r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16120
Expires: Mon, 05 Dec 2022 00:58:16 GMT
Date: Sun, 04 Dec 2022 20:29:36 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fb2c0697c6d9a96a5411dd2952947458
79e57f831ec396bbdaa5bfe9472a05e6c9fb31f4
3fd7edcc349ab4402f62e54a142be6b4cecf0e7ee3f431d3168bdf0643ba4d92
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1055
Cache-Control: max-age=137956
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 20:29:36 GMT
Etag: "638c76f5-1d7"
Expires: Tue, 06 Dec 2022 10:48:52 GMT
Last-Modified: Sun, 04 Dec 2022 10:31:17 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12078
Expires: Sun, 04 Dec 2022 23:50:54 GMT
Date: Sun, 04 Dec 2022 20:29:36 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 04 Dec 2022 20:20:09 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 567
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: oTb0iI95QMmN5De3es8PAc/ABjrLGzieglul2ipI/YvTh7GOML/ra2rhXD6akxTJFUxPf9LOsBQ=
x-amz-request-id: 9RX10A6NCQP2XZ7P
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 04 Dec 2022 19:47:06 GMT
age: 2550
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 20:29:36 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 04 Dec 2022 20:08:58 GMT
cache-control: public,max-age=3600
age: 1239
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 31b129c94a90b1e695b21395cb54e378
a3cae46b48d469cc61ab0581303bcd5f5b654db9
fac3f681be358a20f78958dff10c89b7a91365c5114c81246c1bc34c1362ba1e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1045
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 20:29:37 GMT
Last-Modified: Sun, 04 Dec 2022 20:12:12 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
44.236.232.139101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.236.232.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Qjw9XwOCukmn+xSaw2T8kA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: nG4MizJTxzWuzE+0H+q1rAtuhFA=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16766
Expires: Mon, 05 Dec 2022 01:09:04 GMT
Date: Sun, 04 Dec 2022 20:29:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16766
Expires: Mon, 05 Dec 2022 01:09:04 GMT
Date: Sun, 04 Dec 2022 20:29:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16766
Expires: Mon, 05 Dec 2022 01:09:04 GMT
Date: Sun, 04 Dec 2022 20:29:38 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 43309032a892c486f9985ef520df696e
36f4682ca6a33ff80ee02129c77e6f27e996ede0
24225ff504f30405d9ec3feb2555c738fcca0d6b265f285aa9c73a64c78a496e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5681
x-amzn-requestid: 8f0d66b8-d532-48d9-9a29-74540cd6ab3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cltXnEotIAMFqkA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc296-27349a376ff819ab63b04a81;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:41:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Uz-wJTZjej3sjP-O68BQ4hB_kkAecG0o7GkeZUan90ZgV87g0Cg_ZA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:52:38 GMT
age: 81420
etag: "36f4682ca6a33ff80ee02129c77e6f27e996ede0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash db1701b7b9d161a0c935bb6e10b17893
22a8c4bd58c729c1abcf794466e8f3231dfb034b
b495524a33e5b1d3ba34cfbe867ada0da956c061370b1fcde06b23a6194a9787
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8315
x-amzn-requestid: f1bcc33b-aad9-4d3b-b1f9-49282f2d4fb9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clsAMGVboAMFfxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc067-13472a097177d4751c8f7a8c;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6UQ_BhPmpVpe9w6gsExB-EpNq_syeCCK6fr4Y1FFK1jDJh_n1Sd0Eg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:52:47 GMT
age: 81411
etag: "22a8c4bd58c729c1abcf794466e8f3231dfb034b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d571e0e-b14e-436b-8156-2e49aad75d4f.png
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d571e0e-b14e-436b-8156-2e49aad75d4f.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 14dcca2a9c4792d835ee709bcd947402
1d702df3a64258628f4124eafd580695f2d350af
da01dcd8fef7c50bdb6f7a8a6a4955694092f479df3dba72f7fa69d7280d07b2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d571e0e-b14e-436b-8156-2e49aad75d4f.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16143
x-amzn-requestid: dc86fad4-4e53-42c9-9b0a-5e4d2cfcd087
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdGyLGqmoAMFnaA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851a7-0ea324b31e8c6578098b8ab9;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:03 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kRs3oBWnSs5asyPdvz6kkooy7pqm2Yr8R_2x8EXCVn3dBz_aEJurRQ==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 07:26:41 GMT
age: 46977
etag: "1d702df3a64258628f4124eafd580695f2d350af"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19c9bb39-be15-49f9-aad9-2cc511601111.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19c9bb39-be15-49f9-aad9-2cc511601111.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a6e7b32ac999cf3c899a234c621fa91a
fc5d4f3163ebb9faf85968cbb1d194e8e68418be
f12db3aed126006fee00649aba0b3eaae900de200b85b9523866a90b5494f18e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19c9bb39-be15-49f9-aad9-2cc511601111.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8989
x-amzn-requestid: abce0b01-f70c-42ad-b242-5a24735fe4c2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cltl4Gk2oAMFSWQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc2f2-1cccffff5199dffe70264a95;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:43:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PFl7VUrzRkMFNnTiIw_cbGCyrEFn43eUSlZfT0nUhUmjjyXT7JfjMA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:50:01 GMT
age: 81577
etag: "fc5d4f3163ebb9faf85968cbb1d194e8e68418be"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F826f887d-ca78-40db-9b7d-6c693667c155.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F826f887d-ca78-40db-9b7d-6c693667c155.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c1a6f4805f59db44f9d3520d88701a58
6a0258e8c97ce09f1723382c8a16d9682b7dc50c
ae120df5e96352c6998c24c69c709dfd2b01a7ff8a7b935d496757fd7661f2f5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F826f887d-ca78-40db-9b7d-6c693667c155.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7503
x-amzn-requestid: a4120308-c51e-4cff-99c2-90e86018b05d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cgZjCGkVIAMFpsw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6389a2e0-6fdf362a6d32449239476155;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 07:01:52 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dy619jlSTwCjwDhGuLmwTMcmuYj1Kg2oLA7xORyAYX8IHWimhNo6pw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 07:16:07 GMT
age: 47612
etag: "6a0258e8c97ce09f1723382c8a16d9682b7dc50c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c01fe1cccdb3b672bbade6d98217ffe9
a9a529dc9894827f6243a1bf57f81caa4fe88fc2
c43da6212c79a08e22e78e04e99e8f5422e64b4b0a87f30b7907f1b4bc675c71
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4666
x-amzn-requestid: 850d341f-5ccb-453c-8adf-a8194f8fbdad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clr_-GiboAMFwww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc066-766293f2526e637235067aca;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: z5uqgjB-Bsl0U55a8aFi37cpJ65Vnbjm6bJ2GnMpaO7RXsMZsOCbPQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:44:01 GMT
age: 81938
etag: "a9a529dc9894827f6243a1bf57f81caa4fe88fc2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.banghair.com.au/
103.227.177.111301 Moved Permanently 20 B IP 103.227.177.111:0
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 04 Dec 2022 20:29:36 GMT
Server: Apache
Vary: Accept-Encoding,Cookie,User-Agent
X-Redirect-By: WordPress
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://www.banghair.com.au/
Keep-Alive: timeout=5, max=100
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 122124f83967c12700f5a6f5546b0f1f
d7acd2db61ad811c388a44b7bd407fa5f4aea8ee
b6b9e0b6c241b4eeb5161b1c297dec2aa6188032017074ee7f8e5533fab87a4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 20:29:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 122124f83967c12700f5a6f5546b0f1f
d7acd2db61ad811c388a44b7bd407fa5f4aea8ee
b6b9e0b6c241b4eeb5161b1c297dec2aa6188032017074ee7f8e5533fab87a4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 20:29:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3c4319f54a5675ee9acda96c58f97ac6
210ea86db1836d430b321d59b4bd1b016c914f22
cb20ad3ec895ed3a2ae9b1a90dda6b7cc174d8851f3a15ba054a435746cbdc65
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 20:29:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 9be9c9b9fe6ffd1d833f3b83f02753d3
bf5ff3b2941a4cf77cb97b4338255575a047897b
58514e898d9e6452017e568b8f768cc54c11fd0399a7f06fdc06045c86e88119
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3721
Cache-Control: max-age=103857
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 20:29:41 GMT
Etag: "638be75d-116"
Expires: Tue, 06 Dec 2022 01:20:38 GMT
Last-Modified: Sun, 04 Dec 2022 00:18:37 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 278
maps.googleapis.com/maps/api/js?key&ver=5.8.6
142.250.74.74200 OK 54 kB URL HTTP/2 maps.googleapis.com/maps/api/js?key&ver=5.8.6
IP 142.250.74.74:0
File type ASCII text, with very long lines (2414)
Hash 514ff9212a42f6bf0baefededf9313b8
f199e66619b6d215070e13b0cf45e17b638c9877
2514f92b712367553afa724d3d5eb2913e60e14cc9876d5f6af9e812d5e89323
GET /maps/api/js?key&ver=5.8.6 HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Sun, 04 Dec 2022 20:29:41 GMT
expires: Sun, 04 Dec 2022 20:59:41 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 53511
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=10
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-180704077-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-180704077-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 5fea19de44f76fd0a276d6999e5df61f
e8631403352135b8ea14240973bcf246ddcb547f
c72ce8bd1434aa7f0464c73e64ffd34240954e7fa6b92727492005c7bb9300d2
GET /gtag/js?id=UA-180704077-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 04 Dec 2022 20:29:41 GMT
expires: Sun, 04 Dec 2022 20:29:41 GMT
cache-control: private, max-age=900
last-modified: Sun, 04 Dec 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43632
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 122124f83967c12700f5a6f5546b0f1f
d7acd2db61ad811c388a44b7bd407fa5f4aea8ee
b6b9e0b6c241b4eeb5161b1c297dec2aa6188032017074ee7f8e5533fab87a4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 20:29:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 60ff780baac66da674caf587f7ad0210
da502135f86f18ba10fec133a5781d46dcb5ea0e
