r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5604
Expires: Tue, 06 Dec 2022 04:02:38 GMT
Date: Tue, 06 Dec 2022 02:29:14 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ee088fab9b287e174cfd1f2c735a909f
25c3335b514a36ad1a24d00413d60c3d394f5161
494e96358ff12366213d7cc0f9197648c6c62ec14fa0d2c78732a683fa26b192
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3436
Cache-Control: max-age=118761
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:29:14 GMT
Etag: "638dc877-1d7"
Expires: Wed, 07 Dec 2022 11:28:35 GMT
Last-Modified: Mon, 05 Dec 2022 10:31:19 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 06 Dec 2022 02:20:20 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 534
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4443
Expires: Tue, 06 Dec 2022 03:43:17 GMT
Date: Tue, 06 Dec 2022 02:29:14 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: sPT9HDa1ZBoUCBR6he3jtvRfa+hXA7jykq9jvPWyWR5CiAro9FivKTkPHRH2GkJ1usM/BC0mE/s=
x-amz-request-id: KS84VF9ZAJYWMBGA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 06 Dec 2022 01:48:44 GMT
age: 2430
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
epicdesign.nz/
192.185.225.9301 Moved Permanently 0 B IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET / HTTP/1.1
Host: epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 02:29:14 GMT
Server: Apache
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://epicdesign.nz/
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 02:29:14 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 06 Dec 2022 02:08:58 GMT
cache-control: public,max-age=3600
age: 1216
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2b9d6a686aa3c4ea24568425e43a5221
d53bb4c9579bd1db78a0520619e888aec79f750f
c38734a8dbe51217d73896c0bf7f5c38c107fd79e0dee24b717f130377e9b5f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3422
Cache-Control: max-age=113679
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:29:15 GMT
Etag: "638db4ac-1d7"
Expires: Wed, 07 Dec 2022 10:03:54 GMT
Last-Modified: Mon, 05 Dec 2022 09:06:52 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 2b0a75f10318a190295fe44e13368e39
3f5854f6cd634091e1a7b62ec895e28427e85eec
15822422db0579fb59c0d9c9ca49a079ab53b1c32a897b18c4fadf2c11127ba4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 02:29:15 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 03 Dec 2022 15:56:17 GMT
Expires: Sat, 10 Dec 2022 15:56:16 GMT
Etag: "3f5854f6cd634091e1a7b62ec895e28427e85eec"
Cache-Control: max-age=393420,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 775197c099130b4d-OSL
push.services.mozilla.com/
54.189.139.67101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.189.139.67:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 36U+hTZ4faDuKWbQ+bP3XA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: XKvhsCjAiLBsCsMEA+8Pd433qQU=
epicdesign.nz/
192.185.225.9301 Moved Permanently 0 B IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET / HTTP/1.1
Host: epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
x-redirect-by: WordPress
location: https://www.epicdesign.nz/
content-length: 0
content-type: text/html; charset=UTF-8
date: Tue, 06 Dec 2022 02:29:15 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/
192.185.225.9200 OK 16 kB IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash f875627f272267a5dd1f94f3cd4ba3e0
5e2d5122d4334813959a967bfaadd0f0c85a5c5e
247ee4e010fa600e68938365be0a8d7bdb556df6752d2bbc7fbc9b104acf9952
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET / HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
link: <https://www.epicdesign.nz/index.php?rest_route=/>; rel="https://api.w.org/", <https://www.epicdesign.nz/index.php?rest_route=/wp/v2/pages/75>; rel="alternate"; type="application/json", <https://www.epicdesign.nz/>; rel=shortlink
vary: Accept-Encoding
content-encoding: gzip
content-length: 15936
content-type: text/html; charset=UTF-8
date: Tue, 06 Dec 2022 02:29:15 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7dfb548d8f8a99d32050803775fad5d6
8b47999a01db7c2217d76a1cec576809a229cf1b
68dd2a1e5a0002f4d25d3b5884ab55bc6b5a91e38f6dc464c4261b19c6e5887e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:29:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c10bc583c46449dc192a809398b4e814
ff0f7ad905d32d7f3d01e4054552d0ad551503a5
defd2b2559e55c9c6c0f8be9b23c53c4e781a736feae3dd73b4d203b69cfcc57
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:29:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7dfb548d8f8a99d32050803775fad5d6
8b47999a01db7c2217d76a1cec576809a229cf1b
68dd2a1e5a0002f4d25d3b5884ab55bc6b5a91e38f6dc464c4261b19c6e5887e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:29:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8ead0ac4ce19cef2471bae0458759d89
af02fd3fcd2e10cfa2458407c0c2e59a43e18517
507b93c64bab73e393cf8d8131415ef4d4b01e65e0f2ab73597715197845e75e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:29:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ee6bfe50f8e4b9c142f971a55496ac26
8c3fd42aaa7fa3ebdedc4f7b0271b8caae166e64
4582e8e1ada92a279cbc5d82904c7fd27b9d4b95bc06c7a8b3c13168978f0b33
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:29:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.google.com/maps/api/js?key=AIzaSyCw7_RyRXnKIBCCek4PWOao0eViAlvtaiA&libraries=places&language=en®ion=NZ&ver=6.1.1
142.250.74.46200 OK 56 kB URL HTTP/2 maps.google.com/maps/api/js?key=AIzaSyCw7_RyRXnKIBCCek4PWOao0eViAlvtaiA&libraries=places&language=en®ion=NZ&ver=6.1.1
IP 142.250.74.46:0
File type ASCII text, with very long lines (2353)
Hash 615a9e56e2b17f9c057e76a8e103d283
bddfb89b1ac5ce324591fb14f9b6cf2794864378
46d74588f996d034f2ef4e497db43f3d1e7a6dc4c91cdf6f8e3a85a333ce7a68
GET /maps/api/js?key=AIzaSyCw7_RyRXnKIBCCek4PWOao0eViAlvtaiA&libraries=places&language=en®ion=NZ&ver=6.1.1 HTTP/1.1
Host: maps.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Tue, 06 Dec 2022 02:29:16 GMT
expires: Tue, 06 Dec 2022 02:59:16 GMT
cache-control: public, max-age=1800
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 55743
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=21
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7dfb548d8f8a99d32050803775fad5d6
8b47999a01db7c2217d76a1cec576809a229cf1b
