r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c83d39f350161ed2f5d20dcd68e47c92
2695a888e652cb314f8094cc6073c3364336d272
62e5cc6aea61c3c32acd964d4bbe143806416008181eebc4451a8f035b69a0bc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62E5CC6AEA61C3C32ACD964D4BBE143806416008181EEBC4451A8F035B69A0BC"
Last-Modified: Mon, 27 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6956
Expires: Mon, 27 Mar 2023 15:04:32 GMT
Date: Mon, 27 Mar 2023 13:08:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5d9435c884bf4a0777fdf4b57079ae09
7f04b9db47ffeec90ac6397416b7553e5336a550
fe77420ec3a11f547cf5172b68d30faa4fe0c13165ae305f0013b02914e61084
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FE77420EC3A11F547CF5172B68D30FAA4FE0C13165AE305F0013B02914E61084"
Last-Modified: Sat, 25 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11853
Expires: Mon, 27 Mar 2023 16:26:09 GMT
Date: Mon, 27 Mar 2023 13:08:36 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 27 Mar 2023 12:27:57 GMT
content-type: application/json
age: 2439
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5ad3eec59bebbf969f175627757507c1
b176af3a70db378c9e1f219bab24d9d446070d6f
704fa284035b4c9aa487331b516f5f11c324e204756ae2503bad2606ed34f25e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "704FA284035B4C9AA487331B516F5F11C324E204756AE2503BAD2606ED34F25E"
Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5551
Expires: Mon, 27 Mar 2023 14:41:07 GMT
Date: Mon, 27 Mar 2023 13:08:36 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: g/uqLunNtjd1iCiBV5jmnnR51bBOopjGJF01XioBEooFACV5cPfb/OA60Glgfi24vcnd89ziQsI=
x-amz-request-id: C4KC74GVZT0M180E
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 27 Mar 2023 13:01:39 GMT
age: 417
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
taxrefundauth.com/identity-verification.php?cookies=none;browsing-time=1233435;auth-id=BX7t6aau40XNuKMSU8ul3Bb1i3jibb42K1XsHQ3ZAA5ZI
5.181.80.180200 OK 148 kB URL HTTP/1.1 taxrefundauth.com/identity-verification.php?cookies=none;browsing-time=1233435;auth-id=BX7t6aau40XNuKMSU8ul3Bb1i3jibb42K1XsHQ3ZAA5ZI
IP 5.181.80.180:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Size 148 kB (148010 bytes)
Hash 561688ab18a9eee55e4cc234defb54ce
c011118a292639eedd45ad8927056801444bb12c
a314d0b68215a2303c68cde1b87ef13deb8631f161e9fc988940e12e3f428a0d
GET /identity-verification.php?cookies=none;browsing-time=1233435;auth-id=BX7t6aau40XNuKMSU8ul3Bb1i3jibb42K1XsHQ3ZAA5ZI HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 13:08:36 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
X-Powered-By: PHP/7.2.34
Set-Cookie: PHPSESSID=md7k7c1nb70atu34s67kp2505f; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 27 Mar 2023 13:08:36 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
taxrefundauth.com/lib/front_end_files/identity-verification/analytics.js
5.181.80.180404 Not Found 304 B URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/identity-verification/analytics.js
IP 5.181.80.180:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 98811e058e3946ee523315504b7ea7f3
095b4041ea28e16a231e5af0d7e9a1b7dd8506ff
49757f2ceea32b7c4cfe606c4bd76ab1645cf8fcd6270b3de42de431424923b3
GET /lib/front_end_files/identity-verification/analytics.js HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/identity-verification.php?cookies=none;browsing-time=1233435;auth-id=BX7t6aau40XNuKMSU8ul3Bb1i3jibb42K1XsHQ3ZAA5ZI
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 404 Not Found
Date: Mon, 27 Mar 2023 13:08:36 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Content-Length: 304
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
taxrefundauth.com/lib/front_end_files/identity-verification/gtm.js
5.181.80.180404 Not Found 304 B URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/identity-verification/gtm.js
IP 5.181.80.180:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 98811e058e3946ee523315504b7ea7f3
095b4041ea28e16a231e5af0d7e9a1b7dd8506ff
49757f2ceea32b7c4cfe606c4bd76ab1645cf8fcd6270b3de42de431424923b3
GET /lib/front_end_files/identity-verification/gtm.js HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/identity-verification.php?cookies=none;browsing-time=1233435;auth-id=BX7t6aau40XNuKMSU8ul3Bb1i3jibb42K1XsHQ3ZAA5ZI
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 404 Not Found
Date: Mon, 27 Mar 2023 13:08:36 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Content-Length: 304
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
taxrefundauth.com/lib/front_end_files/identity-verification/clientlib-base.min.css
5.181.80.180404 Not Found 304 B URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/identity-verification/clientlib-base.min.css
IP 5.181.80.180:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 98811e058e3946ee523315504b7ea7f3
095b4041ea28e16a231e5af0d7e9a1b7dd8506ff
49757f2ceea32b7c4cfe606c4bd76ab1645cf8fcd6270b3de42de431424923b3
Analyzer Verdict Alert openphish Australian Government
GET /lib/front_end_files/identity-verification/clientlib-base.min.css HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/identity-verification.php?cookies=none;browsing-time=1233435;auth-id=BX7t6aau40XNuKMSU8ul3Bb1i3jibb42K1XsHQ3ZAA5ZI
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 404 Not Found
Date: Mon, 27 Mar 2023 13:08:36 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Content-Length: 304
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
taxrefundauth.com/lib/front_end_files/identity-verification/redirect.min.js
5.181.80.180404 Not Found 304 B URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/identity-verification/redirect.min.js
IP 5.181.80.180:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 98811e058e3946ee523315504b7ea7f3
095b4041ea28e16a231e5af0d7e9a1b7dd8506ff
49757f2ceea32b7c4cfe606c4bd76ab1645cf8fcd6270b3de42de431424923b3
GET /lib/front_end_files/identity-verification/redirect.min.js HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/identity-verification.php?cookies=none;browsing-time=1233435;auth-id=BX7t6aau40XNuKMSU8ul3Bb1i3jibb42K1XsHQ3ZAA5ZI
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 404 Not Found
Date: Mon, 27 Mar 2023 13:08:36 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Content-Length: 304
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
taxrefundauth.com/lib/front_end_files/identity-verification/imported.min.css
5.181.80.180404 Not Found 304 B URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/identity-verification/imported.min.css
IP 5.181.80.180:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 98811e058e3946ee523315504b7ea7f3
095b4041ea28e16a231e5af0d7e9a1b7dd8506ff
49757f2ceea32b7c4cfe606c4bd76ab1645cf8fcd6270b3de42de431424923b3
Analyzer Verdict Alert openphish Australian Government
GET /lib/front_end_files/identity-verification/imported.min.css HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/identity-verification.php?cookies=none;browsing-time=1233435;auth-id=BX7t6aau40XNuKMSU8ul3Bb1i3jibb42K1XsHQ3ZAA5ZI
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 404 Not Found
Date: Mon, 27 Mar 2023 13:08:36 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Content-Length: 304
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
taxrefundauth.com/lib/front_end_files/identity-verification/css.css
5.181.80.180200 OK 16 kB URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/identity-verification/css.css
IP 5.181.80.180:0
Hash 4fbcef1c5886d331a7b70aedfc9f6eb9
30ae86d838e734cdbd3ac38821c54364e2a242b3
00b399de3012a5f809a1fb531286f8cdb5e7671e865f0423a0ba0dfffcc8d9c5
Analyzer Verdict Alert openphish Australian Government
