firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 22 Sep 2022 12:13:58 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ge4kg7nSXRpggvu3oJ1dTRwC2Ao2hmnJx6l-V7lua4N_RSEziGJ2bg==
Age: 1236
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a26d0784548ecab22f417f3d689daf23
8893b79366bbadeb5c8d587b8f023e310694df1c
35baaae7b3ce3110ebb2b075881cfab55ecf3eab57d834283fd18ac691b41fa2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4206
Expires: Thu, 22 Sep 2022 13:44:40 GMT
Date: Thu, 22 Sep 2022 12:34:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash afb65a07bf7214addf83d17a53acba32
a8e973204431320aa7b362a4e73944520c4b51b9
46e1a9e6c98245afb7fa84bc6d9ba6844105024e2d3f56e28748e6c321475d02
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "46E1A9E6C98245AFB7FA84BC6D9BA6844105024E2D3F56E28748E6C321475D02"
Last-Modified: Wed, 21 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5583
Expires: Thu, 22 Sep 2022 14:07:37 GMT
Date: Thu, 22 Sep 2022 12:34:34 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: +g9PY0Gz0qOcWKGVDCThSn9seNEY4950UXo16SGi2PTDgJcKlBs+baUklltBAWVSI4PU3cWv1R4=
x-amz-request-id: 4E5S59CXN8BREQ8P
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 22 Sep 2022 11:43:48 GMT
age: 3046
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 12:34:34 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/Hinet.Html
166.62.28.122301 Moved Permanently 250 B URL HTTP/1.1 themonkeybar.com.au/wp1/Hinet.Html
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3f8ca01ce45d903b37593a452e3447cd
b7a63d45a9a6a5f5b67b17843b961cc88b4f3558
d72973783402f978f7d52bdc01356bc29fd3d0dc96c31e3941a8032c45e36fb9
Analyzer Verdict Alert fortinet Phishing
GET /wp1/Hinet.Html HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 22 Sep 2022 12:34:34 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Location: https://themonkeybar.com.au/wp1/Hinet.Html
Content-Length: 250
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Thu, 22 Sep 2022 12:03:22 GMT
Expires: Thu, 22 Sep 2022 12:11:58 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: EeNPtdt1GpeFDnthd3pKgxgATQh5oIDZgk-HzXtz-zNLAQwX2pRlKw==
Age: 1873
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 86624f45fb3b7126dbe002f69c94dd86
30bcf274db5037122f989fb25dbf1e72c9ec417b
2cc9600578cf057dc499835773fb495caa60ac154c4945f0fc1f2b31d43f5502
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4610
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 12:34:35 GMT
Last-Modified: Thu, 22 Sep 2022 11:17:45 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.38.227.80101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.38.227.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 96VXYCDcxcbQ57xfdhtW0Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: lO1BvhFfbjk3teg9JeB5rG62Cpk=
themonkeybar.com.au/wp1/Hinet.Html
166.62.28.122200 OK 3.8 kB URL HTTP/2 themonkeybar.com.au/wp1/Hinet.Html
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (561)
Hash 78a5fa2b6d6e1672637a9e6f248f97fa
6d7056e46acd0a11135c9b7be447cc22eb33c909
484d274be8e6cb687cd13d18b544fba227c3640e726e442364e4598b302dc33c
Analyzer Verdict Alert fortinet Phishing
GET /wp1/Hinet.Html HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:39:50 GMT
etag: "36405e3-5150-5a7dfdbc1a580-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 3816
content-type: text/html
date: Thu, 22 Sep 2022 12:34:35 GMT
server: Apache
X-Firefox-Spdy: h2
img1.wsimg.com/traffic-assets/js/tccl-tti.min.js
23.36.79.16302 Found 0 B URL HTTP/2 img1.wsimg.com/traffic-assets/js/tccl-tti.min.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /traffic-assets/js/tccl-tti.min.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-length: 0
location: https://img6.wsimg.com/wrhs/ce554d2333f3801abafb32da18213ff7/tti.min.js
cache-control: max-age=1800
expires: Thu, 22 Sep 2022 13:04:36 GMT
date: Thu, 22 Sep 2022 12:34:36 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/traffic-assets/js/tccl.min.js
23.36.79.16302 Found 0 B URL HTTP/2 img1.wsimg.com/traffic-assets/js/tccl.min.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /traffic-assets/js/tccl.min.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-length: 0
location: https://img6.wsimg.com/wrhs/362d20193a8fed115f99b16a157b7fc4/tccl.min.js
cache-control: max-age=1800
expires: Thu, 22 Sep 2022 13:04:36 GMT
date: Thu, 22 Sep 2022 12:34:36 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs/ce554d2333f3801abafb32da18213ff7/tti.min.js
23.36.79.16200 OK 7.5 kB URL HTTP/2 img6.wsimg.com/wrhs/ce554d2333f3801abafb32da18213ff7/tti.min.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (24676)
Hash b8a5a228a358454084c34dd1cf431c61
37aa5fe6e083b8147156ca66a1993a7bd74e8a61
06fae5ccf58a27a8e2ae6a0e7722f42db507c1873751f587cddd090810d94492
GET /wrhs/ce554d2333f3801abafb32da18213ff7/tti.min.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://themonkeybar.com.au/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "ce554d2333f3801abafb32da18213ff7"
last-modified: Mon, 17 Jan 2022 17:21:37 GMT
vary: Accept-Encoding
x-edgeconnect-midmile-rtt: 8
x-edgeconnect-origin-mex-latency: 357
x-amz-id-2: nldPfdb2FYbpxPRfMYRSd83AOL7ZmlBdZQSm5hguJELKdfn8+sza0oLEpTYjiKd2JeD3gDplFHw=
x-amz-request-id: RJ3J3PMANG6125DE
x-amz-server-side-encryption: AES256
x-amz-version-id: F4fYptXBkP0fCCCWFLfVGE1HXlZmORny
content-length: 7498
x-edgeconnect-cache-status: 1
cache-control: max-age=31536000
date: Thu, 22 Sep 2022 12:34:36 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs/362d20193a8fed115f99b16a157b7fc4/tccl.min.js
23.36.79.16200 OK 11 kB URL HTTP/2 img6.wsimg.com/wrhs/362d20193a8fed115f99b16a157b7fc4/tccl.min.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (45500)
Hash 1ac00b5d5abfa64175a140de3f29a8e2
c07c5611cfff3ec4c7034134e4148f177242908c
65198366099c4eea2ed8a4dbe30fbb7896435a3505c5265260715d3385058378
GET /wrhs/362d20193a8fed115f99b16a157b7fc4/tccl.min.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://themonkeybar.com.au/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "362d20193a8fed115f99b16a157b7fc4"
last-modified: Mon, 11 Apr 2022 14:15:53 GMT
vary: Accept-Encoding
x-amz-id-2: 73c+ZpWNgBh9xtilh6Nj22iH/BmUfkHwAgj9PgWHmvdTmSCUhi96da6Ell5SKHaif06RANK80zY=
x-amz-request-id: N5JSXGJTVEFZM8E9
x-amz-server-side-encryption: AES256
x-amz-version-id: Z0H0F1CdjRUI_nRMydHHi17Rv0HOw5tB
content-length: 11155
x-edgeconnect-midmile-rtt: 15, 15
x-edgeconnect-origin-mex-latency: 135, 135
x-edgeconnect-cache-status: 1
cache-control: max-age=31536000
date: Thu, 22 Sep 2022 12:34:36 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/index.css
166.62.28.122200 OK 699 B URL HTTP/2 themonkeybar.com.au/wp1/files/index.css
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash cde1c007053097596aa47cf4375c3b11
60e997d4209da04d96a7eb41cde6c9da93ac194d
e9eb947dc96c52e66505791b34c12daf14c6733dbca92983a78696ae56a53364
GET /wp1/files/index.css HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/Hinet.Html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:30 GMT
etag: "36405cb-924-5a7dfcc425c80-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 699
content-type: text/css
date: Thu, 22 Sep 2022 12:34:36 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/keyboardstyle.css
166.62.28.122200 OK 577 B URL HTTP/2 themonkeybar.com.au/wp1/files/keyboardstyle.css
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash f0424d5e8b4f2db49f5c8596fd670e6a
573b34a5e26e7fbb6526479ff405f32f87713a9a
503daf90ca2f6c16041580de80a1950dae2a69a9e2a4bd380d9066d5f2ef9d7a
GET /wp1/files/keyboardstyle.css HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/Hinet.Html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:30 GMT
etag: "36405d2-ab4-5a7dfcc425c80-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 577
content-type: text/css
date: Thu, 22 Sep 2022 12:34:36 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/login.css
166.62.28.122200 OK 815 B URL HTTP/2 themonkeybar.com.au/wp1/files/login.css
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash 396c7e5b0e850025c4fa650f27d6bf71
69850078b08608af45adcd686009c52e672abc67
58d4d8b67f4d86b1394bcca7863bd6745090f73e268c1b56036819cdc6c61863
GET /wp1/files/login.css HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/Hinet.Html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:30 GMT
etag: "36405d3-b74-5a7dfcc425c80-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 815
content-type: text/css
date: Thu, 22 Sep 2022 12:34:36 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/jquery-fieldselection.js.download
166.62.28.122200 OK 1.1 kB URL HTTP/2 themonkeybar.com.au/wp1/files/jquery-fieldselection.js.download
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 55ab0824d16c5065f6e5e92be8275c70
41f804db1777642d5f447a9982eee258d96551c0
84ee8b37e82d091e101de8cb2b398135e09616708d50ba4f93b92dfb0aa59e5a
Analyzer Verdict Alert fortinet Phishing
GET /wp1/files/jquery-fieldselection.js.download HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/Hinet.Html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:30 GMT
etag: "36405cf-e01-5a7dfcc425c80-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1054
content-type: application/javascript
date: Thu, 22 Sep 2022 12:34:36 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/vkeyboard.js.download
166.62.28.122200 OK 1.5 kB URL HTTP/2 themonkeybar.com.au/wp1/files/vkeyboard.js.download
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash d43716c0cc817c4e15d76e164a17d7a0
a1b1689fb8fa9df031963cc74c2a94487a5fd07d
ef27f28d001735b96fc71d1e25666fd3253eb28742f3874e67c04539ab938611
Analyzer Verdict Alert fortinet Phishing
GET /wp1/files/vkeyboard.js.download HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/Hinet.Html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:30 GMT
etag: "36405df-1877-5a7dfcc425c80-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1503
content-type: application/javascript
date: Thu, 22 Sep 2022 12:34:36 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/login.js.download
166.62.28.122200 OK 5.1 kB URL HTTP/2 themonkeybar.com.au/wp1/files/login.js.download
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 7a4dadc6717ebdea17947002da99c70b
43d131bd832218df0591485c14ef41ab898f720e
95e831b8d88e6d9fba31abb630417c31df57765090d9636981f14ac583bea59e
Analyzer Verdict Alert fortinet Phishing
GET /wp1/files/login.js.download HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/Hinet.Html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:30 GMT
