my.gov.au-ato.conectateve.org/mygov/a1b2c3/cfcb21e4721d1ecb40212899206a2689/login/index.php
198.136.62.113200 OK 2.5 kB URL HTTP/1.1 my.gov.au-ato.conectateve.org/mygov/a1b2c3/cfcb21e4721d1ecb40212899206a2689/login/index.php
IP 198.136.62.113:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (341)
Hash 627a5aa6272bee96b721929d6cf1577b
1d5e9dfabea021a091adf73a2187adb9bb8212fc
6c29618e767ea0baa7c16d2973b3dbf28670d66bbbd276a5f4530567907239fb
Analyzer Verdict Alert fortinet Malware
GET /mygov/a1b2c3/cfcb21e4721d1ecb40212899206a2689/login/index.php HTTP/1.1
Host: my.gov.au-ato.conectateve.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html; charset=UTF-8
content-length: 2508
content-encoding: gzip
vary: Accept-Encoding
date: Mon, 06 Feb 2023 17:00:59 GMT
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3479
Expires: Mon, 06 Feb 2023 17:59:00 GMT
Date: Mon, 06 Feb 2023 17:01:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 507011ccb9124dcd57e84a90a0965cc4
1a6575d0ac979c7184490cc9836ac4812ad2afd1
01626c18e1e68507aa33ef7448dbc3311901ab6f29adc2f51d449409b0680dce
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01626C18E1E68507AA33EF7448DBC3311901AB6F29ADC2F51D449409B0680DCE"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14593
Expires: Mon, 06 Feb 2023 21:04:14 GMT
Date: Mon, 06 Feb 2023 17:01:01 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Content-Type, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 06 Feb 2023 16:34:05 GMT
content-type: application/json
age: 1616
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11174
Expires: Mon, 06 Feb 2023 20:07:15 GMT
Date: Mon, 06 Feb 2023 17:01:01 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: oKdgqyyTjxNLuv1JVYNG8LLrFRsWQksQDqzoZK9tUZqf1RvNJzxzZcEvqOe5geWjMlHOSCiCc30=
x-amz-request-id: KMA7MXD80H6Q7XY3
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 06 Feb 2023 16:53:46 GMT
age: 435
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 17:01:01 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ad2d72821808ee5f77c0598fed0f8bd1
adcd92881d1c5ac3cca4687dc6347369240f4726
c7ce86611bf0b0063c0bcb2c6a6a4b85fe6be2d89e382b8907e8bbb2e1e5962d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 17:01:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
my.gov.au-ato.conectateve.org/mygov/bower_components/ua-parser-js/dist/ua-parser.min.js
198.136.62.113200 OK 6.6 kB URL HTTP/1.1 my.gov.au-ato.conectateve.org/mygov/bower_components/ua-parser-js/dist/ua-parser.min.js
IP 198.136.62.113:0
File type Unicode text, UTF-8 text, with very long lines (16817)
Hash cfb5bbcfe752e669ef709178e7f2f04a
859f382cfa7d777c1cd8782801cbca4ad895d141
d5ae63522daec9e2b89866572c8f96cd8654b3ff8c00a3553350b1d9e1909ba1
Analyzer Verdict Alert fortinet Malware
GET /mygov/bower_components/ua-parser-js/dist/ua-parser.min.js HTTP/1.1
Host: my.gov.au-ato.conectateve.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://my.gov.au-ato.conectateve.org/mygov/a1b2c3/cfcb21e4721d1ecb40212899206a2689/login/index.php
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 13 Feb 2023 17:01:00 GMT
content-type: application/javascript
last-modified: Thu, 12 Oct 2017 20:16:24 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 6640
date: Mon, 06 Feb 2023 17:01:00 GMT
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 26a15a1b880ec1026360b696b1c27074
fd35f80a1cf599da2a8e68a44477465a580440a5
a6d5caec988319523c120bc435a4ff0200b7ead114db10db19a09caeace978f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 17:01:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
my.gov.au-ato.conectateve.org/mygov/core/form/core_form.js
198.136.62.113200 OK 4.0 kB URL HTTP/1.1 my.gov.au-ato.conectateve.org/mygov/core/form/core_form.js
IP 198.136.62.113:0
Hash b511102800e7d5ca2ad874f2b6187553
e4a1fe7d1a3340f14bf4917693322251e3883be0
0d0a5572a3ddf50c050272511d7d3f11ed9ea474dd3b77ae4895b9afbee77df2
Analyzer Verdict Alert fortinet Malware
GET /mygov/core/form/core_form.js HTTP/1.1
Host: my.gov.au-ato.conectateve.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://my.gov.au-ato.conectateve.org/mygov/a1b2c3/cfcb21e4721d1ecb40212899206a2689/login/index.php
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 13 Feb 2023 17:01:00 GMT
content-type: application/javascript
last-modified: Sun, 07 Jul 2019 08:59:12 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3964
date: Mon, 06 Feb 2023 17:01:00 GMT
my.gov.au-ato.conectateve.org/mygov/bower_components/font-awesome/css/font-awesome.min.css
198.136.62.113200 OK 7.7 kB URL HTTP/1.1 my.gov.au-ato.conectateve.org/mygov/bower_components/font-awesome/css/font-awesome.min.css
IP 198.136.62.113:0
File type ASCII text, with very long lines (30837)
Hash 3d0e88dade2094ea19b1788766508159
0130c52d4a864c0f8a5b7ed20d94fb6338f17760
84900430cd19ba9dcbe2cbc46dbb74f45fc114bf56d97918e6b1b22f2ab69c93
GET /mygov/bower_components/font-awesome/css/font-awesome.min.css HTTP/1.1
Host: my.gov.au-ato.conectateve.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://my.gov.au-ato.conectateve.org/mygov/a1b2c3/cfcb21e4721d1ecb40212899206a2689/login/index.php
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 13 Feb 2023 17:01:00 GMT
content-type: text/css
last-modified: Sun, 09 Apr 2017 16:29:24 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 7749
date: Mon, 06 Feb 2023 17:01:00 GMT
my.gov.au-ato.conectateve.org/mygov/core/form/core_form.css
198.136.62.113200 OK 344 B URL HTTP/1.1 my.gov.au-ato.conectateve.org/mygov/core/form/core_form.css
IP 198.136.62.113:0
Hash 4f92c11c359f894f9e8ace40c9518ef6
282e2e2d8ffdd339f5128d86a348ee882f66ffe9
0fbabe8c1c5d57afed2cef4b1ff5801c0c4b0ab0bf473ceddf0d237451e64f75
GET /mygov/core/form/core_form.css HTTP/1.1
Host: my.gov.au-ato.conectateve.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://my.gov.au-ato.conectateve.org/mygov/a1b2c3/cfcb21e4721d1ecb40212899206a2689/login/index.php
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 13 Feb 2023 17:01:00 GMT
content-type: text/css
last-modified: Sat, 29 Jun 2019 20:26:02 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 344
date: Mon, 06 Feb 2023 17:01:00 GMT
my.gov.au-ato.conectateve.org/mygov/bower_components/jquery/dist/jquery.min.js
198.136.62.113200 OK 34 kB URL HTTP/1.1 my.gov.au-ato.conectateve.org/mygov/bower_components/jquery/dist/jquery.min.js
IP 198.136.62.113:0
File type ASCII text, with very long lines (32058)
Hash 952067b22dcbc963de73b379d99f0618
99a650b3679697ba9157555c5ae3db50da8730d1
29e06579851f27c0b3bcab7a47bb49f92b7d58a925bc1e23c35ffaa2b6045aa6
Analyzer Verdict Alert fortinet Malware
GET /mygov/bower_components/jquery/dist/jquery.min.js HTTP/1.1
Host: my.gov.au-ato.conectateve.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://my.gov.au-ato.conectateve.org/mygov/a1b2c3/cfcb21e4721d1ecb40212899206a2689/login/index.php
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 13 Feb 2023 17:01:00 GMT
content-type: application/javascript
last-modified: Mon, 05 Jun 2017 15:55:06 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 33979
date: Mon, 06 Feb 2023 17:01:00 GMT
my.gov.au-ato.conectateve.org/mygov/login/form/css.css
198.136.62.113200 OK 389 B URL HTTP/1.1 my.gov.au-ato.conectateve.org/mygov/login/form/css.css
IP 198.136.62.113:0
Hash 5406a430852015e177d1c29091f49d73
b3b8689e75074f5692731edc53620cb73fd93652
15c8426e8e07b02f119af3db35a27b98722db2980fb06217ab16029b5966c84b
GET /mygov/login/form/css.css HTTP/1.1
Host: my.gov.au-ato.conectateve.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://my.gov.au-ato.conectateve.org/mygov/a1b2c3/cfcb21e4721d1ecb40212899206a2689/login/index.php
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 13 Feb 2023 17:01:00 GMT
content-type: text/css
last-modified: Sun, 07 Jul 2019 03:26:50 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 389
date: Mon, 06 Feb 2023 17:01:00 GMT
my.gov.au-ato.conectateve.org/mygov/core/token/core_token.css
198.136.62.113200 OK 335 B URL HTTP/1.1 my.gov.au-ato.conectateve.org/mygov/core/token/core_token.css
IP 198.136.62.113:0
Hash 44d7b29f04ba2b0065e307c9f31c10dc
12444fe90174d9ddc102e77aa178eea85e75c3c5
d00e07b9ffc93369bf985dc1421d5f1eb9f8abc8debea4cabb8b8cdb62a1a04f