GET /lib/front_end_files/identity-verification/css.css HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/identity-verification.php?cookies=none;browsing-time=1233435;auth-id=BX7t6aau40XNuKMSU8ul3Bb1i3jibb42K1XsHQ3ZAA5ZI
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 13:08:36 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Last-Modified: Fri, 13 Jan 2023 18:31:56 GMT
ETag: "3e92-5f22972bb1f00"
Accept-Ranges: bytes
Content-Length: 16018
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
taxrefundauth.com/lib/front_end_files/identity-verification/RC09c576cc25cf4c6e88a133520d7a94a7-source.min.js
5.181.80.180404 Not Found 304 B URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/identity-verification/RC09c576cc25cf4c6e88a133520d7a94a7-source.min.js
IP 5.181.80.180:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 98811e058e3946ee523315504b7ea7f3
095b4041ea28e16a231e5af0d7e9a1b7dd8506ff
49757f2ceea32b7c4cfe606c4bd76ab1645cf8fcd6270b3de42de431424923b3
GET /lib/front_end_files/identity-verification/RC09c576cc25cf4c6e88a133520d7a94a7-source.min.js HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/identity-verification.php?cookies=none;browsing-time=1233435;auth-id=BX7t6aau40XNuKMSU8ul3Bb1i3jibb42K1XsHQ3ZAA5ZI
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 404 Not Found
Date: Mon, 27 Mar 2023 13:08:36 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Content-Length: 304
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
taxrefundauth.com/lib/front_end_files/identity-verification/RC6b5f7c0dc2904b24874108dff3142cd1-source.min.js
5.181.80.180404 Not Found 304 B URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/identity-verification/RC6b5f7c0dc2904b24874108dff3142cd1-source.min.js
IP 5.181.80.180:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 98811e058e3946ee523315504b7ea7f3
095b4041ea28e16a231e5af0d7e9a1b7dd8506ff
49757f2ceea32b7c4cfe606c4bd76ab1645cf8fcd6270b3de42de431424923b3
GET /lib/front_end_files/identity-verification/RC6b5f7c0dc2904b24874108dff3142cd1-source.min.js HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/identity-verification.php?cookies=none;browsing-time=1233435;auth-id=BX7t6aau40XNuKMSU8ul3Bb1i3jibb42K1XsHQ3ZAA5ZI
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 404 Not Found
Date: Mon, 27 Mar 2023 13:08:36 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Content-Length: 304
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
taxrefundauth.com/lib/front_end_files/identity-verification/core.wcm.components.commons.datalayer.v1.min.js
5.181.80.180200 OK 35 kB URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/identity-verification/core.wcm.components.commons.datalayer.v1.min.js
IP 5.181.80.180:0
File type ASCII text, with very long lines (565)
Hash 904d3c2f1e821ab45124d66de422b409
2424bc1f5832981bbf55847d0ba2eeb6e84bf02d
5e303e88b8398f416f84591973b2dc5df6d02746f782fc367368e3f6fbfae6ad
GET /lib/front_end_files/identity-verification/core.wcm.components.commons.datalayer.v1.min.js HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/identity-verification.php?cookies=none;browsing-time=1233435;auth-id=BX7t6aau40XNuKMSU8ul3Bb1i3jibb42K1XsHQ3ZAA5ZI
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 13:08:36 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Last-Modified: Fri, 13 Jan 2023 18:31:56 GMT
ETag: "8a54-5f22972bb1f00"
Accept-Ranges: bytes
Content-Length: 35412
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
taxrefundauth.com/lib/front_end_files/identity-verification/RC09c576cc25cf4c6e88a133520d7a94a7-source.min(1).js
5.181.80.180404 Not Found 304 B URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/identity-verification/RC09c576cc25cf4c6e88a133520d7a94a7-source.min(1).js
IP 5.181.80.180:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 98811e058e3946ee523315504b7ea7f3
095b4041ea28e16a231e5af0d7e9a1b7dd8506ff
49757f2ceea32b7c4cfe606c4bd76ab1645cf8fcd6270b3de42de431424923b3
GET /lib/front_end_files/identity-verification/RC09c576cc25cf4c6e88a133520d7a94a7-source.min(1).js HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/identity-verification.php?cookies=none;browsing-time=1233435;auth-id=BX7t6aau40XNuKMSU8ul3Bb1i3jibb42K1XsHQ3ZAA5ZI
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 404 Not Found
Date: Mon, 27 Mar 2023 13:08:36 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Content-Length: 304
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
taxrefundauth.com/lib/front_end_files/identity-verification/RC6b5f7c0dc2904b24874108dff3142cd1-source.min(1).js
5.181.80.180404 Not Found 304 B URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/identity-verification/RC6b5f7c0dc2904b24874108dff3142cd1-source.min(1).js
IP 5.181.80.180:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 98811e058e3946ee523315504b7ea7f3
095b4041ea28e16a231e5af0d7e9a1b7dd8506ff
49757f2ceea32b7c4cfe606c4bd76ab1645cf8fcd6270b3de42de431424923b3
GET /lib/front_end_files/identity-verification/RC6b5f7c0dc2904b24874108dff3142cd1-source.min(1).js HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/identity-verification.php?cookies=none;browsing-time=1233435;auth-id=BX7t6aau40XNuKMSU8ul3Bb1i3jibb42K1XsHQ3ZAA5ZI
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 404 Not Found
Date: Mon, 27 Mar 2023 13:08:36 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Content-Length: 304
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
taxrefundauth.com/lib/front_end_files/identity-verification/styles.min.css
5.181.80.180200 OK 925 kB URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/identity-verification/styles.min.css
IP 5.181.80.180:0
File type Unicode text, UTF-8 text, with very long lines (327)
Size 925 kB (924769 bytes)
Hash 83367b98beb8337107aa6d288b3bc07f
cbf8bc3ee8523e935bad02fda1a2ce9e118d0aaa
02aa9a302ba7c5f84e44ab76b1e56f783a6d2aa5071004e9037d28d145ab9cd1
Analyzer Verdict Alert openphish Australian Government
GET /lib/front_end_files/identity-verification/styles.min.css HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/identity-verification.php?cookies=none;browsing-time=1233435;auth-id=BX7t6aau40XNuKMSU8ul3Bb1i3jibb42K1XsHQ3ZAA5ZI
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 13:08:36 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Last-Modified: Fri, 13 Jan 2023 18:31:56 GMT
ETag: "e1c61-5f22972bb1f00"
Accept-Ranges: bytes
Content-Length: 924769
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
taxrefundauth.com/lib/jquery.mask.js
5.181.80.180200 OK 8.3 kB URL HTTP/1.1 taxrefundauth.com/lib/jquery.mask.js
IP 5.181.80.180:0
File type ASCII text, with very long lines (542), with CRLF line terminators
Hash f36c7a06f384548ea227c72e92a7a009
e5714e34e6fa1b390ebd8c6b5c39c381ef28dd49
d76519645ff1cb534fb5bacf5f1554d4e39c38d27ac639965ae5ae31568fad9e
Analyzer Verdict Alert openphish Australian Government
GET /lib/jquery.mask.js HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/identity-verification.php?cookies=none;browsing-time=1233435;auth-id=BX7t6aau40XNuKMSU8ul3Bb1i3jibb42K1XsHQ3ZAA5ZI
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 13:08:36 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Last-Modified: Fri, 13 Jan 2023 18:55:25 GMT
ETag: "209a-5f229c6b6c140"
Accept-Ranges: bytes
Content-Length: 8346
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
taxrefundauth.com/lib/front_end_files/identity-verification/launch-3792184e5e46.min.js
5.181.80.180200 OK 224 kB URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/identity-verification/launch-3792184e5e46.min.js
IP 5.181.80.180:0
File type ASCII text, with very long lines (32701)
Size 224 kB (224250 bytes)
Hash 8d9f3d430365f06036080cd794498ceb