c6f99a3b164cc3b638c3a883bfe7fa51da0296b05afdc6e997aeb49dc75e4bf2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2402
Cache-Control: max-age=151489
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 20:29:41 GMT
Etag: "638ca694-118"
Expires: Tue, 06 Dec 2022 14:34:30 GMT
Last-Modified: Sun, 04 Dec 2022 13:54:28 GMT
Server: ECS (amb/6BAE)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3c4319f54a5675ee9acda96c58f97ac6
210ea86db1836d430b321d59b4bd1b016c914f22
cb20ad3ec895ed3a2ae9b1a90dda6b7cc174d8851f3a15ba054a435746cbdc65
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 20:29:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.banghair.com.au/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.4
103.227.177.111200 OK 3.4 kB URL HTTP/2 www.banghair.com.au/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.4
IP 103.227.177.111:0
File type ASCII text, with very long lines (24504)
Hash 2ef085b9bd997e0f4ad6f45e2c55dfba
e1c37e0cb870d58d843b79bf8e45cb4d4bde17cc
d4f70ce50378d4ec8e7c61a9156e6f8c4279150e14fdc3adfae463b8703bdb25
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.4 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 23 Feb 2022 23:23:54 GMT
etag: "562100f-5fb9-5d8b7c24ee3ed-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3417
content-type: text/css
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
103.227.177.111200 OK 2.6 kB URL HTTP/2 www.banghair.com.au/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
IP 103.227.177.111:0
File type ASCII text, with very long lines (11256), with no line terminators
Hash 583529ff412cb2b255fa606024d1133e
8db4b0a0be402cc5e38488528791b73b0c7369d0
6fdf0933a8faf229b277740f401600834c00d0b204f7ed38293cd4abcdb3ea20
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 15 Sep 2021 10:13:13 GMT
etag: "57c7a76-2bf8-5cc05f2259b17-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2592
content-type: text/css
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-includes/css/dist/block-library/style.min.css?ver=5.8.6
103.227.177.111200 OK 10 kB URL HTTP/2 www.banghair.com.au/wp-includes/css/dist/block-library/style.min.css?ver=5.8.6
IP 103.227.177.111:0
File type Unicode text, UTF-8 text, with very long lines (33376)
Hash 2a3cc81919349cb551f504b077791457
1d9393824b33b80513dbb9b2c8db48b6719d5d46
13a8d762ef70a9a18c89c226c4671f986401ccb7dae1c20be18c3db1eabbb62c
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.8.6 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 15 Sep 2021 10:13:12 GMT
etag: "57c7992-13abe-5cc05f2253d58-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 10523
content-type: text/css
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=5.8.6
103.227.177.111200 OK 1.2 kB URL HTTP/2 www.banghair.com.au/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=5.8.6
IP 103.227.177.111:0
File type ASCII text, with very long lines (4186), with no line terminators
Hash 30d57d7aa11190e44974cce8621f22c7
59f516369877009cce06ca45b1c296944bb674a4
094ae87a3d4cee4a1ddc5cada149c2deacabd4cf2e377b97fe4ca641142258ee
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=5.8.6 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Fri, 07 Jun 2019 20:45:02 GMT
etag: "57c7a7a-105a-58ac1e7924f80-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1156
content-type: text/css
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0
103.227.177.111200 OK 812 B URL HTTP/2 www.banghair.com.au/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0
IP 103.227.177.111:0
File type ASCII text, with very long lines (2630), with no line terminators
Hash 8f448bc82d2befe019a7eb0123942876
f6a903712c57073e24a1ac79dca2cfc0f9001e6b
30f719833e77320f98fe6a7d115a710b381f8653a9ed69bcbdea7b198da2022e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 23 Feb 2022 23:25:23 GMT
etag: "5660c65-a46-5d8b7c7a0c7f5-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 812
content-type: text/css
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=6.7.3
103.227.177.111200 OK 1.3 kB URL HTTP/2 www.banghair.com.au/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=6.7.3
IP 103.227.177.111:0
File type ASCII text, with very long lines (4933), with no line terminators
Hash d2d7f4c273d3b4cd972a337969b14754
b441775d1dcba61a5234df0256a40c7f58a8b059
fcfdbdf2a45072bbb545934d419cf76e5272d3193742eb8b659e938cafab4cdf
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=6.7.3 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Thu, 10 Mar 2022 17:03:10 GMT
etag: "5640456-1345-5d9e030581884-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1286
content-type: text/css
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6
103.227.177.111200 OK 2.0 kB URL HTTP/2 www.banghair.com.au/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6
IP 103.227.177.111:0
File type ASCII text, with very long lines (9281), with no line terminators
Hash df5420954321c8c99604b6dd995dedc0
75c028ff14483537c1fb68bc9406f46e4e426aac
981c5e5362aaf7b6c7503521941256ffdbe54793f6fe39ee0a9e6fb430956772
GET /wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Thu, 10 Mar 2022 17:03:11 GMT
etag: "5640d7c-2441-5d9e03066687d-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2034
content-type: text/css
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0
103.227.177.111200 OK 7.0 kB URL HTTP/2 www.banghair.com.au/wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0
IP 103.227.177.111:0
File type ASCII text, with very long lines (30441)
Hash 33c2e4392fde2857ebfb23bb97fabab7
7945a7ecdb7d7ba137f256c0e952d52bdd5a19d1
8ca770c719117b328359634c7f1e8144b5f37c29bd12679dfbef2738c2b33efd
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 23 Feb 2022 23:25:23 GMT
etag: "5660c71-778b-5d8b7c7a0cfc5-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6968
content-type: text/css
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=6.7.3
103.227.177.111200 OK 22 kB URL HTTP/2 www.banghair.com.au/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=6.7.3
IP 103.227.177.111:0
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash e1a6a6d5253e55009d6e2f6189caaa2c
b7626442d1cf623c44c2b9913e9450a013905038
05e83df51a986346aaefe4cfcf5f5c2a365a2cd565d0651d68c503e7c7d235f2
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=6.7.3 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Thu, 10 Mar 2022 17:03:10 GMT
etag: "56403b1-32f4b-5d9e03054ad89-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 21960
content-type: text/css
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6
103.227.177.111200 OK 972 B URL HTTP/2 www.banghair.com.au/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6
IP 103.227.177.111:0
Hash 8bf268dfcca7cb20719b7ea14373ef4a
58bd839bbf0e8cc082f0a488b538b4ec71bebd2e
eece4a14939273c7af07bce8bab3a6cfc2c9de44c0eea82cc886abac13cb3870
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 23 Feb 2022 23:22:42 GMT
etag: "5600142-aab-5d8b7be030853-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 972
content-type: text/css
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.6.0
103.227.177.111200 OK 4.8 kB URL HTTP/2 www.banghair.com.au/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.6.0
IP 103.227.177.111:0
File type ASCII text, with very long lines (29253), with no line terminators
Hash 9bf3bbb49187725256af461d893ad89b
450c272db38f49d9adea9ce61ed952715c2c360b
7350ce0f1ba5c0046f967bd77c4321e98498d3ea27a01eeb06eab52c0c9da9a2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.6.0 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 23 Feb 2022 23:25:23 GMT
etag: "5660c70-7245-5d8b7c7a0cfc5-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4839
content-type: text/css
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-includes/js/wp-emoji-release.min.js?ver=5.8.6
103.227.177.111200 OK 4.9 kB URL HTTP/2 www.banghair.com.au/wp-includes/js/wp-emoji-release.min.js?ver=5.8.6
IP 103.227.177.111:0
File type ASCII text, with very long lines (15224)
Hash 3179794486ec4ca8f59329ccd67ae3e1
4b9c6e22ee7966479ef9844259f39f19d584f4a4
6e616b83910943042f683d5d21691f7e15aca8e2d8d154ff8f35bf09c612297a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.8.6 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 15 Sep 2021 10:13:14 GMT
etag: "57c7bbb-4705-5cc05f239711e-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4930
content-type: application/javascript
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.2.2
103.227.177.111200 OK 8.9 kB URL HTTP/2 www.banghair.com.au/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.2.2
IP 103.227.177.111:0
File type Unicode text, UTF-8 text, with very long lines (62753), with no line terminators
Hash 6c8772ecf168559902155fb7bbbb6ff5
437a2c6b53493b57f4dd490368c53070c903be85
afcaf780edbf3bc69ee80db3e8b9420cc1c7a458b270bf7df979f53a21136288
GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.2.2 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Thu, 10 Mar 2022 17:03:11 GMT
etag: "5640d77-f523-5d9e030666496-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 8895
content-type: text/css
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/themes/banghair/style.css?ver=5.8.6
103.227.177.111200 OK 390 B URL HTTP/2 www.banghair.com.au/wp-content/themes/banghair/style.css?ver=5.8.6
IP 103.227.177.111:0
File type ASCII text, with very long lines (307), with CRLF line terminators
Hash 00fb9bc406621217a87eec83559da7d5
e155bfe9e65d5ce5c8446bc470ce46b7bf6af17d
04fed89b63e063bfc5f7e5ca9b9e64c4412289b4b6c99f3191d1c39aed6a9b29
GET /wp-content/themes/banghair/style.css?ver=5.8.6 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 15 Jul 2020 05:04:56 GMT
etag: "57a72f9-27b-5aa73dd668e00-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 390
content-type: text/css
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/yith-woocommerce-advanced-product-options-premium/assets/css/yith-wccl.css?ver=1.5.30
103.227.177.111200 OK 1.2 kB URL HTTP/2 www.banghair.com.au/wp-content/plugins/yith-woocommerce-advanced-product-options-premium/assets/css/yith-wccl.css?ver=1.5.30
IP 103.227.177.111:0
File type ASCII text, with CRLF line terminators
Hash 91e87ba8ce17b3204738333eded2a923
04ae2779884220246ca3b1c69c599dd9dc68adad
2b474d874fe19b5415b485c8440a3334ac35ffcd4da84a0957ec2b240707c098
GET /wp-content/plugins/yith-woocommerce-advanced-product-options-premium/assets/css/yith-wccl.css?ver=1.5.30 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 23 Sep 2020 10:03:12 GMT
etag: "5642f83-11d4-5aff830fa1800-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1156
content-type: text/css
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/
103.227.177.111200 OK 32 kB IP 103.227.177.111:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (25571), with CRLF, LF line terminators
Hash 6a6e3a7f94292d1d0cd27e504e286e20
a699413423ec6f29748db16a631c6df49b58d8b9