GET /mygov/core/token/core_token.css HTTP/1.1
Host: my.gov.au-ato.conectateve.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://my.gov.au-ato.conectateve.org/mygov/a1b2c3/cfcb21e4721d1ecb40212899206a2689/login/index.php
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 13 Feb 2023 17:01:00 GMT
content-type: text/css
last-modified: Sun, 07 Jul 2019 07:32:36 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 335
date: Mon, 06 Feb 2023 17:01:00 GMT
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Retry-After, Content-Length, Content-Type, ETag, Cache-Control, Alert, Pragma, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 06 Feb 2023 16:07:20 GMT
age: 3222
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
my.gov.au-ato.conectateve.org/mygov/login/form2/css.css
198.136.62.113200 OK 541 B URL HTTP/1.1 my.gov.au-ato.conectateve.org/mygov/login/form2/css.css
IP 198.136.62.113:0
Hash cefdc9c74bade086218869bacfd74b61
58053ad78f6a5dec35522bf062b730db4fcfc296
11864018f04b0aa25f42a3466e1f7d1157bc9f6ec1a0a57df0ed7a0a3f3b2793
GET /mygov/login/form2/css.css HTTP/1.1
Host: my.gov.au-ato.conectateve.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://my.gov.au-ato.conectateve.org/mygov/a1b2c3/cfcb21e4721d1ecb40212899206a2689/login/index.php
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 13 Feb 2023 17:01:00 GMT
content-type: text/css
last-modified: Fri, 13 Jan 2023 22:55:54 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 541
date: Mon, 06 Feb 2023 17:01:00 GMT
my.gov.au-ato.conectateve.org/mygov/login/index_1.css
198.136.62.113200 OK 3.6 kB URL HTTP/1.1 my.gov.au-ato.conectateve.org/mygov/login/index_1.css
IP 198.136.62.113:0
File type ASCII text, with very long lines (442)
Hash 96f2d4c39301224214473666d81e9d7d
2adfab8c1cbdb9a4ad211c00cfbcceaced579971
ad005720caa474d42214c5287978cf4777b99b858aede095faad8a37db0375ac
GET /mygov/login/index_1.css HTTP/1.1
Host: my.gov.au-ato.conectateve.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://my.gov.au-ato.conectateve.org/mygov/a1b2c3/cfcb21e4721d1ecb40212899206a2689/login/index.php
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 13 Feb 2023 17:01:00 GMT
content-type: text/css
last-modified: Mon, 29 May 2017 20:05:08 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3642
date: Mon, 06 Feb 2023 17:01:00 GMT
my.gov.au-ato.conectateve.org/mygov/login/form/form.js?v=63e1324becd3a
198.136.62.113200 OK 1.2 kB URL HTTP/1.1 my.gov.au-ato.conectateve.org/mygov/login/form/form.js?v=63e1324becd3a
IP 198.136.62.113:0
Hash 45fa9926a88ed8beea3e6a54ce4c8b91
c009848370c1debf7ec8e420e3d1e16432d014f4
e8db9304f2a5ff49d00cd5d30b7dbee90333eae12ba1b66f06cdced81e0e63dd
Analyzer Verdict Alert fortinet Malware
GET /mygov/login/form/form.js?v=63e1324becd3a HTTP/1.1
Host: my.gov.au-ato.conectateve.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://my.gov.au-ato.conectateve.org/mygov/a1b2c3/cfcb21e4721d1ecb40212899206a2689/login/index.php
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 13 Feb 2023 17:01:00 GMT
content-type: application/javascript
last-modified: Sat, 29 Jun 2019 20:43:48 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1155
date: Mon, 06 Feb 2023 17:01:00 GMT
my.gov.au-ato.conectateve.org/mygov/login/token/token.js?v=63e1324becd3c
198.136.62.113200 OK 531 B URL HTTP/1.1 my.gov.au-ato.conectateve.org/mygov/login/token/token.js?v=63e1324becd3c
IP 198.136.62.113:0
Hash a3e6bb995a51a05594e1e9d2c700db28
13113a6ef5c86ec8fe659690540cf3f87977d7a8
08319cf28254ed057068800f6762b74a8b1fea6e63e7d0f09a196e0938c02ccd
GET /mygov/login/token/token.js?v=63e1324becd3c HTTP/1.1
Host: my.gov.au-ato.conectateve.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://my.gov.au-ato.conectateve.org/mygov/a1b2c3/cfcb21e4721d1ecb40212899206a2689/login/index.php
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 13 Feb 2023 17:01:00 GMT
content-type: application/javascript
last-modified: Sun, 07 Jul 2019 08:58:44 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 531
date: Mon, 06 Feb 2023 17:01:00 GMT
my.gov.au-ato.conectateve.org/mygov/core/token/core_token.js
198.136.62.113200 OK 1.7 kB URL HTTP/1.1 my.gov.au-ato.conectateve.org/mygov/core/token/core_token.js
IP 198.136.62.113:0
Hash deabfc5976d096a9f5378432b9a4c839
94506938227a7adffbb51d9c0fef4a4cf25612b9
2109370e5a67a33d9691601800bb9f507f7bf8a1e7074a808d5341752e0916f1
Analyzer Verdict Alert fortinet Malware
GET /mygov/core/token/core_token.js HTTP/1.1
Host: my.gov.au-ato.conectateve.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://my.gov.au-ato.conectateve.org/mygov/a1b2c3/cfcb21e4721d1ecb40212899206a2689/login/index.php
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 13 Feb 2023 17:01:00 GMT
content-type: application/javascript
last-modified: Sun, 07 Jul 2019 08:56:40 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1651
date: Mon, 06 Feb 2023 17:01:00 GMT
my.gov.au-ato.conectateve.org/mygov/login/css/mgv2-application.css
198.136.62.113200 OK 27 kB URL HTTP/1.1 my.gov.au-ato.conectateve.org/mygov/login/css/mgv2-application.css
IP 198.136.62.113:0
File type ASCII text, with very long lines (59825)
Hash f5b5ba1f3ddf5c9d4db9ca83f2aa90db
5425414f11824fb5c64fe3b86a953fba4da044c4
739a8478ab226114c2abc73ce8a2ff20be1dfa5288cd6818c15caf9fb80e7e21
GET /mygov/login/css/mgv2-application.css HTTP/1.1
Host: my.gov.au-ato.conectateve.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://my.gov.au-ato.conectateve.org/mygov/a1b2c3/cfcb21e4721d1ecb40212899206a2689/login/index.php
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 13 Feb 2023 17:01:00 GMT
content-type: text/css
last-modified: Thu, 22 Dec 2022 17:50:42 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 26574
date: Mon, 06 Feb 2023 17:01:00 GMT
my.gov.au-ato.conectateve.org/mygov/login/css/blugov.css
198.136.62.113200 OK 14 kB URL HTTP/1.1 my.gov.au-ato.conectateve.org/mygov/login/css/blugov.css
IP 198.136.62.113:0
File type ASCII text, with CRLF line terminators
Hash 99fa9cbd69d5a5f764973a8bd94f5d51
2dc109d7a9d01820d7b2c18cb2f04278d3299c45
df8935b0b49bd6f09f34902bd3219d7366e065472a2f34b91e7b2ed3f353cef5
GET /mygov/login/css/blugov.css HTTP/1.1
Host: my.gov.au-ato.conectateve.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://my.gov.au-ato.conectateve.org/mygov/a1b2c3/cfcb21e4721d1ecb40212899206a2689/login/index.php
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 13 Feb 2023 17:01:00 GMT
content-type: text/css
last-modified: Fri, 13 Jan 2023 22:54:54 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 13750
date: Mon, 06 Feb 2023 17:01:00 GMT
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10320
Expires: Mon, 06 Feb 2023 19:53:02 GMT
Date: Mon, 06 Feb 2023 17:01:02 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0a8ea253ef61b5c330b3285f9a94e6ae
0cf9a1c66c83f505c7195774996b107c145f5884
8b6bca0cd9c9adcb16bba03349e8fcbfcd645719c82c95f0111095b731842402
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 17:01:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://my.gov.au-ato.conectateve.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 03:13:04 GMT
expires: Fri, 02 Feb 2024 03:13:04 GMT
cache-control: public, max-age=31536000
age: 395278
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
my.gov.au-ato.conectateve.org/mygov/login/images/myGov-cobranded-logo-black.svg
198.136.62.113200 OK 23 kB URL HTTP/1.1 my.gov.au-ato.conectateve.org/mygov/login/images/myGov-cobranded-logo-black.svg
IP 198.136.62.113:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (64143), with no line terminators
Hash f6eaf21ac66dd9d70cf2ec7c1d748e40
31a0b9bcb528cec9306de44c5b4cd191d71ff360
bb27062abff3ca1e1d9465d842d396362675510686a4e7d2d13a0879a5c164f7
Analyzer Verdict Alert fortinet Malware
GET /mygov/login/images/myGov-cobranded-logo-black.svg HTTP/1.1
Host: my.gov.au-ato.conectateve.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://my.gov.au-ato.conectateve.org/mygov/a1b2c3/cfcb21e4721d1ecb40212899206a2689/login/index.php
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 13 Feb 2023 17:01:00 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Dec 2022 16:22:02 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 22763