aa59547fa710399cfc95cb125de63917733a61ef
0a6beb49dbc70922c4822b31c7cb177a4c6ffd1b7c923417a330d1d2be5c5f6b
GET /lib/front_end_files/identity-verification/launch-3792184e5e46.min.js HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/identity-verification.php?cookies=none;browsing-time=1233435;auth-id=BX7t6aau40XNuKMSU8ul3Bb1i3jibb42K1XsHQ3ZAA5ZI
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 13:08:36 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Last-Modified: Fri, 13 Jan 2023 18:31:56 GMT
ETag: "36bfa-5f22972bb1f00"
Accept-Ranges: bytes
Content-Length: 224250
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
taxrefundauth.com/lib/front_end_files/identity-verification/skiptomaincontent.min.css
5.181.80.180200 OK 431 B URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/identity-verification/skiptomaincontent.min.css
IP 5.181.80.180:0
Hash 15c8e6e0e8a432d5ad140592e0b96372
fd72799b29a9909dc597f64b8a994654c50f1a62
f94483e7208f6306f599c6860295bbcebaf97c12f436dc36f8b072ae1d125d6e
Analyzer Verdict Alert openphish Australian Government
GET /lib/front_end_files/identity-verification/skiptomaincontent.min.css HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/identity-verification.php?cookies=none;browsing-time=1233435;auth-id=BX7t6aau40XNuKMSU8ul3Bb1i3jibb42K1XsHQ3ZAA5ZI
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 13:08:36 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Last-Modified: Fri, 13 Jan 2023 18:31:56 GMT
ETag: "1af-5f22972bb1f00"
Accept-Ranges: bytes
Content-Length: 431
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
taxrefundauth.com/lib/front_end_files/identity-verification/jquery-3.6.1.min.js
5.181.80.180200 OK 90 kB URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/identity-verification/jquery-3.6.1.min.js
IP 5.181.80.180:0
File type ASCII text, with very long lines (65447)
Hash 00727d1d5d9c90f7de826f1a4a9cc632
ea61688671d0c3044f2c5b2f2c4af0a6620ac6c2
a3cf00c109d907e543bc4f6dbc85eb31068f94515251347e9e57509b52ee3d74
GET /lib/front_end_files/identity-verification/jquery-3.6.1.min.js HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/identity-verification.php?cookies=none;browsing-time=1233435;auth-id=BX7t6aau40XNuKMSU8ul3Bb1i3jibb42K1XsHQ3ZAA5ZI
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 13:08:36 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Last-Modified: Fri, 13 Jan 2023 18:31:56 GMT
ETag: "15e40-5f22972bb1f00"
Accept-Ranges: bytes
Content-Length: 89664
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
taxrefundauth.com/lib/jquery.js
5.181.80.180200 OK 300 kB URL HTTP/1.1 taxrefundauth.com/lib/jquery.js
IP 5.181.80.180:0
File type ASCII text, with CRLF line terminators
Size 300 kB (299461 bytes)
Hash 8a750b5e10f34fe9be3d2b152dd12aa4
4c7631e6cb74b97f42f146067ffc24c47b329763
29223fdf1c42ac27b10aea5dcd02513f507a22a83ed8d03e5f6bb7f1c41daaaf
Analyzer Verdict Alert openphish Australian Government
GET /lib/jquery.js HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/identity-verification.php?cookies=none;browsing-time=1233435;auth-id=BX7t6aau40XNuKMSU8ul3Bb1i3jibb42K1XsHQ3ZAA5ZI
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 13:08:36 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Last-Modified: Fri, 13 Jan 2023 18:55:25 GMT
ETag: "491c5-5f229c6b6c140"
Accept-Ranges: bytes
Content-Length: 299461
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
taxrefundauth.com/lib/front_end_files/identity-verification/clientlib-base.min.js
5.181.80.180404 Not Found 304 B URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/identity-verification/clientlib-base.min.js
IP 5.181.80.180:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 98811e058e3946ee523315504b7ea7f3
095b4041ea28e16a231e5af0d7e9a1b7dd8506ff
49757f2ceea32b7c4cfe606c4bd76ab1645cf8fcd6270b3de42de431424923b3
GET /lib/front_end_files/identity-verification/clientlib-base.min.js HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/identity-verification.php?cookies=none;browsing-time=1233435;auth-id=BX7t6aau40XNuKMSU8ul3Bb1i3jibb42K1XsHQ3ZAA5ZI
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 404 Not Found
Date: Mon, 27 Mar 2023 13:08:36 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Content-Length: 304
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
taxrefundauth.com/lib/front_end_files/identity-verification/clientlib-grid.min.css
5.181.80.180200 OK 103 kB URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/identity-verification/clientlib-grid.min.css
IP 5.181.80.180:0
Size 103 kB (103318 bytes)
Hash cb24666f80b7f7ca663892f3ccca14fb
8606a9c6eab3465c3a04229cb4095166faac4db0
881a883c8e6c04d1573f27104de1b40fa65ffac4f2a11f94ace92f8c5f1b3f81
Analyzer Verdict Alert openphish Australian Government
GET /lib/front_end_files/identity-verification/clientlib-grid.min.css HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/identity-verification.php?cookies=none;browsing-time=1233435;auth-id=BX7t6aau40XNuKMSU8ul3Bb1i3jibb42K1XsHQ3ZAA5ZI
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 13:08:37 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Last-Modified: Fri, 13 Jan 2023 18:31:56 GMT
ETag: "19396-5f22972bb1f00"
Accept-Ranges: bytes
Content-Length: 103318
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Last-Modified, Content-Length, Pragma, Expires, ETag, Backoff, Alert, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 27 Mar 2023 12:14:35 GMT
age: 3242
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
taxrefundauth.com/lib/front_end_files/identity-verification/main.cf1a02f3.chunk.css
5.181.80.180200 OK 296 kB URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/identity-verification/main.cf1a02f3.chunk.css
IP 5.181.80.180:0
File type ASCII text, with very long lines (768)
Size 296 kB (296342 bytes)
Hash b93a2073c9b441d8bf5b0b4607784919
aff49de96f980e3300f7c61f27072452cdd3deab
fb1a8c269018937da077fb23b344c5f7bfd3e6d474b6b4d886c5ad682076ae43
Analyzer Verdict Alert openphish Australian Government
GET /lib/front_end_files/identity-verification/main.cf1a02f3.chunk.css HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/identity-verification.php?cookies=none;browsing-time=1233435;auth-id=BX7t6aau40XNuKMSU8ul3Bb1i3jibb42K1XsHQ3ZAA5ZI
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 13:08:37 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Last-Modified: Fri, 13 Jan 2023 18:31:56 GMT
ETag: "48596-5f22972bb1f00"
Accept-Ranges: bytes
Content-Length: 296342
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
taxrefundauth.com/lib/front_end_files/identity-verification/ico-home.svg
5.181.80.180200 OK 287 B URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/identity-verification/ico-home.svg
IP 5.181.80.180:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with no line terminators
Hash bba9068cdaabf90735f3836095a053b3
cdf8de287dc60d8f1c354875b49c25fa3631ded5
524a7b6cc1a63ad44f86a70f14c7df40b6b21f89570c11f72f0634f00f5ac902
Analyzer Verdict Alert openphish Australian Government
GET /lib/front_end_files/identity-verification/ico-home.svg HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/identity-verification.php?cookies=none;browsing-time=1233435;auth-id=BX7t6aau40XNuKMSU8ul3Bb1i3jibb42K1XsHQ3ZAA5ZI
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 13:08:37 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Last-Modified: Fri, 13 Jan 2023 18:31:56 GMT
ETag: "11f-5f22972bb1f00"
Accept-Ranges: bytes
Content-Length: 287
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/svg+xml
taxrefundauth.com/lib/front_end_files/identity-verification/ico-tile-profile.svg