68dd2a1e5a0002f4d25d3b5884ab55bc6b5a91e38f6dc464c4261b19c6e5887e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:29:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6231
Expires: Tue, 06 Dec 2022 04:13:07 GMT
Date: Tue, 06 Dec 2022 02:29:16 GMT
Connection: keep-alive
www.epicdesign.nz/wp-includes/css/classic-themes.min.css?ver=1
192.185.225.9200 OK 189 B URL HTTP/2 www.epicdesign.nz/wp-includes/css/classic-themes.min.css?ver=1
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 26 Nov 2022 09:22:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 189
content-type: text/css
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2
maps.google.com/maps/api/js?key=AIzaSyAQ0FBrS86laigd1gOb6NniK5MkwRZAZ5k&ver=1
142.250.74.46200 OK 54 kB URL HTTP/2 maps.google.com/maps/api/js?key=AIzaSyAQ0FBrS86laigd1gOb6NniK5MkwRZAZ5k&ver=1
IP 142.250.74.46:0
File type ASCII text, with very long lines (2380)
Hash ee19f00da1f82441aabba6470b647d36
70778c4fc98eeb4fbda80cc02a9799f6d911bb08
59d7ef817a3b4edcd04250e06d1aec57d88cd14003695bb6284d146ae4be1659
GET /maps/api/js?key=AIzaSyAQ0FBrS86laigd1gOb6NniK5MkwRZAZ5k&ver=1 HTTP/1.1
Host: maps.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Tue, 06 Dec 2022 02:29:16 GMT
expires: Tue, 06 Dec 2022 02:59:16 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 53531
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=21
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6231
Expires: Tue, 06 Dec 2022 04:13:07 GMT
Date: Tue, 06 Dec 2022 02:29:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6231
Expires: Tue, 06 Dec 2022 04:13:07 GMT
Date: Tue, 06 Dec 2022 02:29:16 GMT
Connection: keep-alive
fonts.googleapis.com/css?family=Alegreya:regular%7CRaleway:regular
142.250.74.106200 OK 16 kB URL HTTP/2 fonts.googleapis.com/css?family=Alegreya:regular%7CRaleway:regular
IP 142.250.74.106:0
Hash 2040e815296a9b4ba65860df43fde049
41faa948ef28c0313833a1c10f6a32f62be4fdff
b7dca1830b3fcd3fb6a7ade59cc5c309a4d03af31710985fc108ab89677fd9d2
GET /css?family=Alegreya:regular%7CRaleway:regular HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 06 Dec 2022 02:29:16 GMT
date: Tue, 06 Dec 2022 02:29:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2f60a6490f38a772dcd50a1132e98e1b
ff254a1df087d2c157d88a6ef04e395dc49efe5e
653e40becd103cd76cc2f194a87e933e8c548d346f87520fefca3b16430fc4ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8469
x-amzn-requestid: c17eff92-da62-4f0f-9e75-2741012ec43a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_sqFSjoAMFQ6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d131d-61d61d2f0bb01ecb21b809ea;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: i6QasBBRK9APW19sH0DdOipvUJA3gWj0CAMTzt7ejRCOk_V2psz-Xw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:45:47 GMT
age: 17009
etag: "ff254a1df087d2c157d88a6ef04e395dc49efe5e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b15136d60fd0a5e0f657a4f5c75d540f
36082b7329d473829178f280cb71a83b1531e486
79478269b1f5dcfd1e45ccd4264fa44805b37c5c8fec820bcbd2fa1689dfbbd8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11224
x-amzn-requestid: 938de0b8-1055-4416-9ad7-162ab5f4db9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUINEwdoAMFuOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6701-38b079ef341bb17e567de773;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:45 GMT
x-amz-cf-pop: YVR50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tGtiCE9C3j0BUruNaFN2j1mKxCSouLmocmTXpmLMBJaLNyVwkXu1gQ==
via: 1.1 f0ac467993db44dbfc36b778dfcaf73c.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:23:09 GMT
age: 14767
etag: "36082b7329d473829178f280cb71a83b1531e486"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F273773ed-3135-47d7-b4ff-5e390a90fecf.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F273773ed-3135-47d7-b4ff-5e390a90fecf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 49c08cd33e41826af9dd4a8a912e0ddf
bde85bd98858e4b13484a9cc3263b4db7fb5d348
43471e7b4da8e4e58b842d05cb073ef150ff119eaa6890c86162f03a140459cf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F273773ed-3135-47d7-b4ff-5e390a90fecf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5273
x-amzn-requestid: 5ab71aaf-6757-46dc-86fc-0a866958d22f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSz2EqfIAMFqng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64e5-15ae9d330e005f547161b4df;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xcEI729NEfORs3fT_fHi-BkyqA1sHl0dA6fAGd9hYkJNePUlM4vKQg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:05:52 GMT
age: 15804
etag: "bde85bd98858e4b13484a9cc3263b4db7fb5d348"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaf0de04-19bf-4944-9ac5-5178afafb192.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaf0de04-19bf-4944-9ac5-5178afafb192.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7f2c354a00ab51d4a41221b6bf191c10
01ceb7233fe05ad8dff3a0a43eef879ea2b83ec4
7d3c8417e1db0db41ceb8b4bf3f506864392dd1ad29319a06a8a6055f6f2ed12
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaf0de04-19bf-4944-9ac5-5178afafb192.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11352
x-amzn-requestid: 7c3fc7bb-eb1f-46ec-8e92-b6ffc6261848
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSwuF1ToAMFiIA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64d1-7c53152a279f00595b9886bd;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:25 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aYf5d6wAJlPSXVwF5uQXUb1g_65z-v6tInk7IF64bBV-w31d3MKeIQ==
via: 1.1 b6d577696b14c86cbfeb5b3459f38c50.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:22:23 GMT
age: 14813
etag: "01ceb7233fe05ad8dff3a0a43eef879ea2b83ec4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8ead0ac4ce19cef2471bae0458759d89
af02fd3fcd2e10cfa2458407c0c2e59a43e18517
507b93c64bab73e393cf8d8131415ef4d4b01e65e0f2ab73597715197845e75e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:29:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.epicdesign.nz/wp-content/plugins/complianz-gdpr/assets/css/cookieblocker.min.css?ver=6.3.5
192.185.225.9200 OK 753 B URL HTTP/2 www.epicdesign.nz/wp-content/plugins/complianz-gdpr/assets/css/cookieblocker.min.css?ver=6.3.5
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2723), with no line terminators