date: Mon, 06 Feb 2023 17:01:00 GMT
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 836bc62dbb011b6180fc7209d0061736
74e6f18561a7006a3afb6ab03559eec239ce4b36
90b197384670fdb210d364f91b423fd383d25838e38a494158a8185bef0061f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 17:01:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0a8ea253ef61b5c330b3285f9a94e6ae
0cf9a1c66c83f505c7195774996b107c145f5884
8b6bca0cd9c9adcb16bba03349e8fcbfcd645719c82c95f0111095b731842402
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 17:01:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
my.gov.au-ato.conectateve.org/mygov/login/images/myGov-cobranded-logo-white.svg
198.136.62.113200 OK 23 kB URL HTTP/1.1 my.gov.au-ato.conectateve.org/mygov/login/images/myGov-cobranded-logo-white.svg
IP 198.136.62.113:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (64140), with no line terminators
Hash b0e011f1d6e0b23e7f65c36f17ebe2e3
7422678024ac320a1f8b3fe2b6fd61e5cf806ace
fb65e36ae634cb972325b556432ced396618b1d241f9aa5027b73d9618c11ff8
Analyzer Verdict Alert fortinet Malware
GET /mygov/login/images/myGov-cobranded-logo-white.svg HTTP/1.1
Host: my.gov.au-ato.conectateve.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://my.gov.au-ato.conectateve.org/mygov/a1b2c3/cfcb21e4721d1ecb40212899206a2689/login/index.php
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 13 Feb 2023 17:01:00 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Dec 2022 16:22:04 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 22763
date: Mon, 06 Feb 2023 17:01:00 GMT
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://my.gov.au-ato.conectateve.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 05 Feb 2023 12:46:12 GMT
expires: Mon, 05 Feb 2024 12:46:12 GMT
cache-control: public, max-age=31536000
age: 101690
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://my.gov.au-ato.conectateve.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 14:07:32 GMT
expires: Thu, 01 Feb 2024 14:07:32 GMT
cache-control: public, max-age=31536000
age: 442410
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 836bc62dbb011b6180fc7209d0061736
74e6f18561a7006a3afb6ab03559eec239ce4b36
90b197384670fdb210d364f91b423fd383d25838e38a494158a8185bef0061f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 17:01:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Montserrat:200,400,700|Roboto:300,400,500,700,900&display=swap
142.250.74.138200 OK 1.6 kB URL HTTP/2 fonts.googleapis.com/css?family=Montserrat:200,400,700|Roboto:300,400,500,700,900&display=swap
IP 142.250.74.138:0
Hash f298fb45f00f812c6863c56765e59309
a66036638e52b096a6a1b1d5120c074f800878bb
ae27e83ae3488e34878973284acb6159f5da9d4b4db57ec434584b53e97ec0ae
GET /css?family=Montserrat:200,400,700|Roboto:300,400,500,700,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://my.gov.au-ato.conectateve.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 06 Feb 2023 17:01:02 GMT
date: Mon, 06 Feb 2023 17:01:02 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
my.gov.au-ato.conectateve.org/favicon.ico
198.136.62.113404 Not Found 708 B URL HTTP/1.1 my.gov.au-ato.conectateve.org/favicon.ico
IP 198.136.62.113:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 2382378378c002d88b9a507c712c3349
2e894db3808b554abadc8b144338ad9e2ea937ba
37a4e56c497e170de6e152bc479624eb8d7ccb35bad5a190f2fdb17ac699cffa
GET /favicon.ico HTTP/1.1
Host: my.gov.au-ato.conectateve.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://my.gov.au-ato.conectateve.org/mygov/a1b2c3/cfcb21e4721d1ecb40212899206a2689/login/index.php
HTTP/1.1 404 Not Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 708
date: Mon, 06 Feb 2023 17:01:01 GMT
my.gov.au-ato.conectateve.org/mygov/home.php?pl=token&link=comm_us&bid=cfcb21e4721d1ecb40212899206a2689&callback=jQuery32106087037047280945_1675702908025&data=%7B%22online_bider%22%3A1%2C%22w%22%3A0%2C%22dev%22%3A3%7D&_=1675702908026
198.136.62.113200 OK 64 B URL HTTP/1.1 my.gov.au-ato.conectateve.org/mygov/home.php?pl=token&link=comm_us&bid=cfcb21e4721d1ecb40212899206a2689&callback=jQuery32106087037047280945_1675702908025&data=%7B%22online_bider%22%3A1%2C%22w%22%3A0%2C%22dev%22%3A3%7D&_=1675702908026
IP 198.136.62.113:0
File type ASCII text, with no line terminators
Hash 3dda63d5e115064d60f4bd2cb5db1621
518f90f7be1f37d8fc548b4852e46519263f6b70
6fa58575091d40e195bcd6ee5897b19c2feb79c0a94779b8d156ff505e8b5929
GET /mygov/home.php?pl=token&link=comm_us&bid=cfcb21e4721d1ecb40212899206a2689&callback=jQuery32106087037047280945_1675702908025&data=%7B%22online_bider%22%3A1%2C%22w%22%3A0%2C%22dev%22%3A3%7D&_=1675702908026 HTTP/1.1
Host: my.gov.au-ato.conectateve.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://my.gov.au-ato.conectateve.org/mygov/a1b2c3/cfcb21e4721d1ecb40212899206a2689/login/index.php
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: application/json
content-length: 64
date: Mon, 06 Feb 2023 17:01:01 GMT
my.gov.au-ato.conectateve.org/mygov/home.php?pl=token&link=comm_us&bid=cfcb21e4721d1ecb40212899206a2689&callback=jQuery32106087037047280945_1675702908027&data=%7B%22mes%22%3A%22User%20on%20login%20page%22%7D&_=1675702908028
198.136.62.113200 OK 57 B URL HTTP/1.1 my.gov.au-ato.conectateve.org/mygov/home.php?pl=token&link=comm_us&bid=cfcb21e4721d1ecb40212899206a2689&callback=jQuery32106087037047280945_1675702908027&data=%7B%22mes%22%3A%22User%20on%20login%20page%22%7D&_=1675702908028
IP 198.136.62.113:0
File type ASCII text, with no line terminators
Hash 4c64dda70675abd9b08e778ea314446d
a7b0c528e3bb31d7829da0165a7ef289f5688f27
6ee59052fd8f2c12471a523225b624132360d63173f6e74184a8a0ca6ef587e9
GET /mygov/home.php?pl=token&link=comm_us&bid=cfcb21e4721d1ecb40212899206a2689&callback=jQuery32106087037047280945_1675702908027&data=%7B%22mes%22%3A%22User%20on%20login%20page%22%7D&_=1675702908028 HTTP/1.1
Host: my.gov.au-ato.conectateve.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://my.gov.au-ato.conectateve.org/mygov/a1b2c3/cfcb21e4721d1ecb40212899206a2689/login/index.php
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: application/json
content-length: 57
date: Mon, 06 Feb 2023 17:01:01 GMT
push.services.mozilla.com/
35.82.221.194101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.82.221.194:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: IIISY929voaYYCnGfsPutw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 2kvOUXdblo7FiYb0XdMGOaHCBQ8=
my.gov.au-ato.conectateve.org/mygov/a1b2c3/cfcb21e4721d1ecb40212899206a2689/done/
198.136.62.113200 OK 134 B URL HTTP/1.1 my.gov.au-ato.conectateve.org/mygov/a1b2c3/cfcb21e4721d1ecb40212899206a2689/done/
IP 198.136.62.113:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 2c8fddac29c18746a8fbe8ac1b11ae71
1223bff5d4f0b80c3d8704ef9765f39e0c7563ee
4d64d59c1392671cec2c5590ff34aac1ece60bcbf112fba78ea93c5105f29c38
Analyzer Verdict Alert fortinet Malware
GET /mygov/a1b2c3/cfcb21e4721d1ecb40212899206a2689/done/ HTTP/1.1
Host: my.gov.au-ato.conectateve.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://my.gov.au-ato.conectateve.org/mygov/a1b2c3/cfcb21e4721d1ecb40212899206a2689/login/index.php
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html; charset=UTF-8
content-length: 134
content-encoding: gzip
vary: Accept-Encoding
date: Mon, 06 Feb 2023 17:01:01 GMT
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6458
Expires: Mon, 06 Feb 2023 18:48:41 GMT
Date: Mon, 06 Feb 2023 17:01:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6458
Expires: Mon, 06 Feb 2023 18:48:41 GMT
Date: Mon, 06 Feb 2023 17:01:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6458
Expires: Mon, 06 Feb 2023 18:48:41 GMT
Date: Mon, 06 Feb 2023 17:01:03 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ccc8078cc937b7de0b299bcee1496f1b
395f04af71767acc9516387c8b07bde08968fdfe
cf959fc4a72d80dcab20c235bec6d21eadaab87efa7a8969744cd228628ba050
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9808
x-amzn-requestid: 75cc8041-19f5-4994-96b6-b14d3c90ec6e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiSFZAIAMF65g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-355d272c345c8c37595b4bb2;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: T7YlRZ936VEDkBvo2YKrS3GbyEh1xzC8W-50KiODzFjTnQb-hvkKpw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:50:03 GMT