aa2c4adf5988d9c783af2076f7f32092f8a0606088bd23a95e59084c3fe658fd
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
vary: Accept-Encoding,Cookie,User-Agent
cache-control: max-age=3, must-revalidate
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-type: text/html; charset=UTF-8
date: Sun, 04 Dec 2022 20:29:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/Ultimate_VC_Addons/assets/css/icons.css?ver=3.19.6
103.227.177.111200 OK 449 B URL HTTP/2 www.banghair.com.au/wp-content/plugins/Ultimate_VC_Addons/assets/css/icons.css?ver=3.19.6
IP 103.227.177.111:0
File type ASCII text, with CRLF line terminators
Hash ea1ad09a95a93d8382b8c86b761e1066
adb7ad1934bd7e3f87d77a3daad0d7e28f1ff927
1286dafa51eada6cb03632143a43d6bf96fed061beb5c949223c6fa559cdd343
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/Ultimate_VC_Addons/assets/css/icons.css?ver=3.19.6 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 12 Aug 2020 00:15:40 GMT
etag: "566801e-63f-5aca316758300-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 449
content-type: text/css
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.3.0
103.227.177.111200 OK 374 B URL HTTP/2 www.banghair.com.au/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.3.0
IP 103.227.177.111:0
Hash 99f478aea66ce928c3dda9ab3a0dbbb3
29bb3e5ccb81defba6cf1749768f4c57533e261a
44b0fdb4d849dfa85411e2e814e8352a89f04fad8e65924f477368dad133955e
GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.3.0 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Thu, 20 Aug 2020 10:44:36 GMT
etag: "564172a-3e0-5ad4cce6e2d00-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 374
content-type: application/javascript
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate-params.min.js?ver=3.19.6
103.227.177.111200 OK 515 B URL HTTP/2 www.banghair.com.au/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate-params.min.js?ver=3.19.6
IP 103.227.177.111:0
File type HTML document, ASCII text, with very long lines (1102), with no line terminators
Hash 8b7814617571a492de65d62ef59e75ab
eb8cdfe393f726cac1d72ba12d45b819454dd39b
5e76082d0bc82e7a7aa6da22805f3b8ad9b12914cbc6ccb23061be251f133658
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate-params.min.js?ver=3.19.6 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 12 Aug 2020 00:16:34 GMT
etag: "56680ba-44e-5aca319ad7c80-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 515
content-type: application/javascript
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/slick-custom.min.js?ver=3.19.6
103.227.177.111200 OK 851 B URL HTTP/2 www.banghair.com.au/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/slick-custom.min.js?ver=3.19.6
IP 103.227.177.111:0
File type HTML document, ASCII text, with very long lines (3071), with no line terminators
Hash c2103fb37a049068983d893d83a1e0e6
a06974caf6b2d1967561751873654f8eb3840c7c
de9a997a8b32ad2099a7afe3a6506e398e7fd3cf7e7caf4620dc55ba38004a00
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/slick-custom.min.js?ver=3.19.6 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 12 Aug 2020 00:16:30 GMT
etag: "56680c6-bff-5aca319707380-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 851
content-type: application/javascript
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/jquery-appear.min.js?ver=3.19.6
103.227.177.111200 OK 611 B URL HTTP/2 www.banghair.com.au/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/jquery-appear.min.js?ver=3.19.6
IP 103.227.177.111:0
File type ASCII text, with very long lines (1350), with no line terminators
Hash 8fa05dcc02aab1489117ee84bea23253
484070e24b0dd797a221229b1f01506386fd6fa4
79a013900b86cbedc1ac48b622cb66ebbfc8c590163805ab9e21313bb1f7de1d
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/jquery-appear.min.js?ver=3.19.6 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 12 Aug 2020 00:16:24 GMT
etag: "56680d5-546-5aca31914e600-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 611
content-type: application/javascript
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.2.2
103.227.177.111200 OK 1.1 kB URL HTTP/2 www.banghair.com.au/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.2.2
IP 103.227.177.111:0
File type HTML document, ASCII text, with very long lines (3037), with no line terminators
Hash f46e666160800ab91bb12cccc7555662
63b98922823c1f54ed1a96e1dcd0c227e3e51419
f5cc9892eb6b336791126838b53edfe9dc4b12b99aae085cadf52d8e734f5c68
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.2.2 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Thu, 10 Mar 2022 17:03:11 GMT
etag: "5640db5-bdd-5d9e030667fed-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1086
content-type: application/javascript
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/slick.min.css?ver=3.19.6
103.227.177.111200 OK 1.5 kB URL HTTP/2 www.banghair.com.au/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/slick.min.css?ver=3.19.6
IP 103.227.177.111:0
File type Unicode text, UTF-8 text, with very long lines (5951), with no line terminators
Hash 1be4d272f80a2b90ac5c62a872efbb62
e9da43b3f026d83467f7b0543ad003ef4af6a876
6c612d8b59c40cfc1c04c7e9e698498a6612b4d0d161d79df54b0d2dedf19998
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-css/slick.min.css?ver=3.19.6 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 12 Aug 2020 00:15:48 GMT
etag: "5668110-1741-5aca316ef9500-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1518
content-type: text/css
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.2.2
103.227.177.111200 OK 3.5 kB URL HTTP/2 www.banghair.com.au/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.2.2
IP 103.227.177.111:0
File type ASCII text, with very long lines (9139)
Hash d6c87c7221011e280d3bb60eb9c598e4
93aa9b7f17b91719689519d4439c10d884063296
0acd2e4b6cc50829b1fb1e12b55ed2b72b201631e908a80171d39ef4a9570724
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.2.2 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Thu, 10 Mar 2022 17:03:11 GMT
etag: "5640d92-253d-5d9e03066704d-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3493
content-type: application/javascript
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.2.2
103.227.177.111200 OK 982 B URL HTTP/2 www.banghair.com.au/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.2.2
IP 103.227.177.111:0
File type ASCII text, with very long lines (1668)
Hash e66463f2023b738680c9bdefece69a37
315dc8e6ebdfb18c662851244ee33e2758ad3c83
fd83e7fc6d81aa6f6680ea640e9c086aa1950a17757a582aa74ea9797a70f346
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.2.2 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Thu, 10 Mar 2022 17:03:11 GMT
etag: "5640e0f-72a-5d9e03066a315-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 982
content-type: application/javascript
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.2.2
103.227.177.111200 OK 794 B URL HTTP/2 www.banghair.com.au/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.2.2
IP 103.227.177.111:0
File type ASCII text, with very long lines (2139), with no line terminators
Hash 29307e8dec33cf3411ca4e1f2c84e9d0
484402289464d7ffb1475827f3438329d520bfc6
a2db59efaa416ef0c9d5d58f142cd5e44c475348cff20a664586fd3cda1b5f5b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.2.2 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Thu, 10 Mar 2022 17:03:11 GMT
etag: "5640db6-85b-5d9e030667fed-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 794
content-type: application/javascript
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/background-style.min.css?ver=3.19.6
103.227.177.111200 OK 1.8 kB URL HTTP/2 www.banghair.com.au/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/background-style.min.css?ver=3.19.6
IP 103.227.177.111:0
File type ASCII text, with very long lines (9312), with no line terminators
Hash 201a821d0093fc9b7b4e120ca51cefd3
d440fb972c1ecca4e24180a21dc2a1f399663397
0a4fc7354e973a436ffa77f98db4c2ae8bc1c234102f6e3ce81a912822c3e534
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-css/background-style.min.css?ver=3.19.6 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 12 Aug 2020 00:15:46 GMT
etag: "5668120-2460-5aca316d11080-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1786
content-type: text/css
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/style.min.css?ver=3.19.6
103.227.177.111200 OK 2.8 kB URL HTTP/2 www.banghair.com.au/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/style.min.css?ver=3.19.6
IP 103.227.177.111:0
File type ASCII text, with very long lines (13362), with no line terminators
Hash 022bf1d37b467a4a6d0e964f4682ed2f
313cb2c56ffdd2ecc9f3f78348d060152085b3e0
fd5140ccd70892401a43e96c3a21205b63e1bc2f37dcb1870a6bbb7bd4f33b2c
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-css/style.min.css?ver=3.19.6 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 12 Aug 2020 00:15:48 GMT
etag: "5668149-3432-5aca316ef9500-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2752
content-type: text/css
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.2.2
103.227.177.111200 OK 1.0 kB URL HTTP/2 www.banghair.com.au/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.2.2
IP 103.227.177.111:0
File type ASCII text, with very long lines (2938), with no line terminators
Hash 45db3d2887c26700a51bf469e3bb3aa1
d070b5fb53d2fbb66964bbfd482270b855d0ee96
1abc0cff49f82d9a063c04cd086b991af6ad00467efc4cb8d8d4e3c9a0f95777
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.2.2 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Thu, 10 Mar 2022 17:03:11 GMT
etag: "5640dbf-b7a-5d9e0306683d5-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1039
content-type: application/javascript
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0
103.227.177.111200 OK 3.8 kB URL HTTP/2 www.banghair.com.au/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0
IP 103.227.177.111:0
File type Unicode text, UTF-8 text, with very long lines (14924), with no line terminators
Hash 2829d566a7b23618109b18588c49daf9
4ffec8708ef01c17c4dbbba9e1756fb60ad4f919
bf6d483efd7c83b2cad0f9663fa86a357926a03a31573de4c98b6f962f7c0d48
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 23 Feb 2022 23:25:23 GMT
etag: "5660c7c-3a4f-5d8b7c7a0d3ad-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3780
content-type: application/javascript
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/themes/banghair/js/jquery.counterup.min.js?ver=1.0.0
103.227.177.111200 OK 578 B URL HTTP/2 www.banghair.com.au/wp-content/themes/banghair/js/jquery.counterup.min.js?ver=1.0.0
IP 103.227.177.111:0
File type ASCII text, with very long lines (917), with CRLF line terminators
Hash 306ea69c876201ec32a9562f18b9d673
96c0dfa4df03cd823476b46668ab47463c9169f3
