r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3d0727e32cd103ddd4b73f28c81758aa
197a7bf43d63723fc532c23c6dced68d5cc36652
d3f75d03561d6a47d19370292e821a86e58381466f0c69386a21175de55882ff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D3F75D03561D6A47D19370292E821A86E58381466F0C69386A21175DE55882FF"
Last-Modified: Fri, 11 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8603
Expires: Sun, 13 Nov 2022 01:59:44 GMT
Date: Sat, 12 Nov 2022 23:36:21 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash de470c6bab46e7c4b7cc69f392900fe7
189e4dcc4c2b8bf1f050e06bd68bce8a99618918
86f57134ddebd23a25615dc4d59c4b1ca8919e3e0495e1f006cbe7c0f39aa27e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5960
Cache-Control: max-age=131653
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 23:36:22 GMT
Etag: "636f75f3-1d7"
Expires: Mon, 14 Nov 2022 12:10:35 GMT
Last-Modified: Sat, 12 Nov 2022 10:31:15 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a8391107bfc5e4673e8a706f90f63768
5295ed0b1cb8bad4d3e851049acc7f0270937d12
ed5c27510100ffc4481be474ebcb020d147c645beb110604d5284eeeb8b97c02
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ED5C27510100FFC4481BE474EBCB020D147C645BEB110604D5284EEEB8B97C02"
Last-Modified: Fri, 11 Nov 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4472
Expires: Sun, 13 Nov 2022 00:50:54 GMT
Date: Sat, 12 Nov 2022 23:36:22 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4736bac84ca28f2b1e961159fb4ea098
1319612979f53896fcfeacd4215c2715d4951e4c
5e81213e111ddf68c7f884f72b4e06fc4dc95eb902c3cf0762236b2418840dba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Length, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 12 Nov 2022 22:44:16 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3126
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: do0XvcHYLIt2sPlK1rbFLKO0KSbqxFpz+lyNuDtS3bk97kGadSlR/n1WND0/2mAFgnO/XOLwLv4=
x-amz-request-id: N5TDT28XMMYCTXWN
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 12 Nov 2022 23:13:11 GMT
age: 1391
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 12 Nov 2022 23:36:22 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
aisles.com.au/page/view-post?id=316
185.160.67.52200 OK 13 kB URL HTTP/1.1 aisles.com.au/page/view-post?id=316
IP 185.160.67.52:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (723), with CRLF, LF line terminators
Hash ca73a60a47678c81b9d14ee5cae43de3
a66023ac46dca028f7073ae411550dedd4de96cc
39df4b8593ce673943af09b53fee73e59fbe1cb454b5f657ebb879f79896b8a7
Analyzer Verdict Alert fortinet Malware
GET /page/view-post?id=316 HTTP/1.1
Host: aisles.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 23:36:22 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip
Vary: Accept-Encoding,User-Agent
Set-Cookie: memberSession=t9C%263EpEp%21YN%2CHPSCALaFj5q94%2B%2CQggs; path=/; HttpOnly
memberSession=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Content-Type-Options: nosniff
Content-Security-Policy: upgrade-insecure-requests;
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Keep-Alive: timeout=5, max=100
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Cache-Control, Pragma, Last-Modified, ETag, Alert, Backoff, Content-Type, Retry-After, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 12 Nov 2022 23:25:00 GMT
cache-control: public,max-age=3600
age: 682
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
aisles.com.au/template/images/icons/spacer.gif
185.160.67.52200 OK 43 B URL HTTP/2 aisles.com.au/template/images/icons/spacer.gif
IP 185.160.67.52:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 18b3b970eb07b30bd8fe644ea2c85f1e
57fd207047e80f5c4d9eefcdc62c118c8b016be3
481a818ac51c90f5c381440f8033f55481882d8b903feb3b617bcd6ea7d90469
GET /template/images/icons/spacer.gif HTTP/1.1
Host: aisles.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aisles.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 09 Nov 2018 10:09:10 GMT
accept-ranges: bytes
content-length: 43
content-type: image/gif
date: Sat, 12 Nov 2022 23:36:22 GMT
server: Apache
X-Firefox-Spdy: h2
aisles.com.au/s/bx_posts_photos_resized/c2vb66mkdiyjhs7pwucfmygydablwbzg.jpeg
185.160.67.52200 OK 14 kB URL HTTP/2 aisles.com.au/s/bx_posts_photos_resized/c2vb66mkdiyjhs7pwucfmygydablwbzg.jpeg
IP 185.160.67.52:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 275x183, components 3\012- data
Hash 367d9980be9c02d0f2e5960fe798aed9
87af9071e0173aabd6d39f2182596e65d2cc4b57
9c69d6e3f50365274543aef2e42063be17c02d2fd1f7470e78979d1a13f2da36
Analyzer Verdict Alert fortinet Malware
GET /s/bx_posts_photos_resized/c2vb66mkdiyjhs7pwucfmygydablwbzg.jpeg HTTP/1.1
Host: aisles.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aisles.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, must-revalidate, max-age=2592000
expires: Mon, 12 Dec 2022 23:36:22 GMT
accept-ranges: bytes
content-disposition: inline; filename="5065931052FF2-1EA0-4F1C-8D3D-215463B2A352.jpeg"
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 13 May 2021 09:15:33 GMT
content-range: bytes 0-13850/13851
content-length: 13851
vary: User-Agent
content-type: image/jpeg
date: Sat, 12 Nov 2022 23:36:22 GMT
server: Apache
X-Firefox-Spdy: h2
aisles.com.au/s/bx_persons_pictures_resized/ay7pvzqtmqnpecagpr6mcxzwkfxxzl9r.jpg
185.160.67.52200 OK 1.3 kB URL HTTP/2 aisles.com.au/s/bx_persons_pictures_resized/ay7pvzqtmqnpecagpr6mcxzwkfxxzl9r.jpg
IP 185.160.67.52:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 50x50, components 3\012- data
Hash a804c549239adac779916963d2dc21e2
705d71ea5ae583d733a53ff11bc04863e74196b7
2166a88685016b5e9ea0ad5b5888b7557e1ac3d65417b57c9bf704c62bf41468
GET /s/bx_persons_pictures_resized/ay7pvzqtmqnpecagpr6mcxzwkfxxzl9r.jpg HTTP/1.1
Host: aisles.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aisles.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, must-revalidate, max-age=2592000
expires: Mon, 12 Dec 2022 23:36:22 GMT
accept-ranges: bytes
content-disposition: inline; filename="294467591834D-F7F8-4337-9EE3-1790E9B2E500.jpg"
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Sun, 29 Nov 2020 13:48:22 GMT
content-range: bytes 0-1348/1349
content-length: 1349
vary: User-Agent
content-type: image/jpeg
date: Sat, 12 Nov 2022 23:36:22 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ae51f1958554de4457c22a7d5a9ba8b6
173e90a8c6ee36b7ec569dbea47436a90d7e7c76
dc43a04e1e26243f63a8e628f2ebcb23a9527fd4bc40dc6d1d61879b0f95bb21
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1976
Cache-Control: max-age=122606
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 23:36:22 GMT
Etag: "636f622c-1d7"
Expires: Mon, 14 Nov 2022 09:39:48 GMT
Last-Modified: Sat, 12 Nov 2022 09:06:52 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.39.57.61101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.57.61:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: P2ML7s/Gl/tiJ+zYII0yjQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: xoV6GIdvnxaUqoq1Zoz/IzDxeQA=
ocsp.usertrust.com/
104.18.32.68200 OK 2.2 kB IP 104.18.32.68:0
Hash 0b9c9832e62ab0668f8d3881f8bbd780
85d8ee19e08e67d6b053f9bad2567cdeac3cd357
b8d5153b94f8a7ab9fcd44dadb5c9e78cca3e1d35b6b4f8f4f11691ccc2ae6ac
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 23:36:23 GMT
Content-Type: application/ocsp-response
Content-Length: 2236
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2022 22:12:16 GMT
Expires: Sat, 19 Nov 2022 22:12:15 GMT
Etag: "85d8ee19e08e67d6b053f9bad2567cdeac3cd357"
Cache-Control: max-age=604038,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 676
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 769316ec199d0b02-OSL
www.trustlogo.com/trustlogo/javascript/trustlogo.js
91.199.212.59200 OK 14 kB URL HTTP/2 www.trustlogo.com/trustlogo/javascript/trustlogo.js
IP 91.199.212.59:0
ASN #48447 Sectigo Limited
File type HTML document text\012- exported SGML document, ASCII text, with very long lines (14088)
Hash e46d5528af29f4224a927291166d2ddc
b8bb9695e47f7370db2dea4884e0efcbd86a4dca
1ba30b444f0489b7da1ca80092c7879835ba96404751aabbdb2647de4261fa05
GET /trustlogo/javascript/trustlogo.js HTTP/1.1
Host: www.trustlogo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://aisles.com.au/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 12 Nov 2022 23:36:23 GMT
content-type: application/javascript
content-length: 14089
last-modified: Mon, 28 Oct 2019 17:12:11 GMT
etag: "5db7216b-3709"
expires: Sun, 13 Nov 2022 00:00:09 GMT
cache-control: max-age=1800
strict-transport-security: max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
aisles.com.au/gzip_loader.php?file=bx_templ_js_ecc6a95112714982414d2865e81d4f6d.js
185.160.67.52200 OK 184 kB URL HTTP/2 aisles.com.au/gzip_loader.php?file=bx_templ_js_ecc6a95112714982414d2865e81d4f6d.js
IP 185.160.67.52:0
Size 184 kB (184202 bytes)
Hash 9e0b5fc15c418fac1ddaf31c38494213
7fb4ded0e35f968a4a467db53c9072fc4e82d3cc
b7446270214b5a3bfb87c5f6cc5d246a6c4d660802c52977f7395c23f9779466
GET /gzip_loader.php?file=bx_templ_js_ecc6a95112714982414d2865e81d4f6d.js HTTP/1.1
Host: aisles.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aisles.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
cache-control: max-age=2592000, public
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
content-type: text/javascript;charset=UTF-8
date: Sat, 12 Nov 2022 23:36:22 GMT
server: Apache
X-Firefox-Spdy: h2
aisles.com.au/gzip_loader.php?file=bx_templ_js_9b63bc81d719cd9a09fbff45dcf9dbd0.js
185.160.67.52200 OK 5.4 kB URL HTTP/2 aisles.com.au/gzip_loader.php?file=bx_templ_js_9b63bc81d719cd9a09fbff45dcf9dbd0.js
IP 185.160.67.52:0
Hash e475674a0a5a20f225a02739edc99370
43e9412e3b032806869d2d2c2fc95786c362e094
1dfd83dcd8e403377446d2a23adff9bf0543c44fbfbbf128f5618c140b22bc39
GET /gzip_loader.php?file=bx_templ_js_9b63bc81d719cd9a09fbff45dcf9dbd0.js HTTP/1.1
Host: aisles.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aisles.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
cache-control: max-age=2592000, public
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
content-type: text/javascript;charset=UTF-8
date: Sat, 12 Nov 2022 23:36:22 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 9121b85de67469de2a887c378f46917d
6b80e298c2b0be2e74718f9fe8b71ff689a8c8d6
74807788c521bf94755e92104270d2e07d0bf444ebf790080f60e7af9c816697
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 23:36:24 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 10 Nov 2022 14:20:20 GMT
Expires: Thu, 17 Nov 2022 14:20:19 GMT
Etag: "6b80e298c2b0be2e74718f9fe8b71ff689a8c8d6"
Cache-Control: max-age=398034,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 769316ee8f9eb4f9-OSL
aisles.com.au/gzip_loader.php?file=bx_templ_css_2_efe3a884c5adb4ca25cec916a5979636.css
185.160.67.52200 OK 30 kB URL HTTP/2 aisles.com.au/gzip_loader.php?file=bx_templ_css_2_efe3a884c5adb4ca25cec916a5979636.css
IP 185.160.67.52:0
File type ASCII text, with very long lines (57660)
Hash 5ffea6b38c57bfcb88c6e2d0c1d1233a
3a02a0d9f25157d4852c923cffd80312ce030e0c
0cd7a4fee9273a2e5b633b84c7d78cc675d13a7ac93c4b623df48842ae2c726f
GET /gzip_loader.php?file=bx_templ_css_2_efe3a884c5adb4ca25cec916a5979636.css HTTP/1.1
Host: aisles.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aisles.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
cache-control: max-age=2592000, public
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
content-type: text/css;charset=UTF-8
date: Sat, 12 Nov 2022 23:36:22 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5823b629e86542b63f4355ec5e67a126
97cbdbbb6b03e6ef7f3f45449245470ad8bd8292
96d8e39efb6eebd1413a4bc0fa6800781f636e70dc0ccadf6a546f26fa022755
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96D8E39EFB6EEBD1413A4BC0FA6800781F636E70DC0CCADF6A546F26FA022755"
Last-Modified: Thu, 10 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18990
Expires: Sun, 13 Nov 2022 04:52:54 GMT
Date: Sat, 12 Nov 2022 23:36:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5823b629e86542b63f4355ec5e67a126
97cbdbbb6b03e6ef7f3f45449245470ad8bd8292
96d8e39efb6eebd1413a4bc0fa6800781f636e70dc0ccadf6a546f26fa022755
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96D8E39EFB6EEBD1413A4BC0FA6800781F636E70DC0CCADF6A546F26FA022755"
Last-Modified: Thu, 10 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18990
Expires: Sun, 13 Nov 2022 04:52:54 GMT
Date: Sat, 12 Nov 2022 23:36:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5823b629e86542b63f4355ec5e67a126
97cbdbbb6b03e6ef7f3f45449245470ad8bd8292
96d8e39efb6eebd1413a4bc0fa6800781f636e70dc0ccadf6a546f26fa022755
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96D8E39EFB6EEBD1413A4BC0FA6800781F636E70DC0CCADF6A546F26FA022755"
Last-Modified: Thu, 10 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18990
Expires: Sun, 13 Nov 2022 04:52:54 GMT
Date: Sat, 12 Nov 2022 23:36:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5823b629e86542b63f4355ec5e67a126
97cbdbbb6b03e6ef7f3f45449245470ad8bd8292
96d8e39efb6eebd1413a4bc0fa6800781f636e70dc0ccadf6a546f26fa022755
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96D8E39EFB6EEBD1413A4BC0FA6800781F636E70DC0CCADF6A546F26FA022755"
Last-Modified: Thu, 10 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18990
Expires: Sun, 13 Nov 2022 04:52:54 GMT
Date: Sat, 12 Nov 2022 23:36:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5823b629e86542b63f4355ec5e67a126
97cbdbbb6b03e6ef7f3f45449245470ad8bd8292
96d8e39efb6eebd1413a4bc0fa6800781f636e70dc0ccadf6a546f26fa022755
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96D8E39EFB6EEBD1413A4BC0FA6800781F636E70DC0CCADF6A546F26FA022755"
Last-Modified: Thu, 10 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18990
Expires: Sun, 13 Nov 2022 04:52:54 GMT
Date: Sat, 12 Nov 2022 23:36:24 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4da03871-10a1-4d64-8f01-11282f1f6f20.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4da03871-10a1-4d64-8f01-11282f1f6f20.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dbfb6798f32968c8e68ba386edf23794
29d00e0276be7b87b759d78edbb3851c52e4db86
4379cce07bdfea4da27c1f158d1c16928346f8ebdf00272737fd1cf1c75f5fee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4da03871-10a1-4d64-8f01-11282f1f6f20.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13931
x-amzn-requestid: 3f6caf57-b687-4d1b-af40-a21bbebaff95
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bEI_KFf2IAMFwgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364bb94-23ae7ecd18dc41521e172237;Sampled=0
x-amzn-remapped-date: Fri, 04 Nov 2022 07:13:24 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: le9VvKtrgZ6WaPwZeU6HunyzkKUU1aoZ4A88Ll-Uy524yzGN1zBrJQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 03:42:55 GMT
age: 71609
etag: "29d00e0276be7b87b759d78edbb3851c52e4db86"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd2698a2-6980-44f7-aa49-52cc55dc0647.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd2698a2-6980-44f7-aa49-52cc55dc0647.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9089a86b213cc0f8701c5ce6ed1a135a
bba046058fb4144e78ccc43e22baa873c1cd396d
9929557912911c1afa95ad55509fbda53d7755e5b0f7eb33adf4f8ee9a9f61de
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd2698a2-6980-44f7-aa49-52cc55dc0647.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6327
x-amzn-requestid: 4228ad59-2113-4457-b225-fd931b5e1092
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bUquTE1KoAMFi1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636b57f4-353d91f526e7efb9088c8692;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 07:34:12 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: F_cpNY6oFlOj9NvJXbdyFHpGZlkn_5jzUwLpiOqNs8I_zQbEgVKN_w==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 21:52:31 GMT
age: 6233
etag: "bba046058fb4144e78ccc43e22baa873c1cd396d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a9558ab-ee40-44ba-a157-4fde0dfec65b.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a9558ab-ee40-44ba-a157-4fde0dfec65b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d5f94ecb9303e6371674ce8f2be91482
3aa9b3fb6878bf9f525b2a801620120e69fd955f
8681389ba4f690600cd686b206c69e3a7dd4348e6ce56ee6b8828af092d2f6e7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a9558ab-ee40-44ba-a157-4fde0dfec65b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9645
x-amzn-requestid: c36b676a-0685-45f2-ba1a-358cb65ebf2e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bHb6hGbNIAMFnjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63660d0f-6dce3b955ae3534d3b3f2ba4;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 07:13:19 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: WVmCYP9mmqknLPcS7Zv4FkCnjPpxrXfQntTbjFJbYOWfe9CLCPe1pg==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 00:53:22 GMT
age: 81782
etag: "3aa9b3fb6878bf9f525b2a801620120e69fd955f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15103da1-5996-4497-9ec1-6bf49292c35c.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15103da1-5996-4497-9ec1-6bf49292c35c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b3ce8ed12a73c0d1cc9a5f838bff34c8
b96ef6b0060b6dd83475728986ff333faf35c4b6
12466854c0ba0cf11043d6b0ef171c8d6645e6d7f4de4211e1426d0c883a0d96
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15103da1-5996-4497-9ec1-6bf49292c35c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9708
x-amzn-requestid: 08ff92c4-61ac-490e-9c5b-0c3e97abb6fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bBpBDGjPoAMFV8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6363bba0-7a0b97ea587f036e33c43e5f;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 13:01:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: zuKTibGdAdeNjShv8xm3RD44R1YUsdbJ5ZnzrhwWlMf3j9A_HZH1dA==
via: 1.1 de8fc80b494d3d381f7e006918dcc588.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 03:23:56 GMT
age: 72748
etag: "b96ef6b0060b6dd83475728986ff333faf35c4b6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa23e03e8-7a4b-473b-801f-39322d374478.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa23e03e8-7a4b-473b-801f-39322d374478.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 31a009393081c25d9afbde558a278ebf
bf8de6c00f579baa320456bd0e79ab80978008bc
90e81f6a10d3dbc56a45e9cfd65dbcd6bddf9e3ab526b4cca270bc2f26404950
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa23e03e8-7a4b-473b-801f-39322d374478.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5149
x-amzn-requestid: 394f108e-48b9-4550-ab9f-5b4883792485
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bEIqfHOoIAMFlCw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364bb0f-648124d07e289043410f1dd0;Sampled=0
x-amzn-remapped-date: Fri, 04 Nov 2022 07:11:11 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: tW81M1o1m_OdLZJLg7dvgbaugRKYpHzHx-8R1g4YcGH74YnIquTuAQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 07:45:08 GMT
age: 57076
etag: "bf8de6c00f579baa320456bd0e79ab80978008bc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80441337-327d-4d34-9fe8-53269c39ac18.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80441337-327d-4d34-9fe8-53269c39ac18.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 26249508ef18eac51cf62cf6e90339a4
a9922959c532dd26f21bda4f74ee1fa8496e862e
25075ef6337bae8e60412cdca98afbae6aca61d889aadce4cbad4a8522f4c4b1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80441337-327d-4d34-9fe8-53269c39ac18.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7867
x-amzn-requestid: e05d4978-6f46-4395-8121-4d969a222328
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bgfLqFWIoAMF01A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6370124a-4033150d0180e56e2965e26e;Sampled=0
x-amzn-remapped-date: Sat, 12 Nov 2022 21:38:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: YDkJ7OIcS3FiDPufRTj5VtL5CMxbNN2o2Zq50QQ9UNeDw4uE4j3jrw==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 21:54:29 GMT
age: 6115
etag: "a9922959c532dd26f21bda4f74ee1fa8496e862e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
aisles.com.au/s/sys_images_resized/xgtuvgvdzprfwrtfspeblshb2e6u7ckh.png
185.160.67.52200 OK 102 kB URL HTTP/2 aisles.com.au/s/sys_images_resized/xgtuvgvdzprfwrtfspeblshb2e6u7ckh.png
IP 185.160.67.52:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 1394x537, components 3\012- data
Size 102 kB (102162 bytes)
Hash f270dc936c2cfe562780339e3f3fb5a5
66f4f8bed91b112b33168ee12ba921f9ed17c9e0
678902963b482f7242df2695f3f62976fc22a6bdc4167caefe3cfd87293b4fd4
GET /s/sys_images_resized/xgtuvgvdzprfwrtfspeblshb2e6u7ckh.png HTTP/1.1
Host: aisles.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aisles.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, must-revalidate, max-age=2592000
expires: Mon, 12 Dec 2022 23:36:24 GMT
accept-ranges: bytes
content-disposition: inline; filename="66191Australian Law Backgourn.png"
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 09 Sep 2020 01:42:01 GMT
content-range: bytes 0-102161/102162
content-length: 102162
vary: User-Agent
content-type: image/png
date: Sat, 12 Nov 2022 23:36:24 GMT
server: Apache
X-Firefox-Spdy: h2
aisles.com.au/template/fonts/fa-brands-400.woff2
185.160.67.52200 OK 76 kB URL HTTP/2 aisles.com.au/template/fonts/fa-brands-400.woff2
IP 185.160.67.52:0
File type Web Open Font Format (Version 2), TrueType, length 76548, version 330.-16188\012- data
Hash 067595ad77ecc0db9c81c8905a7eef32
3a175545f961094f3614f208f2166187b642355f
089630244600f33230010f5e04c67419ec642c5228540adb42e3fe92c631e6bf
Analyzer Verdict Alert fortinet Malware
GET /template/fonts/fa-brands-400.woff2 HTTP/1.1
Host: aisles.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://aisles.com.au
Connection: keep-alive
Referer: https://aisles.com.au/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 26 Mar 2020 03:01:04 GMT
accept-ranges: bytes
content-length: 76548
vary: Accept-Encoding,User-Agent
content-type: font/woff2
date: Sat, 12 Nov 2022 23:36:24 GMT
server: Apache
X-Firefox-Spdy: h2
aisles.com.au/template/fonts/fa-brands-400.woff
185.160.67.52200 OK 90 kB URL HTTP/2 aisles.com.au/template/fonts/fa-brands-400.woff
IP 185.160.67.52:0
File type Web Open Font Format, TrueType, length 89824, version 330.-16188\012- data
Hash b564da88bbf0c4aa446fa19653713cd1
3023db69a482111f7a17f29cee621a933cc5f4b9
045b18d10f192755e794b64abd0a121ed78e1fef081ba05bf0127e869f6e6ce9
Analyzer Verdict Alert fortinet Malware
GET /template/fonts/fa-brands-400.woff HTTP/1.1
Host: aisles.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://aisles.com.au
Connection: keep-alive
Referer: https://aisles.com.au/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 26 Mar 2020 03:01:02 GMT
accept-ranges: bytes
content-length: 89824
vary: Accept-Encoding,User-Agent
content-type: font/woff
date: Sat, 12 Nov 2022 23:36:24 GMT
server: Apache
X-Firefox-Spdy: h2
flast.com.au/comodo_secure_seal_100x85_transp.png
185.160.67.52200 OK 9.3 kB URL HTTP/2 flast.com.au/comodo_secure_seal_100x85_transp.png
IP 185.160.67.52:0
File type PNG image data, 100 x 85, 8-bit/color RGBA, non-interlaced\012- data
Hash dc50e63bdc89ea4aafc16f7f578619fd
22682f03a0bfd861cd70d13739e2892df604f219
133f96ceac619d2317cd9e4e3e9f40f30929fb612c170231cb400953d3546602
GET /comodo_secure_seal_100x85_transp.png HTTP/1.1
Host: flast.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://aisles.com.au/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Sat, 22 Dec 2018 03:21:29 GMT
accept-ranges: bytes
content-length: 9277
content-type: image/png
date: Sat, 12 Nov 2022 23:36:24 GMT
server: Apache
X-Firefox-Spdy: h2
aisles.com.au/template/fonts/fa-solid-900.ttf
185.160.67.52200 OK 41 kB URL HTTP/2 aisles.com.au/template/fonts/fa-solid-900.ttf
IP 185.160.67.52:0
Hash 7c6c8e90967216957dc3652e4f53c88c
6bf5df85e2140e60bf810905a46128dfd6a69a95
d7305f0e71c8d7969a83aba2fbd20b23be3781f02b6541eb5b8052b15e7533a6
Analyzer Verdict Alert fortinet Malware
GET /template/fonts/fa-solid-900.ttf HTTP/1.1
Host: aisles.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://aisles.com.au
Connection: keep-alive
Referer: https://aisles.com.au/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 26 Mar 2020 03:01:04 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: font/ttf
date: Sat, 12 Nov 2022 23:36:24 GMT
server: Apache
X-Firefox-Spdy: h2
aisles.com.au/s/sys_images_resized/a8xngbgnrbbm2dqvgvd9g2st9ifw2y6w.png
185.160.67.52200 OK 7.5 kB URL HTTP/2 aisles.com.au/s/sys_images_resized/a8xngbgnrbbm2dqvgvd9g2st9ifw2y6w.png
IP 185.160.67.52:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 152x152, components 3\012- data
Hash 371226e64329f5c8b439967350179490
899db069c168205829a98d8fcc3b5098447b6a2a
e0f43994034af44882966a5eda80341cc8d91d7419e948ec70edef4271f32af1
GET /s/sys_images_resized/a8xngbgnrbbm2dqvgvd9g2st9ifw2y6w.png HTTP/1.1
Host: aisles.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aisles.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, must-revalidate, max-age=2592000
expires: Mon, 12 Dec 2022 23:36:24 GMT
accept-ranges: bytes
content-disposition: inline; filename="33743Lead-Picture-bew.png"
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Sun, 06 Sep 2020 03:24:09 GMT
content-range: bytes 0-7466/7467
content-length: 7467
vary: User-Agent
content-type: image/png