age: 69060
etag: "395f04af71767acc9516387c8b07bde08968fdfe"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d1adf44-5bff-4d36-99c4-8dd0dc2e5ac2.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d1adf44-5bff-4d36-99c4-8dd0dc2e5ac2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 352e4166a431e781e56cc7f169c7f8ca
866b76c34076cf2e18c6a071336fcf4f581f3c4d
75ba13b601f4b00c5b091eb29e7f6739ffee3e127bd6d3c4b35cc967bb6d354a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d1adf44-5bff-4d36-99c4-8dd0dc2e5ac2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9779
x-amzn-requestid: 101b984b-9c04-4d07-b1fe-3d888f4bcd49
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ftcNRFV_oAMF2_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dba721-72679ba0378015034e17b8ca;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 12:05:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FRZf4nkQyttwihy5BBbuHzT9lYQvBPqcOTdT5esu46vqMTvXAi5aQw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 18:39:44 GMT
age: 80479
etag: "866b76c34076cf2e18c6a071336fcf4f581f3c4d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5aedadb2-31f3-4d54-b851-5dd3a166179d.jpeg
34.120.237.76200 OK 3.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5aedadb2-31f3-4d54-b851-5dd3a166179d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d6107217bc206ebf204dfcf832cffc04
4f370e81106ef09ce9294eaa074ff6922197ded0
2cc25b8ddf56ceb274bd147d4e54f3fc386a97f984aa3a7bcc19f083fe68b94f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5aedadb2-31f3-4d54-b851-5dd3a166179d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3943
x-amzn-requestid: 918fd8d6-0118-4548-9380-e3078577a876
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzWBtEdKoAMFwnw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63de03a4-6d8ffde860d89fbc513a20f9;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 07:05:08 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ZRVPNp0hKlSBXYjgbVfF8MGqNMHCKF2T4fAqflvZz8z-Uy9bKR9HhA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 07:18:54 GMT
age: 34929
etag: "4f370e81106ef09ce9294eaa074ff6922197ded0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F085f1306-f595-4e1a-8162-7d3d1f959ac3.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F085f1306-f595-4e1a-8162-7d3d1f959ac3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7dbe304b5138a360ff07a9842bcf6a7f
00572f7667e322c9ef34bc35b7998c1c172dd34c
d63c58d6c96e23c61b92272de8c2aab01f4cf85f3420cc434c05447d355b1c77
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F085f1306-f595-4e1a-8162-7d3d1f959ac3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9108
x-amzn-requestid: 47a7d6da-229b-4fcc-a2c0-823f9c5e4224
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f0QLAGXgoAMFv6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63de60ac-5b8ee53114e58a056306067f;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 13:42:04 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 6oyg-X-GTV3HeKzW4a6Sa99JNjWcZFnE8okoqeAtp6ZgkTKCDtSoAw==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:46:53 GMT
age: 69250
etag: "00572f7667e322c9ef34bc35b7998c1c172dd34c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f78f981-25b3-46b1-a96b-baa8e001cc8e.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f78f981-25b3-46b1-a96b-baa8e001cc8e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ad2298793399bf73c51c7d60952065c1
816bd4c36ceea2c46489ae72fde0b4a94c7c4bef
dc540d64e5e0835c7007e89ca3b5dd620b43a87e13309f323f3843a5f908a199
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f78f981-25b3-46b1-a96b-baa8e001cc8e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8649
x-amzn-requestid: f85f3c9d-95c1-4db6-af5f-595070fe46c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiRHzboAMFQCA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-6eed72bf20887cac6dc1a56a;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tNp3KhwtaSjchn-VAo1VellQ63I1W9uIbkQ_84Y7z_4z--vGfz8PGA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:53:56 GMT
age: 68827
etag: "816bd4c36ceea2c46489ae72fde0b4a94c7c4bef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F731dc7de-ce12-4639-9ceb-3218584c3d56.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F731dc7de-ce12-4639-9ceb-3218584c3d56.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9046d887fd45a0940e31a74173d17798
1ff698b9cf660165e846dfc4770f29852aedce45
0c7b0e1250aa7718b7b35b80a1442f62e94ace1fb578fb781ec8204ee96386d0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F731dc7de-ce12-4639-9ceb-3218584c3d56.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10514
x-amzn-requestid: ac2a383b-833d-4dae-9bd9-43dc3d9e373d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiPEIyoAMFqUw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-436bb6816b269ce45b9f8600;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RYNzle5-l5dOMPWb2Bmu_T5aIJw9NX2FKuJsej8hzpYZcgD6coH9SA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:50:09 GMT
age: 69054
etag: "1ff698b9cf660165e846dfc4770f29852aedce45"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 3006f2a05442473df9250e1b70a0a24c
fa394c7afb1a1dca89d3b31ef48dfecd0d1b1892
dab350b4ff3d4d8cb408c780417df628d4652ed7829377e887a983babe19e00d
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "DAB350B4FF3D4D8CB408C780417DF628D4652ED7829377E887A983BABE19E00D"
Last-Modified: Mon, 06 Feb 2023 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3600
Expires: Mon, 06 Feb 2023 18:01:05 GMT
Date: Mon, 06 Feb 2023 17:01:05 GMT
Connection: keep-alive
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 15455d65461ce049f40c6d8bd34d3217
1654aae82a9c422c56887b1dfdf65eb8df891f0d
3618b8def4fb2d5afcb1df317464d721f726048b73b633839c72c87618099336
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "3618B8DEF4FB2D5AFCB1DF317464D721F726048B73B633839C72C87618099336"
Last-Modified: Mon, 06 Feb 2023 10:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3598
Expires: Mon, 06 Feb 2023 18:01:03 GMT
Date: Mon, 06 Feb 2023 17:01:05 GMT
Connection: keep-alive
login.my.gov.au/
161.146.235.204302 11 B IP 161.146.235.204:0
ASN #18055 Department of Human Services
File type ASCII text, with no line terminators
Hash 32682312d17c7cbf18e73594f5570319
60e22121bdd0bc71cdb2bae2a3aa577006b2eae9
e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47
GET / HTTP/1.1
Host: login.my.gov.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302
content-length: 11
content-type: text/html;charset=UTF-8
location: https://my.gov.au/en/myaccount/dashboard
p3p: CP="NON CUR OTPi OUR NOR UNI"
x-frame-options: DENY
x-content-type-options: nosniff
inst: 1a
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
Set-Cookie: BIGipServerHBZK2i12N308Oa3l35yEhg=!Nc+S8YDsT1nyy7qU6TFomdAxad1I6r9q3C/23PhWjxAnkfJD/FwRM91qizaS+iLfXPlmeM/Wixj8ev8=; expires=Mon, 06-Feb-2023 17:31:05 GMT; path=/; Httponly; Secure;SameSite=none
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 35524eee8111b12a694308dc739d84cc
6416029e048fbb3c1617ab1507836086a010f60e
d45e786894846fb25cb6552ae04e36a67c875d4cb5dae5932f46320aa6f870dc
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "D45E786894846FB25CB6552AE04E36A67C875D4CB5DAE5932F46320AA6F870DC"
Last-Modified: Mon, 06 Feb 2023 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3567
Expires: Mon, 06 Feb 2023 18:00:32 GMT
Date: Mon, 06 Feb 2023 17:01:05 GMT
Connection: keep-alive
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 35524eee8111b12a694308dc739d84cc
6416029e048fbb3c1617ab1507836086a010f60e
d45e786894846fb25cb6552ae04e36a67c875d4cb5dae5932f46320aa6f870dc
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "D45E786894846FB25CB6552AE04E36A67C875D4CB5DAE5932F46320AA6F870DC"
Last-Modified: Mon, 06 Feb 2023 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3567
Expires: Mon, 06 Feb 2023 18:00:32 GMT
Date: Mon, 06 Feb 2023 17:01:05 GMT
Connection: keep-alive