2dadb57bba327dc006803a8ec08cf1d0e96f298b5cafaf2c3c9db12e3af96c4f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/banghair/js/jquery.counterup.min.js?ver=1.0.0 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 15 Jul 2020 05:00:34 GMT
etag: "57a7275-432-5aa73cdc8c080-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 578
content-type: application/javascript
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7
103.227.177.111200 OK 2.4 kB URL HTTP/2 www.banghair.com.au/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7
IP 103.227.177.111:0
File type ASCII text, with very long lines (6406), with no line terminators
Hash 4c6ce817a39414c5576e8895eb070bb2
dbc722879211a9235a27e0a5388c5c3ee896f4e2
e6dc83fdbabca73596e0fe9f5fd65261a06bbb4b9f8998821bfe1634fa0b35e5
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 15 Sep 2021 10:13:13 GMT
etag: "57c1856-1906-5cc05f23225f7-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2398
content-type: application/javascript
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=3.19.6
103.227.177.111200 OK 4.8 kB URL HTTP/2 www.banghair.com.au/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=3.19.6
IP 103.227.177.111:0
File type ASCII text, with very long lines (27639), with no line terminators
Hash da2fc2749d073a4558e07be91fd485bb
5b2c13af9ee717486ba75d132491dca65b7ca93c
e26b306c0363987a4a02bd157f64c1096a49715389def07c9d1207def1b4ab53
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=3.19.6 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Fri, 17 Jul 2020 03:38:08 GMT
etag: "5722900-6bf7-5aa9ae2a98800-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4755
content-type: text/css
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/custom.min.js?ver=3.19.6
103.227.177.111200 OK 4.7 kB URL HTTP/2 www.banghair.com.au/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/custom.min.js?ver=3.19.6
IP 103.227.177.111:0
File type ASCII text, with very long lines (21291), with no line terminators
Hash 3159497f1be47273129b50e1aea4ef95
e6a53a261ff37d13533b11eefd065fe71043522d
4dbdb640231ced5aaf67d2e7acafa7a6362797e20ce2c540e23643b745c85ded
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/custom.min.js?ver=3.19.6 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 12 Aug 2020 00:16:22 GMT
etag: "56680e1-532b-5aca318f66180-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4731
content-type: application/javascript
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-includes/js/wp-embed.min.js?ver=5.8.6
103.227.177.111200 OK 765 B URL HTTP/2 www.banghair.com.au/wp-includes/js/wp-embed.min.js?ver=5.8.6
IP 103.227.177.111:0
File type ASCII text, with very long lines (1391)
Hash fe875afb236ee8f0d50040fe58d848d4
e6b1b67093b429c95d5b9db07a7eba39e02cf0e5
328a6a072b91134f2802ae25e070f38ff156ceee2c6ec6a6253ae4b27af73b49
GET /wp-includes/js/wp-embed.min.js?ver=5.8.6 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Thu, 15 Apr 2021 05:05:59 GMT
etag: "57c7a8d-592-5bffbd1baf7de-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 765
content-type: application/javascript
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/themes/banghair/inc/fonts/font-awesome/css/font-awesome.min.css?ver=1.0.0
103.227.177.111200 OK 7.1 kB URL HTTP/2 www.banghair.com.au/wp-content/themes/banghair/inc/fonts/font-awesome/css/font-awesome.min.css?ver=1.0.0
IP 103.227.177.111:0
File type ASCII text, with very long lines (30837)
Hash 52f1a8a2ce85fa8432308b33bc1a2e79
fd80917af5371c8ecad0198592a1e7cce4b77b0e
07bd6a9ea0213e20f362485aadc17a88c486ecfb394004b41b8b38db6e6a35f6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/banghair/inc/fonts/font-awesome/css/font-awesome.min.css?ver=1.0.0 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 15 Jul 2020 05:00:34 GMT
etag: "57a7210-7918-5aa73cdc8c080-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7053
content-type: text/css
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-includes/js/wp-util.min.js?ver=5.8.6
103.227.177.111200 OK 705 B URL HTTP/2 www.banghair.com.au/wp-includes/js/wp-util.min.js?ver=5.8.6
IP 103.227.177.111:0
File type ASCII text, with very long lines (1305)
Hash fc7e549ce428fe90eb910c14d23a1532
e3eb36861f16a8b3ea97e8e60a2033957fe58a2e
80226ac13b48a680f63f8258a251d2b9b4c87394459df6bd32732fd4e69c1bd3
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-util.min.js?ver=5.8.6 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 15 Sep 2021 10:13:12 GMT
etag: "57c79f6-53c-5cc05f2256080-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 705
content-type: application/javascript
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/enable-jquery-migrate-helper/js/jquery-migrate/jquery-migrate-1.4.1-wp.js?ver=1.4.1-wp
103.227.177.111200 OK 7.9 kB URL HTTP/2 www.banghair.com.au/wp-content/plugins/enable-jquery-migrate-helper/js/jquery-migrate/jquery-migrate-1.4.1-wp.js?ver=1.4.1-wp
IP 103.227.177.111:0
Hash 8d0cfe5f52c1ceb3f85aa821beab9d5c
f40c47e073ed2872587f5800ca0d9a051248bca2
0e011e774927e4ef7c4cb526797f5c7bce0c5cbc65a7474c73467fbf882a2d4a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/enable-jquery-migrate-helper/js/jquery-migrate/jquery-migrate-1.4.1-wp.js?ver=1.4.1-wp HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Mon, 25 Jan 2021 05:29:13 GMT
etag: "56002c9-5c79-5b9b2d178676d-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7877
content-type: application/javascript
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/advanced-buttons.min.css?ver=3.19.6
103.227.177.111200 OK 3.3 kB URL HTTP/2 www.banghair.com.au/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/advanced-buttons.min.css?ver=3.19.6
IP 103.227.177.111:0
File type ASCII text, with very long lines (33489), with no line terminators
Hash 8c1c6fc7f93ae5dd2bb1f44187e3696f
1b704e563fb1f432660f0b629badfc0a4816111f
eecec77ef62c064bca9d51ca09c577ae4e6e17e225deebfbdf105d9fa1a8cf2b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-css/advanced-buttons.min.css?ver=3.19.6 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 12 Aug 2020 00:15:44 GMT
etag: "56680f0-82d1-5aca316b28c00-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3345
content-type: text/css
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/animate.min.css?ver=3.19.6
103.227.177.111200 OK 6.0 kB URL HTTP/2 www.banghair.com.au/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/animate.min.css?ver=3.19.6
IP 103.227.177.111:0
File type ASCII text, with very long lines (64385), with CRLF line terminators
Hash 3917b9eb453aaf736636986ef5f9af65
f42cae340ebb0678b454418b5ff0d82a7520d301
69217992a558e1832414ec72e1cd015284b614d70017d598e2169c1fb1340811
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-css/animate.min.css?ver=3.19.6 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 12 Aug 2020 00:15:46 GMT
etag: "56680f4-11237-5aca316d11080-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5998
content-type: text/css
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/mailchimp-for-wp/assets/js/forms.js?ver=4.8.6
103.227.177.111200 OK 2.6 kB URL HTTP/2 www.banghair.com.au/wp-content/plugins/mailchimp-for-wp/assets/js/forms.js?ver=4.8.6
IP 103.227.177.111:0
File type ASCII text, with very long lines (6210), with no line terminators
Hash dfcc74301f163fabd32e3256b91ba54e
3e861de3c9a7d5638eb7da2274f50274cde6cc0c
0611e07de6e96239da5373ee60ec187406e535614413b431c823fa3c21ecf8d7
GET /wp-content/plugins/mailchimp-for-wp/assets/js/forms.js?ver=4.8.6 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Sun, 12 Sep 2021 12:12:37 GMT
etag: "560081d-1842-5cbcb43ad17dc-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2559
content-type: application/javascript
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/slick.min.js?ver=3.19.6
103.227.177.111200 OK 9.9 kB URL HTTP/2 www.banghair.com.au/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/slick.min.js?ver=3.19.6
IP 103.227.177.111:0
File type ASCII text, with very long lines (41269), with no line terminators
Hash 4351bb5789a30fea64ba60d13e000cfd
6fb058eed3d691199a25403f16216ac8402f1181
e0ed2ba9ff89544823f6fc5465e294cc91638abefa2bedf1de1388ba37964955
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/slick.min.js?ver=3.19.6 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 12 Aug 2020 00:16:32 GMT
etag: "56680df-a135-5aca3198ef800-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 9906
content-type: application/javascript
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6
103.227.177.111200 OK 3.3 kB URL HTTP/2 www.banghair.com.au/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6
IP 103.227.177.111:0
File type HTML document, ASCII text, with very long lines (9720), with no line terminators
Hash 4ac0d5ab8d83806d59c4e1f7bf0a855a
81153a2f5e3a21febe9ede53c9f0073da3e14829
605fd4e7f4d3fbb5505bb81e3f72c685b6ef411c27cde2f7bab2787c3d870b10
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 23 Feb 2022 23:22:42 GMT
etag: "5600158-25f8-5d8b7be030853-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3286
content-type: application/javascript
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/themes/banghair/js/waypoints.min.js?ver=1.0.0
103.227.177.111200 OK 2.6 kB URL HTTP/2 www.banghair.com.au/wp-content/themes/banghair/js/waypoints.min.js?ver=1.0.0
IP 103.227.177.111:0
File type ASCII text, with very long lines (7808), with CRLF line terminators
Hash 7c232aa89b572823395d9dd3080b336c
4c3244bc4f9939024b2bc651a62fccdf143fd32a
68828f25ebdb78571f00f5ab43ff0a09def2ec2026f166e93bbfa542387540ef
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/banghair/js/waypoints.min.js?ver=1.0.0 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 15 Jul 2020 05:00:34 GMT
etag: "57a7278-1f73-5aa73cdc8c080-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2626
content-type: application/javascript
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/yith-woocommerce-advanced-product-options-premium/assets/js/yith-wccl.min.js?ver=1.5.30
103.227.177.111200 OK 3.8 kB URL HTTP/2 www.banghair.com.au/wp-content/plugins/yith-woocommerce-advanced-product-options-premium/assets/js/yith-wccl.min.js?ver=1.5.30
IP 103.227.177.111:0
File type HTML document, ASCII text, with very long lines (12531), with no line terminators
Hash 187617085b1c81c9f7c768201b170fbd
0d3224f0fae4b2e559724ed2f003b270df54d780
494b613275293baa27806f9b35bad279a52ae259a40b69bd004cafe05f8c5953
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-advanced-product-options-premium/assets/js/yith-wccl.min.js?ver=1.5.30 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 23 Sep 2020 10:03:12 GMT
etag: "5642fa5-30f3-5aff830fa1800-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3828
content-type: application/javascript
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.2.2
103.227.177.111200 OK 3.6 kB URL HTTP/2 www.banghair.com.au/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.2.2
