign.nz/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4

192.185.225.9

409 Conflict

83 B

URL HTTP/2
www.epicdesign.nz/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 409 Conflict
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/themes/bauhaus/css/bootstrap.css

192.185.225.9

200 OK

57 kB

URL HTTP/2
www.epicdesign.nz/wp-content/themes/bauhaus/css/bootstrap.css
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
data
Size
57 kB (56618 bytes)
Hash
ef5c376b7002c2db1146a684fc6582f4
94407566a262d791df4db6d4851e0eda85ae6420
61f51eb556160a0813aff0a6752ba1926b8a96800982d1811a2a99cbe8492ef2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bauhaus/css/bootstrap.css HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/wp-content/themes/bauhaus/css/dark-style.css?ver=81582bdb254a94e4464424087c6479a8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/themes/bauhaus/images/bg/dots-dark2.png

192.185.225.9

200 OK

986 B

URL HTTP/2
www.epicdesign.nz/wp-content/themes/bauhaus/images/bg/dots-dark2.png
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 9 x 9, 8-bit/color RGBA, non-interlaced\012- data
Size
986 B (986 bytes)
Hash
e5527013af152166d31d22fadea75210
c0a418925af6009cb28bdf7e45c3e4dce77189a6
99b940eacc239d4a234a89cdbfe4f15a21d2a646518ec143a94bb7aead1565c8

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bauhaus/images/bg/dots-dark2.png HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
content-length: 986
content-type: image/png
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/uploads/2022/07/1-2.png?id=1211

192.185.225.9

200 OK

284 kB

URL HTTP/2
www.epicdesign.nz/wp-content/uploads/2022/07/1-2.png?id=1211
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 1500 x 1500, 8-bit/color RGBA, non-interlaced\012- data
Size
284 kB (284520 bytes)
Hash
b9c463156a571ab3d126d4a61faad4fb
dfef8772631edbd1920aa918e224a8ea942baa17
a0d1e4b39230301e890287550113f1f46acd9a20dd7d86f864e4e680c75c548f

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/07/1-2.png?id=1211 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 10 Jul 2022 23:19:47 GMT
accept-ranges: bytes
content-length: 284520
content-type: image/png
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/burst-statistics-endpoint.php

192.185.225.9

200 OK

0 B

URL HTTP/2
www.epicdesign.nz/burst-statistics-endpoint.php
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

POST /burst-statistics-endpoint.php HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 305
Origin: https://www.epicdesign.nz
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Cookie: burst_uid=28370aeb8972507ffd2fcb049b91060f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-length: 0
content-type: text/html; charset=UTF-8
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/themes/bauhaus/fonts/fontawesome-webfont.woff2?v=4.7.0

192.185.225.9

200 OK

77 kB

URL HTTP/2
www.epicdesign.nz/wp-content/themes/bauhaus/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bauhaus/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.epicdesign.nz/wp-content/themes/bauhaus/css/font-awesome.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
content-length: 77160
content-type: font/woff2
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/themes/bauhaus/fonts/ionicons.ttf?v=2.0.0

192.185.225.9

200 OK

188 kB

URL HTTP/2
www.epicdesign.nz/wp-content/themes/bauhaus/fonts/ionicons.ttf?v=2.0.0
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
TrueType Font data, 15 tables, 1st "FFTM", 14 names, Macintosh\012- data
Size
188 kB (188508 bytes)
Hash
24712f6c47821394fba7942fbb52c3b2
1b0a0de084905946a20300ca8c354865dec46764
2ba7f20b1d8990e17a47fe3d88e4c766628aaa2baf1dd30fca0a0db59836f5f9

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bauhaus/fonts/ionicons.ttf?v=2.0.0 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/wp-content/themes/bauhaus/css/ionicons.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
content-length: 188508
content-type: font/ttf
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4

192.185.225.9

409 Conflict

83 B

URL HTTP/2
www.epicdesign.nz/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Cookie: burst_uid=28370aeb8972507ffd2fcb049b91060f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 409 Conflict
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/themes/bauhaus/fonts/Linearicons.ttf

192.185.225.9

200 OK

498 kB

URL HTTP/2
www.epicdesign.nz/wp-content/themes/bauhaus/fonts/Linearicons.ttf
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
TrueType Font data, 12 tables, 1st "GSUB", 24 names, Macintosh\012- data
Size
498 kB (498156 bytes)
Hash
f6e2e9c30040079ab5b2bdc94f0a3289
dcb1a930a2896228f5075397e4fdc5afc1c0699b
97af2f6b511991503bee0d894553692d209292ea2cbc562006f4771513078399

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bauhaus/fonts/Linearicons.ttf HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/wp-content/themes/bauhaus/css/linearicons.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
content-length: 498156
content-type: font/ttf
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
X-Firefox-Spdy: h2

fonts.gstatic.com/s/librebaskerville/v14/kmKhZrc3Hgbbcjq75U4uslyuy4kn0qNcWxEQDA.woff2

216.58.207.227

200 OK

31 kB

URL HTTP/2
fonts.gstatic.com/s/librebaskerville/v14/kmKhZrc3Hgbbcjq75U4uslyuy4kn0qNcWxEQDA.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 30696, version 1.0\012- data
Size
31 kB (30696 bytes)
Hash
459f6ec5f7a3d471017b70571cd93b33
c0049988a0fec891b59a5f8941b5f74093197e68
d809e5e194d9762855a81f8e4002da916b66a81ddc4b3fbdaf770ce4aa0fb560