login.my.gov.au/mga/sps/oauth/oauth20/authorize?client_id=mygov-citizen-portal&redirect_uri=https%3A%2F%2Fmy.gov.au%2Fauth-callback%3Fworkflow%3Dlogin&response_type=code&scope=openid%20profile&state=12efb8df22c5457c99885babf0a8dc0d&code_challenge=vscOqD7y7JE9MS0wjR8flZXjGtzBhKyhEfywZWM1CyU&code_challenge_method=S256&response_mode=query&user_flow=enhance_login
161.146.235.204302 Found 0 B URL HTTP/1.1 login.my.gov.au/mga/sps/oauth/oauth20/authorize?client_id=mygov-citizen-portal&redirect_uri=https%3A%2F%2Fmy.gov.au%2Fauth-callback%3Fworkflow%3Dlogin&response_type=code&scope=openid%20profile&state=12efb8df22c5457c99885babf0a8dc0d&code_challenge=vscOqD7y7JE9MS0wjR8flZXjGtzBhKyhEfywZWM1CyU&code_challenge_method=S256&response_mode=query&user_flow=enhance_login
IP 161.146.235.204:0
ASN #18055 Department of Human Services
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /mga/sps/oauth/oauth20/authorize?client_id=mygov-citizen-portal&redirect_uri=https%3A%2F%2Fmy.gov.au%2Fauth-callback%3Fworkflow%3Dlogin&response_type=code&scope=openid%20profile&state=12efb8df22c5457c99885babf0a8dc0d&code_challenge=vscOqD7y7JE9MS0wjR8flZXjGtzBhKyhEfywZWM1CyU&code_challenge_method=S256&response_mode=query&user_flow=enhance_login HTTP/1.1
Host: login.my.gov.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.gov.au/
Cookie: BIGipServerHBZK2i12N308Oa3l35yEhg=!Nc+S8YDsT1nyy7qU6TFomdAxad1I6r9q3C/23PhWjxAnkfJD/FwRM91qizaS+iLfXPlmeM/Wixj8ev8=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/1.1 302 Found
content-language: en-US
date: Mon, 06 Feb 2023 17:01:06 GMT
location: https://login.my.gov.au/mga/sps/auth
p3p: CP="NON CUR OTPi OUR NOR UNI"
transfer-encoding: chunked
x-frame-options: DENY
x-content-type-options: nosniff
cache-control: no-cache="set-cookie, set-cookie2"
inst: 1a
expires: Thu, 01 Dec 1994 16:00:00 GMT
x-xss-protection: 1; mode=block
content-security-policy: frame-ancestors https://auth.identity.gov.au https://my.gov.au https://login.my.gov.au https://legacy.my.gov.au; frame-src https://auth.identity.gov.au https://my.gov.au https://login.my.gov.au https://legacy.my.gov.au;
strict-transport-security: max-age=31536000; includeSubDomains
Set-Cookie: BIGipServerHBZK2i12N308Oa3l35yEhg=!DUtDQNWRXEKIMAmU6TFomdAxad1I6tRzwZbtzlMWOIXC/JwZSmwcmmSToMs3AvIf2yKKU+PDKy/3jak=; expires=Mon, 06-Feb-2023 17:31:06 GMT; path=/; Httponly; Secure;SameSite=none
PD_STATEFUL_a2e57cdc-6b60-49e2-9aa1-b92c2d07bb3b=%2Fmga; Path=/; Secure; HttpOnly;SameSite=none
SLO=+mygov-citizen-portal; Path=/mga/sps; SameSite=None; Secure; HttpOnly
JSESSIONID=0000RwxhzXs4--4uVzQhNh7zkNw:efca0c20-8943-4f68-99f8-099183586bf5; Path=/mga/; SameSite=None; Secure; HttpOnly
login.my.gov.au/mga/sps/auth
161.146.235.204302 Found 0 B URL HTTP/1.1 login.my.gov.au/mga/sps/auth
IP 161.146.235.204:0
ASN #18055 Department of Human Services
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /mga/sps/auth HTTP/1.1
Host: login.my.gov.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://my.gov.au/
Connection: keep-alive
Cookie: SLO=+mygov-citizen-portal; JSESSIONID=0000RwxhzXs4--4uVzQhNh7zkNw:efca0c20-8943-4f68-99f8-099183586bf5; BIGipServerHBZK2i12N308Oa3l35yEhg=!DUtDQNWRXEKIMAmU6TFomdAxad1I6tRzwZbtzlMWOIXC/JwZSmwcmmSToMs3AvIf2yKKU+PDKy/3jak=; PD_STATEFUL_a2e57cdc-6b60-49e2-9aa1-b92c2d07bb3b=%2Fmga
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/1.1 302 Found
content-language: en-US
date: Mon, 06 Feb 2023 17:01:06 GMT
location: https://login.my.gov.au/mga/sps/../../../../../../las/mygov-login?client_id=mygov-citizen-portal&TAM_OP=login&USERNAME=unauthenticated&ERROR_CODE=0x00000000&URL=%2Fmga%2Fsps%2Fauth?redirect_uri=https%3A%2F%2Fmy.gov.au%2Fauth-callback%3Fworkflow%3Dlogin
p3p: CP="NON CUR OTPi OUR NOR UNI"
transfer-encoding: chunked
x-frame-options: DENY
x-content-type-options: nosniff
inst: 1a
x-xss-protection: 1; mode=block
content-security-policy: frame-ancestors https://auth.identity.gov.au https://my.gov.au https://login.my.gov.au https://legacy.my.gov.au; frame-src https://auth.identity.gov.au https://my.gov.au https://login.my.gov.au https://legacy.my.gov.au;
strict-transport-security: max-age=31536000; includeSubDomains
Set-Cookie: BIGipServerHBZK2i12N308Oa3l35yEhg=!T35bRjPOsx4gIdeU6TFomdAxad1I6jxyPukiVlgFV/rMFtZy8TAG7xPwEFikvhc6xLVu0nR3fpSZFjQ=; expires=Mon, 06-Feb-2023 17:31:06 GMT; path=/; Httponly; Secure;SameSite=none
login.my.gov.au/las/mygov-login?client_id=mygov-citizen-portal&TAM_OP=login&USERNAME=unauthenticated&ERROR_CODE=0x00000000&URL=%2Fmga%2Fsps%2Fauth?redirect_uri=https%3A%2F%2Fmy.gov.au%2Fauth-callback%3Fworkflow%3Dlogin
161.146.235.204302 Found 0 B URL HTTP/1.1 login.my.gov.au/las/mygov-login?client_id=mygov-citizen-portal&TAM_OP=login&USERNAME=unauthenticated&ERROR_CODE=0x00000000&URL=%2Fmga%2Fsps%2Fauth?redirect_uri=https%3A%2F%2Fmy.gov.au%2Fauth-callback%3Fworkflow%3Dlogin
IP 161.146.235.204:0
ASN #18055 Department of Human Services
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /las/mygov-login?client_id=mygov-citizen-portal&TAM_OP=login&USERNAME=unauthenticated&ERROR_CODE=0x00000000&URL=%2Fmga%2Fsps%2Fauth?redirect_uri=https%3A%2F%2Fmy.gov.au%2Fauth-callback%3Fworkflow%3Dlogin HTTP/1.1
Host: login.my.gov.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://my.gov.au/
Connection: keep-alive
Cookie: BIGipServerHBZK2i12N308Oa3l35yEhg=!T35bRjPOsx4gIdeU6TFomdAxad1I6jxyPukiVlgFV/rMFtZy8TAG7xPwEFikvhc6xLVu0nR3fpSZFjQ=; PD_STATEFUL_a2e57cdc-6b60-49e2-9aa1-b92c2d07bb3b=%2Fmga
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/1.1 302 Found
content-language: en-US
content-length: 0
content-type: text/plain
date: Mon, 06 Feb 2023 17:01:07 GMT
location: https://login.my.gov.au/las/mygov-login?execution=e1s1
p3p: CP="NON CUR OTPi OUR NOR UNI"
vary: Accept-Encoding,User-Agent
x-frame-options: DENY
x-content-type-options: nosniff
cache-control: no-store, no-cache=set-cookie
inst: 1a
expires: Thu, 01 Dec 1994 16:00:00 GMT
x-xss-protection: 1; mode=block
x-powered-by: Servlet/3.0
strict-transport-security: max-age=31536000; includeSubDomains
server-timing: dtRpid;desc="-1074732954"
Set-Cookie: BIGipServerHBZK2i12N308Oa3l35yEhg=!cgYWOjD4yVmibsqU6TFomdAxad1I6tt9rBq9wqkrEQxj9Gts1y7N/rU7FENVd6y8C2cAF/ppZsJRN5E=; expires=Mon, 06-Feb-2023 17:31:07 GMT; path=/; Httponly; Secure;SameSite=none
dtCookie=v_4_srv_49_sn_DF75C6BA83E13A75F12B284BADDBC268_perc_100000_ol_0_mul_1; Domain=.my.gov.au.; Path=/; SameSite=None; Secure; HttpOnly
PD_STATEFUL_aaa1d6bc-31d2-11e6-b102-0050568e537f=mygov; Path=/; Secure; HttpOnly;SameSite=none
JSESSIONID=0000_hHXsDrSrO2QSbZrmKm5gSr:1cf7vn01k; Path=/; SameSite=None; Secure; HttpOnly
login.my.gov.au/las/mygov-login?execution=e1s1
161.146.235.204200 OK 3.7 kB URL HTTP/1.1 login.my.gov.au/las/mygov-login?execution=e1s1
IP 161.146.235.204:0
ASN #18055 Department of Human Services
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (753), with CRLF, LF line terminators
Hash 503a7fa20d0b2ecc77b3427eaa339d6f
8ef622b4e3ba780bc8db7c86bc68d553542848d1
86d6c3da629807a7dd26563534adf4cda7ea4a9c09cb9e7732509bd3aded22a0
GET /las/mygov-login?execution=e1s1 HTTP/1.1
Host: login.my.gov.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://my.gov.au/
Connection: keep-alive
Cookie: BIGipServerHBZK2i12N308Oa3l35yEhg=!cgYWOjD4yVmibsqU6TFomdAxad1I6tt9rBq9wqkrEQxj9Gts1y7N/rU7FENVd6y8C2cAF/ppZsJRN5E=; PD_STATEFUL_a2e57cdc-6b60-49e2-9aa1-b92c2d07bb3b=%2Fmga; PD_STATEFUL_aaa1d6bc-31d2-11e6-b102-0050568e537f=mygov; JSESSIONID=0000_hHXsDrSrO2QSbZrmKm5gSr:1cf7vn01k
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
content-encoding: gzip
content-language: en-US
content-length: 3656
content-type: text/html
date: Mon, 06 Feb 2023 17:01:07 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
vary: Accept-Encoding,User-Agent
x-frame-options: DENY
x-content-type-options: nosniff
cache-control: no-store, no-cache=set-cookie
x-oneagent-js-injection: true
inst: 1a
expires: Thu, 01 Dec 1994 16:00:00 GMT
x-xss-protection: 1; mode=block
x-powered-by: Servlet/3.0
strict-transport-security: max-age=31536000; includeSubDomains
server-timing: dtRpid;desc="1830664382"
Set-Cookie: BIGipServerHBZK2i12N308Oa3l35yEhg=!k6Us0UkzU/If1ZaU6TFomdAxad1I6gtCq1crDF1DYy3iHw/8qk9zmL/UmS2M0eQvdmvgwaElH0ind5Y=; expires=Mon, 06-Feb-2023 17:31:07 GMT; path=/; Httponly; Secure;SameSite=none