etag: "36405d4-4c11-5a7dfcc425c80-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 5089
content-type: application/javascript
date: Thu, 22 Sep 2022 12:34:36 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/bootstrap.min.js.download
166.62.28.122200 OK 9.1 kB URL HTTP/2 themonkeybar.com.au/wp1/files/bootstrap.min.js.download
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (32450)
Hash 0494f3aeb531861cac106e26d74c830b
1f20e4a7db9d4994d32f8a61b15d93883642d3e1
1c1cd7bd44969da9f470e9339c3ff81ce0e2bd83aa3b70775d34fb31a30e5920
Analyzer Verdict Alert fortinet Phishing
GET /wp1/files/bootstrap.min.js.download HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/Hinet.Html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:30 GMT
etag: "36405bd-8aa9-5a7dfcc425c80-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 9072
content-type: application/javascript
date: Thu, 22 Sep 2022 12:34:36 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/bootstrap.min.css
166.62.28.122200 OK 18 kB URL HTTP/2 themonkeybar.com.au/wp1/files/bootstrap.min.css
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (65371)
Hash 31987f09d6b4dd5a30d24976208bb5af
19ab94e3c38c510b23d451be7dfda95abeec8cc7
cbe0dfee54a80756abfdda9d1baec97d06f249208214772f4dfae465aea4d627
GET /wp1/files/bootstrap.min.css HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/Hinet.Html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:28 GMT
etag: "36405bc-1c99e-5a7dfcc23d800-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 17723
content-type: text/css
date: Thu, 22 Sep 2022 12:34:36 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/jquery.min.js.download
166.62.28.122200 OK 32 kB URL HTTP/2 themonkeybar.com.au/wp1/files/jquery.min.js.download
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (32341)
Hash 621e4d1df7f5cceb304d3b7217718896
cd099b7e5c00dfbd03cf812144cbc806d3b8f79e
f9ff2a6fee0cc36a0f00cab3be9eeac33da4744c9050815d43203d65e6e4d6b5
Analyzer Verdict Alert fortinet Phishing
GET /wp1/files/jquery.min.js.download HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/Hinet.Html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:30 GMT
etag: "36405cd-1787d-5a7dfcc425c80-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 32447
content-type: application/javascript
date: Thu, 22 Sep 2022 12:34:36 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6750
Expires: Thu, 22 Sep 2022 14:27:06 GMT
Date: Thu, 22 Sep 2022 12:34:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6750
Expires: Thu, 22 Sep 2022 14:27:06 GMT
Date: Thu, 22 Sep 2022 12:34:36 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F17a25218-4228-4cd1-8d35-a4a3f83296c8.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F17a25218-4228-4cd1-8d35-a4a3f83296c8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 233816c447da50c62180800f65f5fe2f
78db85f54d3e4030f620f259f173ddb1438948fa
94cbbb0fe3d4edab6d96af2f4857eb1ad018a0e8c21fd8bbeacc4a383e99d859
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F17a25218-4228-4cd1-8d35-a4a3f83296c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8449
x-amzn-requestid: 5b83b63b-07cc-459d-a31e-25dce2e250ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YzG34H01oAMF73g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632ab832-03dc7ef72e1ef72f371716a9;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 07:07:30 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: I_Ohu8tmnISFj4rsHgGXPk_dw1nkeHsmP0hPMxeDlD3kFuVGCoE1qA==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 07:00:31 GMT
age: 20045
etag: "78db85f54d3e4030f620f259f173ddb1438948fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2a425d5-4fbd-4af0-a85b-75f0878759cb.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2a425d5-4fbd-4af0-a85b-75f0878759cb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4d98acc059a69d51165fb5e0c7430ea3
09bd3300d710c3212483159f8398b84cde09da26
6e38bbb5c79c4f714973e10961d7bad9e7ae8711cf24d68b13a77206f474d2a6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2a425d5-4fbd-4af0-a85b-75f0878759cb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7507
x-amzn-requestid: 2a40c792-8b1b-4476-92de-1fce3df48fc1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YcCmaHefoAMF4Ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63217e28-6b05350006b7f3fb73d1e37a;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 07:09:28 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: PaGFfXo_LFFP5oVfQ8yj4zGeGlg5Rrik1yWgi7YGxaP5IIWXnN9v0w==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 22:35:34 GMT
age: 50342
etag: "09bd3300d710c3212483159f8398b84cde09da26"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 91c56f0b9810bfdd84e10a626b89e389
15d83e44d568938b6c9c87201e898cedb3edec0a
942de9764e1c408f7512759774aab0479db201e6fae15ccc39e653adae4cb86f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8678
x-amzn-requestid: c671a9ab-c5d0-4743-b13e-cc9a47e3d2fe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1F0vEThIAMFSwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b8351-17ed13811d3833ea00a34423;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:34:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: hp-WIGb9M8tEmNGOVjx6UQKx9E4-1oJmka0a6seG7inahqYByPmRAg==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:34:22 GMT
age: 54014
etag: "15d83e44d568938b6c9c87201e898cedb3edec0a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0788498f-41db-4d62-b749-e01caddb7f8d.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0788498f-41db-4d62-b749-e01caddb7f8d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash af5773255351157d72c28a670a355c60
c803e5866edbe6c9baec14e93677f610bdf09bff
3229b4aa1c698647ad96d114174782549ad240f1b2c4ba8c268165a16afc84f0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0788498f-41db-4d62-b749-e01caddb7f8d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10754
x-amzn-requestid: 2d03531d-6055-477f-9cb6-9ea9fa27eeb9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1F0vHJ4IAMF42Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b8351-692620e80d5b2efe1d0e3a82;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:34:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: -3bQG5Av1EDxj7_3i8MktwjlPSEU8WDdxt5M6TsrWaodLWgSf3vdEA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:34:22 GMT
age: 54014
etag: "c803e5866edbe6c9baec14e93677f610bdf09bff"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62f1d773-46e0-4cf2-8178-3101a22f8b0c.jpeg
34.120.237.76200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62f1d773-46e0-4cf2-8178-3101a22f8b0c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c92f202bddcfee6efac41bcc25be5745
9d297544318ff34f839678d8b358290ab6bd62a8
f471aaff7c08c60905cff5b1c9d4b669a3179574493d23d27e681110688af6b2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62f1d773-46e0-4cf2-8178-3101a22f8b0c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7060
x-amzn-requestid: 69e8f4d4-2360-4124-a9e9-9cce3dd43da7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yx0NWEgmIAMFusQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a33ee-0f4861c226117d70664b8612;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:43:10 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Ye6ZGwlObuxJlJatHI7KImxBNk60JEfRnT7ZC_Js0WcWhCJi5GlkDw==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 22:03:49 GMT
age: 52247
etag: "9d297544318ff34f839678d8b358290ab6bd62a8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F809d8837-cf02-495a-b4a8-199a4c8afb89.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F809d8837-cf02-495a-b4a8-199a4c8afb89.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2174f3d32143de289649ff4659f4b367
474dd2486f85b0417f90a55f51311173a29b6b82
554e4bc5d669fd5bfc59f0c8c140129b55c569c366b55c0d198e1cdaa31e6ef4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F809d8837-cf02-495a-b4a8-199a4c8afb89.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9916
x-amzn-requestid: 8bed4f0b-d428-4d0c-9c8d-abcce68687ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YzHaeHyWIAMF3dw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632ab90f-1b7d5ff6504553a86593424d;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 07:11:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: m-sIpvOHcw6JPGx_K7BPc5P8DgKFsF-0RPDWbHSI_UGoYH0c9c0tRw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 06:23:43 GMT
age: 22253
etag: "474dd2486f85b0417f90a55f51311173a29b6b82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/jquery-ui-1.10.3.custom.min.js.download
166.62.28.122200 OK 57 kB URL HTTP/2 themonkeybar.com.au/wp1/files/jquery-ui-1.10.3.custom.min.js.download
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (64560)
Hash 55a9be170325637fe632d5529edca002
a1e64ec36088add318d922e3fb9a6ac8b99539fb
c3276fa2cd8ad2584ad7fdc8bc1108ab7ceb2feaf284af03d006a29523f2527e
Analyzer Verdict Alert fortinet Phishing
GET /wp1/files/jquery-ui-1.10.3.custom.min.js.download HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/Hinet.Html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:30 GMT
etag: "36405d0-37b2a-5a7dfcc425c80-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 57155
content-type: application/javascript
date: Thu, 22 Sep 2022 12:34:36 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/keyboard.png
166.62.28.122200 OK 345 B URL HTTP/2 themonkeybar.com.au/wp1/files/keyboard.png
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 19 x 13, 8-bit/color RGBA, non-interlaced\012- data
Hash 70926f65c731b99497597ecad91e2798
9e5d8e8c97fac06d436740a46c56e660ae1f9b00
c5cd3ae960d492688c750ca358bc69b3872e599f7ad8f505258a2f5ec4f6ae82
GET /wp1/files/keyboard.png HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/Hinet.Html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:32 GMT
etag: "36405d1-159-5a7dfcc60e100"
accept-ranges: bytes
content-length: 345
content-type: image/png
date: Thu, 22 Sep 2022 12:34:36 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/himail_logo.gif
166.62.28.122200 OK 3.2 kB URL HTTP/2 themonkeybar.com.au/wp1/files/himail_logo.gif
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type GIF image data, version 89a, 82 x 32\012- data
Hash d509bc131b17d5c377447d748d8a5e97
b99b2bd8e5f3f0fb9046ee5a49a9e933bce1acdd
10eecf80122ad437a3daa21d7f8deff99af7dd47964655b7e4ac0996362ee4cc
GET /wp1/files/himail_logo.gif HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/Hinet.Html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:32 GMT
etag: "36405c5-ca4-5a7dfcc60e100"
accept-ranges: bytes
content-length: 3236
content-type: image/gif
date: Thu, 22 Sep 2022 12:34:36 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/w_line.gif
166.62.28.122200 OK 52 B URL HTTP/2 themonkeybar.com.au/wp1/files/w_line.gif
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type GIF image data, version 89a, 1 x 18\012- data
Hash 33252dc20f4d8fcd47183f90b3313ab5
b3956d10e88d95896a56c6d698b3e5106fa868ff
c7615d473078bcc779a9829ef9439094a50683e13bb242affa91852adcb528d3
GET /wp1/files/w_line.gif HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/Hinet.Html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:32 GMT
etag: "36405e0-34-5a7dfcc60e100"
accept-ranges: bytes
content-length: 52
content-type: image/gif
date: Thu, 22 Sep 2022 12:34:36 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/replace_ad.js.download
166.62.28.122200 OK 217 B URL HTTP/2 themonkeybar.com.au/wp1/files/replace_ad.js.download
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document text\012- exported SGML document, ASCII text
Hash 20540331a04e7006828d910d9237eac6
4c5778b7a731afd14f5b0f6820612cfd9660f1b0
fae6727693996ca19da446b7ab8644697c801f7f8734b8e500b6833f2e2dd8a2
Analyzer Verdict Alert fortinet Phishing
GET /wp1/files/replace_ad.js.download HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/Hinet.Html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:30 GMT
etag: "36405d8-1bc-5a7dfcc425c80-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 217
content-type: application/javascript
date: Thu, 22 Sep 2022 12:34:36 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/index.js.download
166.62.28.122200 OK 1.8 kB URL HTTP/2 themonkeybar.com.au/wp1/files/index.js.download
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash 9b1fb086f04e4f1ff539aa5bd7263712
840822fbb813a8a67077ffd2982e9bd6ee29ad6a
3c26c3d2607f33f1c5e0aed6a89909e8ff1c1cefe02a842e06f793dea6463194
Analyzer Verdict Alert fortinet Phishing
GET /wp1/files/index.js.download HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/Hinet.Html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:30 GMT
etag: "36405cc-1b49-5a7dfcc425c80-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1772
content-type: application/javascript
date: Thu, 22 Sep 2022 12:34:36 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/app.js.download
166.62.28.122200 OK 4.8 kB URL HTTP/2 themonkeybar.com.au/wp1/files/app.js.download
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 3948bbb426e481c8b57b351a9b870c7f
ab0b7bab5bffc077c69268d11f4eff84b2c606a3
e81fbdb9b70e01cb70b3a35cd2168f116fc0f55b175863f5387094e87bd85041
Analyzer Verdict Alert fortinet Phishing
GET /wp1/files/app.js.download HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/Hinet.Html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:32 GMT
etag: "36405ba-5261-5a7dfcc60e100-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 4772
content-type: application/javascript
date: Thu, 22 Sep 2022 12:34:36 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/top.html
166.62.28.122200 OK 746 B URL HTTP/2 themonkeybar.com.au/wp1/files/top.html
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ISO-8859 text, with very long lines (561)
Hash 1e07788eb31dfb5a8600415fd97c8f74
83500cdd1c0e280b09a59c29957e91622618566a
6ea9efe700d20b4b979c28e4f8956fef96faf4c241c2a7c7e8dcd43473724efa
Analyzer Verdict Alert fortinet Phishing
GET /wp1/files/top.html HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/Hinet.Html
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:36 GMT
etag: "36405dd-80d-5a7dfcc9dea00-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 746
content-type: text/html
date: Thu, 22 Sep 2022 12:34:37 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/request.html
166.62.28.122200 OK 572 B URL HTTP/2 themonkeybar.com.au/wp1/files/request.html
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (561)
Hash 4d8d22e0bfb2b38562da62231c1032c9
6ff5a8d03ae7f4f69611102d0238dd5332c20473
a379f9657c65646d3e39c98992e0d8f9623849785a3ba77b00d9778452a32922
Analyzer Verdict Alert fortinet Phishing
GET /wp1/files/request.html HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/Hinet.Html
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:36 GMT
etag: "36405da-2a6-5a7dfcc9dea00-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 572
content-type: text/html
date: Thu, 22 Sep 2022 12:34:37 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/saved_resource.html
166.62.28.122200 OK 1.7 kB URL HTTP/2 themonkeybar.com.au/wp1/files/saved_resource.html
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (789)
Hash 3cfbdbb5197f44debe8862a4bbb13078
ba22e5201229759ffafd46406eb1c178d16c8bf6
023ed205dc33a99556d486fb21e7dfde2439fb38e41ecfff29d816162d04accd
Analyzer Verdict Alert fortinet Phishing
GET /wp1/files/saved_resource.html HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/Hinet.Html
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:36 GMT
etag: "36405db-fba-5a7dfcc9dea00-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1701
content-type: text/html
date: Thu, 22 Sep 2022 12:34:37 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/notify.html
166.62.28.122200 OK 683 B URL HTTP/2 themonkeybar.com.au/wp1/files/notify.html
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ISO-8859 text, with very long lines (561)
Hash 3695e4f6fbde4eef02016e6b997960df
3ec99425b71d8e3b17cbd112610ec7195d7d97f2
8577bb9006f9bdb0d4f9968271b22079ab6f626a0f821f596661a512a71255f3
Analyzer Verdict Alert fortinet Phishing
GET /wp1/files/notify.html HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/Hinet.Html
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:36 GMT
etag: "36405d6-2a3-5a7dfcc9dea00-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 683
content-type: text/html
date: Thu, 22 Sep 2022 12:34:37 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/bottom.html
166.62.28.122200 OK 908 B URL HTTP/2 themonkeybar.com.au/wp1/files/bottom.html
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (561)
Hash 3e75164715e7d7712ea06a155220da21
f763f1c1f9b710ce2999163de8ef8844705a2fc0
1ad6fc6aaac0eaf4b3b3b622f8d3c5c60ec74c224b3eaec861febf7e1f1ee56a
Analyzer Verdict Alert fortinet Phishing
GET /wp1/files/bottom.html HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/Hinet.Html
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:34 GMT
etag: "36405be-5d5-5a7dfcc7f6580-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 908
content-type: text/html
date: Thu, 22 Sep 2022 12:34:37 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/maillogin_07-1.gif
166.62.28.122200 OK 535 B URL HTTP/2 themonkeybar.com.au/wp1/files/maillogin_07-1.gif
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type GIF image data, version 89a, 45 x 29\012- data
Hash 4777cf387ba58444e71d9c03dd460dd4
05831c2d5958881845dccaf64b408033a7bcbb47
ac0ac943017702ca0934831adffa93cd3e0a21d253f607a0c4ddc570b679828e
GET /wp1/files/maillogin_07-1.gif HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/Hinet.Html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:32 GMT
etag: "36405d5-217-5a7dfcc60e100"
accept-ranges: bytes
content-length: 535
content-type: image/gif
date: Thu, 22 Sep 2022 12:34:37 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/close.jpg
166.62.28.122200 OK 923 B URL HTTP/2 themonkeybar.com.au/wp1/files/close.jpg
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 32x32, components 3\012- data
Hash ce255e9ed54ac0f7b56cb8270a85ed65
a5ee7bcd38d8ffdaf19c829e9a1540d584334585
d09a4f2a61f63ab0012dceac0ae76a0718363bbd1439eaea4dd37d13f1df02ce
GET /wp1/files/close.jpg HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/Hinet.Html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:32 GMT
etag: "36405bf-39b-5a7dfcc60e100"
accept-ranges: bytes
content-length: 923
content-type: image/jpeg
date: Thu, 22 Sep 2022 12:34:37 GMT
server: Apache
X-Firefox-Spdy: h2
events.api.secureserver.net/t/1/tl/event?cts=1663850077017&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2FHinet.Html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=1052181375&cv=2.0.0&z=1904932971&vg=aa09e6fa-5c2f-501e-9e54-b6cc76b34cc3&vtg=aa09e6fa-5c2f-501e-9e54-b6cc76b34cc3&dp=%2Fwp1%2Ffiles%2Fnotify.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=560b5c2d-55e8-5ed9-8e6d-de4cc8238385&ht=perf&tce=1663850076633&tcs=1663850076633&tdc=1663850077011&tdclee=1663850077011&tdcles=1663850077011&tdi=1663850077010&tdl=1663850076902&tdle=1663850076633&tdls=1663850076633&tfs=1663850076633&tns=1663850076633&trqs=1663850076641&tre=1663850076888&trps=1663850076888&tles=1663850077011&tlee=0&nt=navigate&nav_type=hard
104.84.152.58200 OK 43 B URL HTTP/2 events.api.secureserver.net/t/1/tl/event?cts=1663850077017&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2FHinet.Html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=1052181375&cv=2.0.0&z=1904932971&vg=aa09e6fa-5c2f-501e-9e54-b6cc76b34cc3&vtg=aa09e6fa-5c2f-501e-9e54-b6cc76b34cc3&dp=%2Fwp1%2Ffiles%2Fnotify.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=560b5c2d-55e8-5ed9-8e6d-de4cc8238385&ht=perf&tce=1663850076633&tcs=1663850076633&tdc=1663850077011&tdclee=1663850077011&tdcles=1663850077011&tdi=1663850077010&tdl=1663850076902&tdle=1663850076633&tdls=1663850076633&tfs=1663850076633&tns=1663850076633&trqs=1663850076641&tre=1663850076888&trps=1663850076888&tles=1663850077011&tlee=0&nt=navigate&nav_type=hard
IP 104.84.152.58:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /t/1/tl/event?cts=1663850077017&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2FHinet.Html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=1052181375&cv=2.0.0&z=1904932971&vg=aa09e6fa-5c2f-501e-9e54-b6cc76b34cc3&vtg=aa09e6fa-5c2f-501e-9e54-b6cc76b34cc3&dp=%2Fwp1%2Ffiles%2Fnotify.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=560b5c2d-55e8-5ed9-8e6d-de4cc8238385&ht=perf&tce=1663850076633&tcs=1663850076633&tdc=1663850077011&tdclee=1663850077011&tdcles=1663850077011&tdi=1663850077010&tdl=1663850076902&tdle=1663850076633&tdls=1663850076633&tfs=1663850076633&tns=1663850076633&trqs=1663850076641&tre=1663850076888&trps=1663850076888&tles=1663850077011&tlee=0&nt=navigate&nav_type=hard HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themonkeybar.com.au
Connection: keep-alive
Referer: https://themonkeybar.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: https://themonkeybar.com.au
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Thu, 22 Sep 2022 12:34:37 GMT
X-Firefox-Spdy: h2
events.api.secureserver.net/t/1/tl/event?cts=1663850077006&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2FHinet.Html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=1052181375&cv=2.0.0&z=1211299090&vg=32c01f1e-5c5f-59ca-88e5-9f944a6e75e4&vtg=32c01f1e-5c5f-59ca-88e5-9f944a6e75e4&dp=%2Fwp1%2Ffiles%2Fnotify.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=3d8039cf-c570-5984-be6b-b1c54eb5d614&ht=pageview
104.84.152.58200 OK 43 B URL HTTP/2 events.api.secureserver.net/t/1/tl/event?cts=1663850077006&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2FHinet.Html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=1052181375&cv=2.0.0&z=1211299090&vg=32c01f1e-5c5f-59ca-88e5-9f944a6e75e4&vtg=32c01f1e-5c5f-59ca-88e5-9f944a6e75e4&dp=%2Fwp1%2Ffiles%2Fnotify.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=3d8039cf-c570-5984-be6b-b1c54eb5d614&ht=pageview
IP 104.84.152.58:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /t/1/tl/event?cts=1663850077006&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2FHinet.Html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=1052181375&cv=2.0.0&z=1211299090&vg=32c01f1e-5c5f-59ca-88e5-9f944a6e75e4&vtg=32c01f1e-5c5f-59ca-88e5-9f944a6e75e4&dp=%2Fwp1%2Ffiles%2Fnotify.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=3d8039cf-c570-5984-be6b-b1c54eb5d614&ht=pageview HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themonkeybar.com.au
Connection: keep-alive
Referer: https://themonkeybar.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: https://themonkeybar.com.au
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Thu, 22 Sep 2022 12:34:37 GMT
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/f(1).txt
166.62.28.122200 OK 16 B URL HTTP/2 themonkeybar.com.au/wp1/files/f(1).txt
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with no line terminators
Hash 4f960b71421682e4034ea3bd27b03517
6d9b2a67c571944321ca2b9386ca443309fbec85
41475c1644be5dbde02f5f3a357038ebddf5d1579bff4b1859335d01e061abfe
Analyzer Verdict Alert fortinet Phishing
GET /wp1/files/f(1).txt HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/files/saved_resource.html
Cookie: adid=d77ed416-6fb1-381e-f6b8-e719684b8f09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:32 GMT
etag: "36405c0-c-5a7dfcc60e100-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 16
content-type: text/plain
date: Thu, 22 Sep 2022 12:34:37 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/f(3).txt
166.62.28.122200 OK 199 B URL HTTP/2 themonkeybar.com.au/wp1/files/f(3).txt
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with no line terminators
Hash a0b021f309cfc0894ccaaea2c5087821
74db6210c9915fc179afc4c98d8eca969315e372
338b03f225faa1fcd7aa3b2d3ca30278785eda09c851e4714f4d04da63bb5852
Analyzer Verdict Alert fortinet Phishing
GET /wp1/files/f(3).txt HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/files/saved_resource.html
Cookie: adid=d77ed416-6fb1-381e-f6b8-e719684b8f09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:34 GMT
etag: "36405c2-f4-5a7dfcc7f6580-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 199
content-type: text/plain
date: Thu, 22 Sep 2022 12:34:37 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/f(2).txt
166.62.28.122200 OK 187 B URL HTTP/2 themonkeybar.com.au/wp1/files/f(2).txt
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with no line terminators
Hash d89d0b35646bf5a36b4ec95a2973c438
1150b78277830fbf843ef7723362999080cf569e
e669da6f2a0a9c5e486a8e8b01f5ab311cbb8beba2ac42cc785629f98ec1a1f1
Analyzer Verdict Alert fortinet Phishing
GET /wp1/files/f(2).txt HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/files/saved_resource.html
Cookie: adid=d77ed416-6fb1-381e-f6b8-e719684b8f09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:34 GMT
etag: "36405c1-e7-5a7dfcc7f6580-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 187
content-type: text/plain
date: Thu, 22 Sep 2022 12:34:37 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/request
166.62.28.122200 OK 1 B URL HTTP/2 themonkeybar.com.au/wp1/files/request
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash eccbc87e4b5ce2fe28308fd9f2a7baf3
77de68daecd823babbb58edb1c8e14d7106e83bb
4e07408562bedb8b60ce05c1decfe3ad16b72230967de01f640b7e4729b49fce
Analyzer Verdict Alert fortinet Phishing
GET /wp1/files/request HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/files/saved_resource.html
Cookie: adid=d77ed416-6fb1-381e-f6b8-e719684b8f09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:34 GMT
etag: "36405d9-0-5a7dfcc7f6580-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1
date: Thu, 22 Sep 2022 12:34:37 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/impression
166.62.28.122200 OK 1 B URL HTTP/2 themonkeybar.com.au/wp1/files/impression
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash eccbc87e4b5ce2fe28308fd9f2a7baf3
77de68daecd823babbb58edb1c8e14d7106e83bb
4e07408562bedb8b60ce05c1decfe3ad16b72230967de01f640b7e4729b49fce
Analyzer Verdict Alert fortinet Phishing
GET /wp1/files/impression HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/files/saved_resource.html
Cookie: adid=d77ed416-6fb1-381e-f6b8-e719684b8f09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:34 GMT
etag: "36405ca-0-5a7dfcc7f6580-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1
date: Thu, 22 Sep 2022 12:34:37 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/viewable
166.62.28.122200 OK 1 B URL HTTP/2 themonkeybar.com.au/wp1/files/viewable
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash eccbc87e4b5ce2fe28308fd9f2a7baf3
77de68daecd823babbb58edb1c8e14d7106e83bb
4e07408562bedb8b60ce05c1decfe3ad16b72230967de01f640b7e4729b49fce
Analyzer Verdict Alert fortinet Phishing
GET /wp1/files/viewable HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/files/saved_resource.html
Cookie: adid=d77ed416-6fb1-381e-f6b8-e719684b8f09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:34 GMT
etag: "36405de-0-5a7dfcc7f6580-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1
date: Thu, 22 Sep 2022 12:34:37 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/hinet-hd-t01.gif
166.62.28.122200 OK 1.5 kB URL HTTP/2 themonkeybar.com.au/wp1/files/hinet-hd-t01.gif
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type GIF image data, version 89a, 154 x 43\012- data
Hash 8d66cd7d67a91f7e8aff3e95e95d6479
38a0a7b7dd47b2d7c9bc2842ba1e7010360df580
82cc1448d53752d24bb4d5cf39374ef114daf14c7e11bcd0c765708da9a2326f
GET /wp1/files/hinet-hd-t01.gif HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/files/top.html
Cookie: adid=d77ed416-6fb1-381e-f6b8-e719684b8f09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:32 GMT
etag: "36405c6-5cb-5a7dfcc60e100"
accept-ranges: bytes
content-length: 1483
content-type: image/gif
date: Thu, 22 Sep 2022 12:34:37 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/hinet-logo.gif
166.62.28.122200 OK 2.3 kB URL HTTP/2 themonkeybar.com.au/wp1/files/hinet-logo.gif
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type GIF image data, version 89a, 89 x 44\012- data
Hash 9c7bc7a6e10768b07d87d2a213a00fd3
55dafaf5299214fae7fd513f8b1b29759dad89cc
afb1ef623fb7cc98d5848f53cb0affeb7822e26c8ff4fe979d1f2491bfffdcc3
GET /wp1/files/hinet-logo.gif HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/files/top.html
Cookie: adid=d77ed416-6fb1-381e-f6b8-e719684b8f09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:32 GMT
etag: "36405c8-8de-5a7dfcc60e100"
accept-ranges: bytes
content-length: 2270
content-type: image/gif
date: Thu, 22 Sep 2022 12:34:37 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/pixel
166.62.28.122200 OK 110 B URL HTTP/2 themonkeybar.com.au/wp1/files/pixel
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 1a3595b6b61a0e4daa3b5d8d485a9bff
30e0a26f2ea2c0edf77dc2906e0d63c936086db9
e3670f78ccccf907d31af90b487710877011624e505b52d59c9e428bcef5e47a
Analyzer Verdict Alert fortinet Phishing
GET /wp1/files/pixel HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/files/request.html
Cookie: adid=d77ed416-6fb1-381e-f6b8-e719684b8f09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:34 GMT
etag: "36405d7-6a-5a7dfcc7f6580-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 110
date: Thu, 22 Sep 2022 12:34:37 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/hinet-logo-small.gif
166.62.28.122200 OK 500 B URL HTTP/2 themonkeybar.com.au/wp1/files/hinet-logo-small.gif
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type GIF image data, version 89a, 39 x 20\012- data
Hash 7938c3c1d4e2c196b1734a92a7accd74
b71cb034cb6dbc688cfc0449da68361ddcdbce7f
db3d351ec3db69ac6c039d94ee05a2fecb641468759f2a6e45e00b2c1bcd8f9f
GET /wp1/files/hinet-logo-small.gif HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/files/bottom.html
Cookie: adid=d77ed416-6fb1-381e-f6b8-e719684b8f09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:32 GMT
etag: "36405c9-1f4-5a7dfcc60e100"
accept-ranges: bytes
content-length: 500
content-type: image/gif
date: Thu, 22 Sep 2022 12:34:37 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/b734323b-0532-40a6-8d4e-782e1c96bd3a
166.62.28.122200 OK 47 B URL HTTP/2 themonkeybar.com.au/wp1/files/b734323b-0532-40a6-8d4e-782e1c96bd3a
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6b0a3e2a1eff683ad6bd568582e4b236
fa9808e6fde6b5a2e836aef48e057dd6cba38798
3bf9b088d529783797a9afc9c2c4fdb4799d41945501358a3f1c7480680a87cb
Analyzer Verdict Alert fortinet Phishing
GET /wp1/files/b734323b-0532-40a6-8d4e-782e1c96bd3a HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/files/saved_resource.html
Cookie: adid=d77ed416-6fb1-381e-f6b8-e719684b8f09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:34 GMT
etag: "36405bb-2b-5a7dfcc7f6580-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 47
date: Thu, 22 Sep 2022 12:34:37 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/hinet-hd-t02.gif
166.62.28.122200 OK 245 B URL HTTP/2 themonkeybar.com.au/wp1/files/hinet-hd-t02.gif
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type GIF image data, version 89a, 134 x 43\012- data
Hash 000e5360d7cefd2b6012c9d43006b1d0
c61460be8f90c7a7df0feb6b37146388a4c6b999
f181238f262b5cc5c4b78eb41510fb8102feac7dbcb6513b109ebe5d594c901d
GET /wp1/files/hinet-hd-t02.gif HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/files/top.html
Cookie: adid=d77ed416-6fb1-381e-f6b8-e719684b8f09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:32 GMT
etag: "36405c7-f5-5a7dfcc60e100"
accept-ranges: bytes
content-length: 245
content-type: image/gif
date: Thu, 22 Sep 2022 12:34:37 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/tag.js.download
166.62.28.122200 OK 1.2 kB URL HTTP/2 themonkeybar.com.au/wp1/files/tag.js.download
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (2829), with no line terminators
Hash b59622126221388cd9f90ccf24a0a600
d5aa96f5542ef428820e848321b3fc7a458e730a
b5be1e91d309ead8122fc9786de15c431a236600d65e5f58e7fbe5421b48870f
Analyzer Verdict Alert fortinet Phishing
GET /wp1/files/tag.js.download HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/files/saved_resource.html
Cookie: adid=d77ed416-6fb1-381e-f6b8-e719684b8f09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:34 GMT
etag: "36405dc-b0d-5a7dfcc7f6580-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1232
content-type: application/javascript
date: Thu, 22 Sep 2022 12:34:37 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/adsbytenmax.js.download
166.62.28.122200 OK 25 kB URL HTTP/2 themonkeybar.com.au/wp1/files/adsbytenmax.js.download
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (65536), with no line terminators
Hash e17513418536a67f8c6df48cef793353
a4230ef5106b75081e3707d8379fbfd9b4a48cc6
8adacb652d171ff2b4e21f6e1adcfd65ecd4af3746792baa8fec528e4539504c
Analyzer Verdict Alert fortinet Phishing
GET /wp1/files/adsbytenmax.js.download HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/files/saved_resource.html
Cookie: adid=d77ed416-6fb1-381e-f6b8-e719684b8f09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:34 GMT
etag: "36405b9-13c81-5a7dfcc7f6580-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 24971
content-type: application/javascript
date: Thu, 22 Sep 2022 12:34:37 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/wm2k-style.css
166.62.28.122200 OK 957 B URL HTTP/2 themonkeybar.com.au/wp1/files/wm2k-style.css
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type assembler source, ASCII text, with CRLF line terminators
Hash 27f6ab77ef8d1e53f2ca89d34d08f6a2
edee4bfda4cd724b8ce7cd4f4f102a72c529e27a
93530bf7c34b0b218bb4e0d2bed4494f9734239d7e43a866a6b18cf252e5b563
GET /wp1/files/wm2k-style.css HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/files/top.html
Cookie: adid=d77ed416-6fb1-381e-f6b8-e719684b8f09
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:32 GMT
etag: "36405e1-13a7-5a7dfcc60e100-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 957
content-type: text/css
date: Thu, 22 Sep 2022 12:34:37 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/f(4).txt
166.62.28.122200 OK 29 kB URL HTTP/2 themonkeybar.com.au/wp1/files/f(4).txt
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (5285)
Hash a61e14472351e5f3cf52eb03de418a95
59fc1932ee72473a2d72e7d10e5c02825eb8d18d
d4230ffc6de2cfba75c4924b56297f43351851b15e9e687e2fb9976f3bbdb2b9
Analyzer Verdict Alert fortinet Phishing
GET /wp1/files/f(4).txt HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/files/saved_resource.html
Cookie: adid=d77ed416-6fb1-381e-f6b8-e719684b8f09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:34 GMT
etag: "36405c3-14355-5a7dfcc7f6580-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 29409
content-type: text/plain
date: Thu, 22 Sep 2022 12:34:37 GMT
server: Apache
X-Firefox-Spdy: h2
events.api.secureserver.net/t/1/tl/event?cts=1663850076998&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2FHinet.Html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=573950666&cv=2.0.0&z=1980149689&vg=be2dc310-f451-50b6-b2bd-37b492fcb311&vtg=be2dc310-f451-50b6-b2bd-37b492fcb311&dp=%2Fwp1%2Ffiles%2Frequest.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=6c72cb17-bbca-589a-8439-4217a010ef06&ht=pageview
104.84.152.58200 OK 43 B URL HTTP/2 events.api.secureserver.net/t/1/tl/event?cts=1663850076998&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2FHinet.Html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=573950666&cv=2.0.0&z=1980149689&vg=be2dc310-f451-50b6-b2bd-37b492fcb311&vtg=be2dc310-f451-50b6-b2bd-37b492fcb311&dp=%2Fwp1%2Ffiles%2Frequest.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=6c72cb17-bbca-589a-8439-4217a010ef06&ht=pageview
IP 104.84.152.58:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /t/1/tl/event?cts=1663850076998&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2FHinet.Html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=573950666&cv=2.0.0&z=1980149689&vg=be2dc310-f451-50b6-b2bd-37b492fcb311&vtg=be2dc310-f451-50b6-b2bd-37b492fcb311&dp=%2Fwp1%2Ffiles%2Frequest.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=6c72cb17-bbca-589a-8439-4217a010ef06&ht=pageview HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themonkeybar.com.au
Connection: keep-alive
Referer: https://themonkeybar.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: https://themonkeybar.com.au
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Thu, 22 Sep 2022 12:34:37 GMT
X-Firefox-Spdy: h2
events.api.secureserver.net/t/1/tl/event?cts=1663850077311&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2FHinet.Html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=1887670885&cv=2.0.0&z=1255243720&vg=aa20e509-920c-5ce4-afa8-f5aba1cf3ba9&vtg=aa20e509-920c-5ce4-afa8-f5aba1cf3ba9&dp=%2Fwp1%2Ffiles%2Ftop.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=d78eed0d-a191-5c52-b120-a97313757b19&ht=perf&tce=1663850076632&tcs=1663850076632&tdc=1663850077306&tdclee=1663850077302&tdcles=1663850077302&tdi=1663850077292&tdl=1663850076894&tdle=1663850076632&tdls=1663850076632&tfs=1663850076632&tns=1663850076632&trqs=1663850076639&tre=1663850076888&trps=1663850076888&tles=1663850077306&tlee=0&nt=navigate&nav_type=hard
104.84.152.58200 OK 43 B URL HTTP/2 events.api.secureserver.net/t/1/tl/event?cts=1663850077311&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2FHinet.Html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=1887670885&cv=2.0.0&z=1255243720&vg=aa20e509-920c-5ce4-afa8-f5aba1cf3ba9&vtg=aa20e509-920c-5ce4-afa8-f5aba1cf3ba9&dp=%2Fwp1%2Ffiles%2Ftop.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=d78eed0d-a191-5c52-b120-a97313757b19&ht=perf&tce=1663850076632&tcs=1663850076632&tdc=1663850077306&tdclee=1663850077302&tdcles=1663850077302&tdi=1663850077292&tdl=1663850076894&tdle=1663850076632&tdls=1663850076632&tfs=1663850076632&tns=1663850076632&trqs=1663850076639&tre=1663850076888&trps=1663850076888&tles=1663850077306&tlee=0&nt=navigate&nav_type=hard
IP 104.84.152.58:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /t/1/tl/event?cts=1663850077311&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2FHinet.Html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=1887670885&cv=2.0.0&z=1255243720&vg=aa20e509-920c-5ce4-afa8-f5aba1cf3ba9&vtg=aa20e509-920c-5ce4-afa8-f5aba1cf3ba9&dp=%2Fwp1%2Ffiles%2Ftop.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=d78eed0d-a191-5c52-b120-a97313757b19&ht=perf&tce=1663850076632&tcs=1663850076632&tdc=1663850077306&tdclee=1663850077302&tdcles=1663850077302&tdi=1663850077292&tdl=1663850076894&tdle=1663850076632&tdls=1663850076632&tfs=1663850076632&tns=1663850076632&trqs=1663850076639&tre=1663850076888&trps=1663850076888&tles=1663850077306&tlee=0&nt=navigate&nav_type=hard HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themonkeybar.com.au
Connection: keep-alive
Referer: https://themonkeybar.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: https://themonkeybar.com.au
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Thu, 22 Sep 2022 12:34:37 GMT
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/jquery-1.9.1.min.js.download
166.62.28.122200 OK 32 kB URL HTTP/2 themonkeybar.com.au/wp1/files/jquery-1.9.1.min.js.download
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (32089)
Hash 069045d548db0ec8bc4b9cd0bb90a16e
4f894d72f78efb3a5136bf4662c9f9a45444d9c4
97ae4e497acecd3083808d3346b6be0a5611197a3b703d24dd837ef7a5dfae50
Analyzer Verdict Alert fortinet Phishing
GET /wp1/files/jquery-1.9.1.min.js.download HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/files/saved_resource.html
Cookie: adid=d77ed416-6fb1-381e-f6b8-e719684b8f09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:34 GMT
etag: "36405ce-169d5-5a7dfcc7f6580-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 31771
content-type: application/javascript
date: Thu, 22 Sep 2022 12:34:37 GMT
server: Apache
X-Firefox-Spdy: h2
events.api.secureserver.net/t/1/tl/event?cts=1663850077290&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2FHinet.Html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=1887670885&cv=2.0.0&z=1935150494&vg=3fd36b5b-e3f4-5289-baf3-87bf12355669&vtg=3fd36b5b-e3f4-5289-baf3-87bf12355669&dp=%2Fwp1%2Ffiles%2Ftop.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=ebb44ea0-58eb-557f-a846-14903982e3b7&ht=pageview
104.84.152.58200 OK 43 B URL HTTP/2 events.api.secureserver.net/t/1/tl/event?cts=1663850077290&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2FHinet.Html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=1887670885&cv=2.0.0&z=1935150494&vg=3fd36b5b-e3f4-5289-baf3-87bf12355669&vtg=3fd36b5b-e3f4-5289-baf3-87bf12355669&dp=%2Fwp1%2Ffiles%2Ftop.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=ebb44ea0-58eb-557f-a846-14903982e3b7&ht=pageview
IP 104.84.152.58:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /t/1/tl/event?cts=1663850077290&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2FHinet.Html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=1887670885&cv=2.0.0&z=1935150494&vg=3fd36b5b-e3f4-5289-baf3-87bf12355669&vtg=3fd36b5b-e3f4-5289-baf3-87bf12355669&dp=%2Fwp1%2Ffiles%2Ftop.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=ebb44ea0-58eb-557f-a846-14903982e3b7&ht=pageview HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themonkeybar.com.au
Connection: keep-alive
Referer: https://themonkeybar.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: https://themonkeybar.com.au
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Thu, 22 Sep 2022 12:34:37 GMT
X-Firefox-Spdy: h2
events.api.secureserver.net/t/1/tl/event?cts=1663850077332&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2FHinet.Html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=1113689248&cv=2.0.0&z=1264198998&vg=7bfe94c2-8e45-50f3-bc14-d1812a3f7360&vtg=7bfe94c2-8e45-50f3-bc14-d1812a3f7360&dp=%2Fwp1%2Ffiles%2Fbottom.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=265b962f-cd89-51ac-bd5c-514077b64db8&ht=perf&tce=1663850076634&tcs=1663850076634&tdc=1663850077327&tdclee=1663850077324&tdcles=1663850077324&tdi=1663850077324&tdl=1663850076905&tdle=1663850076634&tdls=1663850076634&tfs=1663850076634&tns=1663850076634&trqs=1663850076643&tre=1663850076890&trps=1663850076890&tles=1663850077327&tlee=0&nt=navigate&nav_type=hard