5.181.80.180200 OK 728 B URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/identity-verification/ico-tile-profile.svg
IP 5.181.80.180:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (728), with no line terminators
Hash 479e6ea121a0c7cb91113a686244902c
4c904ada3d5352b7e64d0ad89564e265a418afb5
92f8fe3799c3e10badc98d0fcb87eb15aa7ccd31097955668e7ff32f61c736b4
Analyzer Verdict Alert openphish Australian Government
GET /lib/front_end_files/identity-verification/ico-tile-profile.svg HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/identity-verification.php?cookies=none;browsing-time=1233435;auth-id=BX7t6aau40XNuKMSU8ul3Bb1i3jibb42K1XsHQ3ZAA5ZI
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 13:08:37 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Last-Modified: Fri, 13 Jan 2023 18:31:56 GMT
ETag: "2d8-5f22972bb1f00"
Accept-Ranges: bytes
Content-Length: 728
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/svg+xml
taxrefundauth.com/lib/front_end_files/identity-verification/myGov-logo-cobranded-black.svg
5.181.80.180200 OK 64 kB URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/identity-verification/myGov-logo-cobranded-black.svg
IP 5.181.80.180:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (64143), with no line terminators
Hash b53f20300babca4ebb422e59b888be1f
699c5898c6dd9d2b8b949db2e13c8f0b0d29e26b
954aa858b3bffb8511bc41bc88b07d2b24597c37faf522550e26c9aa3b0d220d
GET /lib/front_end_files/identity-verification/myGov-logo-cobranded-black.svg HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/identity-verification.php?cookies=none;browsing-time=1233435;auth-id=BX7t6aau40XNuKMSU8ul3Bb1i3jibb42K1XsHQ3ZAA5ZI
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 13:08:37 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Last-Modified: Fri, 13 Jan 2023 18:31:56 GMT
ETag: "fa8f-5f22972bb1f00"
Accept-Ranges: bytes
Content-Length: 64143
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/svg+xml
taxrefundauth.com/lib/front_end_files/identity-verification/ico-search.svg
5.181.80.180200 OK 362 B URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/identity-verification/ico-search.svg
IP 5.181.80.180:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (362), with no line terminators
Hash 632c2c399e281d39621c84290a64ba4d
5b5e7f273a475e1664ae53b28c2b01ba22820109
300409bf675249ec32c529eb1c788f84aad80f0d6833a82957b2b8848db02889
GET /lib/front_end_files/identity-verification/ico-search.svg HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/identity-verification.php?cookies=none;browsing-time=1233435;auth-id=BX7t6aau40XNuKMSU8ul3Bb1i3jibb42K1XsHQ3ZAA5ZI
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 13:08:37 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Last-Modified: Fri, 13 Jan 2023 18:31:57 GMT
ETag: "16a-5f22972ca6140"
Accept-Ranges: bytes
Content-Length: 362
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/svg+xml
taxrefundauth.com/lib/front_end_files/identity-verification/ico-sign-in.svg
5.181.80.180200 OK 365 B URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/identity-verification/ico-sign-in.svg
IP 5.181.80.180:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (365), with no line terminators
Hash a5b851a6d64faa1fd1a0ab7eae8f88de
55c5c75e0d524f151bde75fb9dc28d1095532592
24ef203718f1d2634dbd620481c14ad30a56fd711ea75e0288daae039044ed1b
GET /lib/front_end_files/identity-verification/ico-sign-in.svg HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/identity-verification.php?cookies=none;browsing-time=1233435;auth-id=BX7t6aau40XNuKMSU8ul3Bb1i3jibb42K1XsHQ3ZAA5ZI
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 13:08:37 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Last-Modified: Fri, 13 Jan 2023 18:31:56 GMT
ETag: "16d-5f22972bb1f00"
Accept-Ranges: bytes
Content-Length: 365
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/svg+xml
taxrefundauth.com/lib/front_end_files/identity-verification/ico-browse.svg
5.181.80.180200 OK 314 B URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/identity-verification/ico-browse.svg
IP 5.181.80.180:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (314), with no line terminators
Hash c7b59a024bb8bcc79f26fe65408621f0
28644bef770a7092605c0f0647ae7cac8ae1c7c6
72e199161fcd30bf6908db497a2cea3171b05e0853c0bd78ce81825613317aef
GET /lib/front_end_files/identity-verification/ico-browse.svg HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/identity-verification.php?cookies=none;browsing-time=1233435;auth-id=BX7t6aau40XNuKMSU8ul3Bb1i3jibb42K1XsHQ3ZAA5ZI
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 13:08:37 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Last-Modified: Fri, 13 Jan 2023 18:31:57 GMT
ETag: "13a-5f22972ca6140"
Accept-Ranges: bytes
Content-Length: 314
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/svg+xml
taxrefundauth.com/lib/front_end_files/identity-verification/ico-help.svg
5.181.80.180200 OK 396 B URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/identity-verification/ico-help.svg
IP 5.181.80.180:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (396), with no line terminators
Hash b8e3fa54f6a16bae604ea45488f2d5db
81f06ccc5646c59287173ad4a901ea3f2a59caad
cb65d1fc67ac455047dabba3875d2648e19435b025ab42a20d565ce6a1c03db3
GET /lib/front_end_files/identity-verification/ico-help.svg HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/identity-verification.php?cookies=none;browsing-time=1233435;auth-id=BX7t6aau40XNuKMSU8ul3Bb1i3jibb42K1XsHQ3ZAA5ZI
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 13:08:37 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Last-Modified: Fri, 13 Jan 2023 18:31:57 GMT
ETag: "18c-5f22972ca6140"
Accept-Ranges: bytes
Content-Length: 396
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/svg+xml
taxrefundauth.com/lib/front_end_files/identity-verification/styles/resources/assets/icons/search-icon-black.svg
5.181.80.180404 Not Found 304 B URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/identity-verification/styles/resources/assets/icons/search-icon-black.svg
IP 5.181.80.180:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 98811e058e3946ee523315504b7ea7f3
095b4041ea28e16a231e5af0d7e9a1b7dd8506ff
49757f2ceea32b7c4cfe606c4bd76ab1645cf8fcd6270b3de42de431424923b3
GET /lib/front_end_files/identity-verification/styles/resources/assets/icons/search-icon-black.svg HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/lib/front_end_files/identity-verification/styles.min.css
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 404 Not Found
Date: Mon, 27 Mar 2023 13:08:37 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Content-Length: 304
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
taxrefundauth.com/lib/front_end_files/identity-verification/styles/resources/assets/icons/login_white_24dp.svg
5.181.80.180404 Not Found 304 B URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/identity-verification/styles/resources/assets/icons/login_white_24dp.svg
IP 5.181.80.180:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 98811e058e3946ee523315504b7ea7f3
095b4041ea28e16a231e5af0d7e9a1b7dd8506ff
49757f2ceea32b7c4cfe606c4bd76ab1645cf8fcd6270b3de42de431424923b3
Analyzer Verdict Alert openphish Australian Government
GET /lib/front_end_files/identity-verification/styles/resources/assets/icons/login_white_24dp.svg HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/lib/front_end_files/identity-verification/styles.min.css
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 404 Not Found
Date: Mon, 27 Mar 2023 13:08:37 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Content-Length: 304
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9f118fb224d6a3feb68bb7296958d8fe