Hash 0bb8069e7e55e60c0dfadc43ca040a4e
0e684028a1e38a4786aff00d7fa5bb07b6e9063d
707510b3ddc56393e114cc66436b159130ebc437bbccd1a7f135d19b11dc8844
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/complianz-gdpr/assets/css/cookieblocker.min.css?ver=6.3.5 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 26 Nov 2022 09:25:50 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 753
content-type: text/css
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d62ac4e-2ac8-4e49-a61b-a48cff80ffd2.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d62ac4e-2ac8-4e49-a61b-a48cff80ffd2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8055d0db573ab34924db3b60ed788bb2
a4aae05e7a929fc7f652f56748d2a2da9c44ac45
f6a9555f112882d4ac284c6dc26ae0f02f6ccf8ee312615e01ebec8242bade1f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d62ac4e-2ac8-4e49-a61b-a48cff80ffd2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9987
x-amzn-requestid: 3d4d7dd0-2be0-46c1-a9c0-aa3cce2e8c81
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSvUHhJIAMFZYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64c8-63a6960043564aa762caaabe;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:16 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XaKRGgDJdys5Ufgv2QasOrlxuXHRnb8dJWc_tHiXa72QvQ-egpRDsQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:25:37 GMT
age: 14619
etag: "a4aae05e7a929fc7f652f56748d2a2da9c44ac45"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.5
192.185.225.9200 OK 16 kB URL HTTP/2 www.epicdesign.nz/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.5
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash 9c59cb4faeac5a6ca077df679e4c2f7a
60e0e7e52f16112702c52b7903071b91f774ae5f
427cab6b0083b8d4ed6c3d9c8442a9b493a491998b0255439a7de7a5c25262b7
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.5 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:11:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 16038
content-type: text/css
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/uploads/style_dark.css?ver=81582bdb254a94e4464424087c6479a8
192.185.225.9200 OK 14 kB URL HTTP/2 www.epicdesign.nz/wp-content/uploads/style_dark.css?ver=81582bdb254a94e4464424087c6479a8
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (47670), with no line terminators
Hash 7a3cfad351ab76d280546191bcb69c6a
92ed3c6bcb09c62a0a4cc6cdee1da3e99ac94509
eddb63cbe5c69b6f651085f5ba1379f8b41207d5c632084304d0956f59a47eb7
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/uploads/style_dark.css?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 05 Dec 2022 08:09:42 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 14444
content-type: text/css
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
192.185.225.9409 Conflict 83 B URL HTTP/2 www.epicdesign.nz/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
192.185.225.9409 Conflict 83 B URL HTTP/2 www.epicdesign.nz/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
192.185.225.9409 Conflict 83 B URL HTTP/2 www.epicdesign.nz/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/themes/bauhaus/js/wow.min.js?ver=1
192.185.225.9200 OK 3.2 kB URL HTTP/2 www.epicdesign.nz/wp-content/themes/bauhaus/js/wow.min.js?ver=1
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 (with BOM) text, with very long lines (8396), with CRLF line terminators
Hash ad1b2b40dabd21de8619613fcbd5d863
fdf0f38f99887e97132efee79f57a015a4baca6c
56e0be436ff7596e482ca5cc9c8cc69ec5b1f76010e582910bb97851ab3408fd
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bauhaus/js/wow.min.js?ver=1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3227
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/themes/bauhaus/js/bootstrap.min.js?ver=1
192.185.225.9200 OK 14 kB URL HTTP/2 www.epicdesign.nz/wp-content/themes/bauhaus/js/bootstrap.min.js?ver=1
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (32033)
Hash ad7339964f395566ac9d75903d96b9de
ea5756ab8d399418e0f862a8ff1249df3f77790f
3adfc0a685bd6eee9638948b1085d3db733c75caff8409b7582e356671588491
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bauhaus/js/bootstrap.min.js?ver=1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 14394
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/themes/bauhaus/js/main.js?ver=1
192.185.225.9200 OK 1.3 kB URL HTTP/2 www.epicdesign.nz/wp-content/themes/bauhaus/js/main.js?ver=1
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 5319317101f34af7b7b2a92ddb2bd733
1b7924b95626b36966bc48a352b007783312b229
e740adbd573281971d0b2fff0115391759ce336060e96a7b0e83ec45cd96ea9d
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bauhaus/js/main.js?ver=1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1294
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-includes/js/imagesloaded.min.js?ver=4.1.4
192.185.225.9200 OK 2.1 kB URL HTTP/2 www.epicdesign.nz/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5477)
Hash f0bd7ad12acdee26cbb2701c1ba3610b
53c5d15129860868b60b74cb010b2c6050a64f69
e6d0cb19e56d22e8e511c23ca2bd233bedb40e3c7cf4ff38fe6f059bc7e0c64f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Jun 2020 05:23:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2103
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/themes/bauhaus/js/jquery.stellar.min.js?ver=1
192.185.225.9200 OK 4.1 kB URL HTTP/2 www.epicdesign.nz/wp-content/themes/bauhaus/js/jquery.stellar.min.js?ver=1
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (12453)
Hash 3525f2201b4f09032255aa580b5ffb6f
00b2c0b860cdc0a4d466575d57b6f3d9b748decc
700f7e51cd1033335fd0dff2838e02e9cbf3fd206eb4635de5fd07ccaa92dfaa
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bauhaus/js/jquery.stellar.min.js?ver=1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4109
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-includes/js/comment-reply.min.js?ver=81582bdb254a94e4464424087c6479a8
192.185.225.9200 OK 1.5 kB URL HTTP/2 www.epicdesign.nz/wp-includes/js/comment-reply.min.js?ver=81582bdb254a94e4464424087c6479a8
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2946)
Hash 92712acce6ce836d0a929b1800b4f9d6
8157d1380bb1d6dadfd85565dd464bb5b0ed06bd
2f82d181a2cadadf7d898d7f5ea2eb527106fb6413044b55fbfa4fb0081a2e09