IP 103.227.177.111:0
File type ASCII text, with very long lines (13590), with no line terminators
Hash efd90db5856a1a6e80a5997ccdf90336
75bcb096ddc540eb7c709ed9e03abdca0a315a91
3ed7e6e9c7939bc90f3c46ed9d6bc4961da498b83522cebaa05ece755994a960
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.2.2 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Thu, 10 Mar 2022 17:03:11 GMT
etag: "5640db8-3516-5d9e0306683d5-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3631
content-type: application/javascript
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/themes/banghair/js/scripts.min.js?ver=1.0.0
103.227.177.111200 OK 3.5 kB URL HTTP/2 www.banghair.com.au/wp-content/themes/banghair/js/scripts.min.js?ver=1.0.0
IP 103.227.177.111:0
File type ASCII text, with very long lines (13383), with no line terminators
Hash 25d03d36a86a673048279eb1da0b3f07
440dadfb2ac63f768e841f7d95cb6f3a98fb691a
593377a95a2e1fcdd674e152656685015b67eb949f34df3a54bbc3e2f2ca53ad
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/banghair/js/scripts.min.js?ver=1.0.0 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 15 Jul 2020 05:00:34 GMT
etag: "57a7272-3447-5aa73cdc8c080-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3477
content-type: application/javascript
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/jetpack/css/jetpack.css?ver=10.6
103.227.177.111200 OK 17 kB URL HTTP/2 www.banghair.com.au/wp-content/plugins/jetpack/css/jetpack.css?ver=10.6
IP 103.227.177.111:0
File type ASCII text, with very long lines (18436)
Hash 3aa2d2de144d01ea2fe3971c1dae88cd
41b45c2bc0a56b2fff353c7893611d4ff5cfb82b
76b794a625731664e3c443aa0acd496dd8a76c885d444a037485a4ef59867100
GET /wp-content/plugins/jetpack/css/jetpack.css?ver=10.6 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 23 Feb 2022 23:22:53 GMT
etag: "56204d0-15784-5d8b7beb6691b-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 16952
content-type: text/css
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/themes/banghair/css/plugins.css?ver=1.0.0
103.227.177.111200 OK 22 kB URL HTTP/2 www.banghair.com.au/wp-content/themes/banghair/css/plugins.css?ver=1.0.0
IP 103.227.177.111:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash ad79f29bde2d05f520a73314524d26db
51a27ad2b1ae72d3f5eac268218ff9f857e48c55
5f4f7154e49f255dd510fd9e9ed99a4111c6c95c121bec1ee44eefce07b4983b
GET /wp-content/themes/banghair/css/plugins.css?ver=1.0.0 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Fri, 02 Oct 2020 01:32:57 GMT
etag: "57a7265-20b66-5b0a61cc0a440-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 21727
content-type: text/css
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
103.227.177.111200 OK 6.0 kB URL HTTP/2 www.banghair.com.au/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 103.227.177.111:0
File type Unicode text, UTF-8 text, with very long lines (16323)
Hash 69c4e8dea18bf3114e7630d1debe1ae2
71f8fc1ebf286356133d170f98afed7341c8de68
371f5b10b62e31fb871e46eb0a39c2599515e616d9c4a7edb50864f0e6ee9799
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 15 Sep 2021 10:13:13 GMT
etag: "57c7b8e-4056-5cc05f2321a3f-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6031
content-type: application/javascript
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/themes/banghair/css/theme.css?ver=1.0.0
103.227.177.111200 OK 22 kB URL HTTP/2 www.banghair.com.au/wp-content/themes/banghair/css/theme.css?ver=1.0.0
IP 103.227.177.111:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 1e85f4057b07c2518fe32b5dcfbd1288
f096446e1a9973f1522540baae3f06cda8da4243
1639903656853438d331b01728ca472630c8b58f29bd4dfaddd8b57ce70249df
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/banghair/css/theme.css?ver=1.0.0 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Fri, 02 Oct 2020 01:32:59 GMT
etag: "57a725f-2706d-5b0a61cdf28c0-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 22523
content-type: text/css
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6
103.227.177.111200 OK 5.8 kB URL HTTP/2 www.banghair.com.au/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6
IP 103.227.177.111:0
File type HTML document, ASCII text, with very long lines (21538), with no line terminators
Hash d314e01e336ad85808c790ae5d4ce018
fb6cdc6122781da5e3f8879ed7de9696d1f307bf
b5c1c0ad6774d1a6b2658dda802028593914071417805ed8708056c2d307c022
GET /wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Thu, 10 Mar 2022 17:03:11 GMT
etag: "5640d9a-5422-5d9e030667435-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5766
content-type: application/javascript
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.3.0
103.227.177.111200 OK 5.8 kB URL HTTP/2 www.banghair.com.au/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.3.0
IP 103.227.177.111:0
File type ASCII text, with very long lines (20478)
Hash 76106db76a3db58ce57b5171a2373225
613a99487a17c2490d6d34b347e2cf285d9c9528
e6e2274e7cf6fbfa9b50eb4f454325ad9f049a6c72d25f421481c9854fa2b545
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.3.0 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Thu, 20 Aug 2020 10:46:13 GMT
etag: "5641736-50d9-5ad4cd4364740-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5834
content-type: application/javascript
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-includes/js/underscore.min.js?ver=1.13.1
103.227.177.111200 OK 7.3 kB URL HTTP/2 www.banghair.com.au/wp-includes/js/underscore.min.js?ver=1.13.1
IP 103.227.177.111:0
File type ASCII text, with very long lines (19041)
Hash 268247021bf15629a13760daffe4ce2c
27ad63f93c7996b04fca3e22c0592c1226b9fc6c
1eedc4ba527b0051aa6c0b282615b03f8fd42a0858cc8aceeed17cbbf55d761e
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/underscore.min.js?ver=1.13.1 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 15 Sep 2021 10:13:12 GMT
etag: "57c79ef-4a84-5cc05f2255c98-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7319
content-type: application/javascript
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/enable-jquery-migrate-helper/js/jquery/jquery-1.12.4-wp.js?ver=1.12.4-wp
103.227.177.111200 OK 34 kB URL HTTP/2 www.banghair.com.au/wp-content/plugins/enable-jquery-migrate-helper/js/jquery/jquery-1.12.4-wp.js?ver=1.12.4-wp
IP 103.227.177.111:0
File type ASCII text, with very long lines (31997)
Hash 3f5f7e71cfd69b78bd15c622350651a4
c8b736774dc6a8e2782efa747d362d1019e51a48
59fd8434cd326fc04e9e905f268cc8d2f9250cb4396bfd620a3cad09807eaa60
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/enable-jquery-migrate-helper/js/jquery/jquery-1.12.4-wp.js?ver=1.12.4-wp HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Mon, 25 Jan 2021 05:29:13 GMT
etag: "5600342-17a56-5b9b2d178770d-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 33773
content-type: application/javascript
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.6.0
103.227.177.111200 OK 6.6 kB URL HTTP/2 www.banghair.com.au/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.6.0
IP 103.227.177.111:0
File type HTML document, ASCII text, with very long lines (24731), with no line terminators
Hash 41d5b566c4ca55a4f46581cd204dc001
5712fc78c5b7d059613be14d6d78ba3b77a40f29
5b7cc767555b57e185b797757b7200607ea138fc7484b8c438dde1edc2d960f0
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.6.0 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 23 Feb 2022 23:25:23 GMT
etag: "5660c80-609b-5d8b7c7a0d3ad-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6557
content-type: application/javascript
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.3.0
103.227.177.111200 OK 46 kB URL HTTP/2 www.banghair.com.au/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.3.0
IP 103.227.177.111:0
File type ASCII text, with very long lines (65358)
Hash 2fe906250b403a8535d316cdf1e8a808
7b84d27dd294fe145beec5801fc2d8d5a00d611b
655f96cc6f8ea662c046fd64382639c7a9b5c9a936645beb200653b4880e51e3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.3.0 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Thu, 20 Aug 2020 10:46:12 GMT
etag: "5623a08-76828-5ad4cd4270500-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 45790
content-type: text/css
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/themes/banghair/js/jquery.fancybox.min.js?ver=1.0.0
103.227.177.111200 OK 8.5 kB URL HTTP/2 www.banghair.com.au/wp-content/themes/banghair/js/jquery.fancybox.min.js?ver=1.0.0
IP 103.227.177.111:0
File type ASCII text, with very long lines (23149), with no line terminators
Hash 469f4817dcdff46c63ff77393ff31271
6a33c85280ffecf631026b7c66d6434cd634ebb8
c5e808b20721e1723025965efb6808eb0466c961d20249d7aae14a0564b4dd26
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/banghair/js/jquery.fancybox.min.js?ver=1.0.0 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 15 Jul 2020 05:00:34 GMT
etag: "57a727a-5a6d-5aa73cdc8c080-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 8506
content-type: application/javascript
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/themes/banghair/js/gmap3.min.js?ver=5.8.6
103.227.177.111200 OK 8.9 kB URL HTTP/2 www.banghair.com.au/wp-content/themes/banghair/js/gmap3.min.js?ver=5.8.6
IP 103.227.177.111:0
File type ASCII text, with very long lines (24891)
Hash e79ef18a29bc85b98513e48f75e1b7f0
a8c6990292d9d401db4dcfef4a2d7ddf88456ffd
77eb5d0984ab51efc0c5917ea16306ea4d6ed2d4eb3acb70108697ccfaa283d7
GET /wp-content/themes/banghair/js/gmap3.min.js?ver=5.8.6 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 15 Jul 2020 05:00:34 GMT
etag: "57a7276-6289-5aa73cdc8c080-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 8943
content-type: application/javascript
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate_bg.min.js?ver=3.19.6
103.227.177.111200 OK 9.5 kB URL HTTP/2 www.banghair.com.au/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate_bg.min.js?ver=3.19.6
IP 103.227.177.111:0
File type ASCII text, with very long lines (45423), with no line terminators
Hash 1079359a91268ddce176b2b185c6d83e
56d645cbb8df3e455f1720d875ab6e5ed85af2d3
f5d9b2ebfc2114ceb3d3b2c26a628a1296e3f8664d7dd8af0b83ae95bd1f63f4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate_bg.min.js?ver=3.19.6 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 12 Aug 2020 00:16:34 GMT
etag: "56680c2-b16f-5aca319ad7c80-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 9489
content-type: application/javascript
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/themes/banghair/js/slick.min.js?ver=1.0.0
103.227.177.111200 OK 10 kB URL HTTP/2 www.banghair.com.au/wp-content/themes/banghair/js/slick.min.js?ver=1.0.0
IP 103.227.177.111:0
File type ASCII text, with very long lines (32076)
Hash 7a6b74fb1418a5e7a5518d5a9fe2bb06
aef7197c8eeedcb350e55e20d07d203cc1891ad9
30d505b8d798cdf8fc55db71deb5b5e51453a33868c362886942066d6e2ab33c