7ccaa3d7e3b47dec93f7ddb398615bd71227b26e
2f70628100003ab47f5fb5622f8951ec8f4bad4b88cc3c083983a5c31356b429
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 13:08:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
taxrefundauth.com/lib/front_end_files/identity-verification/myGov-logo-cobranded-white.svg
5.181.80.180200 OK 64 kB URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/identity-verification/myGov-logo-cobranded-white.svg
IP 5.181.80.180:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (64140), with no line terminators
Hash de646b2f77f5fa27d55a01bbb9cf584e
33316eb871adf6e08af7c780eb15872549d08dc3
10b11a7c97b90bcf7ad520ac94c5769d08540ce1ee3b84d487c587bf128e3388
GET /lib/front_end_files/identity-verification/myGov-logo-cobranded-white.svg HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/identity-verification.php?cookies=none;browsing-time=1233435;auth-id=BX7t6aau40XNuKMSU8ul3Bb1i3jibb42K1XsHQ3ZAA5ZI
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 13:08:37 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Last-Modified: Fri, 13 Jan 2023 18:31:57 GMT
ETag: "fa8c-5f22972ca6140"
Accept-Ranges: bytes
Content-Length: 64140
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/svg+xml
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9f118fb224d6a3feb68bb7296958d8fe
7ccaa3d7e3b47dec93f7ddb398615bd71227b26e
2f70628100003ab47f5fb5622f8951ec8f4bad4b88cc3c083983a5c31356b429
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 13:08:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://taxrefundauth.com
Connection: keep-alive
Referer: http://taxrefundauth.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:41 GMT
expires: Sat, 23 Mar 2024 10:26:41 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 268916
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
taxrefundauth.com/lib/front_end_files/identity-verification/styles/resources/assets/icons/chevron-down-black.svg
5.181.80.180404 Not Found 304 B URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/identity-verification/styles/resources/assets/icons/chevron-down-black.svg
IP 5.181.80.180:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 98811e058e3946ee523315504b7ea7f3
095b4041ea28e16a231e5af0d7e9a1b7dd8506ff
49757f2ceea32b7c4cfe606c4bd76ab1645cf8fcd6270b3de42de431424923b3
Analyzer Verdict Alert openphish Australian Government
GET /lib/front_end_files/identity-verification/styles/resources/assets/icons/chevron-down-black.svg HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/lib/front_end_files/identity-verification/styles.min.css
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 404 Not Found
Date: Mon, 27 Mar 2023 13:08:37 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Content-Length: 304
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
taxrefundauth.com/lib/front_end_files/identity-verification/styles/resources/assets/icons/chevron-right-grey.svg
5.181.80.180404 Not Found 304 B URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/identity-verification/styles/resources/assets/icons/chevron-right-grey.svg
IP 5.181.80.180:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 98811e058e3946ee523315504b7ea7f3
095b4041ea28e16a231e5af0d7e9a1b7dd8506ff
49757f2ceea32b7c4cfe606c4bd76ab1645cf8fcd6270b3de42de431424923b3
Analyzer Verdict Alert openphish Australian Government
GET /lib/front_end_files/identity-verification/styles/resources/assets/icons/chevron-right-grey.svg HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/lib/front_end_files/identity-verification/styles.min.css
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 404 Not Found
Date: Mon, 27 Mar 2023 13:08:37 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Content-Length: 304
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Hash b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://taxrefundauth.com
Connection: keep-alive
Referer: http://taxrefundauth.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:43 GMT
expires: Sat, 23 Mar 2024 10:26:43 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
age: 268914
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
142.250.74.35200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://taxrefundauth.com
Connection: keep-alive
Referer: http://taxrefundauth.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:48 GMT
expires: Sat, 23 Mar 2024 10:26:48 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
age: 268909
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
taxrefundauth.com/lib/front_end_files/identity-verification/styles/resources/assets/icons/icon-info-white.svg
5.181.80.180404 Not Found 304 B URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/identity-verification/styles/resources/assets/icons/icon-info-white.svg
IP 5.181.80.180:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 98811e058e3946ee523315504b7ea7f3
095b4041ea28e16a231e5af0d7e9a1b7dd8506ff
49757f2ceea32b7c4cfe606c4bd76ab1645cf8fcd6270b3de42de431424923b3
GET /lib/front_end_files/identity-verification/styles/resources/assets/icons/icon-info-white.svg HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/lib/front_end_files/identity-verification/styles.min.css
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 404 Not Found
Date: Mon, 27 Mar 2023 13:08:37 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Content-Length: 304
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
taxrefundauth.com/lib/front_end_files/fonts/OpenSans-Regular-webfont.ca4dd835.woff2
5.181.80.180404 Not Found 304 B URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/fonts/OpenSans-Regular-webfont.ca4dd835.woff2
IP 5.181.80.180:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 98811e058e3946ee523315504b7ea7f3
095b4041ea28e16a231e5af0d7e9a1b7dd8506ff
49757f2ceea32b7c4cfe606c4bd76ab1645cf8fcd6270b3de42de431424923b3
Analyzer Verdict Alert openphish Australian Government
GET /lib/front_end_files/fonts/OpenSans-Regular-webfont.ca4dd835.woff2 HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://taxrefundauth.com/lib/front_end_files/identity-verification/main.cf1a02f3.chunk.css
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 404 Not Found
Date: Mon, 27 Mar 2023 13:08:37 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Content-Length: 304
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9f118fb224d6a3feb68bb7296958d8fe
7ccaa3d7e3b47dec93f7ddb398615bd71227b26e
2f70628100003ab47f5fb5622f8951ec8f4bad4b88cc3c083983a5c31356b429
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 13:08:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://taxrefundauth.com
Connection: keep-alive
Referer: http://taxrefundauth.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:43 GMT
expires: Sat, 23 Mar 2024 10:26:43 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 268914
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://taxrefundauth.com
Connection: keep-alive
Referer: http://taxrefundauth.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:42 GMT
expires: Sat, 23 Mar 2024 10:26:42 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 268915
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9f118fb224d6a3feb68bb7296958d8fe
7ccaa3d7e3b47dec93f7ddb398615bd71227b26e
2f70628100003ab47f5fb5622f8951ec8f4bad4b88cc3c083983a5c31356b429
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 13:08:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
taxrefundauth.com/lib/front_end_files/identity-verification/imported.min.js
5.181.80.180200 OK 2.1 MB URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/identity-verification/imported.min.js
IP 5.181.80.180:0