date: Sat, 12 Nov 2022 23:36:24 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff186777a-5327-41b7-9918-a7c7b298fdaf.jpeg
34.120.237.76200 OK 2.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff186777a-5327-41b7-9918-a7c7b298fdaf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c6caf0847d9e16ba6710405aadf02f01
92a599f4dd1df4a38cca5e095790f787f442d2a2
b42dba826012a7c62aeb1869e53b896b47aaca8a278952771560a2234b45563a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff186777a-5327-41b7-9918-a7c7b298fdaf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 2753
x-amzn-requestid: 4564ab0e-5b18-4958-983e-e847272f3ed4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bes3HECWoAMFcPw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636f5b60-2b9a73bd648cf08c3d851799;Sampled=0
x-amzn-remapped-date: Sat, 12 Nov 2022 08:37:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Ua0TzVb8Q4i_4sIgvNYbYEF37AkzvvOM4rk_D8_RIfSWrKEXMq7rkQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 21:54:29 GMT
age: 13417
etag: "92a599f4dd1df4a38cca5e095790f787f442d2a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
aisles.com.au/template/fonts/fa-brands-400.ttf
185.160.67.52200 OK 0 B URL HTTP/2 aisles.com.au/template/fonts/fa-brands-400.ttf
IP 185.160.67.52:0
Analyzer Verdict Alert fortinet Malware
GET /template/fonts/fa-brands-400.ttf HTTP/1.1
Host: aisles.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://aisles.com.au
Connection: keep-alive
Referer: https://aisles.com.au/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 26 Mar 2020 03:01:02 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: font/ttf
date: Sat, 12 Nov 2022 23:36:24 GMT
server: Apache
X-Firefox-Spdy: h2
aisles.com.au/template/fonts/fa-solid-900.woff2
185.160.67.52200 OK 0 B URL HTTP/2 aisles.com.au/template/fonts/fa-solid-900.woff2
IP 185.160.67.52:0
Analyzer Verdict Alert fortinet Malware
GET /template/fonts/fa-solid-900.woff2 HTTP/1.1
Host: aisles.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://aisles.com.au
Connection: keep-alive
Referer: https://aisles.com.au/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 26 Mar 2020 03:01:04 GMT
accept-ranges: bytes
content-length: 76120
vary: Accept-Encoding,User-Agent
content-type: font/woff2
date: Sat, 12 Nov 2022 23:36:24 GMT
server: Apache
X-Firefox-Spdy: h2
aisles.com.au/template/fonts/fa-solid-900.woff
185.160.67.52200 OK 0 B URL HTTP/2 aisles.com.au/template/fonts/fa-solid-900.woff
IP 185.160.67.52:0
Analyzer Verdict Alert fortinet Malware
GET /template/fonts/fa-solid-900.woff HTTP/1.1
Host: aisles.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://aisles.com.au
Connection: keep-alive
Referer: https://aisles.com.au/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 26 Mar 2020 03:01:04 GMT
accept-ranges: bytes
content-length: 99004
vary: Accept-Encoding,User-Agent
content-type: font/woff
date: Sat, 12 Nov 2022 23:36:24 GMT
server: Apache
X-Firefox-Spdy: h2
aisles.com.au/gzip_loader.php?file=bx_templ_css_2_b2d0cc072e6ddcb7413dc7f2e4f42bdb.css
185.160.67.52200 OK 0 B URL HTTP/2 aisles.com.au/gzip_loader.php?file=bx_templ_css_2_b2d0cc072e6ddcb7413dc7f2e4f42bdb.css
IP 185.160.67.52:0
GET /gzip_loader.php?file=bx_templ_css_2_b2d0cc072e6ddcb7413dc7f2e4f42bdb.css HTTP/1.1
Host: aisles.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aisles.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
cache-control: max-age=2592000, public
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
content-type: text/css;charset=UTF-8
date: Sat, 12 Nov 2022 23:36:22 GMT
server: Apache
X-Firefox-Spdy: h2