GET /wp-content/themes/banghair/js/slick.min.js?ver=1.0.0 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 15 Jul 2020 05:00:34 GMT
etag: "57a727b-a3e1-5aa73cdc8c080-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 10170
content-type: application/javascript
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/uploads/2017/10/payment_logo-e1601602312285.png
103.227.177.111200 OK 1.8 kB URL HTTP/2 www.banghair.com.au/wp-content/uploads/2017/10/payment_logo-e1601602312285.png
IP 103.227.177.111:0
File type PNG image data, 178 x 32, 8-bit gray+alpha, non-interlaced\012- data
Hash c43e5d23f4445feeb19df86719fa9ce0
5ae45fc0e397372636602dcd88911a2e8b05ad8f
360feb75374f5124446b4b0cd880edcc96ba57b1d8eb7a5ba48ca79958972432
GET /wp-content/uploads/2017/10/payment_logo-e1601602312285.png HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Fri, 02 Oct 2020 01:31:52 GMT
etag: "57a607e-71a-5b0a618e0d200"
accept-ranges: bytes
content-length: 1818
content-type: image/png
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/themes/banghair/js/isotope.pkgd.min.js?ver=1.0.0
103.227.177.111200 OK 12 kB URL HTTP/2 www.banghair.com.au/wp-content/themes/banghair/js/isotope.pkgd.min.js?ver=1.0.0
IP 103.227.177.111:0
File type ASCII text, with very long lines (49917), with no line terminators
Hash 745fab6cebb6a015a6cead1c928451b8
123b2d0acf4dd5b0ae58161dc9bc5146a88de464
6cea4649905d71f416c9c044b9bd115293eae64699793eda44a3d6ee0c688645
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/banghair/js/isotope.pkgd.min.js?ver=1.0.0 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 15 Jul 2020 05:00:34 GMT
etag: "57a7279-c2fd-5aa73cdc8c080-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 11774
content-type: application/javascript
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/uploads/2020/09/1522-Clear-Tape-Mini-Strips--300x300.jpg
103.227.177.111200 OK 2.8 kB URL HTTP/2 www.banghair.com.au/wp-content/uploads/2020/09/1522-Clear-Tape-Mini-Strips--300x300.jpg
IP 103.227.177.111:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, components 3\012- data
Hash 924f0ba0aec41d13dbee1b5ee2919f69
09cf8a5b064efff1fbd51fbc9ae18c2c021982ec
ed58f0cdfbba3f81d64627a976de64e720a3d9edbccf0a0fd89c5f1ac651e6d4
GET /wp-content/uploads/2020/09/1522-Clear-Tape-Mini-Strips--300x300.jpg HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Tue, 08 Sep 2020 02:17:07 GMT
etag: "57a4f59-ae0-5aec3ee836ec0"
accept-ranges: bytes
content-length: 2784
content-type: image/jpeg
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/uploads/2020/07/bang-retina.png
103.227.177.111200 OK 10 kB URL HTTP/2 www.banghair.com.au/wp-content/uploads/2020/07/bang-retina.png
IP 103.227.177.111:0
File type PNG image data, 400 x 181, 8-bit/color RGBA, non-interlaced\012- data
Hash c2ac62fa3f9657894b442f32c7397ab7
d51edbbb472f89d8c17bc117288e27faf27f2c63
97778f4d341176177cc1ad46fb2b6fae42d4d486e078a2231b8244a9e7b9c949
GET /wp-content/uploads/2020/07/bang-retina.png HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Fri, 17 Jul 2020 03:15:19 GMT
etag: "574714e-2842-5aa9a91103fc0"
accept-ranges: bytes
content-length: 10306
content-type: image/png
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/uploads/2020/07/light-brown-hair-300x300.jpg
103.227.177.111200 OK 15 kB URL HTTP/2 www.banghair.com.au/wp-content/uploads/2020/07/light-brown-hair-300x300.jpg
IP 103.227.177.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 300x300, components 3\012- data
Hash ba37805f7083a0c4b4fa831644ac67bb
6c234074ca8ea590a15576dd1acc710f562bfeec
cae03209338d1213dff51cb9ef3946a21d5efd4cd3a2203d4c407d14e0c36b1b
GET /wp-content/uploads/2020/07/light-brown-hair-300x300.jpg HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Thu, 15 Oct 2020 12:12:26 GMT
etag: "5746a70-3b7c-5b1b48fb53441"
accept-ranges: bytes
content-length: 15228
content-type: image/jpeg
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/uploads/2020/07/IMG_9536-300x300.jpg
103.227.177.111200 OK 15 kB URL HTTP/2 www.banghair.com.au/wp-content/uploads/2020/07/IMG_9536-300x300.jpg
IP 103.227.177.111:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 300x300, components 3\012- data
Hash 226945fb516250d3add31455a93b787a
bb89b47211cdbed43414d219e2fbf128606c881a
e3f1137c6b4d6980124b13ba23cad9f6d1518169dfd03e68a9e8c460cbc32873
GET /wp-content/uploads/2020/07/IMG_9536-300x300.jpg HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Thu, 30 Jul 2020 05:21:46 GMT
etag: "5746fca-3b3a-5aba1d9388e80"
accept-ranges: bytes
content-length: 15162
content-type: image/jpeg
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 20:29:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 20:29:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 20:29:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
142.250.74.35200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.banghair.com.au
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:28:50 GMT
expires: Thu, 30 Nov 2023 19:28:50 GMT
cache-control: public, max-age=31536000
age: 349253
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
142.250.74.35200 OK 8.0 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Hash 72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.banghair.com.au
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:28:50 GMT
expires: Thu, 30 Nov 2023 19:28:50 GMT
cache-control: public, max-age=31536000
age: 349253
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
142.250.74.35200 OK 7.7 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Hash a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.banghair.com.au
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:28:50 GMT
expires: Thu, 30 Nov 2023 19:28:50 GMT
cache-control: public, max-age=31536000
age: 349253
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/uploads/2020/07/Screen-Shot-2019-03-15-at-10.25.45-pm-e1552651057783-300x300.png
103.227.177.111200 OK 27 kB URL HTTP/2 www.banghair.com.au/wp-content/uploads/2020/07/Screen-Shot-2019-03-15-at-10.25.45-pm-e1552651057783-300x300.png
IP 103.227.177.111:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash e35fbfc95dbe798b0ff7cb46fb93f60e
24bf0b2587b14401e5d738c13929df35f68ec431
71b31e0547e0b552d107054b5527dd8053219de7d8c685200b0a66d98dafdcf6
GET /wp-content/uploads/2020/07/Screen-Shot-2019-03-15-at-10.25.45-pm-e1552651057783-300x300.png HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Thu, 30 Jul 2020 05:21:57 GMT
etag: "57470b3-6980-5aba1d9e06740"
accept-ranges: bytes
content-length: 27008
content-type: image/png
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.banghair.com.au
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:56 GMT
expires: Thu, 30 Nov 2023 19:33:56 GMT
cache-control: public, max-age=31536000
age: 348947
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 20:29:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pixel.wp.com/g.gif?v=ext&j=1%3A10.6&blog=197875505&post=1652&tz=0&srv=www.banghair.com.au&host=www.banghair.com.au&ref=&fcp=6744&rand=0.2741515031224959
192.0.76.3200 OK 50 B URL HTTP/2 pixel.wp.com/g.gif?v=ext&j=1%3A10.6&blog=197875505&post=1652&tz=0&srv=www.banghair.com.au&host=www.banghair.com.au&ref=&fcp=6744&rand=0.2741515031224959
IP 192.0.76.3:0
File type GIF image data, version 89a, 6 x 5\012- data
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?v=ext&j=1%3A10.6&blog=197875505&post=1652&tz=0&srv=www.banghair.com.au&host=www.banghair.com.au&ref=&fcp=6744&rand=0.2741515031224959 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 20:29:43 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/uploads/2020/07/Ghost-Bond-Phantom-5oz-300x300.png
103.227.177.111200 OK 33 kB URL HTTP/2 www.banghair.com.au/wp-content/uploads/2020/07/Ghost-Bond-Phantom-5oz-300x300.png
IP 103.227.177.111:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 39657870bb9cffd59c4fa8d22d314ba2
3bdba6055ddd15019b3f49d193d79431cc02ea17
d5634d7043de536c965ed75abaff333d7883cc59ee9168e355572c4ad745935f
GET /wp-content/uploads/2020/07/Ghost-Bond-Phantom-5oz-300x300.png HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Thu, 30 Jul 2020 05:24:15 GMT
etag: "5746f6e-7fb7-5aba1e21a1dc0"
accept-ranges: bytes
content-length: 32695
content-type: image/png
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/uploads/2020/07/Screen-Shot-2019-03-15-at-10.27.42-pm-e1552649917950-300x300.png
103.227.177.111200 OK 46 kB URL HTTP/2 www.banghair.com.au/wp-content/uploads/2020/07/Screen-Shot-2019-03-15-at-10.27.42-pm-e1552649917950-300x300.png
IP 103.227.177.111:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash d282e57029dd6475ad2718547c6622cb
c5a348a73bf700a327a8a2e1636c61e126bf0739
88b061a5b6110686390b31bbfd0e48ebbb387047735c5ee94e869c3bcf277581
GET /wp-content/uploads/2020/07/Screen-Shot-2019-03-15-at-10.27.42-pm-e1552649917950-300x300.png HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Thu, 30 Jul 2020 05:22:19 GMT
etag: "5747065-b2aa-5aba1db3018c0"
accept-ranges: bytes
content-length: 45738
content-type: image/png
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/uploads/2020/07/Screen-Shot-2019-03-15-at-10.24.30-pm-e1552651244127-300x300.png
103.227.177.111200 OK 48 kB URL HTTP/2 www.banghair.com.au/wp-content/uploads/2020/07/Screen-Shot-2019-03-15-at-10.24.30-pm-e1552651244127-300x300.png
IP 103.227.177.111:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash f625c10dffb7e59e83ce2720ee8481c1
cb2d8379ce4d48dc9fbb9f730b2ee405b30e1de2
382a88aee6173f501863b7f54db53c5dce8c8c04d50ff819aa528df396b9f768
GET /wp-content/uploads/2020/07/Screen-Shot-2019-03-15-at-10.24.30-pm-e1552651244127-300x300.png HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Thu, 30 Jul 2020 05:21:54 GMT
etag: "5746f4f-bb09-5aba1d9b2a080"
accept-ranges: bytes
content-length: 47881
content-type: image/png
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/uploads/2020/07/Ghost-Bond-Platinum-5oz-300x300.png
103.227.177.111200 OK 53 kB URL HTTP/2 www.banghair.com.au/wp-content/uploads/2020/07/Ghost-Bond-Platinum-5oz-300x300.png
IP 103.227.177.111:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 30d90ea8123020332b633dd0a944cf0e
10a3e82df7cccaf3497938ef305923ffbeb9b264
92eac4f380aa0be970e91e180c077c1354f68a1d62c9201d938e2fc7f900c09c
GET /wp-content/uploads/2020/07/Ghost-Bond-Platinum-5oz-300x300.png HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Thu, 30 Jul 2020 05:24:32 GMT
etag: "5746f1d-cd4a-5aba1e31d8400"
accept-ranges: bytes
content-length: 52554
content-type: image/png
date: Sun, 04 Dec 2022 20:29:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=6.2.2
103.227.177.111200 OK 9.2 kB URL HTTP/2 www.banghair.com.au/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=6.2.2
IP 103.227.177.111:0
Hash 6dea62d0e2ee623962901405190738ce
dddc1595b47924bd63a1e9e7c5c03ed082512ab6