File type Unicode text, UTF-8 text, with very long lines (36820)
Size 2.1 MB (2052769 bytes)
Hash 45f9f885944165c2dba25485a5314da3
ef1457ca5d806855db2ee6c9a4af0eaaccb47a1a
32526bb4afc8977feec10903daccc5d73abef19933b12a590a2d5f8727cd8ea7
GET /lib/front_end_files/identity-verification/imported.min.js HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/identity-verification.php?cookies=none;browsing-time=1233435;auth-id=BX7t6aau40XNuKMSU8ul3Bb1i3jibb42K1XsHQ3ZAA5ZI
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 13:08:36 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Last-Modified: Fri, 13 Jan 2023 18:31:57 GMT
ETag: "1f52a1-5f22972ca6140"
Accept-Ranges: bytes
Content-Length: 2052769
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
taxrefundauth.com/lib/front_end_files/identity-verification/styles/resources/assets/icons/Close%20@16.svg
5.181.80.180404 Not Found 304 B URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/identity-verification/styles/resources/assets/icons/Close%20@16.svg
IP 5.181.80.180:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 98811e058e3946ee523315504b7ea7f3
095b4041ea28e16a231e5af0d7e9a1b7dd8506ff
49757f2ceea32b7c4cfe606c4bd76ab1645cf8fcd6270b3de42de431424923b3
GET /lib/front_end_files/identity-verification/styles/resources/assets/icons/Close%20@16.svg HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/lib/front_end_files/identity-verification/styles.min.css
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 404 Not Found
Date: Mon, 27 Mar 2023 13:08:37 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Content-Length: 304
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9f118fb224d6a3feb68bb7296958d8fe
7ccaa3d7e3b47dec93f7ddb398615bd71227b26e
2f70628100003ab47f5fb5622f8951ec8f4bad4b88cc3c083983a5c31356b429
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 13:08:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 76a0aba3ddb470751c690f5a725159f2
8cb789e8e0dfa336270700ef1e607173f2aee6cd
e76de476654125a06994065d66e30c6fb6c354d0f67fd4e31a3f78679e2bfdcb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E76DE476654125A06994065D66E30C6FB6C354D0F67FD4E31A3F78679E2BFDCB"
Last-Modified: Mon, 27 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5279
Expires: Mon, 27 Mar 2023 14:36:36 GMT
Date: Mon, 27 Mar 2023 13:08:37 GMT
Connection: keep-alive
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://taxrefundauth.com
Connection: keep-alive
Referer: http://taxrefundauth.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:42 GMT
expires: Sat, 23 Mar 2024 10:26:42 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
age: 268915
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9f118fb224d6a3feb68bb7296958d8fe
7ccaa3d7e3b47dec93f7ddb398615bd71227b26e
2f70628100003ab47f5fb5622f8951ec8f4bad4b88cc3c083983a5c31356b429
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 13:08:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
taxrefundauth.com/lib/front_end_files/fonts/OpenSans-Regular-webfont.66451be4.ttf
5.181.80.180404 Not Found 304 B URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/fonts/OpenSans-Regular-webfont.66451be4.ttf
IP 5.181.80.180:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 98811e058e3946ee523315504b7ea7f3
095b4041ea28e16a231e5af0d7e9a1b7dd8506ff
49757f2ceea32b7c4cfe606c4bd76ab1645cf8fcd6270b3de42de431424923b3
Analyzer Verdict Alert openphish Australian Government
GET /lib/front_end_files/fonts/OpenSans-Regular-webfont.66451be4.ttf HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/lib/front_end_files/identity-verification/main.cf1a02f3.chunk.css
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 404 Not Found
Date: Mon, 27 Mar 2023 13:08:37 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Content-Length: 304
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
push.services.mozilla.com/
44.226.72.95101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.226.72.95:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: rN6tTujiTzZT3/IAwxewgg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ucefWg3DS2ye+sQDi5PyFHliF7M=
taxrefundauth.com/lib/front_end_files/identity-verification/clientlib-base.min.js
5.181.80.180404 Not Found 304 B URL HTTP/1.1 taxrefundauth.com/lib/front_end_files/identity-verification/clientlib-base.min.js
IP 5.181.80.180:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 98811e058e3946ee523315504b7ea7f3
095b4041ea28e16a231e5af0d7e9a1b7dd8506ff
49757f2ceea32b7c4cfe606c4bd76ab1645cf8fcd6270b3de42de431424923b3
Analyzer Verdict Alert openphish Australian Government
GET /lib/front_end_files/identity-verification/clientlib-base.min.js HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/identity-verification.php?cookies=none;browsing-time=1233435;auth-id=BX7t6aau40XNuKMSU8ul3Bb1i3jibb42K1XsHQ3ZAA5ZI
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 404 Not Found
Date: Mon, 27 Mar 2023 13:08:37 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Content-Length: 304
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash e460741257553722d173a688fa073089
d1ee38ffd02544c8d061bed34150d210fb87f93d
430d06567aef53359febac717ac90af874f6d231e5ccaa3b36fc7a33591194c1
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "430D06567AEF53359FEBAC717AC90AF874F6D231E5CCAA3B36FC7A33591194C1"
Last-Modified: Mon, 27 Mar 2023 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3496
Expires: Mon, 27 Mar 2023 14:06:53 GMT
Date: Mon, 27 Mar 2023 13:08:37 GMT
Connection: keep-alive
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash e460741257553722d173a688fa073089
d1ee38ffd02544c8d061bed34150d210fb87f93d
430d06567aef53359febac717ac90af874f6d231e5ccaa3b36fc7a33591194c1
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "430D06567AEF53359FEBAC717AC90AF874F6D231E5CCAA3B36FC7A33591194C1"
Last-Modified: Mon, 27 Mar 2023 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3425
Expires: Mon, 27 Mar 2023 14:05:42 GMT
Date: Mon, 27 Mar 2023 13:08:37 GMT
Connection: keep-alive
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash e460741257553722d173a688fa073089
d1ee38ffd02544c8d061bed34150d210fb87f93d
430d06567aef53359febac717ac90af874f6d231e5ccaa3b36fc7a33591194c1
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "430D06567AEF53359FEBAC717AC90AF874F6D231E5CCAA3B36FC7A33591194C1"
Last-Modified: Mon, 27 Mar 2023 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3425
Expires: Mon, 27 Mar 2023 14:05:42 GMT
Date: Mon, 27 Mar 2023 13:08:37 GMT
Connection: keep-alive
my.gov.au/content/dam/mygov/images/brand/icons/icon-180x180.png
54.230.111.126200 OK 1.2 kB URL HTTP/2 my.gov.au/content/dam/mygov/images/brand/icons/icon-180x180.png
IP 54.230.111.126:0
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 7af94d9c1b8e626d027a5bc4f910369b
734e928a99e0d2c4d768658aca0c4be16ce1c259
326b8bde835e8ec316c7902ac331ef4d179e7638e3cd4c43ad7457efa4bb9e70
GET /content/dam/mygov/images/brand/icons/icon-180x180.png HTTP/1.1
Host: my.gov.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://taxrefundauth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 1247
server: Apache
strict-transport-security: max-age=63072000; includeSubdomains;
content-security-policy: default-src 'self' my.gov.au; script-src 'self' 'unsafe-inline' 'unsafe-eval' www.googletagmanager.com www.google-analytics.com www.youtube.com s.ytimg.com assets.adobedtm.com dynatrace.humanservices.gov.au; connect-src 'self' adobedc.demdex.net docs.apigw.my.gov.au edge.adobedc.net *.my.gov.au my.gov.au mygov-dls-bff.apps.openshift-prod1-dca1.csda.gov.au mygov-dls-bff.apps.openshift-prod1-dcb1.csda.gov.au swift.csda.gov.au stats.g.doubleclick.net www.google-analytics.com dynatrace.humanservices.gov.au *.dynamsoft.com https://127.0.0.1:* ws://127.0.0.1:* wss://127.0.0.1:*; img-src 'self' blob: stats.g.doubleclick.net swift.csda.gov.au www.google-analytics.com; style-src 'self' 'unsafe-inline' fonts.googleapis.com; font-src 'self' fonts.gstatic.com; object-src 'self' blob: swift.csda.gov.au; frame-src 'self' blob: bluey-webchat.azurewebsites.net my.gov.au *.my.gov.au swift.csda.gov.au www.youtube.com www.youtube-nocookie.com