104.84.152.58200 OK 43 B URL HTTP/2 events.api.secureserver.net/t/1/tl/event?cts=1663850077332&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2FHinet.Html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=1113689248&cv=2.0.0&z=1264198998&vg=7bfe94c2-8e45-50f3-bc14-d1812a3f7360&vtg=7bfe94c2-8e45-50f3-bc14-d1812a3f7360&dp=%2Fwp1%2Ffiles%2Fbottom.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=265b962f-cd89-51ac-bd5c-514077b64db8&ht=perf&tce=1663850076634&tcs=1663850076634&tdc=1663850077327&tdclee=1663850077324&tdcles=1663850077324&tdi=1663850077324&tdl=1663850076905&tdle=1663850076634&tdls=1663850076634&tfs=1663850076634&tns=1663850076634&trqs=1663850076643&tre=1663850076890&trps=1663850076890&tles=1663850077327&tlee=0&nt=navigate&nav_type=hard
IP 104.84.152.58:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /t/1/tl/event?cts=1663850077332&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2FHinet.Html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=1113689248&cv=2.0.0&z=1264198998&vg=7bfe94c2-8e45-50f3-bc14-d1812a3f7360&vtg=7bfe94c2-8e45-50f3-bc14-d1812a3f7360&dp=%2Fwp1%2Ffiles%2Fbottom.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=265b962f-cd89-51ac-bd5c-514077b64db8&ht=perf&tce=1663850076634&tcs=1663850076634&tdc=1663850077327&tdclee=1663850077324&tdcles=1663850077324&tdi=1663850077324&tdl=1663850076905&tdle=1663850076634&tdls=1663850076634&tfs=1663850076634&tns=1663850076634&trqs=1663850076643&tre=1663850076890&trps=1663850076890&tles=1663850077327&tlee=0&nt=navigate&nav_type=hard HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themonkeybar.com.au
Connection: keep-alive
Referer: https://themonkeybar.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: https://themonkeybar.com.au
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Thu, 22 Sep 2022 12:34:37 GMT
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/files/f.txt
166.62.28.122200 OK 80 kB URL HTTP/2 themonkeybar.com.au/wp1/files/f.txt
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (1867)
Hash c9491a4f0395eec16a0fe2b95122cd97
2a35464677582f53772e18db86458db9c32bbdd0
59cc3a1e95cca8145974af4efc49b5e61fcdaadd20357d634986885cc97e205b
Analyzer Verdict Alert fortinet Phishing
GET /wp1/files/f.txt HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/files/saved_resource.html
Cookie: adid=d77ed416-6fb1-381e-f6b8-e719684b8f09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:32 GMT
etag: "36405c4-361e9-5a7dfcc60e100-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 79493
content-type: text/plain
date: Thu, 22 Sep 2022 12:34:37 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 15af330272b65861c93c7f989a284e90
e3cf4e4108bc8e68819f82722fb6ca11392cdb34
7ebccd17f3283cfcd086121a089c9de4699284acf5809695d7a364835518ec1a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 12:34:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f85caa32cfc5c68ae9d37dac5075d086
d98cb95e042dfdf7fcfe0bef3d83624a970ee7ab
c1d5882e2ccbee35dfb5d42d78ef6fd843882cbbbe5653cd686ff768e697ac84
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 12:34:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/html/r20200608/r20190131/zrt_lookup.html
142.250.74.98200 OK 4.4 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20200608/r20190131/zrt_lookup.html
IP 142.250.74.98:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1731)
Hash 682bf699cccbc0ff817e1fcb7b95262a
11ad3edf0008f52b733c2d6d7199e1f052318d58
bd42f773d589f85cf6884d7893746d5d4e0c082f78e1c80511cf3aefa1c69a0f
GET /pagead/html/r20200608/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 4420
x-xss-protection: 0
date: Thu, 22 Sep 2022 12:34:38 GMT
expires: Thu, 06 Oct 2022 12:34:38 GMT
cache-control: public, max-age=1209600
etag: 9671129459699598864
content-type: text/html; charset=UTF-8
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=themonkeybar.com.au
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=themonkeybar.com.au
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=themonkeybar.com.au HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 22 Sep 2022 12:34:38 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ed1a58f626315fa404354a83798ed81e
e32c4d7ec2acdf740af158e112a0b158b874ca4e
ff297ee32a6dc94e4b0ddd098bc73b133a7707cb85d61614f0b307fed220a0fe
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 12:34:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 15af330272b65861c93c7f989a284e90
e3cf4e4108bc8e68819f82722fb6ca11392cdb34
7ebccd17f3283cfcd086121a089c9de4699284acf5809695d7a364835518ec1a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 12:34:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f85caa32cfc5c68ae9d37dac5075d086
d98cb95e042dfdf7fcfe0bef3d83624a970ee7ab
c1d5882e2ccbee35dfb5d42d78ef6fd843882cbbbe5653cd686ff768e697ac84
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 12:34:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com.ng/adsid/integrator.js?domain=themonkeybar.com.au
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.com.ng/adsid/integrator.js?domain=themonkeybar.com.au
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=themonkeybar.com.au HTTP/1.1
Host: adservice.google.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 22 Sep 2022 12:34:38 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7dd964c79fca5290d3619e334f9ce811
7b53926af2ac5491522f63f73b4e7ed56d173f2d
dac1376d1cd558d07ad6436e0382bf294a53b14d5251c958f3b5c9aed5edb236
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 12:34:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 682477608532cf0f939b82148a7d996c
53f5564723f8ca88bf990fb2e4de8ffd8000c96f
4f89314a758da9c42d7ab1c97f8794e3c10ed59112f6bad7f02f8b63fc24a3a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 12:34:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/js/r20200608/r20190131/show_ads_impl_fy2019.js
142.250.74.162404 Not Found 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/js/r20200608/r20190131/show_ads_impl_fy2019.js
IP 142.250.74.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/js/r20200608/r20190131/show_ads_impl_fy2019.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Thu, 22 Sep 2022 12:34:38 GMT
expires: Fri, 23 Sep 2022 12:34:38 GMT
cache-control: public, max-age=86400
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
events.api.secureserver.net/t/1/tl/event?cts=1663850077271&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2FHinet.Html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=573950666&cv=2.0.0&z=1609623783&vg=049e770c-7727-5840-b92f-c28db610a672&vtg=049e770c-7727-5840-b92f-c28db610a672&dp=%2Fwp1%2Ffiles%2Frequest.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=6f6edaf3-da66-5964-be12-ba084eb6d4f7&ht=perf&tce=1663850076634&tcs=1663850076634&tdc=1663850077265&tdclee=1663850077006&tdcles=1663850077006&tdi=1663850077000&tdl=1663850076897&tdle=1663850076634&tdls=1663850076634&tfs=1663850076634&tns=1663850076633&trqs=1663850076640&tre=1663850076889&trps=1663850076889&tles=1663850077265&tlee=0&nt=navigate&nav_type=hard
104.84.152.58200 OK 43 B URL HTTP/2 events.api.secureserver.net/t/1/tl/event?cts=1663850077271&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2FHinet.Html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=573950666&cv=2.0.0&z=1609623783&vg=049e770c-7727-5840-b92f-c28db610a672&vtg=049e770c-7727-5840-b92f-c28db610a672&dp=%2Fwp1%2Ffiles%2Frequest.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=6f6edaf3-da66-5964-be12-ba084eb6d4f7&ht=perf&tce=1663850076634&tcs=1663850076634&tdc=1663850077265&tdclee=1663850077006&tdcles=1663850077006&tdi=1663850077000&tdl=1663850076897&tdle=1663850076634&tdls=1663850076634&tfs=1663850076634&tns=1663850076633&trqs=1663850076640&tre=1663850076889&trps=1663850076889&tles=1663850077265&tlee=0&nt=navigate&nav_type=hard
IP 104.84.152.58:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /t/1/tl/event?cts=1663850077271&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2FHinet.Html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=573950666&cv=2.0.0&z=1609623783&vg=049e770c-7727-5840-b92f-c28db610a672&vtg=049e770c-7727-5840-b92f-c28db610a672&dp=%2Fwp1%2Ffiles%2Frequest.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=6f6edaf3-da66-5964-be12-ba084eb6d4f7&ht=perf&tce=1663850076634&tcs=1663850076634&tdc=1663850077265&tdclee=1663850077006&tdcles=1663850077006&tdi=1663850077000&tdl=1663850076897&tdle=1663850076634&tdls=1663850076634&tfs=1663850076634&tns=1663850076633&trqs=1663850076640&tre=1663850076889&trps=1663850076889&tles=1663850077265&tlee=0&nt=navigate&nav_type=hard HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themonkeybar.com.au
Connection: keep-alive
Referer: https://themonkeybar.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: https://themonkeybar.com.au
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Thu, 22 Sep 2022 12:34:38 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 77f9b5e468180a8976a641e40dceedbf
9873db160721dc9f41d3ff2d711db700d6f5d4d7
cae6929c00ed37fc097432c9ac1d6800244479d3877b17662c67bafeeff23aba
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 12:34:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
events.api.secureserver.net/t/1/tl/event?cts=1663850077322&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2FHinet.Html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=1113689248&cv=2.0.0&z=822734768&vg=8254a75f-b60e-5be9-bbc2-839a97bd05bc&vtg=8254a75f-b60e-5be9-bbc2-839a97bd05bc&dp=%2Fwp1%2Ffiles%2Fbottom.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=aec372c0-59b2-5301-8874-f4e57625447b&ht=pageview
104.84.152.58200 OK 43 B URL HTTP/2 events.api.secureserver.net/t/1/tl/event?cts=1663850077322&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2FHinet.Html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=1113689248&cv=2.0.0&z=822734768&vg=8254a75f-b60e-5be9-bbc2-839a97bd05bc&vtg=8254a75f-b60e-5be9-bbc2-839a97bd05bc&dp=%2Fwp1%2Ffiles%2Fbottom.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=aec372c0-59b2-5301-8874-f4e57625447b&ht=pageview
IP 104.84.152.58:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /t/1/tl/event?cts=1663850077322&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2FHinet.Html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=1113689248&cv=2.0.0&z=822734768&vg=8254a75f-b60e-5be9-bbc2-839a97bd05bc&vtg=8254a75f-b60e-5be9-bbc2-839a97bd05bc&dp=%2Fwp1%2Ffiles%2Fbottom.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=aec372c0-59b2-5301-8874-f4e57625447b&ht=pageview HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themonkeybar.com.au
Connection: keep-alive
Referer: https://themonkeybar.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: https://themonkeybar.com.au
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Thu, 22 Sep 2022 12:34:38 GMT
X-Firefox-Spdy: h2
partner.googleadservices.com/gampad/cookie.js?domain=themonkeybar.com.au&callback=_gfp_s_&client=ca-pub-4338256439626145
172.217.21.162200 OK 205 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=themonkeybar.com.au&callback=_gfp_s_&client=ca-pub-4338256439626145
IP 172.217.21.162:0
File type ASCII text, with no line terminators
Hash a59c0494fea7457eea1c3162fdbd9d38
d54d6227b825f03c28024ad2af1adb9075a2ac8d
97d303927d5c11dd25dd86273df68ab8db0eb4f3d88db29853c60a91f564b9d3
GET /gampad/cookie.js?domain=themonkeybar.com.au&callback=_gfp_s_&client=ca-pub-4338256439626145 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 22 Sep 2022 12:34:38 GMT
server: cafe
cache-control: private
content-length: 205
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagservices.com/activeview/js/current/osd.js?cb=%2Fr20100101
142.250.74.130200 OK 147 B URL HTTP/2 www.googletagservices.com/activeview/js/current/osd.js?cb=%2Fr20100101
IP 142.250.74.130:0
Hash bc01c9d0f5d2a958c3e0d635c64a37f7
23b6ff476729130d2e1afbccad36ab986a6d618f
01677d32bea6696dfee82715d517f43c0ec71ce52cbedb711b8ea3e5a9c72cd6
GET /activeview/js/current/osd.js?cb=%2Fr20100101 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 147
date: Thu, 22 Sep 2022 12:34:38 GMT
expires: Thu, 22 Sep 2022 12:34:38 GMT
cache-control: private, max-age=3000
etag: "1663587523795776"
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 682477608532cf0f939b82148a7d996c
53f5564723f8ca88bf990fb2e4de8ffd8000c96f
4f89314a758da9c42d7ab1c97f8794e3c10ed59112f6bad7f02f8b63fc24a3a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 12:34:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 77f9b5e468180a8976a641e40dceedbf
9873db160721dc9f41d3ff2d711db700d6f5d4d7
cae6929c00ed37fc097432c9ac1d6800244479d3877b17662c67bafeeff23aba
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 12:34:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
themonkeybar.com.au/wp1/files/zrt_lookup.html
166.62.28.122200 OK 4.6 kB URL HTTP/2 themonkeybar.com.au/wp1/files/zrt_lookup.html
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (2808)
Hash d522a94a6ae1fae70760e5d40de7d726
8a83244158e4eebb9d131ca8e4cc03745dd42242
743719ab9361cfff09b729649718d4626e0910953348a4039c129d209d899412
Analyzer Verdict Alert fortinet Phishing
GET /wp1/files/zrt_lookup.html HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/files/saved_resource.html
Cookie: adid=d77ed416-6fb1-381e-f6b8-e719684b8f09
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Jun 2020 09:35:34 GMT
etag: "36405e2-26da-5a7dfcc7f6580-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 4641
content-type: text/html
date: Thu, 22 Sep 2022 12:34:38 GMT
server: Apache
X-Firefox-Spdy: h2
events.api.secureserver.net/t/1/tl/event?cts=1663850078069&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2Ffiles%2Fsaved_resource.html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=1292559049&cv=2.0.0&z=1338559332&vg=0b667ef3-db99-5803-9b11-6c015e47f5a0&vtg=0b667ef3-db99-5803-9b11-6c015e47f5a0&dp=%2Fwp1%2Ffiles%2Fzrt_lookup.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=93420ada-57cf-5d28-b831-1a2f6b1036f1&ht=pageview
104.84.152.58200 OK 43 B URL HTTP/2 events.api.secureserver.net/t/1/tl/event?cts=1663850078069&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2Ffiles%2Fsaved_resource.html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=1292559049&cv=2.0.0&z=1338559332&vg=0b667ef3-db99-5803-9b11-6c015e47f5a0&vtg=0b667ef3-db99-5803-9b11-6c015e47f5a0&dp=%2Fwp1%2Ffiles%2Fzrt_lookup.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=93420ada-57cf-5d28-b831-1a2f6b1036f1&ht=pageview
IP 104.84.152.58:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /t/1/tl/event?cts=1663850078069&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2Ffiles%2Fsaved_resource.html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=1292559049&cv=2.0.0&z=1338559332&vg=0b667ef3-db99-5803-9b11-6c015e47f5a0&vtg=0b667ef3-db99-5803-9b11-6c015e47f5a0&dp=%2Fwp1%2Ffiles%2Fzrt_lookup.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=93420ada-57cf-5d28-b831-1a2f6b1036f1&ht=pageview HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themonkeybar.com.au
Connection: keep-alive
Referer: https://themonkeybar.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: https://themonkeybar.com.au
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Thu, 22 Sep 2022 12:34:38 GMT
X-Firefox-Spdy: h2
events.api.secureserver.net/t/1/tl/event?cts=1663850078076&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2Ffiles%2Fsaved_resource.html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=1292559049&cv=2.0.0&z=2133822009&vg=777be761-1eca-5db2-a0f5-d53b652ef949&vtg=777be761-1eca-5db2-a0f5-d53b652ef949&dp=%2Fwp1%2Ffiles%2Fzrt_lookup.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=1cd71121-b1cb-5f8a-8250-e68651774239&ht=perf&tce=1663850077616&tcs=1663850077616&tdc=1663850078073&tdclee=1663850078073&tdcles=1663850078073&tdi=1663850078072&tdl=1663850078051&tdle=1663850077616&tdls=1663850077616&tfs=1663850077616&tns=1663850077614&trqs=1663850077619&tre=1663850078049&trps=1663850078048&tles=1663850078073&tlee=0&nt=navigate&nav_type=hard
104.84.152.58200 OK 43 B URL HTTP/2 events.api.secureserver.net/t/1/tl/event?cts=1663850078076&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2Ffiles%2Fsaved_resource.html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=1292559049&cv=2.0.0&z=2133822009&vg=777be761-1eca-5db2-a0f5-d53b652ef949&vtg=777be761-1eca-5db2-a0f5-d53b652ef949&dp=%2Fwp1%2Ffiles%2Fzrt_lookup.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=1cd71121-b1cb-5f8a-8250-e68651774239&ht=perf&tce=1663850077616&tcs=1663850077616&tdc=1663850078073&tdclee=1663850078073&tdcles=1663850078073&tdi=1663850078072&tdl=1663850078051&tdle=1663850077616&tdls=1663850077616&tfs=1663850077616&tns=1663850077614&trqs=1663850077619&tre=1663850078049&trps=1663850078048&tles=1663850078073&tlee=0&nt=navigate&nav_type=hard
IP 104.84.152.58:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /t/1/tl/event?cts=1663850078076&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2Ffiles%2Fsaved_resource.html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=1292559049&cv=2.0.0&z=2133822009&vg=777be761-1eca-5db2-a0f5-d53b652ef949&vtg=777be761-1eca-5db2-a0f5-d53b652ef949&dp=%2Fwp1%2Ffiles%2Fzrt_lookup.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=1cd71121-b1cb-5f8a-8250-e68651774239&ht=perf&tce=1663850077616&tcs=1663850077616&tdc=1663850078073&tdclee=1663850078073&tdcles=1663850078073&tdi=1663850078072&tdl=1663850078051&tdle=1663850077616&tdls=1663850077616&tfs=1663850077616&tns=1663850077614&trqs=1663850077619&tre=1663850078049&trps=1663850078048&tles=1663850078073&tlee=0&nt=navigate&nav_type=hard HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themonkeybar.com.au
Connection: keep-alive
Referer: https://themonkeybar.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: https://themonkeybar.com.au
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Thu, 22 Sep 2022 12:34:38 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 10ae49480aecaf4bbe48fe413fb884f5
eaf76e35924e7e2465d8d51f81e1a39da508a496
dee36f9aa3d11c1b3d6802fa611adea95ed277212e47f16392cd49f3161e205b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 12:34:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c8ac2005f83e8a3a9da1a9837b6c2ff3
7c05f49683e49232c1e11b91253e684d2f96ab83
b0b42743b4c7e4b528fd78aadc5429ef34c2e127f3d5147330d428a47203dc0a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 12:34:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 10ae49480aecaf4bbe48fe413fb884f5
eaf76e35924e7e2465d8d51f81e1a39da508a496
dee36f9aa3d11c1b3d6802fa611adea95ed277212e47f16392cd49f3161e205b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 12:34:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/pagead/js/r20220919/r20110914/abg_lite_fy2021.js
142.250.74.33200 OK 9.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220919/r20110914/abg_lite_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1624)
Hash 3ddbba67b377888cf6ed28509cf143af
2b8ca5ed3d2c4bccd9863125296e36400c7c760c
6fdbe9e87b24700f75ac8cfca96fda275c46149880fd0122dcc7971c2f2a7cd9
GET /pagead/js/r20220919/r20110914/abg_lite_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 9574
x-xss-protection: 0
date: Thu, 22 Sep 2022 12:28:53 GMT
expires: Thu, 06 Oct 2022 12:28:53 GMT
cache-control: public, max-age=1209600
etag: 3447265524526809024
content-type: text/javascript; charset=UTF-8
age: 345
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20220919/r20110914/client/qs_click_protection_fy2021.js
142.250.74.33200 OK 7.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220919/r20110914/client/qs_click_protection_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1494)
Hash e405feb1007c3047d26705739a1c67e5
af2d89d360544712809ff95ef0f45fc9d0fd2cc2
621472627095bd4b65ec5d8616208d2cb3297dcf0692bfaee6b2d149c1deb757
GET /pagead/js/r20220919/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 7568
x-xss-protection: 0
date: Thu, 22 Sep 2022 12:16:11 GMT
expires: Thu, 06 Oct 2022 12:16:11 GMT
cache-control: public, max-age=1209600
etag: 16266204680973569043
content-type: text/javascript; charset=UTF-8
age: 1107
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A400%2C500
216.58.211.10200 OK 1.1 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A400%2C500
IP 216.58.211.10:0
Hash a335a7342f504a453b813e63e4cac27b
13e9e071376c45513969ee555bc6fb97f98a47fb
11d7b6859f5ff5eaaedceec0b7825a583985c2d0810c1adc381ddf50d39ecff1
GET /css?family=Roboto%3A400%2C500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 22 Sep 2022 12:34:38 GMT
date: Thu, 22 Sep 2022 12:34:38 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5149084af9bb01e5471e0be93a009ab0
1aaae44973461346130015cba0c36e9d1b5b77f2
db8a390c5bb50072d57429a45c470496139deb98e04b175f45600e5e4b2ac884
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 12:34:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/mysidia/b6810b6596f7ed55ed76c68d0358aca1.js?tag=mysidia_one_click_handler_one_afma_2019
142.250.74.163200 OK 14 kB URL HTTP/2 www.gstatic.com/mysidia/b6810b6596f7ed55ed76c68d0358aca1.js?tag=mysidia_one_click_handler_one_afma_2019