HTTP Headers

GET /s/librebaskerville/v14/kmKhZrc3Hgbbcjq75U4uslyuy4kn0qNcWxEQDA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.epicdesign.nz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30696
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 21:48:45 GMT
expires: Fri, 01 Dec 2023 21:48:45 GMT
cache-control: public, max-age=31536000
age: 362432
last-modified: Tue, 26 Apr 2022 16:09:35 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true

142.250.74.138

200 OK

23 B

URL HTTP/2
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP
142.250.74.138:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text
Size
23 B (23 bytes)
Hash
e3981ca10169a319d5aa062bf43a5fa1
2c6ed584767b65688ce99b1ebe1a3b7448a67421
8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9

HTTP Headers

GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.epicdesign.nz
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 06 Dec 2022 02:29:18 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.epicdesign.nz
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true

142.250.74.138

200 OK

23 B

URL HTTP/2
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP
142.250.74.138:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text
Size
23 B (23 bytes)
Hash
e3981ca10169a319d5aa062bf43a5fa1
2c6ed584767b65688ce99b1ebe1a3b7448a67421
8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9

HTTP Headers

GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.epicdesign.nz
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 06 Dec 2022 02:29:18 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.epicdesign.nz
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.gstatic.com/images/branding/product/2x/translate_24dp.png

142.250.74.35

200 OK

1.8 kB

URL HTTP/2
www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1842 bytes)
Hash
c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82

HTTP Headers

GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://translate.googleapis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 22:09:54 GMT
expires: Tue, 05 Dec 2023 22:09:54 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
age: 15564
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/themes/bauhaus/css/navigation.css

192.185.225.9

200 OK

19 kB

URL HTTP/2
www.epicdesign.nz/wp-content/themes/bauhaus/css/navigation.css
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
data
Size
19 kB (19065 bytes)
Hash
f8b953a2dbaaefc9302627c38c71de57
e65881614f61a98a7cf7112e08b87a19d7aa9479
0b01bc920136fd21fd2de5e83f66c429e4dbddb0636252bfe8a1b2fff66a97fd

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bauhaus/css/navigation.css HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/wp-content/themes/bauhaus/css/dark-style.css?ver=81582bdb254a94e4464424087c6479a8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/uploads/2022/03/cropped-4-32x32.png

192.185.225.9

200 OK

860 B

URL HTTP/2
www.epicdesign.nz/wp-content/uploads/2022/03/cropped-4-32x32.png
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Size
860 B (860 bytes)
Hash
cd360c1640ef224b8fc9186d4b08cdd1
3da7b429ef3c470bde180ebfdb18d7102968392f
4994df3acd0f7e8fd04df5d8efa8c86c4c215a75e4c0b563bbc85a137d1f02b3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/03/cropped-4-32x32.png HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Cookie: burst_uid=28370aeb8972507ffd2fcb049b91060f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 10 Mar 2022 22:00:14 GMT
accept-ranges: bytes
content-length: 860
content-type: image/png
date: Tue, 06 Dec 2022 02:29:18 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/uploads/2022/03/cropped-4-192x192.png

192.185.225.9

200 OK

2.8 kB

URL HTTP/2
www.epicdesign.nz/wp-content/uploads/2022/03/cropped-4-192x192.png
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
2.8 kB (2829 bytes)
Hash
ad864999bf9f26ca52b71b9230f17e83
6997fde7ce7e6df03034fcb0032b5f193a9e07ef
892df770876eedda301e480ab3647a373de8f69b0d5aea859c3c7f7d562d9492

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/03/cropped-4-192x192.png HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Cookie: burst_uid=28370aeb8972507ffd2fcb049b91060f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 10 Mar 2022 22:00:14 GMT
accept-ranges: bytes
content-length: 2829
content-type: image/png
date: Tue, 06 Dec 2022 02:29:18 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-includes/js/jquery/jquery.min.js?ver=3.6.1

192.185.225.9

200 OK

0 B

URL HTTP/2
www.epicdesign.nz/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 26 Nov 2022 09:22:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.5

192.185.225.9

200 OK

0 B

URL HTTP/2
www.epicdesign.nz/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.5
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.5 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:11:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.0.5

192.185.225.9

200 OK

0 B

URL HTTP/2
www.epicdesign.nz/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.0.5
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.0.5 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:11:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/themes/bauhaus/css/dark-style.css?ver=81582bdb254a94e4464424087c6479a8

192.185.225.9

200 OK

0 B

URL HTTP/2
www.epicdesign.nz/wp-content/themes/bauhaus/css/dark-style.css?ver=81582bdb254a94e4464424087c6479a8
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/bauhaus/css/dark-style.css?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2

translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2

216.58.211.14

200 OK

0 B

URL HTTP/2
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2
IP
216.58.211.14:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /translate_a/element.js?cb=googleTranslateElementInit2 HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 06 Dec 2022 02:29:16 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+791; expires=Thu, 05-Dec-2024 02:29:16 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0

192.185.225.9

200 OK

0 B

URL HTTP/2
www.epicdesign.nz/wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:11:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-includes/css/dist/block-library/style.min.css?ver=81582bdb254a94e4464424087c6479a8

192.185.225.9

200 OK

0 B

URL HTTP/2
www.epicdesign.nz/wp-includes/css/dist/block-library/style.min.css?ver=81582bdb254a94e4464424087c6479a8
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 26 Nov 2022 09:22:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2

www.epicdesign.nz/wp-content/uploads/2022/07/2-7.png

192.185.225.9

200 OK

0 B

URL HTTP/2
www.epicdesign.nz/wp-content/uploads/2022/07/2-7.png
IP
192.185.225.9:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/07/2-7.png HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 10 Jul 2022 23:19:52 GMT
accept-ranges: bytes
content-length: 240545
content-type: image/png
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (39)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations