Overview

URL mail.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
IP216.194.164.236
ASNINMOTION
Location United States
Report completed2022-09-17 04:56:00 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-17 2 www.tuffashop.com.au/wp-content/plugins/blog-designer-for-post-and-widget/a (...) Phishing
2022-09-17 2 www.tuffashop.com.au/wp-content/plugins/simple-sitemap/lib/assets/css/simpl (...) Phishing
2022-09-17 2 www.tuffashop.com.au/wp-includes/css/dist/block-library/theme.min.css?ver=5.2.16 Phishing
2022-09-17 2 www.tuffashop.com.au/wp-includes/css/dist/block-library/style.min.css?ver=5.2.16 Phishing
2022-09-17 2 www.tuffashop.com.au/wp-content/plugins/blog-designer-for-post-and-widget/a (...) Phishing
2022-09-17 2 www.tuffashop.com.au/wp-content/plugins/contact-form-7/includes/css/styles. (...) Phishing
2022-09-17 2 www.tuffashop.com.au/wp-content/plugins/woocommerce/assets/css/woocommerce. (...) Phishing
2022-09-17 2 www.tuffashop.com.au/wp-content/plugins/js_composer/assets/lib/bower/font-a (...) Phishing
2022-09-17 2 www.tuffashop.com.au/wp-content/plugins/soo-product-filter/assets/css/front (...) Phishing
2022-09-17 2 www.tuffashop.com.au/wp-content/plugins/soo-wishlist/assets/css/wishlist.cs (...) Phishing
2022-09-17 2 www.tuffashop.com.au/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp Phishing
2022-09-17 2 www.tuffashop.com.au/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 Phishing
2022-09-17 2 www.tuffashop.com.au/wp-content/themes/sober/style.css?ver=2.1.0 Phishing
2022-09-17 2 www.tuffashop.com.au/wp-content/plugins/revslider/public/assets/js/jquery.t (...) Phishing
2022-09-17 2 www.tuffashop.com.au/wp-content/plugins/revslider/public/assets/js/jquery.t (...) Phishing
2022-09-17 2 www.tuffashop.com.au/wp-content/plugins/woocommerce/assets/js/jquery-cookie (...) Phishing
2022-09-17 2 www.tuffashop.com.au/wp-content/plugins/cf7-redirection/js/wpcf7-redirect-s (...) Phishing
2022-09-17 2 www.tuffashop.com.au/wp-content/plugins/woocommerce-google-adwords-conversi (...) Phishing
2022-09-17 2 www.tuffashop.com.au/wp-content/plugins/woocommerce/assets/js/js-cookie/js. (...) Phishing
2022-09-17 2 www.tuffashop.com.au/wp-content/plugins/woocommerce/assets/js/frontend/add- (...) Phishing
2022-09-17 2 www.tuffashop.com.au/wp-content/plugins/woocommerce/assets/js/zoom/jquery.z (...) Phishing
2022-09-17 2 www.tuffashop.com.au/wp-includes/js/imagesloaded.min.js?ver=3.2.0 Phishing
2022-09-17 2 www.tuffashop.com.au/wp-content/themes/sober/js/owl.carousel.min.js?ver=2.2.1 Phishing
2022-09-17 2 www.tuffashop.com.au/wp-content/themes/sober/js/script.js?ver=2.1.0 Phishing
2022-09-17 2 www.tuffashop.com.au/wp-content/plugins/woocommerce-google-adwords-conversi (...) Phishing
2022-09-17 2 www.tuffashop.com.au/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 Phishing
2022-09-17 2 www.tuffashop.com.au/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4 Phishing
2022-09-17 2 www.tuffashop.com.au/wp-includes/js/jquery/jquery.serialize-object.js?ver=0.2 Phishing
2022-09-17 2 www.tuffashop.com.au/wp-content/plugins/variation-swatches-for-woocommerce/ (...) Phishing
2022-09-17 2 www.tuffashop.com.au/wp-content/plugins/sober-addons/assets/js/jquery.count (...) Phishing
2022-09-17 2 www.tuffashop.com.au/wp-content/plugins/sober-addons/assets/js/circle-progr (...) Phishing
2022-09-17 2 www.tuffashop.com.au/wp-content/plugins/sober-addons/assets/js/shortcodes.j (...) Phishing
2022-09-17 2 www.tuffashop.com.au/wp-includes/js/wp-embed.min.js?ver=5.2.16 Phishing
2022-09-17 2 www.tuffashop.com.au/wp-content/plugins/woocommerce/assets/js/jquery-ui-tou (...) Phishing
2022-09-17 2 www.tuffashop.com.au/wp-content/plugins/woocommerce-currency-switcher/js/pr (...) Phishing
2022-09-17 2 www.tuffashop.com.au/wp-content/plugins/woocommerce-currency-switcher/js/jq (...) Phishing
2022-09-17 2 www.tuffashop.com.au/wp-content/plugins/woocommerce-currency-switcher/js/fr (...) Phishing
2022-09-17 2 mail.tuffashop.com.au/?wc-ajax=get_refreshed_fragments Phishing
2022-09-17 2 mail.tuffashop.com.au/?wc-ajax=get_refreshed_fragments Phishing
2022-09-17 2 www.tuffashop.com.au/wp-content/plugins/js_composer/assets/lib/bower/font-a (...) Phishing
2022-09-17 2 www.tuffashop.com.au/wp-admin/admin-ajax.php Phishing
2022-09-17 2 www.tuffashop.com.au/wp-content/fonts/oswald/TK3_WkUHHAIjg75cFRf3bXL8LICs1x (...) Phishing
2022-09-17 2 www.tuffashop.com.au/wp-content/themes/sober/fonts/SofiaProLight-webfont.woff2 Phishing
2022-09-17 2 www.tuffashop.com.au/wp-content/themes/sober/fonts/SofiaProLight-webfont.ttf Phishing
2022-09-17 2 www.tuffashop.com.au/wp-content/themes/sober/fonts/SofiaProLight-webfont.woff Phishing
2022-09-17 2 www.tuffashop.com.au/wp-content/plugins/js_composer/assets/lib/bower/font-a (...) Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (17)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS mail.tuffashop.com.au (4) 0 2019-12-18 13:16:54 UTC 2022-09-16 23:54:32 UTC 216.194.164.236 Unknown ranking
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-16 17:35:14 UTC 93.184.220.29
mnemonic passive DNS www.tuffashop.com.au (73) 0 2019-06-16 10:12:04 UTC 2022-08-15 11:47:50 UTC 216.194.164.236 Unknown ranking
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-16 15:59:39 UTC 34.120.237.76
mnemonic passive DNS googleads.g.doubleclick.net (1) 42 2021-02-20 15:43:32 UTC 2022-09-17 00:23:03 UTC 142.250.74.34
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-27 20:08:30 UTC 2022-09-16 18:35:00 UTC 143.204.55.115
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-16 04:23:36 UTC 34.117.237.239
mnemonic passive DNS ocsp.pki.goog (15) 175 2017-06-14 07:23:31 UTC 2022-09-16 04:23:37 UTC 142.250.74.3
mnemonic passive DNS www.google.com (1) 7 2016-08-04 12:36:31 UTC 2022-09-17 00:28:38 UTC 142.250.74.164
mnemonic passive DNS www.google.no (2) 25607 2016-04-05 19:50:59 UTC 2022-09-16 05:34:59 UTC 142.250.74.3
mnemonic passive DNS r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-09-16 04:41:23 UTC 23.36.77.32
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-16 04:25:30 UTC 143.204.55.25
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-16 05:11:10 UTC 54.191.251.76
mnemonic passive DNS www.googletagmanager.com (2) 75 2012-12-25 14:52:06 UTC 2022-09-17 03:58:43 UTC 142.250.74.72
mnemonic passive DNS fonts.gstatic.com (2) 0 2014-08-29 13:43:22 UTC 2022-09-16 04:23:38 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS fonts.googleapis.com (1) 8877 2014-07-21 13:19:55 UTC 2022-09-16 21:25:59 UTC 142.250.74.10
mnemonic passive DNS stats.g.doubleclick.net (2) 96 2013-06-02 22:47:44 UTC 2022-09-17 04:18:45 UTC 142.251.1.156


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 216.194.164.236

Date UQ / IDS / BL URL IP
2022-09-19 05:28:12 +0000
0 - 0 - 48 www.dmdesign.com.au/ 216.194.164.236
2022-09-17 04:56:00 +0000
0 - 0 - 46 mail.tuffashop.com.au/usps/home.php?ip=80.167 (...) 216.194.164.236
2022-09-17 01:46:22 +0000
0 - 0 - 43 www.tuffashop.com.au/usps/home.php?ip=80.167. (...) 216.194.164.236
2022-09-16 23:54:43 +0000
0 - 0 - 44 mail.tuffashop.com.au/usps/home.php?ip=80.167 (...) 216.194.164.236
2022-09-16 23:22:05 +0000
0 - 0 - 44 tuffashop.com.au/usps/home.php?ip=80.167.121. (...) 216.194.164.236

Last 5 reports on ASN: INMOTION

Date UQ / IDS / BL URL IP
2022-12-05 20:26:20 +0000
0 - 0 - 1 lpqarq.com/ 199.250.215.210
2022-12-05 20:26:20 +0000
0 - 0 - 1 lpqarq.com/ 199.250.215.210
2022-12-05 16:37:23 +0000
0 - 0 - 1 remembrance.sufipaths.net/etc_mendosuficamp.o (...) 144.208.68.180
2022-12-05 16:28:47 +0000
0 - 0 - 1 remembrance.sufipaths.net/etc_goldengatesufi. (...) 144.208.68.180
2022-12-04 18:33:27 +0000
0 - 0 - 1 remembrance.sufipaths.net/etc_goldengatesufi. (...) 144.208.68.180

Last 4 reports on domain: tuffashop.com.au

Date UQ / IDS / BL URL IP
2022-09-17 04:56:00 +0000
0 - 0 - 46 mail.tuffashop.com.au/usps/home.php?ip=80.167 (...) 216.194.164.236
2022-09-17 01:46:22 +0000
0 - 0 - 43 www.tuffashop.com.au/usps/home.php?ip=80.167. (...) 216.194.164.236
2022-09-16 23:54:43 +0000
0 - 0 - 44 mail.tuffashop.com.au/usps/home.php?ip=80.167 (...) 216.194.164.236
2022-09-16 23:22:05 +0000
0 - 0 - 44 tuffashop.com.au/usps/home.php?ip=80.167.121. (...) 216.194.164.236

Last 3 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-09-16 23:22:05 +0000
0 - 0 - 44 tuffashop.com.au/usps/home.php?ip=80.167.121. (...) 216.194.164.236
2022-09-17 01:46:22 +0000
0 - 0 - 43 www.tuffashop.com.au/usps/home.php?ip=80.167. (...) 216.194.164.236
2022-09-16 23:54:43 +0000
0 - 0 - 44 mail.tuffashop.com.au/usps/home.php?ip=80.167 (...) 216.194.164.236


JavaScript

Executed Scripts (83)


Executed Evals (1)

#1 JavaScript::Eval (size: 500, repeated: 1) - SHA256: dce4f97980216edc0e62310634dc618996744e4d04592aa9526b34facef944a5

                                        (function($) {
    $(document.body).off('click', '.remove').on('click', '.remove', function() {
        ga('ec:addProduct', {
            'id': ($(this).data('product_sku')) ? ($(this).data('product_sku')) : ('#' + $(this).data('product_id')),
            'quantity': $(this).parent().parent().find('.qty').val() ? $(this).parent().parent().find('.qty').val() : '1',
        });
        ga('ec:setAction', 'remove');
        ga('send', 'event', 'UX', 'click', 'remove from cart');
    });
})(jQuery);
                                    

Executed Writes (0)



HTTP Transactions (121)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 17 Sep 2022 04:11:12 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: XFwTfv2T_ORIy1tHEqAyKy8wQXF8CV0s8M-9Q7wVdSDhZyYv5q8P9Q==
Age: 2677


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    91dd975a7b17b2922dd23c0e49314e40
Sha1:   57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "FEF9CE9F75EC19E7AE2CCBFFB6654DB2473A2B4ACC94C1B4303E5EC24149465F"
Last-Modified: Thu, 15 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4619
Expires: Sat, 17 Sep 2022 06:12:48 GMT
Date: Sat, 17 Sep 2022 04:55:49 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.25
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 17 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: fvjq9WMFJfPovNGhedeMc1rpIH7J-ffe7jN9_GuiCVCQblaS_Tnnow==
age: 5107
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x HTTP/1.1 
Host: mail.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         216.194.164.236
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Sat, 17 Sep 2022 04:55:49 GMT
Server: Apache
Location: https://mail.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Content-Length: 303
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   303
Md5:    ec7b97bd8d09b0b08c485acae36b84f3
Sha1:   5d06ff901a8739907201f0aae3d8df2676b1e7ca
Sha256: 7d0e3ccdbf8e25db157c019bbba8524741f12788754ec3694aa5fd1fda1f81f2
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sat, 17 Sep 2022 04:55:49 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sat, 17 Sep 2022 04:03:22 GMT
Cache-Control: max-age=3600
Expires: Sat, 17 Sep 2022 04:33:30 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: MTLHVGY3Bs3mH6G9bqk1Jl00xnVNgzF9n97twPMFzkKL5L2NMKdk5g==
Age: 3147


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3445
Cache-Control: 'max-age=158059'
Date: Sat, 17 Sep 2022 04:55:50 GMT
Last-Modified: Sat, 17 Sep 2022 03:58:26 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: QH7kEAtmZGCYvGvSMe4tmQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         54.191.251.76
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Ig7iwlK84zpz0ZERGPY64nrfNAo=

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 17 Sep 2022 04:55:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 17 Sep 2022 04:55:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 17 Sep 2022 04:55:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x HTTP/1.1 
Host: mail.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         216.194.164.236
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 17 Sep 2022 04:55:50 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-transform, no-cache, no-store, must-revalidate
Link: <https://www.tuffashop.com.au/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 30041
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (36388), with CRLF, LF line terminators
Size:   30041
Md5:    8462321db0774ec737c532f1e762a4f0
Sha1:   08bcdd0862bc661b8933fb9ea4893b5e5bb50ae0
Sha256: bc543e41f177e4d2d034971daa3256000990434812f75d52f877fc4bd99e903d
                                        
                                            GET /gtag/js?id=AW-617029512 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 17 Sep 2022 04:55:50 GMT
expires: Sat, 17 Sep 2022 04:55:50 GMT
cache-control: private, max-age=900
last-modified: Sat, 17 Sep 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46551
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1720)
Size:   46551
Md5:    4864f55a078e4958a63c8097ba086397
Sha1:   4a4e123f9f6f83ecffdecba75a3dbabe954670fe
Sha256: f31c190e09528d263a5e6409f5cee5b1b15b03c1eb14ef4b8939615af768be4f
                                        
                                            GET /gtag/js?id=UA-132659890-1 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 17 Sep 2022 04:55:50 GMT
expires: Sat, 17 Sep 2022 04:55:50 GMT
cache-control: private, max-age=900
last-modified: Sat, 17 Sep 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42356
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1720)
Size:   42356
Md5:    f6d82598afbea90b8c53f25fe21acbcb
Sha1:   1168b06370160a9aaf71e1a911d65de34b14a0de
Sha256: d49dba6f60c4ab36e0c4c06e948a02f1d762c164d577fe1cde431ac33f22b39e
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 17 Sep 2022 04:55:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 17 Sep 2022 04:55:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=2.9.1 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 17 Sep 2022 04:55:51 GMT
Server: Apache
Last-Modified: Mon, 17 May 2021 11:04:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2850
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (16845), with no line terminators
Size:   2850
Md5:    293dc3ab37a779f674430b24add48dda
Sha1:   428c398ef138ecd2c60a3d6cf942bd92559ffdcc
Sha256: 010ebcc43818880d0af83955c60589adaa657ed5ff5defa817176c05eec4cd6e
                                        
                                            GET /wp-content/plugins/blog-designer-for-post-and-widget/assets/css/slick.css?ver=2.2.3.1 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 17 Sep 2022 04:55:51 GMT
Server: Apache
Last-Modified: Wed, 02 Feb 2022 04:41:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 570
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (332)
Size:   570
Md5:    44fc28e83ed6ab178a2ce0ea508c843a
Sha1:   a827ba9746ae01e06998504f98fa29d3b1c1b25d
Sha256: a66bcad63a3d27d2e682a1de069982f2e51518f52d1335d5da8e17f0fc263361

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/simple-sitemap/lib/assets/css/simple-sitemap.css?ver=5.2.16 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 17 Sep 2022 04:55:51 GMT
Server: Apache
Last-Modified: Mon, 22 Mar 2021 08:34:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1779
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1779
Md5:    e314e49ac9b3ea324829ffa37f3594a6
Sha1:   46ff68a559c77e15f6303d8cc8a2d042c3eb5a5b
Sha256: 68fd2de615a4d1b7d6afe9c10992f04cac4dc2dfdb37d76246652e833c3b1e51

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/css/dist/block-library/theme.min.css?ver=5.2.16 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 17 Sep 2022 04:55:51 GMT
Server: Apache
Last-Modified: Thu, 07 Mar 2019 09:09:59 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 562
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1495), with no line terminators
Size:   562
Md5:    c2c7e785ac554128579699541f35bc59
Sha1:   6cc27ac81033e580ec4abff557c6f0b86886a861
Sha256: 155a9547ffd9bd7c7a88d7ce3e02d6eac5a99151910565fc6ffcf4d5010cb78f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=5.2.16 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 17 Sep 2022 04:55:51 GMT
Server: Apache
Last-Modified: Wed, 28 Apr 2021 08:39:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4788
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (29271), with no line terminators
Size:   4788
Md5:    dd7c1726a47a6a643915b33ff7d58ff1
Sha1:   af1eebb836aa766817ed21c3e35d2a3eb3e1aaba
Sha256: d45cf6975f3b7ec4e2f867d0e6f718b8950a0245132bda965240d0d49c7a2c65

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=2.4.5 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 17 Sep 2022 04:55:51 GMT
Server: Apache
Last-Modified: Thu, 22 Jul 2021 07:52:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4290
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (6383)
Size:   4290
Md5:    941bd788d366c8fe2f238ba421aeca25
Sha1:   68d11a730dbf3e1c0bed5d7e3f3420266eafc2e3
Sha256: 5918cf3c3a7e96c4c21fb7ac80644dc62252271c2bd250908fda242966d67c8a
                                        
                                            GET /wp-content/plugins/blog-designer-for-post-and-widget/assets/css/bdpw-public.css?ver=2.2.3.1 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 17 Sep 2022 04:55:51 GMT
Server: Apache
Last-Modified: Wed, 02 Feb 2022 04:41:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2882
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (351), with CRLF line terminators
Size:   2882
Md5:    27ee9a3725da670cc4d42f1c98c6bf03
Sha1:   4610feff658c3e0fa108c87f04ac30c1797b155c
Sha256: 2345bfa188913209e6e5cb2c2a784ac97e3b2a812399869729184d9e63f5c229

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.6 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 17 Sep 2022 04:55:51 GMT
Server: Apache
Last-Modified: Thu, 06 Feb 2020 06:34:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 649
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   649
Md5:    76aba5da6a0d822d5b7ed296888c8758
Sha1:   9bd4319bc86fb62d04a7593569084a978fed2793
Sha256: 220aff2fb7a928001bdc0e30d89b683c92c5f41f259759ca04c198a678eab56e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 17 Sep 2022 04:55:51 GMT
Server: Apache
Last-Modified: Sun, 02 Dec 2018 23:30:11 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 9545
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (5178), with CRLF line terminators
Size:   9545
Md5:    d263d5eaa7c883c3657af7dbb878b8a1
Sha1:   3d7423e15e86031092227572a6bfea1d1400ce9e
Sha256: adf2c10039a96f761770b8744b46b019d0e80b2c1ee5d2eb077bae0e19a23a43
                                        
                                            GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=3.8.2 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 17 Sep 2022 04:55:51 GMT
Server: Apache
Last-Modified: Thu, 22 Jul 2021 07:52:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 8820
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (62655), with no line terminators
Size:   8820
Md5:    ae602d7a441a68e36c75e028185bdc25
Sha1:   37a6b28345ae2fd0f43450a0695760698eba5014
Sha256: ea11c686069d234f068929171313ff8c0c2366f6579b78a95a2e014271b3d3b8

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/font-awesome.min.css?ver=5.6 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 17 Sep 2022 04:55:51 GMT
Server: Apache
Last-Modified: Tue, 18 Dec 2018 13:46:31 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 6970
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (30449)
Size:   6970
Md5:    8063116190a065a58dc545fec81d8ce5
Sha1:   20e4bf239450f01eb800bb37ef8e771366e8f8a6
Sha256: ee2fb2d879295b26dab2900936501dd9ebb648e22e0bcb0bc113524c8f23cc20

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8046
Expires: Sat, 17 Sep 2022 07:09:57 GMT
Date: Sat, 17 Sep 2022 04:55:51 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8046
Expires: Sat, 17 Sep 2022 07:09:57 GMT
Date: Sat, 17 Sep 2022 04:55:51 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8046
Expires: Sat, 17 Sep 2022 07:09:57 GMT
Date: Sat, 17 Sep 2022 04:55:51 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8046
Expires: Sat, 17 Sep 2022 07:09:57 GMT
Date: Sat, 17 Sep 2022 04:55:51 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8046
Expires: Sat, 17 Sep 2022 07:09:57 GMT
Date: Sat, 17 Sep 2022 04:55:51 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98d68511-1d61-4e7e-9647-8c57b409e85e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10127
x-amzn-requestid: d9194b5e-17bc-4e08-b1bb-97dda96ac30e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YknslF7KoAMF8xQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324ecb6-56733ebe2050abfd16e2d5a1;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 21:37:58 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Meblc1VO8Te1dcBvdt5QsMM6ACc9gnE0OvPomm4vjJD-_IHDefh4zA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 21:50:26 GMT
age: 25525
etag: "6b17fa76a13bca3d75efb59a2f4b04c4a43477b6"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10127
Md5:    67046c783f8a224572cb8c70625cec67
Sha1:   6b17fa76a13bca3d75efb59a2f4b04c4a43477b6
Sha256: 44aed2e381a512e648202a775c70b7e5ebd5ce8f2c8762bb24c8bb8ee9b98f4c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77aee3f-a7fb-4d87-92a7-6b33dd4ebf28.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5983
x-amzn-requestid: ba84a9a2-3ebe-4dc9-9604-98d5cccb4f2d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YknUqFxpoAMFrpw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324ec1d-55cd6d0a6e39357c226dd21d;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 21:35:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: J2fbb_t40ioxBvoRAT28rW4ujQw-qpPX3mMN97GBdEK_D8_oDz2g4g==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 21:51:07 GMT
age: 25484
etag: "b9c4cd422b818c859ac6ca928bc9e932a578ce30"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5983
Md5:    e1b42bfa9fc6593b0444391dc260329a
Sha1:   b9c4cd422b818c859ac6ca928bc9e932a578ce30
Sha256: 89eee7200bf7a8bf100f64aee2208d7852265a85feb133fc87846b15cd96e842
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F14e8614f-d7d5-4a87-adf0-ab2cfcfb023b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5956
x-amzn-requestid: 19032fea-67c3-404f-bf3e-9b436a61a7f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeNW4G30oAMFw0w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63225c2b-3da099be3781af033658520f;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:56:43 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: FU7qiAFNHIIxNo_zRH3xQzmMMORVZ4Q5W-GgwdhA5ZQJPokQssZv5A==
via: 1.1 74aa91fe819001bcedd882694f52b436.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 12:55:52 GMT
age: 57599
etag: "ff29c630c2ed8a67fe5cd4622dc9f1d23234b58c"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5956
Md5:    3e963daffb462e89d9d67e6193944cc3
Sha1:   ff29c630c2ed8a67fe5cd4622dc9f1d23234b58c
Sha256: cc24af0aedb89ab059b6706b8e51708547ea2ce2b2c2743425810b44af7c68c8
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9ba7347-38d8-40e3-9b29-41a380f99ed5.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6109
x-amzn-requestid: 271b006e-9d17-46ba-9eed-22fd638c4e9e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ2AhHZgIAMFlSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d039c-444e7d6b22f2a08f7215a986;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:37:32 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: clBnXbh8x6GItJ6ObFVEM4Es3jAKlfMS8CMGlU6RBf_eshZ_HfFkOA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 22:31:13 GMT
age: 23078
etag: "c5b82c9d77851820b8d206573d5c03cd36d27a20"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6109
Md5:    8c35b7f5f8e1b0b24570a41b7d18533a
Sha1:   c5b82c9d77851820b8d206573d5c03cd36d27a20
Sha256: bb2456b31c48e6ebc9595c2bb9972b74531e93dd02ec4571d5af614f2d116ec7
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e43d1ff-79bc-430f-826f-2af5ae602556.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8500
x-amzn-requestid: e1ca6cef-c033-4887-80cf-2014ab8e620c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Ykn5cEnLIAMFrzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324ed09-3afc16cf66fef0e62dd6f3cc;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 21:39:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: pPCI5VDX3PIldEnkLv-VNCFWuykiarYQdLYguNTfmbwxYCDVaS2EcA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 22:01:45 GMT
age: 24846
etag: "28ac45ef155c66dd79a306f14d3b38f597b6a32e"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8500
Md5:    d46a910081eb782408f1a2fa3c6aabba
Sha1:   28ac45ef155c66dd79a306f14d3b38f597b6a32e
Sha256: d5787a6a12d275555c627e3245b37d4e751148345a09d5671b343cfebe7173b4
                                        