dtCookie=v_4_srv_40_sn_250435D792B3E71A613E0DD51E076F11_perc_100000_ol_0_mul_1_app-3A5f15dc81410a75c1_1; Domain=.my.gov.au.; Path=/; SameSite=None; Secure; HttpOnly
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 26a15a1b880ec1026360b696b1c27074
fd35f80a1cf599da2a8e68a44477465a580440a5
a6d5caec988319523c120bc435a4ff0200b7ead114db10db19a09caeace978f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 17:01:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
login.my.gov.au/mygov/content/mgv2/css/mgv2-application.css
161.146.235.204200 OK 35 kB URL HTTP/1.1 login.my.gov.au/mygov/content/mgv2/css/mgv2-application.css
IP 161.146.235.204:0
ASN #18055 Department of Human Services
File type ASCII text, with very long lines (59825)
Hash 61069bd22b73c394a8ffcd83fd8ddf38
9d76bd90153973db808c6f267cfbdfb3ed8c7f87
74747a60cc64ae76002d0aafd53c271ef7c5a047758ca95d96a519f936641297
GET /mygov/content/mgv2/css/mgv2-application.css HTTP/1.1
Host: login.my.gov.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.my.gov.au/las/mygov-login?execution=e1s1
Cookie: BIGipServerHBZK2i12N308Oa3l35yEhg=!k6Us0UkzU/If1ZaU6TFomdAxad1I6gtCq1crDF1DYy3iHw/8qk9zmL/UmS2M0eQvdmvgwaElH0ind5Y=; PD_STATEFUL_a2e57cdc-6b60-49e2-9aa1-b92c2d07bb3b=%2Fmga; PD_STATEFUL_aaa1d6bc-31d2-11e6-b102-0050568e537f=mygov; JSESSIONID=0000_hHXsDrSrO2QSbZrmKm5gSr:1cf7vn01k
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-encoding: gzip
content-length: 34632
content-type: text/css
date: Mon, 06 Feb 2023 16:17:32 GMT
last-modified: Fri, 02 Dec 2022 16:01:44 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
vary: Accept-Encoding
x-frame-options: DENY
x-content-type-options: nosniff
cache-control: max-age=3600,public,must-revalidate
inst: 1a
expires: Mon, 06 Feb 2023 17:17:32 GMT
age: 2615
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
server-timing: dtRpid;desc="1072354130"
Set-Cookie: BIGipServerHBZK2i12N308Oa3l35yEhg=!S9uH3IO9Th2wnxqU6TFomdAxad1I6kAL1PwU7HqqlrfyGX4futxPzplJcxdXkEASOLofm9OzSxNmVxo=; expires=Mon, 06-Feb-2023 17:31:07 GMT; path=/; Httponly; Secure;SameSite=none
login.my.gov.au/mygov/content/mgv2/js/login.js
161.146.235.204200 OK 813 B URL HTTP/1.1 login.my.gov.au/mygov/content/mgv2/js/login.js
IP 161.146.235.204:0
ASN #18055 Department of Human Services
File type ASCII text, with very long lines (1560), with no line terminators
Hash 9f1546168819318f5f87de11a463885c
108c0676a9d41d73dbf4e47dd63bb20478994933
5906759351a2cd713abb9515c0fd48d162e19c9f6c4026427aaf3405181f2700
GET /mygov/content/mgv2/js/login.js HTTP/1.1
Host: login.my.gov.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.my.gov.au/las/mygov-login?execution=e1s1
Cookie: BIGipServerHBZK2i12N308Oa3l35yEhg=!k6Us0UkzU/If1ZaU6TFomdAxad1I6gtCq1crDF1DYy3iHw/8qk9zmL/UmS2M0eQvdmvgwaElH0ind5Y=; PD_STATEFUL_a2e57cdc-6b60-49e2-9aa1-b92c2d07bb3b=%2Fmga; PD_STATEFUL_aaa1d6bc-31d2-11e6-b102-0050568e537f=mygov; JSESSIONID=0000_hHXsDrSrO2QSbZrmKm5gSr:1cf7vn01k
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-encoding: gzip
content-length: 813
content-type: application/x-javascript
date: Mon, 06 Feb 2023 16:12:10 GMT
last-modified: Fri, 02 Dec 2022 16:01:42 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
vary: Accept-Encoding
x-frame-options: DENY
x-content-type-options: nosniff
cache-control: max-age=3600,public,must-revalidate
inst: 1a
expires: Mon, 06 Feb 2023 17:12:10 GMT
age: 2938
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
server-timing: dtRpid;desc="-773446184"
Set-Cookie: BIGipServerHBZK2i12N308Oa3l35yEhg=!5kLHBgN7v3PJsAKU6TFomdAxad1I6oZquwWPIlZBT0M55K4Ny9KRqSY5Xy6eZV1LMavthfyPgg0nSd8=; expires=Mon, 06-Feb-2023 17:31:08 GMT; path=/; Httponly; Secure;SameSite=none
login.my.gov.au/mygov/content/mgv2/css/blugov.css
161.146.235.204200 OK 29 kB URL HTTP/1.1 login.my.gov.au/mygov/content/mgv2/css/blugov.css
IP 161.146.235.204:0
ASN #18055 Department of Human Services
Hash d7f44c2bdd814a2da88145727ccefafc
149af2039b9f566e6740fe7701b09be45dee3b93
8efebb849aa3bdb47d1feee4175334c1da6f86b4de3c7d216fc9ffa419a3525e
GET /mygov/content/mgv2/css/blugov.css HTTP/1.1
Host: login.my.gov.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.my.gov.au/las/mygov-login?execution=e1s1
Cookie: BIGipServerHBZK2i12N308Oa3l35yEhg=!k6Us0UkzU/If1ZaU6TFomdAxad1I6gtCq1crDF1DYy3iHw/8qk9zmL/UmS2M0eQvdmvgwaElH0ind5Y=; PD_STATEFUL_a2e57cdc-6b60-49e2-9aa1-b92c2d07bb3b=%2Fmga; PD_STATEFUL_aaa1d6bc-31d2-11e6-b102-0050568e537f=mygov; JSESSIONID=0000_hHXsDrSrO2QSbZrmKm5gSr:1cf7vn01k
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-encoding: gzip
content-length: 17216
content-type: text/css
date: Mon, 06 Feb 2023 16:45:34 GMT
last-modified: Fri, 02 Dec 2022 16:01:42 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
vary: Accept-Encoding
x-frame-options: DENY
x-content-type-options: nosniff
cache-control: max-age=3600,public,must-revalidate
inst: 1a
expires: Mon, 06 Feb 2023 17:45:34 GMT
age: 934
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
server-timing: dtRpid;desc="-1582051754"
Set-Cookie: BIGipServerHBZK2i12N308Oa3l35yEhg=!fvoleMl1fsO2LOiU6TFomdAxad1I6hJ2brqgMIOACSP8nTOZGan+5d12756cDcxOxxcXOUDWdHEA6HY=; expires=Mon, 06-Feb-2023 17:31:08 GMT; path=/; Httponly; Secure;SameSite=none
login.my.gov.au/LoginServices/main/ruxitagentjs_ICA2Vfghjqrux_10249220905100923.js
161.146.235.204200 OK 127 kB URL HTTP/1.1 login.my.gov.au/LoginServices/main/ruxitagentjs_ICA2Vfghjqrux_10249220905100923.js
IP 161.146.235.204:0
ASN #18055 Department of Human Services
File type ASCII text, with very long lines (2058)
Size 127 kB (126804 bytes)
Hash d67a61c0e9340c6fb0ea03564c9884b2
a3aeb1af697dd0f227adaeed482b548e08044cdd
85f5fc43ceb5970a3e3121261a1c55ee0ca50fcf59238396726f2be212b8bc75
GET /LoginServices/main/ruxitagentjs_ICA2Vfghjqrux_10249220905100923.js HTTP/1.1
Host: login.my.gov.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.my.gov.au/las/mygov-login?execution=e1s1
Cookie: BIGipServerHBZK2i12N308Oa3l35yEhg=!k6Us0UkzU/If1ZaU6TFomdAxad1I6gtCq1crDF1DYy3iHw/8qk9zmL/UmS2M0eQvdmvgwaElH0ind5Y=; PD_STATEFUL_a2e57cdc-6b60-49e2-9aa1-b92c2d07bb3b=%2Fmga; PD_STATEFUL_aaa1d6bc-31d2-11e6-b102-0050568e537f=mygov; JSESSIONID=0000_hHXsDrSrO2QSbZrmKm5gSr:1cf7vn01k
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
content-encoding: gzip
content-length: 126804
content-type: text/javascript; charset=utf-8
date: Mon, 06 Feb 2023 16:51:13 GMT
last-modified: Wed, 03 Mar 2010 07:01:40 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
vary: Accept-Encoding
access-control-allow-origin: *
x-frame-options: DENY
x-content-type-options: nosniff
cache-control: max-age=3600,public,must-revalidate
inst: 1a
expires: Tue, 06 Feb 2024 16:51:13 GMT
age: 594
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
Set-Cookie: BIGipServerHBZK2i12N308Oa3l35yEhg=!e4+YPl2yVUsHUJeU6TFomdAxad1I6rnxZmMMf4UJ1zXCUtHCRjk0JBpb9UaJ6A4qyFBzhkiejCPNhN4=; expires=Mon, 06-Feb-2023 17:31:07 GMT; path=/; Httponly; Secure;SameSite=none
login.my.gov.au/mygov/content/mgv2/js/mgv2-application.js
161.146.235.204200 OK 26 kB URL HTTP/1.1 login.my.gov.au/mygov/content/mgv2/js/mgv2-application.js
IP 161.146.235.204:0
ASN #18055 Department of Human Services
File type ASCII text, with very long lines (65536), with no line terminators
Hash 86e885e83727de6b73c57077f16800c9
bdefc759b95f331b4555efc33af841310cc65321
946ff9f8aeb3a2340af04baa92158272a2801acd777cdb73862bf3f7756b1f26
GET /mygov/content/mgv2/js/mgv2-application.js HTTP/1.1
Host: login.my.gov.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.my.gov.au/las/mygov-login?execution=e1s1
Cookie: BIGipServerHBZK2i12N308Oa3l35yEhg=!k6Us0UkzU/If1ZaU6TFomdAxad1I6gtCq1crDF1DYy3iHw/8qk9zmL/UmS2M0eQvdmvgwaElH0ind5Y=; PD_STATEFUL_a2e57cdc-6b60-49e2-9aa1-b92c2d07bb3b=%2Fmga; PD_STATEFUL_aaa1d6bc-31d2-11e6-b102-0050568e537f=mygov; JSESSIONID=0000_hHXsDrSrO2QSbZrmKm5gSr:1cf7vn01k
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-encoding: gzip
content-length: 25998
content-type: application/x-javascript
date: Mon, 06 Feb 2023 16:12:10 GMT
last-modified: Fri, 02 Dec 2022 16:01:42 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
vary: Accept-Encoding