IP 142.250.74.163:0
File type C++ source, ASCII text, with very long lines (1792)
Hash dc869492c13c6684ab4eb7bf97d94e03
12c6685c433c3eb68db7babb6074f65a86b81350
7e6f05d389449ba380ad360c900ee4e5d0a05f7e0aac3c52a99d7fc684654e3e
GET /mysidia/b6810b6596f7ed55ed76c68d0358aca1.js?tag=mysidia_one_click_handler_one_afma_2019 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 13684
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 11:34:53 GMT
expires: Wed, 21 Dec 2022 11:34:53 GMT
cache-control: public, max-age=7776000
last-modified: Thu, 15 Sep 2022 20:14:13 GMT
content-type: text/javascript
age: 3585
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 14:52:00 GMT
expires: Thu, 21 Sep 2023 14:52:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 78158
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5149084af9bb01e5471e0be93a009ab0
1aaae44973461346130015cba0c36e9d1b5b77f2
db8a390c5bb50072d57429a45c470496139deb98e04b175f45600e5e4b2ac884
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 12:34:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
events.api.secureserver.net/t/1/tl/event?cts=1663850077621&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2FHinet.Html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=2135770621&cv=2.0.0&z=370015754&vg=2b6559fd-bc9e-5954-a58f-e769ec66f8e9&vtg=2b6559fd-bc9e-5954-a58f-e769ec66f8e9&dp=%2Fwp1%2Ffiles%2Fsaved_resource.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=b9ee0a9c-e45c-5431-a150-83314b64472e&ht=pageview
104.84.152.58200 OK 43 B URL HTTP/2 events.api.secureserver.net/t/1/tl/event?cts=1663850077621&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2FHinet.Html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=2135770621&cv=2.0.0&z=370015754&vg=2b6559fd-bc9e-5954-a58f-e769ec66f8e9&vtg=2b6559fd-bc9e-5954-a58f-e769ec66f8e9&dp=%2Fwp1%2Ffiles%2Fsaved_resource.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=b9ee0a9c-e45c-5431-a150-83314b64472e&ht=pageview
IP 104.84.152.58:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /t/1/tl/event?cts=1663850077621&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2FHinet.Html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=2135770621&cv=2.0.0&z=370015754&vg=2b6559fd-bc9e-5954-a58f-e769ec66f8e9&vtg=2b6559fd-bc9e-5954-a58f-e769ec66f8e9&dp=%2Fwp1%2Ffiles%2Fsaved_resource.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=b9ee0a9c-e45c-5431-a150-83314b64472e&ht=pageview HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themonkeybar.com.au
Connection: keep-alive
Referer: https://themonkeybar.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: https://themonkeybar.com.au
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Thu, 22 Sep 2022 12:34:39 GMT
X-Firefox-Spdy: h2
events.api.secureserver.net/t/1/tl/event?cts=1663850078502&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2FHinet.Html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=2135770621&cv=2.0.0&z=106660440&vg=6cb9b1a6-5eb1-5a39-83c4-2de684ee4254&vtg=6cb9b1a6-5eb1-5a39-83c4-2de684ee4254&dp=%2Fwp1%2Ffiles%2Fsaved_resource.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=0344c568-facc-526e-876b-d2c7a97c1fe2&ht=perf&tce=1663850076633&tcs=1663850076633&tdc=1663850078494&tdclee=1663850077629&tdcles=1663850077627&tdi=1663850077623&tdl=1663850076900&tdle=1663850076633&tdls=1663850076633&tfs=1663850076633&tns=1663850076633&trqs=1663850076641&tre=1663850076889&trps=1663850076889&tles=1663850078494&tlee=0&nt=navigate&nav_type=hard
104.84.152.58200 OK 43 B URL HTTP/2 events.api.secureserver.net/t/1/tl/event?cts=1663850078502&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2FHinet.Html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=2135770621&cv=2.0.0&z=106660440&vg=6cb9b1a6-5eb1-5a39-83c4-2de684ee4254&vtg=6cb9b1a6-5eb1-5a39-83c4-2de684ee4254&dp=%2Fwp1%2Ffiles%2Fsaved_resource.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=0344c568-facc-526e-876b-d2c7a97c1fe2&ht=perf&tce=1663850076633&tcs=1663850076633&tdc=1663850078494&tdclee=1663850077629&tdcles=1663850077627&tdi=1663850077623&tdl=1663850076900&tdle=1663850076633&tdls=1663850076633&tfs=1663850076633&tns=1663850076633&trqs=1663850076641&tre=1663850076889&trps=1663850076889&tles=1663850078494&tlee=0&nt=navigate&nav_type=hard
IP 104.84.152.58:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /t/1/tl/event?cts=1663850078502&dh=themonkeybar.com.au&dr=https%3A%2F%2Fthemonkeybar.com.au%2Fwp1%2FHinet.Html&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=2135770621&cv=2.0.0&z=106660440&vg=6cb9b1a6-5eb1-5a39-83c4-2de684ee4254&vtg=6cb9b1a6-5eb1-5a39-83c4-2de684ee4254&dp=%2Fwp1%2Ffiles%2Fsaved_resource.html&ap=cpsh&trfd=%7B%22ap%22%3A%22cpsh%22%2C%22server%22%3A%22sg2plcpnl0048%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%226954867%22%7D&hit_id=0344c568-facc-526e-876b-d2c7a97c1fe2&ht=perf&tce=1663850076633&tcs=1663850076633&tdc=1663850078494&tdclee=1663850077629&tdcles=1663850077627&tdi=1663850077623&tdl=1663850076900&tdle=1663850076633&tdls=1663850076633&tfs=1663850076633&tns=1663850076633&trqs=1663850076641&tre=1663850076889&trps=1663850076889&tles=1663850078494&tlee=0&nt=navigate&nav_type=hard HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themonkeybar.com.au
Connection: keep-alive
Referer: https://themonkeybar.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: https://themonkeybar.com.au
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Thu, 22 Sep 2022 12:34:39 GMT
X-Firefox-Spdy: h2
themonkeybar.com.au/favicon.ico
166.62.28.122302 Found 1 B URL HTTP/2 themonkeybar.com.au/favicon.ico
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash eccbc87e4b5ce2fe28308fd9f2a7baf3
77de68daecd823babbb58edb1c8e14d7106e83bb
4e07408562bedb8b60ce05c1decfe3ad16b72230967de01f640b7e4729b49fce
GET /favicon.ico HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/Hinet.Html
Cookie: adid=d77ed416-6fb1-381e-f6b8-e719684b8f09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
x-powered-by: PHP/7.4.30
link: <https://themonkeybar.com.au/wp-json/>; rel="https://api.w.org/"
x-redirect-by: WordPress
content-security-policy: upgrade-insecure-requests;
location: https://themonkeybar.com.au/wp-content/uploads/2020/10/cropped-Monkey-for-Site-Icon-8-32x32.png
vary: Accept-Encoding
content-encoding: br
content-length: 1
content-type: text/html; charset=UTF-8
date: Thu, 22 Sep 2022 12:34:37 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp-content/uploads/2020/10/cropped-Monkey-for-Site-Icon-8-32x32.png
166.62.28.122200 OK 1.6 kB URL HTTP/2 themonkeybar.com.au/wp-content/uploads/2020/10/cropped-Monkey-for-Site-Icon-8-32x32.png
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 32 x 32, 8-bit/color RGB, non-interlaced\012- data
Hash 5be9e533ac8663b5436284706125f5bf
e26bb5047cb472d3cf69b0c027159a20347f94a3
1d8046b5e89b5a5bb19aff043e38ab23a962495e76cf37017b61bf3b2bde3453
GET /wp-content/uploads/2020/10/cropped-Monkey-for-Site-Icon-8-32x32.png HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://themonkeybar.com.au/wp1/Hinet.Html
Connection: keep-alive
Cookie: adid=d77ed416-6fb1-381e-f6b8-e719684b8f09; __gads=ID=e3535b232950b3c1-22bb51be2ace0009:T=1663850078:RT=1663850078:S=ALNI_MbMZ5NIa42QEEsm1jh-oEsK0qu5gA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Sat, 14 Nov 2020 06:21:17 GMT
etag: "3581f69-639-5b40b271c8499"
accept-ranges: bytes
content-length: 1593
content-type: image/png
date: Thu, 22 Sep 2022 12:34:39 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.publicca.hinet.net/OCSP/ocspG2
210.71.154.18200 OK 1.8 kB URL HTTP/1.1 ocsp.publicca.hinet.net/OCSP/ocspG2
IP 210.71.154.18:0
ASN #3462 Data Communication Business Group
Hash 340f35c0df856e1acbdba6bf43e822c7
7df8df65e57dd9e8339cf965000351b1fc11f243
0064c161b2f2d5b89036a622f6e4a77ce42f8f62aabb58e5121d7b389ffda249
POST /OCSP/ocspG2 HTTP/1.1
Host: ocsp.publicca.hinet.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 12:34:39 GMT
Content-Length: 1773
Content-Type: application/ocsp-response
themonkeybar.com.au/wp1/fonts/glyphicons-halflings-regular.woff2
166.62.28.122404 Not Found 0 B URL HTTP/2 themonkeybar.com.au/wp1/fonts/glyphicons-halflings-regular.woff2
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Analyzer Verdict Alert fortinet Phishing
GET /wp1/fonts/glyphicons-halflings-regular.woff2 HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/files/bootstrap.min.css
Cookie: adid=d77ed416-6fb1-381e-f6b8-e719684b8f09
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
x-powered-by: PHP/7.4.30
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://themonkeybar.com.au/wp-json/>; rel="https://api.w.org/"
content-security-policy: upgrade-insecure-requests;
vary: Accept-Encoding
content-type: text/html; charset=UTF-8
date: Thu, 22 Sep 2022 12:34:37 GMT
server: Apache
X-Firefox-Spdy: h2
themonkeybar.com.au/wp1/fonts/glyphicons-halflings-regular.woff
166.62.28.122404 Not Found 0 B URL HTTP/2 themonkeybar.com.au/wp1/fonts/glyphicons-halflings-regular.woff
IP 166.62.28.122:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Analyzer Verdict Alert fortinet Phishing
GET /wp1/fonts/glyphicons-halflings-regular.woff HTTP/1.1
Host: themonkeybar.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://themonkeybar.com.au/wp1/files/bootstrap.min.css
Cookie: adid=d77ed416-6fb1-381e-f6b8-e719684b8f09; __gads=ID=e3535b232950b3c1-22bb51be2ace0009:T=1663850078:RT=1663850078:S=ALNI_MbMZ5NIa42QEEsm1jh-oEsK0qu5gA
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
x-powered-by: PHP/7.4.30
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://themonkeybar.com.au/wp-json/>; rel="https://api.w.org/"
content-security-policy: upgrade-insecure-requests;
vary: Accept-Encoding
content-type: text/html; charset=UTF-8
date: Thu, 22 Sep 2022 12:34:40 GMT
server: Apache
X-Firefox-Spdy: h2
ssp.hinet.net/api/web/third?c=2017007&s=201702000023&th=42&wc=684
203.75.213.47200 OK 0 B URL HTTP/2 ssp.hinet.net/api/web/third?c=2017007&s=201702000023&th=42&wc=684
IP 203.75.213.47:0
ASN #3462 Data Communication Business Group
GET /api/web/third?c=2017007&s=201702000023&th=42&wc=684 HTTP/1.1
Host: ssp.hinet.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://themonkeybar.com.au
Connection: keep-alive
Referer: https://themonkeybar.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 12:34:42 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://themonkeybar.com.au
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
content-encoding: gzip
X-Firefox-Spdy: h2