                                            GET /wp-content/plugins/soo-product-filter/assets/css/frontend.css?ver=20160623 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 17 Sep 2022 04:55:51 GMT
Server: Apache
Last-Modified: Sun, 02 Dec 2018 23:30:13 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 670
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   670
Md5:    f8a5557e9588aad0837c7ec877308035
Sha1:   043a6d92cf3aeca4e97ac569ab4eaba948789d50
Sha256: 225b317d63afe8e9b610361574597432484c4939bb4d8b6c8544da5527748b13

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/soo-wishlist/assets/css/wishlist.css?ver=1.1.0 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 17 Sep 2022 04:55:51 GMT
Server: Apache
Last-Modified: Sun, 02 Dec 2018 23:30:14 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 125
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   125
Md5:    e4167a63b5b017aa62eca30c3b283629
Sha1:   b24efe97437f73238b42a8a7ae87645f8219b685
Sha256: ca5137f021778ba8ec9bfbc88cab07369c39626f350793d83ee67b61525caf6a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd5675c7-5120-4f61-bd91-8c4d9af84130.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7788
x-amzn-requestid: 2cb48f87-8b72-4ff7-b041-a6e704b854a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YIP2-HFHoAMFssA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6319935f-693e2f2e5a0bcd9f690f21fa;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 07:01:51 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 4-H_LbXRjS1PJkVz9OIhwsaPfu8ZlL98zTZG--hdmij9Tc6KtmNSFQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 21:51:13 GMT
age: 25478
etag: "e139a0974317212f094fdbe59e26ca5cf6b9e56d"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7788
Md5:    7a22ab7dcdf50f4a297b8e117d336eae
Sha1:   e139a0974317212f094fdbe59e26ca5cf6b9e56d
Sha256: 9b4c23c1bb2e4fcd140ce34bf83f315f09b45202c569cb74113c2e65c4031dcd
                                        