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/comment-reply.min.js?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 07 Jul 2022 09:15:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1477
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/themes/bauhaus/js/isotope.pkgd.min.js?ver=1
192.185.225.9200 OK 13 kB URL HTTP/2 www.epicdesign.nz/wp-content/themes/bauhaus/js/isotope.pkgd.min.js?ver=1
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (32009)
Hash 66fe04b37e5bf32636f1c7d1524b365f
4652cbbc5dee3476024086f1053fb27ded0c2478
ee77a893ebdc95d7b8f4f5564a66be182fc84b6e74279450ceac91eb069bbb33
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bauhaus/js/isotope.pkgd.min.js?ver=1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12794
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/themes/bauhaus/js/sly.min.js?ver=1
192.185.225.9200 OK 8.4 kB URL HTTP/2 www.epicdesign.nz/wp-content/themes/bauhaus/js/sly.min.js?ver=1
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (18589)
Hash 8077c460e8c63bd7230d35a77b6ca5fa
5e44617be9381e62d1c61d198153211fe96d8517
3b1e86d1158d73cdabc2197845a52e8243adf9641c73bac538edfd52c2fdfcb9
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bauhaus/js/sly.min.js?ver=1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8359
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/themes/bauhaus/style.css?ver=81582bdb254a94e4464424087c6479a8
192.185.225.9200 OK 1.6 kB URL HTTP/2 www.epicdesign.nz/wp-content/themes/bauhaus/style.css?ver=81582bdb254a94e4464424087c6479a8
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (684), with CRLF line terminators
Hash 55a366d95c1bad1507393623939b2454
74b0b4cf146eae0dcc485ce32f2e10460e9d2e74
563d4b519a97c19fadfe64a60ad57d19b4c948221ed404ed9e8c417627d4f13c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bauhaus/style.css?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1631
content-type: text/css
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/themes/bauhaus/js/scripts-dark.js?ver=1
192.185.225.9200 OK 3.8 kB URL HTTP/2 www.epicdesign.nz/wp-content/themes/bauhaus/js/scripts-dark.js?ver=1
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 9f390450a648a4d9aab9c6a0cb3d325d
51299431f9e7d58985e871314041407bb93fb9bc
ada07fb546fce410c5016973966e979f65101618beced2f57bf12270380c3a12
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bauhaus/js/scripts-dark.js?ver=1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3792
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/themes/bauhaus/js/smoothscroll.js?ver=1
192.185.225.9200 OK 7.4 kB URL HTTP/2 www.epicdesign.nz/wp-content/themes/bauhaus/js/smoothscroll.js?ver=1
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 37793d3e0e711814bf4769f4191652bf
79b5406534955d8533930fcec262321484a56f3a
b5453bd2671d7542a5b918a37ac1ede7cd501537e8b9b2fa6a10bb99c209e190
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bauhaus/js/smoothscroll.js?ver=1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7352
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
192.185.225.9200 OK 8.3 kB URL HTTP/2 www.epicdesign.nz/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 838560e989767f2ef5951b9eeee20352
6bf8419cb4d68d9beced9e4b79b22b347ae16a46
72e6d275c5229613a59aef94523fc6a96330553976aee003d8544d5806fa0c3d
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 26 Nov 2022 09:22:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8344
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/uploads/2022/03/4.png
192.185.225.9200 OK 6.6 kB URL HTTP/2 www.epicdesign.nz/wp-content/uploads/2022/03/4.png
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 310 x 310, 8-bit/color RGBA, non-interlaced\012- data
Hash c77d7cb17bb40e5b115090ebd92e67c8
1476a76750b9625e09562e35cfcfa110d955274f
fb7756da6002b13bdd797c9f04a591b366161381344906d0a8bff56fa5f405f9
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/03/4.png HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Mar 2022 21:57:37 GMT
accept-ranges: bytes
content-length: 6646
content-type: image/png
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/themes/bauhaus/js/animsition.min.js?ver=1
192.185.225.9200 OK 2.2 kB URL HTTP/2 www.epicdesign.nz/wp-content/themes/bauhaus/js/animsition.min.js?ver=1
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5415)
Hash ffa67ed25cc4519c5edb415bb7e3b560
e2bc07caad35c056dd7a322d171f5e45703c596e
0540dbf57b36e14f96aaa69041d3f8298917a1f2483f181047736cb1ceb9f649
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bauhaus/js/animsition.min.js?ver=1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2164
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-includes/js/wp-emoji-release.min.js?ver=81582bdb254a94e4464424087c6479a8
192.185.225.9200 OK 5.3 kB URL HTTP/2 www.epicdesign.nz/wp-includes/js/wp-emoji-release.min.js?ver=81582bdb254a94e4464424087c6479a8
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15660)
Hash 710f8b142ea44c0682dc2c30f318f065
49144e9b3a76d3d383b1d4359cf7a25e947f4233
708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/wp-emoji-release.min.js?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 07 Jul 2022 09:15:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5321
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/themes/bauhaus/js/jquery.magnific-popup.min.js?ver=1
192.185.225.9200 OK 9.2 kB URL HTTP/2 www.epicdesign.nz/wp-content/themes/bauhaus/js/jquery.magnific-popup.min.js?ver=1
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (20087)
Hash 7a10ae63b238729dc4da7f7bd8986219
654c47168dca0ec7080f6c57e8c4482b57f879d4
b782185399b361358f7c409d6f23f22d45f695dcbb63876c35752c7b1de72db3
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bauhaus/js/jquery.magnific-popup.min.js?ver=1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9204
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/themes/bauhaus/js/gmap.js?ver=1
192.185.225.9200 OK 208 B URL HTTP/2 www.epicdesign.nz/wp-content/themes/bauhaus/js/gmap.js?ver=1
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash e283188199f7acbddca2a5cb7b01c46c
b785ef57d0a866adbd55b1c915be8a44f6018b3e
1bc87a8d2d4d2f3f4d8eb813907032861787b33f0c4e0211d2be59e0e59b2b2a
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bauhaus/js/gmap.js?ver=1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 208