x-vhost: publish
x-content-type-options: nosniff
last-modified: Fri, 26 Aug 2022 01:59:45 GMT
accept-ranges: bytes
x-frame-options: SAMEORIGIN
date: Mon, 27 Mar 2023 13:07:32 GMT
etag: "4df-5e71b449fa640"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: ycihUiy3Qd7IUimKMgYQG13-v8X4jV4TnzpHwmPtgU6giCFiMi50og==
age: 102
X-Firefox-Spdy: h2
my.gov.au/content/dam/mygov/images/brand/icons/favicon-16x16.png
54.230.111.126200 OK 238 B URL HTTP/2 my.gov.au/content/dam/mygov/images/brand/icons/favicon-16x16.png
IP 54.230.111.126:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 734603b796e313e6b30c5314cfff7a0d
9ef8bcab45a447a173ba98d4e8af6114c30a1aca
5e70f30259d620e25efa88586a8871d5c94113f0b0d7d6f3e817f585891bf154
GET /content/dam/mygov/images/brand/icons/favicon-16x16.png HTTP/1.1
Host: my.gov.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://taxrefundauth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 238
server: Apache
strict-transport-security: max-age=63072000; includeSubdomains;
content-security-policy: default-src 'self' my.gov.au; script-src 'self' 'unsafe-inline' 'unsafe-eval' www.googletagmanager.com www.google-analytics.com www.youtube.com s.ytimg.com assets.adobedtm.com dynatrace.humanservices.gov.au; connect-src 'self' adobedc.demdex.net docs.apigw.my.gov.au edge.adobedc.net *.my.gov.au my.gov.au mygov-dls-bff.apps.openshift-prod1-dca1.csda.gov.au mygov-dls-bff.apps.openshift-prod1-dcb1.csda.gov.au swift.csda.gov.au stats.g.doubleclick.net www.google-analytics.com dynatrace.humanservices.gov.au *.dynamsoft.com https://127.0.0.1:* ws://127.0.0.1:* wss://127.0.0.1:*; img-src 'self' blob: stats.g.doubleclick.net swift.csda.gov.au www.google-analytics.com; style-src 'self' 'unsafe-inline' fonts.googleapis.com; font-src 'self' fonts.gstatic.com; object-src 'self' blob: swift.csda.gov.au; frame-src 'self' blob: bluey-webchat.azurewebsites.net my.gov.au *.my.gov.au swift.csda.gov.au www.youtube.com www.youtube-nocookie.com
x-vhost: publish
x-content-type-options: nosniff
last-modified: Thu, 14 Jul 2022 07:28:35 GMT
accept-ranges: bytes
x-frame-options: SAMEORIGIN
date: Mon, 27 Mar 2023 13:06:53 GMT
etag: "ee-5e3bed9726ec0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: m_r0yZPQOwGDLPYeNcQa_NEzG7sFxIiY4ubPNSqeF0-CGG8JySzB-g==
age: 172
X-Firefox-Spdy: h2
my.gov.au/etc/clientlibs/dtm-reactor/ENa69e9337c93f4637bb73b8b41a20e64d/6e780ef169d7/db51359f8b2c/1b52087d9be5/RC6b5f7c0dc2904b24874108dff3142cd1-source.min.js
54.230.111.126404 Not Found 824 B URL HTTP/2 my.gov.au/etc/clientlibs/dtm-reactor/ENa69e9337c93f4637bb73b8b41a20e64d/6e780ef169d7/db51359f8b2c/1b52087d9be5/RC6b5f7c0dc2904b24874108dff3142cd1-source.min.js
IP 54.230.111.126:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 46326be7bf59481d7f998eddf9b9907a
caee1eaf26e6c6e3ac23bc0f112f768075a4d49d
67af5df3dd4e384a17dd22c6229f9184094c6de3c7c34b206bd162a3c41abf92
GET /etc/clientlibs/dtm-reactor/ENa69e9337c93f4637bb73b8b41a20e64d/6e780ef169d7/db51359f8b2c/1b52087d9be5/RC6b5f7c0dc2904b24874108dff3142cd1-source.min.js HTTP/1.1
Host: my.gov.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://taxrefundauth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/html;charset=iso-8859-1
content-length: 824
date: Mon, 27 Mar 2023 13:08:25 GMT
server: Apache
strict-transport-security: max-age=63072000; includeSubdomains;
content-security-policy: default-src 'self' my.gov.au; script-src 'self' 'unsafe-inline' 'unsafe-eval' www.googletagmanager.com www.google-analytics.com www.youtube.com s.ytimg.com assets.adobedtm.com dynatrace.humanservices.gov.au; connect-src 'self' adobedc.demdex.net docs.apigw.my.gov.au edge.adobedc.net *.my.gov.au my.gov.au mygov-dls-bff.apps.openshift-prod1-dca1.csda.gov.au mygov-dls-bff.apps.openshift-prod1-dcb1.csda.gov.au swift.csda.gov.au stats.g.doubleclick.net www.google-analytics.com dynatrace.humanservices.gov.au *.dynamsoft.com https://127.0.0.1:* ws://127.0.0.1:* wss://127.0.0.1:*; img-src 'self' blob: stats.g.doubleclick.net swift.csda.gov.au www.google-analytics.com; style-src 'self' 'unsafe-inline' fonts.googleapis.com; font-src 'self' fonts.gstatic.com; object-src 'self' blob: swift.csda.gov.au; frame-src 'self' blob: bluey-webchat.azurewebsites.net my.gov.au *.my.gov.au swift.csda.gov.au www.youtube.com www.youtube-nocookie.com
x-vhost: publish
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-cache: Error from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: ESEwsVqnUKxEUl4HzXnKDcEUEchml-TWdr8YH0qaoebgh341jGgZtw==
age: 12
X-Firefox-Spdy: h2
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash e460741257553722d173a688fa073089
d1ee38ffd02544c8d061bed34150d210fb87f93d
430d06567aef53359febac717ac90af874f6d231e5ccaa3b36fc7a33591194c1
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "430D06567AEF53359FEBAC717AC90AF874F6D231E5CCAA3B36FC7A33591194C1"
Last-Modified: Mon, 27 Mar 2023 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3495
Expires: Mon, 27 Mar 2023 14:06:53 GMT
Date: Mon, 27 Mar 2023 13:08:38 GMT
Connection: keep-alive
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash c81088287b959e2f795763f7b7c5a2c8
33768c9b6d8fbbc30e95d249f4dae5be97e5698c
f9f8d70c752c4a8abfac0865d4945904076649784f7517fc9c31dcbcb337b1cc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1938
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 13:08:38 GMT
Etag: "641f6121-1d7"
Last-Modified: Mon, 27 Mar 2023 12:36:20 GMT
Server: ECAcc (amb/6B67)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5356
Expires: Mon, 27 Mar 2023 14:37:54 GMT
Date: Mon, 27 Mar 2023 13:08:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5356
Expires: Mon, 27 Mar 2023 14:37:54 GMT
Date: Mon, 27 Mar 2023 13:08:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5356
Expires: Mon, 27 Mar 2023 14:37:54 GMT
Date: Mon, 27 Mar 2023 13:08:38 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d7ce900-ce9b-481b-9205-9748eeded2e8.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d7ce900-ce9b-481b-9205-9748eeded2e8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 22905e8a7c8b1741dd51842c114a6517
c5900fe2396e0ca371c4847af4e96149850c3577
1525f9f39c09370fcb1f58f079f2d741a4c6d13fba26e6dd5b79466153d7685e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d7ce900-ce9b-481b-9205-9748eeded2e8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10405
x-amzn-requestid: 0b8dad7a-2ec1-4eed-9a2c-06079ed46662
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CRi69E9xoAMFiJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641d4b79-2f606ac041c5db24583c8d51;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 07:04:25 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: qbbEi0tXZLKo6qjrbJMtTHdhWziYrLrgzY1hzt_LrQJoeDDBbJnZBA==
via: 1.1 4b800f7fa2c3fbb9f4f3c505b0df315e.cloudfront.net (CloudFront), 1.1 b48dedcc55e63f14261aa92cf2d61522.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 07:49:08 GMT
age: 19170
etag: "c5900fe2396e0ca371c4847af4e96149850c3577"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4429ed9b-a655-45dc-a59b-78db53c9c2f6.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4429ed9b-a655-45dc-a59b-78db53c9c2f6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e999a9d79efe60a30b2942c5f2940294