8ee6942496b438368bdab524c2d9687e7f107afdadc12cd23bee923bd86954e6
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=6.2.2 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Thu, 10 Mar 2022 17:03:11 GMT
etag: "5640d4e-1b83-5d9e0306654f6-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1177
content-type: text/css
date: Sun, 04 Dec 2022 20:29:43 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/uploads/2020/07/best-hair-creams-for-men.jpg?id=1733
103.227.177.111200 OK 52 kB URL HTTP/2 www.banghair.com.au/wp-content/uploads/2020/07/best-hair-creams-for-men.jpg?id=1733
IP 103.227.177.111:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1500x857, components 3\012- data
Hash 0429e1b10862be8ed05644c9783884b9
13a47f9804604299f3386e84a1207cd9eca0ea9e
80a4d16f43a9e32c948f3725c8e5a427cdd77dc312ba20ffc62ab473811a1623
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/07/best-hair-creams-for-men.jpg?id=1733 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Sun, 26 Jul 2020 04:05:53 GMT
etag: "5746f0b-cb6a-5ab505279ca40"
accept-ranges: bytes
content-length: 52074
content-type: image/jpeg
date: Sun, 04 Dec 2022 20:29:43 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/uploads/2020/10/pro-hair-labs-e1602763154744.jpg?id=2221
103.227.177.111200 OK 48 kB URL HTTP/2 www.banghair.com.au/wp-content/uploads/2020/10/pro-hair-labs-e1602763154744.jpg?id=2221
IP 103.227.177.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1015x644, components 3\012- data
Hash bbac27a206b48957849aefccf6e2de77
def53f615142a5962eb9706689ea0762c9274d61
f238d11610276b7653e5b0dd7a0ad72dbc330697a77d1a2758305cdab257594d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/10/pro-hair-labs-e1602763154744.jpg?id=2221 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Thu, 15 Oct 2020 11:59:14 GMT
etag: "57221e3-bbc7-5b1b46078a402"
accept-ranges: bytes
content-length: 48071
content-type: image/jpeg
date: Sun, 04 Dec 2022 20:29:43 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au//wp-content/uploads/2020/08/uppercut.jpg?id=1945
103.227.177.111200 OK 75 kB URL HTTP/2 www.banghair.com.au//wp-content/uploads/2020/08/uppercut.jpg?id=1945
IP 103.227.177.111:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2017 (Macintosh), datetime=2020:08:16 15:35:35], baseline, precision 8, 800x533, components 3\012- data
Hash e47808ae3db52582be0853fae9bdc54d
f5777a2869fcae4b4540b5e84174f0f48f08cf02
9c182402f104875f5794a2204439f37c85b1bfd681ff7f7f5f93fbb1131946e0
Analyzer Verdict Alert fortinet Phishing
GET //wp-content/uploads/2020/08/uppercut.jpg?id=1945 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Sun, 16 Aug 2020 06:05:59 GMT
etag: "57646c5-12521-5acf872a77fc0"
accept-ranges: bytes
content-length: 75041
content-type: image/jpeg
date: Sun, 04 Dec 2022 20:29:43 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/themes/banghair/inc/fonts/themify-icons/fonts/themify.woff
103.227.177.111200 OK 56 kB URL HTTP/2 www.banghair.com.au/wp-content/themes/banghair/inc/fonts/themify-icons/fonts/themify.woff
IP 103.227.177.111:0
File type Web Open Font Format, CFF, length 56108, version 1.0\012- data
Hash a1ecc3b826d01251edddf29c3e4e1e97
9394f35bd2addd24666b79bfc36d4f9d247cb01d
0db5c5a1475eb7a3e5028983ea1e642d1b2c00faff6a250a37502b0f3832a4a7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/banghair/inc/fonts/themify-icons/fonts/themify.woff HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.banghair.com.au/wp-content/themes/banghair/inc/fonts/themify-icons/themify-icons.min.css?ver=1.0.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 15 Jul 2020 05:00:34 GMT
etag: "57a722e-db2c-5aa73cdc8c080"
accept-ranges: bytes
content-length: 56108
vary: Accept-Encoding,User-Agent
content-type: font/woff
date: Sun, 04 Dec 2022 20:29:43 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/uploads/2020/10/walker-e1602763042334.jpg?id=2220
103.227.177.111200 OK 68 kB URL HTTP/2 www.banghair.com.au/wp-content/uploads/2020/10/walker-e1602763042334.jpg?id=2220
IP 103.227.177.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1080x672, components 3\012- data
Hash e7a365c2efe8d3206589933d297fe3d5
4d81691c83e274cecf419eff7ec70669dbdd3c3d
bc43398693db13a2c27b3fa40a1457592612db36eedc225814f1880506cf3b5e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/10/walker-e1602763042334.jpg?id=2220 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Thu, 15 Oct 2020 11:57:22 GMT
etag: "57221d2-10a04-5b1b459cd2b82"
accept-ranges: bytes
content-length: 68100
content-type: image/jpeg
date: Sun, 04 Dec 2022 20:29:43 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/themes/banghair/inc/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
103.227.177.111200 OK 77 kB URL HTTP/2 www.banghair.com.au/wp-content/themes/banghair/inc/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 103.227.177.111:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /wp-content/themes/banghair/inc/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.banghair.com.au/wp-content/themes/banghair/inc/fonts/font-awesome/css/font-awesome.min.css?ver=1.0.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 15 Jul 2020 05:00:34 GMT
etag: "57a7227-12d68-5aa73cdc8c080"
accept-ranges: bytes
content-length: 77160
vary: Accept-Encoding,User-Agent
content-type: font/woff2
date: Sun, 04 Dec 2022 20:29:43 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/ajax-loader.gif
103.227.177.111200 OK 4.2 kB URL HTTP/2 www.banghair.com.au/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/ajax-loader.gif
IP 103.227.177.111:0
File type GIF image data, version 89a, 32 x 32\012- data
Hash c5cd7f5300576ab4c88202b42f6ded62
7a1aa43614396382bb15e5fde574d9cdcd21698f
e7b44c86b050fca766a96ddac2d0932af0126da6f2305280342d909168dcce6b
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-css/ajax-loader.gif HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/slick.min.css?ver=3.19.6
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Tue, 11 Aug 2020 02:19:06 GMT
etag: "5668140-1052-5ac90b20cba80"
accept-ranges: bytes
content-length: 4178
content-type: image/gif
date: Sun, 04 Dec 2022 20:29:43 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/plugins/Ultimate_VC_Addons/assets/css/fonts/ult-silk.woff
103.227.177.111200 OK 2.5 kB URL HTTP/2 www.banghair.com.au/wp-content/plugins/Ultimate_VC_Addons/assets/css/fonts/ult-silk.woff
IP 103.227.177.111:0
File type Web Open Font Format, CFF, length 2504, version 1.0\012- data
Hash 520b95f60ddfa6a5ab689c1e2a8c476b
82eae4339865914297c9e5d5174906350f31ee9b
8641a749b56f41be6413bb213410f8e3d3f5056211cfe3e3c8c294a3dbbfddce
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/Ultimate_VC_Addons/assets/css/fonts/ult-silk.woff HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.banghair.com.au/wp-content/plugins/Ultimate_VC_Addons/assets/css/icons.css?ver=3.19.6
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Tue, 11 Aug 2020 02:19:06 GMT
etag: "5668042-9c8-5ac90b20cba80"
accept-ranges: bytes
content-length: 2504
vary: Accept-Encoding,User-Agent
content-type: font/woff
date: Sun, 04 Dec 2022 20:29:43 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/uploads/2020/07/ghostbondxlgroup.png
103.227.177.111200 OK 99 kB URL HTTP/2 www.banghair.com.au/wp-content/uploads/2020/07/ghostbondxlgroup.png
IP 103.227.177.111:0
File type PNG image data, 700 x 850, 8-bit colormap, non-interlaced\012- data
Hash 86b35ae243e2078c6f534f97ea7c74c1
dcb4dcef192c8fcba303f95952e71532b569aedb
6a0b8d6bff73fbba09ee0eedf065b58999dcecfbb30b9a1f1b7c30d7e8b2c67b
GET /wp-content/uploads/2020/07/ghostbondxlgroup.png HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Sun, 26 Jul 2020 03:36:19 GMT
etag: "5746f80-182b1-5ab4fe8bcb2c0"
accept-ranges: bytes
content-length: 98993
content-type: image/png
date: Sun, 04 Dec 2022 20:29:43 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/uploads/2020/10/ultra-hold_rs_comp.png
103.227.177.111200 OK 211 kB URL HTTP/2 www.banghair.com.au/wp-content/uploads/2020/10/ultra-hold_rs_comp.png
IP 103.227.177.111:0
File type PNG image data, 901 x 950, 8-bit colormap, non-interlaced\012- data
Size 211 kB (211179 bytes)
Hash cf02eafca4665cb6d442079744810cfb
dd3a8dad14fb34a0fd250a328688c4c82901548f
a0caee073d8cfe645d94d1850d7b71b00ed482ccfe57df18b401b11eef82e122
GET /wp-content/uploads/2020/10/ultra-hold_rs_comp.png HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Thu, 08 Oct 2020 00:47:12 GMT
etag: "37609b0-338eb-5b11e2c3c5658"
accept-ranges: bytes
content-length: 211179
content-type: image/png
date: Sun, 04 Dec 2022 20:29:43 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/uploads/2020/10/greatwhite_rs_comp.png
103.227.177.111200 OK 234 kB URL HTTP/2 www.banghair.com.au/wp-content/uploads/2020/10/greatwhite_rs_comp.png
IP 103.227.177.111:0
File type PNG image data, 916 x 950, 8-bit colormap, non-interlaced\012- data
Size 234 kB (234139 bytes)
Hash 27ab74ee75b5fcd49f5d86b343cc5e72
f0c0a2db857d4370ca8e946fd375321f38ec2dd7
36dc6b764f0563d42ffc0f42130021d576a56cf07c914ca6aacb8243e806d2c8
GET /wp-content/uploads/2020/10/greatwhite_rs_comp.png HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Thu, 08 Oct 2020 00:47:20 GMT
etag: "37609b1-3929b-5b11e2caa2ae3"
accept-ranges: bytes
content-length: 234139
content-type: image/png
date: Sun, 04 Dec 2022 20:29:43 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/uploads/2020/07/best-hair-creams-for-men.jpg
103.227.177.111200 OK 52 kB URL HTTP/2 www.banghair.com.au/wp-content/uploads/2020/07/best-hair-creams-for-men.jpg
IP 103.227.177.111:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1500x857, components 3\012- data
Hash 0429e1b10862be8ed05644c9783884b9
13a47f9804604299f3386e84a1207cd9eca0ea9e
80a4d16f43a9e32c948f3725c8e5a427cdd77dc312ba20ffc62ab473811a1623
GET /wp-content/uploads/2020/07/best-hair-creams-for-men.jpg HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Sun, 26 Jul 2020 04:05:53 GMT
etag: "5746f0b-cb6a-5ab505279ca40"
accept-ranges: bytes
content-length: 52074
content-type: image/jpeg
date: Sun, 04 Dec 2022 20:29:44 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/uploads/2021/09/BackgroundEraser_20210913_201942364-1536x848.jpg
103.227.177.111200 OK 121 kB URL HTTP/2 www.banghair.com.au/wp-content/uploads/2021/09/BackgroundEraser_20210913_201942364-1536x848.jpg
IP 103.227.177.111:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, height=1242, orientation=upper-left, width=1656], baseline, precision 8, 1536x848, components 3\012- data
Size 121 kB (120647 bytes)
Hash 4dcae2b9bc12505a9106101f747ab6fb
6fc736bac6162c333c83f499b93745ab0e01846f
b477e031362d23bc85219566fdf8c75d72df631001a3ea580506736f8c35e56b
GET /wp-content/uploads/2021/09/BackgroundEraser_20210913_201942364-1536x848.jpg HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Mon, 13 Sep 2021 10:21:58 GMT