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
192.185.225.9200 OK 4.6 kB URL HTTP/2 www.epicdesign.nz/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 18 Nov 2020 20:36:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4618
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/themes/bauhaus/js/plugins.js?ver=1
192.185.225.9200 OK 1.6 kB URL HTTP/2 www.epicdesign.nz/wp-content/themes/bauhaus/js/plugins.js?ver=1
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (522)
Hash 35d404fc2cde7c49f8104762b95573fa
fd8f8a8c6a1357fb871e29de81f87a5c9d5ab107
3421b6c2e718d8e561a3709609c9edf2d0b6882e8da88e9f86d69034e4e01fe1
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bauhaus/js/plugins.js?ver=1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1628
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/plugins/burst-statistics/helpers/timeme/timeme.min.js?ver=1.3.1
192.185.225.9200 OK 2.2 kB URL HTTP/2 www.epicdesign.nz/wp-content/plugins/burst-statistics/helpers/timeme/timeme.min.js?ver=1.3.1
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6448), with no line terminators
Hash 2986700b92e0307a35cee4656aaf986c
446bd212c3600405ddca22ff0be7cda33ada380a
bd273a815f3be153a1a17010371fe1abbf376159724713dd01c40aef8b88c20c
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/burst-statistics/helpers/timeme/timeme.min.js?ver=1.3.1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 26 Nov 2022 09:25:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2220
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/plugins/burst-statistics/assets/js/build/burst.min.js?ver=1.3.1
192.185.225.9200 OK 2.9 kB URL HTTP/2 www.epicdesign.nz/wp-content/plugins/burst-statistics/assets/js/build/burst.min.js?ver=1.3.1
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6204), with no line terminators
Hash 6891274e0dce7a3ee64de3ced5c675b1
af8dbd45b8affdc1a7f13a546378e3dbb8ccda42
d5e1a67e446b8bda360e6a171dc6461fc80ebe4894154b9d93dbfefe8d7fda28
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/burst-statistics/assets/js/build/burst.min.js?ver=1.3.1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 26 Nov 2022 09:25:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2869
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Playfair+Display%3A400%2C400i%2C700%2C700i%7CPoppins%3A300%2C400%2C500%2C600%2C700&ver=6.1.1
142.250.74.106200 OK 8.1 kB URL HTTP/2 fonts.googleapis.com/css?family=Playfair+Display%3A400%2C400i%2C700%2C700i%7CPoppins%3A300%2C400%2C500%2C600%2C700&ver=6.1.1
IP 142.250.74.106:0
File type ASCII text, with very long lines (20382)
Hash 7fd3878263f49db2f5ba381c03976164
c7bad4c133dc7cd01e1de2aea7d633c088180d9b
a306d0f65889b32e2ce3df3d4e2a620801068fd7acb22d358b9666aadeb5157b
GET /css?family=Playfair+Display%3A400%2C400i%2C700%2C700i%7CPoppins%3A300%2C400%2C500%2C600%2C700&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 06 Dec 2022 02:29:16 GMT
date: Tue, 06 Dec 2022 02:29:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/themes/bauhaus/js/jquery.validate.min.js?ver=1
192.185.225.9200 OK 9.2 kB URL HTTP/2 www.epicdesign.nz/wp-content/themes/bauhaus/js/jquery.validate.min.js?ver=1
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (22932)
Hash 3451419235cb60e66def9ef452507d2d
cbe1032290afb6b7b0ad15da697a4680e8c10c59
87b4ad2c30487e9c16dd79d3436df6b72eb408a0265861abc1c07091b2042046
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bauhaus/js/jquery.validate.min.js?ver=1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9179
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/themes/bauhaus/js/jquery.pagepiling.js?ver=1
192.185.225.9200 OK 10 kB URL HTTP/2 www.epicdesign.nz/wp-content/themes/bauhaus/js/jquery.pagepiling.js?ver=1
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 7f00980194ed539fc6c54a1f2f836fdb
35e6a56c748c05dc185d892da3adb2ce22f808c3
0938a61e31d0d171daa50343878598ff1099c58aa956d1ad7b61c47f7fb90ff2
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bauhaus/js/jquery.pagepiling.js?ver=1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 10394
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/themes/bauhaus/js/owl.carousel.min.js?ver=1
192.185.225.9200 OK 15 kB URL HTTP/2 www.epicdesign.nz/wp-content/themes/bauhaus/js/owl.carousel.min.js?ver=1
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (32012)
Hash ea94bfb22256c906d657a26b1c90b05c
d33be4c782c22b1e6630b0665f283c68a465669c
ace96c6af30f6292392735c759fe6d92dae6fa2957f7d92dda9bf8ee08bfbb17
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bauhaus/js/owl.carousel.min.js?ver=1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 15384
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Libre+Baskerville%3A400i&ver=6.1.1
142.250.74.106200 OK 16 kB URL HTTP/2 fonts.googleapis.com/css?family=Libre+Baskerville%3A400i&ver=6.1.1
IP 142.250.74.106:0
File type C source textAlgol 68 source text\012- Pascal source, ASCII text, with very long lines (48616)
Hash 77d715854b6a6669a69d35d76223e294
4cd5caf953397264866c5990679c27e7b27e0236
11ffc844991533e92b3cea6e1e7a01b66a13df3a9c354561cda6d5431d58c2cc
GET /css?family=Libre+Baskerville%3A400i&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 06 Dec 2022 02:29:16 GMT
date: Tue, 06 Dec 2022 02:29:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/themes/bauhaus/css/settings.css
192.185.225.9200 OK 10 kB URL HTTP/2 www.epicdesign.nz/wp-content/themes/bauhaus/css/settings.css
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (352), with CRLF line terminators
Hash 4102dd581a0b847ebe436728a31d528b
09cb0b1ecc844cd05bdf899ee92d24ab12bfd88e
46c50516286031c97c5eab6fe7673a82883bc69560b28bdd20d5e210ebd9a450
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bauhaus/css/settings.css HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/wp-content/themes/bauhaus/css/dark-style.css?ver=81582bdb254a94e4464424087c6479a8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 10372
content-type: text/css
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/themes/bauhaus/css/animsition.css
192.185.225.9200 OK 3.3 kB URL HTTP/2 www.epicdesign.nz/wp-content/themes/bauhaus/css/animsition.css
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash e553ded34e1f37547a4907072d309e9e