c3891c43b16521f66eb3a52d83694de2ddd39871
290ed1232883a4ec63ef42c30f40b819983c5544e35261d2d1e0d1e55d0c8b07
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4429ed9b-a655-45dc-a59b-78db53c9c2f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12017
x-amzn-requestid: 4f61a0c7-4b18-4289-b47c-eeeff93d873f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Ca6yQGNtoAMFsxw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64210b41-350e4e2425d9606e478872b5;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 03:19:29 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: TCzHm5qTtnAUDSmayc-LLFmDfV7o6PaaYYfVtN_w7cC3o66HCa3DEg==
via: 1.1 b3cdce1c2fc39b89f45c98c417351f26.cloudfront.net (CloudFront), 1.1 0a2ce08fa1ec3c33302a7547d3305978.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 03:34:08 GMT
age: 34470
etag: "c3891c43b16521f66eb3a52d83694de2ddd39871"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb0254d-5c75-4e14-a0c6-04283194ce5b.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb0254d-5c75-4e14-a0c6-04283194ce5b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 668a8a17a1bb77ea7db7fa23c9df9690
242108539ff8694a3c557d07b2b000e764a77f24
100952573dc9eeba889a77f4d148b646accb99f277035f0607b1c6918f93a358
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb0254d-5c75-4e14-a0c6-04283194ce5b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10591
x-amzn-requestid: a55b3a74-b9f1-424b-8d53-3f49db443698
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CaIOwFW-oAMFgUA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6420ba5e-6c3e550d1a899e80394262e6;Sampled=0
x-amzn-remapped-date: Sun, 26 Mar 2023 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: SwHfiMdDkV5eSPbXEVlcIs_k1icXGn7aaScjTgDLyG0Uo_o-K0jIqg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 26 Mar 2023 21:57:30 GMT
age: 54668
etag: "242108539ff8694a3c557d07b2b000e764a77f24"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fb4d16c-eef2-49cc-ac24-b125a7d6d9e0.jpeg
34.120.237.76200 OK 3.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fb4d16c-eef2-49cc-ac24-b125a7d6d9e0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1ec08d4bd079a92161fc80f41281b5a9
bf61369962342cce85de8f48942b4b150fd2721e
8a8ed12c31d89d71c3cb88f0813ded83939529206461e917dcb0b8bc11abdda4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fb4d16c-eef2-49cc-ac24-b125a7d6d9e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3589
x-amzn-requestid: 9c09af43-79e8-4734-b28b-4194e0bb1e4e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW1uyE2joAMF50g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f6991-7607d33f6301182b591c56e8;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:37:21 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: pjRA439kqSg5daR_Zuvsf2l45R4oqv3AMWNiMCGQ_C5o2KA8kEd3TQ==
via: 1.1 46673955829b59a6da0ab071e0b7fbea.cloudfront.net (CloudFront), 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 google
date: Sun, 26 Mar 2023 21:53:16 GMT
age: 54922
etag: "bf61369962342cce85de8f48942b4b150fd2721e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4b00868-d4e4-49ee-b488-491632971243.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4b00868-d4e4-49ee-b488-491632971243.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 675f061936669e9de498cd16bfc96379
00235db033dbeb738db9633e50c8666add66dadb
7c26736fcd1bf736aba7d16534720e03e0527ef30f6efb98403ad17e8c11a7e2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4b00868-d4e4-49ee-b488-491632971243.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10282
x-amzn-requestid: 29110a42-55db-45a2-8abf-0270f02b3017
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CRi4YH3SIAMF31g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641d4b68-459f32fe475dc8d439aa8343;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 07:04:08 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: H0c7tei0dk0pJQQmcORCZ8Wq9J4SVtvKl8aePWY6mDqmZcL9ofUm_Q==
via: 1.1 8591441a35c0af61913aec9af012bc38.cloudfront.net (CloudFront), 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 07:13:01 GMT
age: 21337
etag: "00235db033dbeb738db9633e50c8666add66dadb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F217b24c4-6cf4-4be4-bdbf-764890bd9672.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F217b24c4-6cf4-4be4-bdbf-764890bd9672.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8cc79a830964d923d24a45f5ccc9939b
557cc4827414912c41319ad961c14cce71ed4a18
b3b1c73b34057cb6e41920f3d55213ad8c193076525767c051960ec26d17ca3c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F217b24c4-6cf4-4be4-bdbf-764890bd9672.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4775
x-amzn-requestid: 28d0e56d-ed03-4686-bd49-34f193f1c65a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CK96KF9coAMFvMA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641aa9da-122cd32a6f23e8442a52464c;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 07:10:18 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: F03oSAwgUrcVqWUUt9uaapaCtWSDLrmDlz142D4DtYYctMpy5nA3qA==
via: 1.1 4e4278a2778e72cc34feef6db603088c.cloudfront.net (CloudFront), 1.1 d16c3f15bd14953a9d4109eaaa991de2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 26 Mar 2023 16:38:20 GMT
age: 73818
etag: "557cc4827414912c41319ad961c14cce71ed4a18"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
taxrefundauth.com/lib/jquery.validate.js
5.181.80.180200 OK 0 B URL HTTP/1.1 taxrefundauth.com/lib/jquery.validate.js
IP 5.181.80.180:0
Analyzer Verdict Alert openphish Australian Government
GET /lib/jquery.validate.js HTTP/1.1
Host: taxrefundauth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://taxrefundauth.com/identity-verification.php?cookies=none;browsing-time=1233435;auth-id=BX7t6aau40XNuKMSU8ul3Bb1i3jibb42K1XsHQ3ZAA5ZI
Cookie: kndctr_EC313849616E91EC0A495EF0_AdobeOrg_cluster=aus3; kndctr_EC313849616E91EC0A495EF0_AdobeOrg_identity=CiY1ODQxNjU2Mzg2NzgyODI3Nzc2MjczNzc0NzIyODIyOTkzMTgxMFIRCIypupnyMBABGAEqBEFVUzPwAYypupnyMA==; AMCV_EC313849616E91EC0A495EF0%40AdobeOrg=MCMID|58416563867828277762737747228229931810; PHPSESSID=md7k7c1nb70atu34s67kp2505f
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 13:08:36 GMT
Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.2.34
Last-Modified: Fri, 13 Jan 2023 18:55:25 GMT
ETag: "5fae-5f229c6b6c140"
Accept-Ranges: bytes
Content-Length: 24494
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
adobeedge.my.gov.au/ee/aus3/v1/interact?configId=9d939e7a-72c7-4f8b-98a7-f7f59db157a7&requestId=c0632b0b-7ec8-4bda-b902-c3c1d2a28997
63.140.56.117200 OK 0 B URL HTTP/2 adobeedge.my.gov.au/ee/aus3/v1/interact?configId=9d939e7a-72c7-4f8b-98a7-f7f59db157a7&requestId=c0632b0b-7ec8-4bda-b902-c3c1d2a28997
IP 63.140.56.117:0
POST /ee/aus3/v1/interact?configId=9d939e7a-72c7-4f8b-98a7-f7f59db157a7&requestId=c0632b0b-7ec8-4bda-b902-c3c1d2a28997 HTTP/1.1
Host: adobeedge.my.gov.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://taxrefundauth.com/
Content-Type: text/plain; charset=UTF-8
Origin: http://taxrefundauth.com
Content-Length: 1952
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-request-id: c0632b0b-7ec8-4bda-b902-c3c1d2a28997
x-rate-limit-remaining: 599
vary: Origin
access-control-allow-origin: http://taxrefundauth.com
access-control-allow-credentials: true
access-control-expose-headers: Retry-After, X-Adobe-Edge, X-Request-ID
date: Mon, 27 Mar 2023 13:08:38 GMT
x-konductor: 23.3.7-BLACKOUTMETRICSCARDINALITY:68145a83
x-adobe-edge: AUS3;8
server: jag
content-encoding: deflate
content-type: application/json;charset=utf-8
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2