x-frame-options: DENY
x-content-type-options: nosniff
cache-control: max-age=3600,public,must-revalidate
inst: 1a
expires: Mon, 06 Feb 2023 17:12:10 GMT
age: 2938
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
server-timing: dtRpid;desc="1989935303"
Set-Cookie: BIGipServerHBZK2i12N308Oa3l35yEhg=!zuUiG+LSM9KwYSGU6TFomdAxad1I6lhgqS3ZI6CrL3NNFyN4dIo82M5FmiVZz5bxzgZkfBDBxRXEbeQ=; expires=Mon, 06-Feb-2023 17:31:08 GMT; path=/; Httponly; Secure;SameSite=none
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0a8ea253ef61b5c330b3285f9a94e6ae
0cf9a1c66c83f505c7195774996b107c145f5884
8b6bca0cd9c9adcb16bba03349e8fcbfcd645719c82c95f0111095b731842402
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 17:01:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 836bc62dbb011b6180fc7209d0061736
74e6f18561a7006a3afb6ab03559eec239ce4b36
90b197384670fdb210d364f91b423fd383d25838e38a494158a8185bef0061f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 17:01:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 836bc62dbb011b6180fc7209d0061736
74e6f18561a7006a3afb6ab03559eec239ce4b36
90b197384670fdb210d364f91b423fd383d25838e38a494158a8185bef0061f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 17:01:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://login.my.gov.au
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 03:13:04 GMT
expires: Fri, 02 Feb 2024 03:13:04 GMT
cache-control: public, max-age=31536000
age: 395285
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://login.my.gov.au
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 05 Feb 2023 12:46:12 GMT
expires: Mon, 05 Feb 2024 12:46:12 GMT
cache-control: public, max-age=31536000
age: 101697
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://login.my.gov.au
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 14:07:32 GMT
expires: Thu, 01 Feb 2024 14:07:32 GMT
cache-control: public, max-age=31536000
age: 442417
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
login.my.gov.au/mygov/content/mgv2/js/mgv2-vendor.js
161.146.235.204200 OK 70 kB URL HTTP/1.1 login.my.gov.au/mygov/content/mgv2/js/mgv2-vendor.js
IP 161.146.235.204:0
ASN #18055 Department of Human Services
File type ASCII text, with very long lines (32058)
Hash 69a62b24e7a6703524d489e9a382186d
02e1775d329c760fb1d3e78f40ccd85a6eb49838
b1ab86d1c628faffb0c40ed09b57bf5cada3672a0065b1b5107a8eca0a53437f
GET /mygov/content/mgv2/js/mgv2-vendor.js HTTP/1.1
Host: login.my.gov.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.my.gov.au/las/mygov-login?execution=e1s1
Cookie: BIGipServerHBZK2i12N308Oa3l35yEhg=!k6Us0UkzU/If1ZaU6TFomdAxad1I6gtCq1crDF1DYy3iHw/8qk9zmL/UmS2M0eQvdmvgwaElH0ind5Y=; PD_STATEFUL_a2e57cdc-6b60-49e2-9aa1-b92c2d07bb3b=%2Fmga; PD_STATEFUL_aaa1d6bc-31d2-11e6-b102-0050568e537f=mygov; JSESSIONID=0000_hHXsDrSrO2QSbZrmKm5gSr:1cf7vn01k
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-encoding: gzip
content-length: 70161
content-type: application/x-javascript
date: Mon, 06 Feb 2023 16:12:10 GMT
last-modified: Fri, 02 Dec 2022 16:01:42 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
vary: Accept-Encoding
x-frame-options: DENY
x-content-type-options: nosniff
cache-control: max-age=3600,public,must-revalidate
inst: 1a
expires: Mon, 06 Feb 2023 17:12:10 GMT
age: 2938
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
server-timing: dtRpid;desc="903735120"
Set-Cookie: BIGipServerHBZK2i12N308Oa3l35yEhg=!xFGsivvyXZ/abSeU6TFomdAxad1I6m4DMAsK1mCRuHK3JgGaSRbAuzY3IfQI8m4wwfHhtnZyRvncp40=; expires=Mon, 06-Feb-2023 17:31:08 GMT; path=/; Httponly; Secure;SameSite=none
login.my.gov.au/mygov/content/mgv2/icons/blugov-left-chevron-dark.svg
161.146.235.204200 OK 256 B URL HTTP/1.1 login.my.gov.au/mygov/content/mgv2/icons/blugov-left-chevron-dark.svg
IP 161.146.235.204:0
ASN #18055 Department of Human Services
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash 3bd6778c09920983d0500e04b69dd3f9
0628af7455f8e55e3e98588ff57bc51d45be07e4
af454d272466fa84c77ca8028e0b8b8bcc0a193ad4401dfcddbad07dc2dabcfc
GET /mygov/content/mgv2/icons/blugov-left-chevron-dark.svg HTTP/1.1
Host: login.my.gov.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.my.gov.au/mygov/content/mgv2/css/blugov.css
Cookie: BIGipServerHBZK2i12N308Oa3l35yEhg=!zuUiG+LSM9KwYSGU6TFomdAxad1I6lhgqS3ZI6CrL3NNFyN4dIo82M5FmiVZz5bxzgZkfBDBxRXEbeQ=; PD_STATEFUL_a2e57cdc-6b60-49e2-9aa1-b92c2d07bb3b=%2Fmga; PD_STATEFUL_aaa1d6bc-31d2-11e6-b102-0050568e537f=mygov; JSESSIONID=0000_hHXsDrSrO2QSbZrmKm5gSr:1cf7vn01k; dtCookie=v_4_srv_-2D45_sn_QHJ19155IQ2EJB4S284ET16E2DP326KU; rxVisitor=1675702915024VG0NU2LMGS7FLVVOA3P0GEI9HQ0INSME; dtPC=-45$502915021_572h1vFAOKSSAMVARHFFIGWFMCAPVQNGKIUUNP-0e0; rxvt=1675704715031|1675702915027; dtLatC=1; dtSa=-
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-length: 256
content-type: image/svg+xml
date: Mon, 06 Feb 2023 17:00:08 GMT
last-modified: Fri, 02 Dec 2022 16:01:42 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
vary: Accept-Encoding
x-frame-options: DENY
x-content-type-options: nosniff
cache-control: max-age=3600,public,must-revalidate
inst: 1a
expires: Mon, 06 Feb 2023 18:00:08 GMT
age: 61
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
server-timing: dtRpid;desc="-920558483"
Set-Cookie: BIGipServerHBZK2i12N308Oa3l35yEhg=!p5DgfE1//YocRmSU6TFomdAxad1I6tN8dvOy0AXBLmIe9cJ2klaehNiPwQAR9oCL4oIt9qOE8z8wYxU=; expires=Mon, 06-Feb-2023 17:31:09 GMT; path=/; Httponly; Secure;SameSite=none
login.my.gov.au/mygov/content/mgv2/icons/icon-blugov-info.svg
161.146.235.204200 OK 583 B URL HTTP/1.1 login.my.gov.au/mygov/content/mgv2/icons/icon-blugov-info.svg
IP 161.146.235.204:0
ASN #18055 Department of Human Services
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (370)
Hash 78fdc46c5c65ad834bf241b31c91dee7
8993816ddad6eadb33cba6db0f955429ba6ce10b
8c6fcb4fc5d0a351b5dcc2fa918d157ea61e6fb74a4e083509e6dcb93d4ff2f6
GET /mygov/content/mgv2/icons/icon-blugov-info.svg HTTP/1.1
Host: login.my.gov.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.my.gov.au/mygov/content/mgv2/css/blugov.css
Cookie: BIGipServerHBZK2i12N308Oa3l35yEhg=!zuUiG+LSM9KwYSGU6TFomdAxad1I6lhgqS3ZI6CrL3NNFyN4dIo82M5FmiVZz5bxzgZkfBDBxRXEbeQ=; PD_STATEFUL_a2e57cdc-6b60-49e2-9aa1-b92c2d07bb3b=%2Fmga; PD_STATEFUL_aaa1d6bc-31d2-11e6-b102-0050568e537f=mygov; JSESSIONID=0000_hHXsDrSrO2QSbZrmKm5gSr:1cf7vn01k; dtCookie=v_4_srv_-2D45_sn_QHJ19155IQ2EJB4S284ET16E2DP326KU; rxVisitor=1675702915024VG0NU2LMGS7FLVVOA3P0GEI9HQ0INSME; dtPC=-45$502915021_572h1vFAOKSSAMVARHFFIGWFMCAPVQNGKIUUNP-0e0; rxvt=1675704715031|1675702915027; dtLatC=1; dtSa=-
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-length: 583
content-type: image/svg+xml
date: Mon, 06 Feb 2023 17:00:08 GMT
last-modified: Fri, 02 Dec 2022 16:01:42 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
vary: Accept-Encoding
x-frame-options: DENY
x-content-type-options: nosniff
cache-control: max-age=3600,public,must-revalidate
inst: 1a
expires: Mon, 06 Feb 2023 18:00:08 GMT
age: 61
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
server-timing: dtRpid;desc="-83843483"
Set-Cookie: BIGipServerHBZK2i12N308Oa3l35yEhg=!DvwW3IGpgrP2WLiU6TFomdAxad1I6u4Ci8MK/yTGPDs8dGPl+TZCsAfzc4JU34Zo0l/KAxj/jZMvPN0=; expires=Mon, 06-Feb-2023 17:31:09 GMT; path=/; Httponly; Secure;SameSite=none
login.my.gov.au/mygov/content/mgv2/blugov/M-myGov-Coloured%20Line.svg
161.146.235.204200 OK 915 B URL HTTP/1.1 login.my.gov.au/mygov/content/mgv2/blugov/M-myGov-Coloured%20Line.svg
IP 161.146.235.204:0
ASN #18055 Department of Human Services
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text
Hash 2905b65b8e20825052463dc103131d71
dfbd661fbf15334acc426b1d652293fdf88d0978
0a9810dac3b65d06af1330e2f851e806531478fc4f7d39058d34bec367191939
GET /mygov/content/mgv2/blugov/M-myGov-Coloured%20Line.svg HTTP/1.1
Host: login.my.gov.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.my.gov.au/las/mygov-login?execution=e1s1
Cookie: BIGipServerHBZK2i12N308Oa3l35yEhg=!B0NcZVU9K38gxZKU6TFomdAxad1I6mzc/d/g1Vsxrub8midYHzvzzV6KA8Fiyd+E+G02gZbV05nJGmc=; PD_STATEFUL_a2e57cdc-6b60-49e2-9aa1-b92c2d07bb3b=%2Fmga; PD_STATEFUL_aaa1d6bc-31d2-11e6-b102-0050568e537f=mygov; JSESSIONID=0000_hHXsDrSrO2QSbZrmKm5gSr:1cf7vn01k; dtCookie=v_4_srv_-2D45_sn_QHJ19155IQ2EJB4S284ET16E2DP326KU; rxVisitor=1675702915024VG0NU2LMGS7FLVVOA3P0GEI9HQ0INSME; dtPC=-45$502915021_572h1vFAOKSSAMVARHFFIGWFMCAPVQNGKIUUNP-0e0; rxvt=1675704715031|1675702915027; dtLatC=1; dtSa=-