1e1ab007de2beaab207d6c4aafd7c135457ceee3
df65a125b4a0d06197a4c19373f6c5f1e7f5406adc8388118e52d5b75d365bb3
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bauhaus/css/animsition.css HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/wp-content/themes/bauhaus/css/dark-style.css?ver=81582bdb254a94e4464424087c6479a8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3321
content-type: text/css
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/themes/bauhaus/css/linearicons.css
192.185.225.9200 OK 7.8 kB URL HTTP/2 www.epicdesign.nz/wp-content/themes/bauhaus/css/linearicons.css
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash ee8f80625b1c287943facf26ca26380a
e3f3e5c258baf6e10e9dabc7a44dafa657fa91c1
74c0965e2e920f495a611bce83cfaa5d05e2007bf84a5757d2628370bf6af1e1
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bauhaus/css/linearicons.css HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/wp-content/themes/bauhaus/css/dark-style.css?ver=81582bdb254a94e4464424087c6479a8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7780
content-type: text/css
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/themes/bauhaus/css/jquery.pagepiling.css
192.185.225.9200 OK 907 B URL HTTP/2 www.epicdesign.nz/wp-content/themes/bauhaus/css/jquery.pagepiling.css
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 83fce19758a9f44b9a40acdc7b58dba9
55d3af00257ae57c38414ccfd5ffcc9f8ee3c12f
662f2658c16cb7217ccee575144dfbeebf3c12ff5fc5aa090b966a17bc1be08c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bauhaus/css/jquery.pagepiling.css HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/wp-content/themes/bauhaus/css/dark-style.css?ver=81582bdb254a94e4464424087c6479a8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 907
content-type: text/css
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/themes/bauhaus/css/magnific-popup.css
192.185.225.9200 OK 2.2 kB URL HTTP/2 www.epicdesign.nz/wp-content/themes/bauhaus/css/magnific-popup.css
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 5691b07253c4a30382130c2da4be8343
4c12d34016c7061965c996599c4086683958e0f1
095326e797678e4aa4be8217bf991180f7b79cdcce552897123ffa68981a0747
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bauhaus/css/magnific-popup.css HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/wp-content/themes/bauhaus/css/dark-style.css?ver=81582bdb254a94e4464424087c6479a8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2190
content-type: text/css
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/themes/bauhaus/css/owl.carousel.css
192.185.225.9200 OK 1.3 kB URL HTTP/2 www.epicdesign.nz/wp-content/themes/bauhaus/css/owl.carousel.css
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 790401c8013134c23de0d6a780bbfeb3
ce5d266403de88cecfdf4b481f08a5d040000337
0de8fdb4c3efbf31d0f19dfe6d51647e67b706534c53eb3ec8d5a227f8fe6aec
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bauhaus/css/owl.carousel.css HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/wp-content/themes/bauhaus/css/dark-style.css?ver=81582bdb254a94e4464424087c6479a8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1263
content-type: text/css
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/themes/bauhaus/css/animate.css
192.185.225.9200 OK 7.1 kB URL HTTP/2 www.epicdesign.nz/wp-content/themes/bauhaus/css/animate.css
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 2e3e181ba09aeef1598179afb032952b
0628d62595a6ba3ebcd6140bbaad6e171bd82240
a6ba0f79e8f4e59774bbd380cbfa624208b960c7cb11a8d76bc4f9b8566a8c1c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bauhaus/css/animate.css HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/wp-content/themes/bauhaus/css/dark-style.css?ver=81582bdb254a94e4464424087c6479a8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7114
content-type: text/css
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/themes/bauhaus/css/layers.css
192.185.225.9200 OK 16 kB URL HTTP/2 www.epicdesign.nz/wp-content/themes/bauhaus/css/layers.css
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF, CR line terminators
Hash 6cab205b8417bb2bce8bfe3372cd7cdd
f934012b30ee28f9f429b466864e69d918d4efb9
38f4e04b66f369bafeadd64a8fe5d949155a2b73561f8f5518e8c5fe87264bb0
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bauhaus/css/layers.css HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/wp-content/themes/bauhaus/css/dark-style.css?ver=81582bdb254a94e4464424087c6479a8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 15888
content-type: text/css
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/themes/bauhaus/css/font-awesome.min.css
192.185.225.9200 OK 7.1 kB URL HTTP/2 www.epicdesign.nz/wp-content/themes/bauhaus/css/font-awesome.min.css
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (30837)
Hash 82a55032c4b614390aea6ef6870d3e90
bb21577feea531540a8d4f27ac3730ffac111e1b
4f068500ef9ef0dbffa5b76ac10f1970a7a9de8ff033f84228971a140eb20069
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bauhaus/css/font-awesome.min.css HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/wp-content/themes/bauhaus/css/dark-style.css?ver=81582bdb254a94e4464424087c6479a8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7114
content-type: text/css
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e24f2da4ed2e3cd07b0999a67550d634
6e2277e734fd0015849c3554dd2cf2ae289c2cf2
74dc14d7d9ba8bba4a162680e59801af1d7c2995639df51f32ff2f3d4d0b0051
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:29:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrE.woff2
216.58.207.227200 OK 21 kB URL HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrE.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 21280, version 1.0\012- data
Hash 16911581ab7ea10687a5aee74cbc5612
b0b24248345739209d753a4ac77ccfc1f627b219
c78a1da5fd0868a547cf285748c7fb73006571190385eb71c0d601b6b240ffaf
GET /s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.epicdesign.nz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21280
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 21:18:36 GMT
expires: Tue, 05 Dec 2023 21:18:36 GMT
cache-control: public, max-age=31536000
age: 18641
last-modified: Mon, 18 Jul 2022 19:57:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e24f2da4ed2e3cd07b0999a67550d634