etag: "5740e0b-1d747-5cbddd5c96f6e"
accept-ranges: bytes
content-length: 120647
content-type: image/jpeg
date: Sun, 04 Dec 2022 20:29:44 GMT
server: Apache
X-Firefox-Spdy: h2
widget-v4.tidiochat.com//tururu.mp3
172.67.71.3206 Partial Content 7.2 kB URL HTTP/2 widget-v4.tidiochat.com//tururu.mp3
IP 172.67.71.3:0
File type MPEG ADTS, layer III, v1, 64 kbps, 44.1 kHz, Monaural\012- data
Hash 5061b4d134a7b4d5d744f9a127b757a8
c5e240ac60d3914cb3836ba6652105c67720b845
12c7687514ca85ba2157ed61914ac526bb9dd15cb5a2a2d9e4d88f919349284f
GET //tururu.mp3 HTTP/1.1
Host: widget-v4.tidiochat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
date: Sun, 04 Dec 2022 20:29:44 GMT
content-type: audio/mpeg
content-length: 7224
last-modified: Mon, 07 Nov 2022 08:15:48 GMT
etag: "6368beb4-1c38"
expires: Thu, 24 Nov 2022 02:08:23 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 2139681
content-range: bytes 0-7223/7224
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=knZmP9ctHaSkbIB29q7%2Fmxp5%2F8WrLPGooY%2B69jimJtjtjzpD0BKdyIjcKacTL56myzSb%2FlgOHABzgYZZ1mjjODJKLfPtLbWX9Pg1tFfyhpH8Biqu62TvHDxF0SnW%2B1izLXjvmeABx4P8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77474bc13b421c0a-OSL
X-Firefox-Spdy: h2
widget-v4.tidiochat.com/1_130_0/static/js/chunk-WidgetIframe-1cc153e1b0983c8869e6.js
172.67.71.3200 OK 110 kB URL HTTP/2 widget-v4.tidiochat.com/1_130_0/static/js/chunk-WidgetIframe-1cc153e1b0983c8869e6.js
IP 172.67.71.3:0
File type ASCII text, with very long lines (65439)
Size 110 kB (109599 bytes)
Hash 872f5337330f26eb1412570cde7f5741
6b15bbd57b453f0e14369ca4660bd3b5bdfd4936
33f82d895a44b967c27ab57de2067bf09da786cf5d85708de329f19b8f2e1c12
GET /1_130_0/static/js/chunk-WidgetIframe-1cc153e1b0983c8869e6.js HTTP/1.1
Host: widget-v4.tidiochat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Dec 2022 20:29:44 GMT
content-type: application/javascript
last-modified: Thu, 24 Nov 2022 13:58:11 GMT
vary: Accept-Encoding
etag: W/"637f7873-556da"
cache-control: max-age=691200
cf-cache-status: HIT
age: 2530
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j0WkR8pqfpLOSSIELdlJ%2FkWjK%2FFMqGBoWoa1qzpfQk3QtA1iaSPCGmdeoQb6PTLfKEK%2F3k9g0qMJx9WPKosiwWXAbJzyVPOIvwq%2BnQEaHvwcF%2BbOjORFMqZ6JR7bHWJGQTi%2BTzqSFle9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77474bc0fae41c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.banghair.com.au/?wc-ajax=get_refreshed_fragments
103.227.177.111200 OK 3.2 kB URL HTTP/2 www.banghair.com.au/?wc-ajax=get_refreshed_fragments
IP 103.227.177.111:0
Hash c92fbd5174d9af38daa81ccc36691b3e
b3ccbbcb4073690bd946c655c55a98c15ad36b7a
37a0c526eaffc94333fd4c70805190b6d155f7288fc32951c2b74af015868a4d
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://www.banghair.com.au
Connection: keep-alive
Referer: https://www.banghair.com.au/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,Cookie,User-Agent
access-control-allow-origin: https://www.banghair.com.au
access-control-allow-credentials: true
x-content-type-options: nosniff
x-robots-tag: noindex
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
content-type: application/json; charset=UTF-8
date: Sun, 04 Dec 2022 20:29:43 GMT
server: Apache
X-Firefox-Spdy: h2
www.banghair.com.au/wp-content/uploads/2020/10/cropped-bang-hair-32x32.jpg
103.227.177.111200 OK 523 B URL HTTP/2 www.banghair.com.au/wp-content/uploads/2020/10/cropped-bang-hair-32x32.jpg
IP 103.227.177.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 32x32, components 3\012- data
Hash 09120d43a1b4fba24f6627ffcd217f91
8303f26c8a7486879993983e85097ba1834a6711
f94057bf9653dd3f47016d723740d6685d6e5816e783ac1b6accdace0b58f84e
GET /wp-content/uploads/2020/10/cropped-bang-hair-32x32.jpg HTTP/1.1
Host: www.banghair.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Fri, 16 Oct 2020 12:51:21 GMT
etag: "572276d-20b-5b1c938b36dff"
accept-ranges: bytes
content-length: 523
content-type: image/jpeg
date: Sun, 04 Dec 2022 20:29:44 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2dabd839729e9b0fb2558253d850126b
64f617aa0afb52168ef3519a4cf9829ac61ee007
1a47e4d0efdac6fbec990e3e168bfdfe615ff8953158773e8b1940d4d91eee18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 20:29:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-180704077-1&cid=2035282010.1670185782&jid=1698503736&gjid=501774680&_gid=1815140377.1670185782&_u=YEBAAUAAAAAAACAAI~&z=887053646
108.177.14.154200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-180704077-1&cid=2035282010.1670185782&jid=1698503736&gjid=501774680&_gid=1815140377.1670185782&_u=YEBAAUAAAAAAACAAI~&z=887053646
IP 108.177.14.154:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-180704077-1&cid=2035282010.1670185782&jid=1698503736&gjid=501774680&_gid=1815140377.1670185782&_u=YEBAAUAAAAAAACAAI~&z=887053646 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.banghair.com.au
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.banghair.com.au
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 04 Dec 2022 20:29:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2dabd839729e9b0fb2558253d850126b
64f617aa0afb52168ef3519a4cf9829ac61ee007
1a47e4d0efdac6fbec990e3e168bfdfe615ff8953158773e8b1940d4d91eee18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 20:29:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 05df2de64f75797e437b7fcd2e70aab9
5568c3f7d09ae1d74f673f4279a575fc2e3d188b
69b2529c7d0639278847e51c788005d7978932c4792dde319aa9fcf8e0d15dc9
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 04 Dec 2022 20:29:45 GMT
Last-Modified: Sun, 04 Dec 2022 18:51:45 GMT
Server: ECS (nyb/1D2F)
X-Cache: Miss from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 2DjJqFuzt-SwRZPxjpF21yqfpgcWMiW5LeSU18GjVQp7xRCmGtVGSA==
Age: 5880
socket.tidio.co/socket.io/?ppk=pna0dzhaifuxqndionry2d6le7aixeg9&device=desktop&EIO=3&transport=websocket
54.154.133.98101 Switching Protocols 0 B URL HTTP/1.1 socket.tidio.co/socket.io/?ppk=pna0dzhaifuxqndionry2d6le7aixeg9&device=desktop&EIO=3&transport=websocket
IP 54.154.133.98:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /socket.io/?ppk=pna0dzhaifuxqndionry2d6le7aixeg9&device=desktop&EIO=3&transport=websocket HTTP/1.1
Host: socket.tidio.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.banghair.com.au
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: wL1gx10TTEDZsCK0/m55Iw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Sun, 04 Dec 2022 20:29:45 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: hpE44XKMlk81TDWXt1V2a58mnBE=
Sec-WebSocket-Extensions: permessage-deflate
stats.wp.com/s-202248.js
192.0.76.3200 OK 0 B IP 192.0.76.3:0
GET /s-202248.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 20:29:41 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"6197c5cf-2494"
content-encoding: br
expires: Mon, 27 Nov 2023 17:55:51 GMT
cache-control: max-age=31536000
x-nc: HIT arn
X-Firefox-Spdy: h2
code.tidio.co/pna0dzhaifuxqndionry2d6le7aixeg9.js
104.26.8.183302 Found 0 B URL HTTP/2 code.tidio.co/pna0dzhaifuxqndionry2d6le7aixeg9.js
IP 104.26.8.183:0
GET /pna0dzhaifuxqndionry2d6le7aixeg9.js HTTP/1.1
Host: code.tidio.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 04 Dec 2022 20:29:41 GMT
content-type: text/html
location: https://widget-v4.tidiochat.com/1_130_0/static/js/render.1cc153e1b0983c8869e6.js
cache-control: private, no-cache, no-store, must-revalidate
widget-cache-status: HIT
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jjGTg6FEaa6p7a02LBR1eeWj%2FGG9RwUV2GoJJzsaDr8xglXgr2BUXuaKiXrSdCT67Ga48zZS%2BX2YORxVa1D6Mirv3KXHG4G45WtDUJiOYcwMngneIgr40jTf73qNXgc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77474badbd750b59-OSL
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Poppins%3A400%7CPoppins%3A500&ver=1.0.0
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Poppins%3A400%7CPoppins%3A500&ver=1.0.0
IP 142.250.74.74:0
GET /css?family=Poppins%3A400%7CPoppins%3A500&ver=1.0.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 04 Dec 2022 20:29:41 GMT
date: Sun, 04 Dec 2022 20:29:41 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Poppins:600,400,500%7CRoboto:500%7COpen%20Sans&display=swap&ver=1602847265
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Poppins:600,400,500%7CRoboto:500%7COpen%20Sans&display=swap&ver=1602847265
IP 142.250.74.74:0
GET /css?family=Poppins:600,400,500%7CRoboto:500%7COpen%20Sans&display=swap&ver=1602847265 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 04 Dec 2022 20:29:41 GMT
date: Sun, 04 Dec 2022 20:29:41 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.wp.com/e-202248.js
192.0.76.3200 OK 0 B IP 192.0.76.3:0
GET /e-202248.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 20:29:41 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"62f6b688-3508"
content-encoding: br
expires: Mon, 20 Nov 2023 01:50:03 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2
js.afterpay.com/afterpay-1.x.js?ver=3.4.0
104.18.80.2200 OK 0 B URL HTTP/2 js.afterpay.com/afterpay-1.x.js?ver=3.4.0
IP 104.18.80.2:0
GET /afterpay-1.x.js?ver=3.4.0 HTTP/1.1
Host: js.afterpay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banghair.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 20:29:41 GMT
content-type: application/javascript
x-amz-id-2: q/0XBXqgoR7PMo/IZSrz8fxBs3WRoaIgcgfk/I3DPO94nDg9laPIDl1Jhcu0XbkdWeet8prCR2s=
x-amz-request-id: X9DTX1RA8J73MTBC
last-modified: Tue, 18 Oct 2022 00:55:15 GMT
etag: W/"2a6827247769d1d1362ce03cb7f2476a"
cf-cache-status: HIT
age: 45
expires: Sun, 04 Dec 2022 21:29:41 GMT
cache-control: public, max-age=3600
set-cookie: __cf_bm=oIN31y1U7muykFELmmh79_fvYEokrtarQJ5wDTNGWpM-1670185781-0-AUxQqph42t1wnFib4hvRPBBSvQltElew+C0Dr6r2zidWL2kCqpz8UyZs6qfjCy880UVFsqcNLTSiTOEz7pXoPDp1BSlqZ9EAyLoqRqRyARyM; path=/; expires=Sun, 04-Dec-22 20:59:41 GMT; domain=.afterpay.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 77474bae0df50b65-OSL
content-encoding: br
X-Firefox-Spdy: h2
widget-v4.tidiochat.com/1_130_0/static/js/widget.1cc153e1b0983c8869e6.js
172.67.71.3200 OK 0 B URL HTTP/2 widget-v4.tidiochat.com/1_130_0/static/js/widget.1cc153e1b0983c8869e6.js
IP 172.67.71.3:0
GET /1_130_0/static/js/widget.1cc153e1b0983c8869e6.js HTTP/1.1
Host: widget-v4.tidiochat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Dec 2022 20:29:44 GMT
content-type: application/javascript
last-modified: Thu, 24 Nov 2022 13:58:11 GMT
vary: Accept-Encoding
etag: W/"637f7873-83636"
cache-control: max-age=691200
cf-cache-status: HIT
age: 2502
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sc3VAufxqExz%2BNPJKb2XNpifHv2WE5abhnq7b8RRyDEsjcqiz4ih%2Fu1db328DhfwWX1AnkYGuJQ0yUlLrq0EqTHeiSNZyY5cJXZdfNprfRqF3IG1Jht%2BUCL3OiOeHKkCcsz3647HE0S%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77474bc20cc81c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2