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-length: 915
content-type: image/svg+xml
date: Mon, 06 Feb 2023 16:17:43 GMT
last-modified: Fri, 02 Dec 2022 16:01:44 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
vary: Accept-Encoding
x-frame-options: DENY
x-content-type-options: nosniff
cache-control: max-age=3600,public,must-revalidate
inst: 1a
expires: Mon, 06 Feb 2023 17:17:43 GMT
age: 2606
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
server-timing: dtRpid;desc="-808646262"
Set-Cookie: BIGipServerHBZK2i12N308Oa3l35yEhg=!tIcNbBoIuiyHWCSU6TFomdAxad1I6iepRQzDdJ31FA2FPcQQoZK8JwLnIww9cmDzn0ec+PiJWMy8t98=; expires=Mon, 06-Feb-2023 17:31:09 GMT; path=/; Httponly; Secure;SameSite=none
login.my.gov.au/mygov/content/mgv2/blugov/myGov-cobranded-logo-black.svg
161.146.235.204200 OK 64 kB URL HTTP/1.1 login.my.gov.au/mygov/content/mgv2/blugov/myGov-cobranded-logo-black.svg
IP 161.146.235.204:0
ASN #18055 Department of Human Services
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (64143), with no line terminators
Hash b53f20300babca4ebb422e59b888be1f
699c5898c6dd9d2b8b949db2e13c8f0b0d29e26b
954aa858b3bffb8511bc41bc88b07d2b24597c37faf522550e26c9aa3b0d220d
GET /mygov/content/mgv2/blugov/myGov-cobranded-logo-black.svg HTTP/1.1
Host: login.my.gov.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.my.gov.au/las/mygov-login?execution=e1s1
Cookie: BIGipServerHBZK2i12N308Oa3l35yEhg=!k6Us0UkzU/If1ZaU6TFomdAxad1I6gtCq1crDF1DYy3iHw/8qk9zmL/UmS2M0eQvdmvgwaElH0ind5Y=; PD_STATEFUL_a2e57cdc-6b60-49e2-9aa1-b92c2d07bb3b=%2Fmga; PD_STATEFUL_aaa1d6bc-31d2-11e6-b102-0050568e537f=mygov; JSESSIONID=0000_hHXsDrSrO2QSbZrmKm5gSr:1cf7vn01k
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-length: 64143
content-type: image/svg+xml
date: Mon, 06 Feb 2023 16:51:45 GMT
last-modified: Fri, 02 Dec 2022 16:01:44 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
vary: Accept-Encoding
x-frame-options: DENY
x-content-type-options: nosniff
cache-control: max-age=3600,public,must-revalidate
inst: 1a
expires: Mon, 06 Feb 2023 17:51:45 GMT
age: 564
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
server-timing: dtRpid;desc="805372546"
Set-Cookie: BIGipServerHBZK2i12N308Oa3l35yEhg=!B0NcZVU9K38gxZKU6TFomdAxad1I6mzc/d/g1Vsxrub8midYHzvzzV6KA8Fiyd+E+G02gZbV05nJGmc=; expires=Mon, 06-Feb-2023 17:31:09 GMT; path=/; Httponly; Secure;SameSite=none
login.my.gov.au/mygov/content/mgv2/icons/favicon-16x16.png
161.146.235.204200 OK 238 B URL HTTP/1.1 login.my.gov.au/mygov/content/mgv2/icons/favicon-16x16.png
IP 161.146.235.204:0
ASN #18055 Department of Human Services
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 734603b796e313e6b30c5314cfff7a0d
9ef8bcab45a447a173ba98d4e8af6114c30a1aca
5e70f30259d620e25efa88586a8871d5c94113f0b0d7d6f3e817f585891bf154
GET /mygov/content/mgv2/icons/favicon-16x16.png HTTP/1.1
Host: login.my.gov.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.my.gov.au/las/mygov-login?execution=e1s1
Cookie: BIGipServerHBZK2i12N308Oa3l35yEhg=!tIcNbBoIuiyHWCSU6TFomdAxad1I6iepRQzDdJ31FA2FPcQQoZK8JwLnIww9cmDzn0ec+PiJWMy8t98=; PD_STATEFUL_a2e57cdc-6b60-49e2-9aa1-b92c2d07bb3b=%2Fmga; PD_STATEFUL_aaa1d6bc-31d2-11e6-b102-0050568e537f=mygov; JSESSIONID=0000_hHXsDrSrO2QSbZrmKm5gSr:1cf7vn01k; dtCookie=v_4_srv_-2D45_sn_QHJ19155IQ2EJB4S284ET16E2DP326KU; rxVisitor=1675702915024VG0NU2LMGS7FLVVOA3P0GEI9HQ0INSME; dtPC=-45$502915021_572h1vFAOKSSAMVARHFFIGWFMCAPVQNGKIUUNP-0e0; rxvt=1675704715031|1675702915027; dtLatC=1; dtSa=-
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-length: 238
content-type: image/png
date: Mon, 06 Feb 2023 17:01:10 GMT
last-modified: Fri, 02 Dec 2022 16:01:42 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
vary: Accept-Encoding
x-frame-options: DENY
x-content-type-options: nosniff
cache-control: max-age=3600,public,must-revalidate
inst: 1a
expires: Mon, 06 Feb 2023 18:01:10 GMT
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
server-timing: dtRpid;desc="-1598269900"
Set-Cookie: BIGipServerHBZK2i12N308Oa3l35yEhg=!ZRndqV8XmlRriuiU6TFomdAxad1I6qsR1DtDXtz4hXuLeJPD0Lhxmhd2YLzsTI3QsSY3ravIr4jJ0Pk=; expires=Mon, 06-Feb-2023 17:31:10 GMT; path=/; Httponly; Secure;SameSite=none
dtCookie=v_4_srv_11_sn_QHJ19155IQ2EJB4S284ET16E2DP326KU_perc_100000_ol_0_mul_1; Domain=.my.gov.au.; Path=/; SameSite=None; Secure; HttpOnly
login.my.gov.au/mygov/content/mgv2/blugov/myGov-cobranded-logo-white.svg
161.146.235.204200 OK 66 kB URL HTTP/1.1 login.my.gov.au/mygov/content/mgv2/blugov/myGov-cobranded-logo-white.svg
IP 161.146.235.204:0
ASN #18055 Department of Human Services
File type gzip compressed data, from Unix\012- data
Hash 7b75506027dfc8cca1e7983a18ca9c38
9f9485948eed2f9d6d54fa0decb346d2478c90a8
f4d28d8e6c482bee08cba19c96fc767a9d7128c6ac99b75f98f7c4f774637ca7
GET /mygov/content/mgv2/blugov/myGov-cobranded-logo-white.svg HTTP/1.1
Host: login.my.gov.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.my.gov.au/las/mygov-login?execution=e1s1
Cookie: BIGipServerHBZK2i12N308Oa3l35yEhg=!k6Us0UkzU/If1ZaU6TFomdAxad1I6gtCq1crDF1DYy3iHw/8qk9zmL/UmS2M0eQvdmvgwaElH0ind5Y=; PD_STATEFUL_a2e57cdc-6b60-49e2-9aa1-b92c2d07bb3b=%2Fmga; PD_STATEFUL_aaa1d6bc-31d2-11e6-b102-0050568e537f=mygov; JSESSIONID=0000_hHXsDrSrO2QSbZrmKm5gSr:1cf7vn01k
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-length: 64140
content-type: image/svg+xml
date: Mon, 06 Feb 2023 16:28:16 GMT
last-modified: Fri, 02 Dec 2022 16:01:44 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
vary: Accept-Encoding
x-frame-options: DENY
x-content-type-options: nosniff
cache-control: max-age=3600,public,must-revalidate
inst: 1a
expires: Mon, 06 Feb 2023 17:28:16 GMT
age: 1973
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
Set-Cookie: BIGipServerHBZK2i12N308Oa3l35yEhg=!A063DXHLhYG+b4CU6TFomdAxad1I6ouhlkbVwWT1S5NDG0jlOZoGTXIajZ/5TThgPUCCNFk1vysXhyg=; expires=Mon, 06-Feb-2023 17:31:09 GMT; path=/; Httponly; Secure;SameSite=none
my.gov.au/en/myaccount/dashboard
143.204.55.25200 OK 0 B URL HTTP/2 my.gov.au/en/myaccount/dashboard
IP 143.204.55.25:0
GET /en/myaccount/dashboard HTTP/1.1
Host: my.gov.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=utf-8
date: Mon, 06 Feb 2023 16:57:06 GMT
server: Apache
strict-transport-security: max-age=63072000; includeSubdomains;
content-security-policy: default-src 'self' my.gov.au; script-src 'self' 'unsafe-inline' 'unsafe-eval' www.googletagmanager.com www.google-analytics.com www.youtube.com s.ytimg.com assets.adobedtm.com dynatrace.humanservices.gov.au; connect-src 'self' adobedc.demdex.net docs.apigw.my.gov.au edge.adobedc.net *.my.gov.au my.gov.au mygov-dls-bff.apps.openshift-prod1-dca1.csda.gov.au mygov-dls-bff.apps.openshift-prod1-dcb1.csda.gov.au swift.csda.gov.au stats.g.doubleclick.net www.google-analytics.com dynatrace.humanservices.gov.au *.dynamsoft.com https://127.0.0.1:* ws://127.0.0.1:* wss://127.0.0.1:*; img-src 'self' blob: stats.g.doubleclick.net swift.csda.gov.au www.google-analytics.com; style-src 'self' 'unsafe-inline' fonts.googleapis.com; font-src 'self' fonts.gstatic.com; object-src 'self' blob: swift.csda.gov.au; frame-src 'self' blob: bluey-webchat.azurewebsites.net my.gov.au *.my.gov.au swift.csda.gov.au www.youtube.com www.youtube-nocookie.com
x-vhost: publish
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: SoGikqaBHv9M3HBU_nnZuqI5nzIQEDMAc5zRxUGj5HHaJM8bp6YBbw==
age: 150844
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat:200,400,700|Roboto:300,400,500,700,900&display=swap
142.250.74.138200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Montserrat:200,400,700|Roboto:300,400,500,700,900&display=swap
IP 142.250.74.138:0
GET /css?family=Montserrat:200,400,700|Roboto:300,400,500,700,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.my.gov.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 06 Feb 2023 17:01:07 GMT
date: Mon, 06 Feb 2023 17:01:07 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2