6e2277e734fd0015849c3554dd2cf2ae289c2cf2
74dc14d7d9ba8bba4a162680e59801af1d7c2995639df51f32ff2f3d4d0b0051
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 02:29:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.epicdesign.nz/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
192.185.225.9409 Conflict 83 B URL HTTP/2 www.epicdesign.nz/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/themes/bauhaus/css/bootstrap.css
192.185.225.9200 OK 57 kB URL HTTP/2 www.epicdesign.nz/wp-content/themes/bauhaus/css/bootstrap.css
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash ef5c376b7002c2db1146a684fc6582f4
94407566a262d791df4db6d4851e0eda85ae6420
61f51eb556160a0813aff0a6752ba1926b8a96800982d1811a2a99cbe8492ef2
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bauhaus/css/bootstrap.css HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/wp-content/themes/bauhaus/css/dark-style.css?ver=81582bdb254a94e4464424087c6479a8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/themes/bauhaus/images/bg/dots-dark2.png
192.185.225.9200 OK 986 B URL HTTP/2 www.epicdesign.nz/wp-content/themes/bauhaus/images/bg/dots-dark2.png
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 9 x 9, 8-bit/color RGBA, non-interlaced\012- data
Hash e5527013af152166d31d22fadea75210
c0a418925af6009cb28bdf7e45c3e4dce77189a6
99b940eacc239d4a234a89cdbfe4f15a21d2a646518ec143a94bb7aead1565c8
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bauhaus/images/bg/dots-dark2.png HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
content-length: 986
content-type: image/png
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/uploads/2022/07/1-2.png?id=1211
192.185.225.9200 OK 284 kB URL HTTP/2 www.epicdesign.nz/wp-content/uploads/2022/07/1-2.png?id=1211
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1500 x 1500, 8-bit/color RGBA, non-interlaced\012- data
Size 284 kB (284520 bytes)
Hash b9c463156a571ab3d126d4a61faad4fb
dfef8772631edbd1920aa918e224a8ea942baa17
a0d1e4b39230301e890287550113f1f46acd9a20dd7d86f864e4e680c75c548f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/uploads/2022/07/1-2.png?id=1211 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 10 Jul 2022 23:19:47 GMT
accept-ranges: bytes
content-length: 284520
content-type: image/png
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/burst-statistics-endpoint.php
192.185.225.9200 OK 0 B URL HTTP/2 www.epicdesign.nz/burst-statistics-endpoint.php
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
POST /burst-statistics-endpoint.php HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 305
Origin: https://www.epicdesign.nz
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Cookie: burst_uid=28370aeb8972507ffd2fcb049b91060f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-length: 0
content-type: text/html; charset=UTF-8
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/themes/bauhaus/fonts/fontawesome-webfont.woff2?v=4.7.0
192.185.225.9200 OK 77 kB URL HTTP/2 www.epicdesign.nz/wp-content/themes/bauhaus/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bauhaus/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.epicdesign.nz/wp-content/themes/bauhaus/css/font-awesome.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
content-length: 77160
content-type: font/woff2
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/themes/bauhaus/fonts/ionicons.ttf?v=2.0.0
192.185.225.9200 OK 188 kB URL HTTP/2 www.epicdesign.nz/wp-content/themes/bauhaus/fonts/ionicons.ttf?v=2.0.0
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type TrueType Font data, 15 tables, 1st "FFTM", 14 names, Macintosh\012- data
Size 188 kB (188508 bytes)
Hash 24712f6c47821394fba7942fbb52c3b2
1b0a0de084905946a20300ca8c354865dec46764
2ba7f20b1d8990e17a47fe3d88e4c766628aaa2baf1dd30fca0a0db59836f5f9
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bauhaus/fonts/ionicons.ttf?v=2.0.0 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/wp-content/themes/bauhaus/css/ionicons.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
content-length: 188508
content-type: font/ttf
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
192.185.225.9409 Conflict 83 B URL HTTP/2 www.epicdesign.nz/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Cookie: burst_uid=28370aeb8972507ffd2fcb049b91060f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/themes/bauhaus/fonts/Linearicons.ttf
192.185.225.9200 OK 498 kB URL HTTP/2 www.epicdesign.nz/wp-content/themes/bauhaus/fonts/Linearicons.ttf
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type TrueType Font data, 12 tables, 1st "GSUB", 24 names, Macintosh\012- data
Size 498 kB (498156 bytes)
Hash f6e2e9c30040079ab5b2bdc94f0a3289
dcb1a930a2896228f5075397e4fdc5afc1c0699b
97af2f6b511991503bee0d894553692d209292ea2cbc562006f4771513078399
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bauhaus/fonts/Linearicons.ttf HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/wp-content/themes/bauhaus/css/linearicons.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
content-length: 498156
content-type: font/ttf
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/librebaskerville/v14/kmKhZrc3Hgbbcjq75U4uslyuy4kn0qNcWxEQDA.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/librebaskerville/v14/kmKhZrc3Hgbbcjq75U4uslyuy4kn0qNcWxEQDA.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30696, version 1.0\012- data
Hash 459f6ec5f7a3d471017b70571cd93b33
c0049988a0fec891b59a5f8941b5f74093197e68
d809e5e194d9762855a81f8e4002da916b66a81ddc4b3fbdaf770ce4aa0fb560
GET /s/librebaskerville/v14/kmKhZrc3Hgbbcjq75U4uslyuy4kn0qNcWxEQDA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.epicdesign.nz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30696
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 21:48:45 GMT
expires: Fri, 01 Dec 2023 21:48:45 GMT
cache-control: public, max-age=31536000
age: 362432
last-modified: Tue, 26 Apr 2022 16:09:35 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
142.250.74.138200 OK 23 B URL HTTP/2 maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP 142.250.74.138:0
File type JSON data\012- , ASCII text
Hash e3981ca10169a319d5aa062bf43a5fa1
2c6ed584767b65688ce99b1ebe1a3b7448a67421
8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9
GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.epicdesign.nz
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 06 Dec 2022 02:29:18 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.epicdesign.nz
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
142.250.74.138200 OK 23 B URL HTTP/2 maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP 142.250.74.138:0
File type JSON data\012- , ASCII text
Hash e3981ca10169a319d5aa062bf43a5fa1
2c6ed584767b65688ce99b1ebe1a3b7448a67421
8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9
GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.epicdesign.nz
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 06 Dec 2022 02:29:18 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.epicdesign.nz
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/images/branding/product/2x/translate_24dp.png
142.250.74.35200 OK 1.8 kB URL HTTP/2 www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP 142.250.74.35:0
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82
GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://translate.googleapis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 22:09:54 GMT
expires: Tue, 05 Dec 2023 22:09:54 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
age: 15564
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/themes/bauhaus/css/navigation.css
192.185.225.9200 OK 19 kB URL HTTP/2 www.epicdesign.nz/wp-content/themes/bauhaus/css/navigation.css
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash f8b953a2dbaaefc9302627c38c71de57
e65881614f61a98a7cf7112e08b87a19d7aa9479
0b01bc920136fd21fd2de5e83f66c429e4dbddb0636252bfe8a1b2fff66a97fd
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bauhaus/css/navigation.css HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/wp-content/themes/bauhaus/css/dark-style.css?ver=81582bdb254a94e4464424087c6479a8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 06 Dec 2022 02:29:17 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/uploads/2022/03/cropped-4-32x32.png
192.185.225.9200 OK 860 B URL HTTP/2 www.epicdesign.nz/wp-content/uploads/2022/03/cropped-4-32x32.png
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash cd360c1640ef224b8fc9186d4b08cdd1
3da7b429ef3c470bde180ebfdb18d7102968392f
4994df3acd0f7e8fd04df5d8efa8c86c4c215a75e4c0b563bbc85a137d1f02b3
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/03/cropped-4-32x32.png HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Cookie: burst_uid=28370aeb8972507ffd2fcb049b91060f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Mar 2022 22:00:14 GMT
accept-ranges: bytes
content-length: 860
content-type: image/png
date: Tue, 06 Dec 2022 02:29:18 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/uploads/2022/03/cropped-4-192x192.png
192.185.225.9200 OK 2.8 kB URL HTTP/2 www.epicdesign.nz/wp-content/uploads/2022/03/cropped-4-192x192.png
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash ad864999bf9f26ca52b71b9230f17e83
6997fde7ce7e6df03034fcb0032b5f193a9e07ef
892df770876eedda301e480ab3647a373de8f69b0d5aea859c3c7f7d562d9492
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/03/cropped-4-192x192.png HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Cookie: burst_uid=28370aeb8972507ffd2fcb049b91060f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Mar 2022 22:00:14 GMT
accept-ranges: bytes
content-length: 2829
content-type: image/png
date: Tue, 06 Dec 2022 02:29:18 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
192.185.225.9200 OK 0 B URL HTTP/2 www.epicdesign.nz/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 26 Nov 2022 09:22:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.5
192.185.225.9200 OK 0 B URL HTTP/2 www.epicdesign.nz/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.5
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.5 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:11:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.0.5
192.185.225.9200 OK 0 B URL HTTP/2 www.epicdesign.nz/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.0.5
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.0.5 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:11:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/themes/bauhaus/css/dark-style.css?ver=81582bdb254a94e4464424087c6479a8
192.185.225.9200 OK 0 B URL HTTP/2 www.epicdesign.nz/wp-content/themes/bauhaus/css/dark-style.css?ver=81582bdb254a94e4464424087c6479a8
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bauhaus/css/dark-style.css?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:09:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2
216.58.211.14200 OK 0 B URL HTTP/2 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2
IP 216.58.211.14:0
GET /translate_a/element.js?cb=googleTranslateElementInit2 HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 06 Dec 2022 02:29:16 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+791; expires=Thu, 05-Dec-2024 02:29:16 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0
192.185.225.9200 OK 0 B URL HTTP/2 www.epicdesign.nz/wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Aug 2020 08:11:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-includes/css/dist/block-library/style.min.css?ver=81582bdb254a94e4464424087c6479a8
192.185.225.9200 OK 0 B URL HTTP/2 www.epicdesign.nz/wp-includes/css/dist/block-library/style.min.css?ver=81582bdb254a94e4464424087c6479a8
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/css/dist/block-library/style.min.css?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 26 Nov 2022 09:22:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2
www.epicdesign.nz/wp-content/uploads/2022/07/2-7.png
192.185.225.9200 OK 0 B URL HTTP/2 www.epicdesign.nz/wp-content/uploads/2022/07/2-7.png
IP 192.185.225.9:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/07/2-7.png HTTP/1.1
Host: www.epicdesign.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.epicdesign.nz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 10 Jul 2022 23:19:52 GMT
accept-ranges: bytes
content-length: 240545
content-type: image/png
date: Tue, 06 Dec 2022 02:29:16 GMT
server: Apache
X-Firefox-Spdy: h2