                                            GET /wp-content/plugins/variation-swatches-for-woocommerce/assets/css/frontend.css?ver=20200222 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 17 Sep 2022 04:55:51 GMT
Server: Apache
Last-Modified: Thu, 24 Sep 2020 06:26:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 727
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   727
Md5:    94b0b54d0dc03012820339abed20ecf5
Sha1:   965f7c60588ec83be9f85e2beb0786747377c309
Sha256: 86e2d4884878cb3bcd61e3a8b2d07fc48e9902e0eb122639f8f197b57e2e1efe
                                        
                                            GET /wp-content/themes/sober/css/bootstrap.css?ver=3.3.6 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 17 Sep 2022 04:55:51 GMT
Server: Apache
Last-Modified: Tue, 18 Dec 2018 12:49:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 21293
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (540)
Size:   21293
Md5:    486756c49cb717da38606814c67d8a0f
Sha1:   45bd1bfde8ac20780a444e9fb2ec08afa44c6413
Sha256: aca9928dcaef2ef70235699d87594ad24f94dbe11f7e6c2556e743a3a00d6c71
                                        
                                            GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:51 GMT
Server: Apache
Last-Modified: Fri, 17 May 2019 17:08:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 33776
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (31997)
Size:   33776
Md5:    acf54950dfb2d6981e941d733b377591
Sha1:   340de686aecd9e6246a32c71e7de63ed69229ceb
Sha256: d97f66caea5260bc71609f0da43ac0d937ecc09253910e5dda4c9fe4dbde20fc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js?ver=6.7.0 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:51 GMT
Server: Apache
Last-Modified: Mon, 22 Mar 2021 08:32:44 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2800
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1071)
Size:   2800
Md5:    56e285e90bf37c3fc88ba98955fb4431
Sha1:   436ea108396b45c91a656c82e32433203f376123
Sha256: cf91608d0e68cf7bc1165a6876bfb015e9f8c71823ca111e8df5d8e7f1137aba
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:51 GMT
Server: Apache
Last-Modified: Fri, 20 May 2016 06:11:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4014
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (9959)
Size:   4014
Md5:    a6c81e2f02bd04160d2de88c4e8f3559
Sha1:   e3f3c91427d785820ca97dabe738f01faf041f36
Sha256: b734d83af5da0eb627e04d3e62ce652b9eb7de19667a1b91da6b93f0ea5d7ffe

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/accordions/assets/frontend/js/scripts.js?ver=5.2.16 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:51 GMT
Server: Apache
Last-Modified: Mon, 17 May 2021 11:01:26 GMT
Accept-Ranges: bytes
Content-Length: 43
Vary: User-Agent
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   43
Md5:    d91f3cef00a21c1f34e9ec59d0e57283
Sha1:   76a0273ba69ca7a499a0578f0d63eba8e7aabb5d
Sha256: abbff281326efaaf147ef1fd2ad7bdf23c69073fb7e826b9c41cac1ebd27332e
                                        
                                            GET /wp-content/themes/sober/style.css?ver=2.1.0 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 17 Sep 2022 04:55:51 GMT
Server: Apache
Last-Modified: Wed, 05 Feb 2020 05:52:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 45331
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (587)
Size:   45331
Md5:    3423cd8b716da9d01f4f9f0c818ac9c1
Sha1:   fa20b2343252ebb74224773b7631065c6bf5a18d
Sha256: 2212f8e0d8b83788054524c2d5f92b3c7deaf0df16c1b6bbb7f123723ddd0434

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:51 GMT
Server: Apache
Last-Modified: Sun, 02 Dec 2018 23:30:11 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 38337
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (27287), with CRLF line terminators
Size:   38337
Md5:    33ad97fbd5f6d0ad97af5461cc857da3
Sha1:   a975057df83659e526059661a2dae1a5a4d23fe2
Sha256: ba0476734001e6e0808e7882a24852cf298dacac37b2beaf2c17718d2032afb2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.8.2 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:51 GMT
Server: Apache
Last-Modified: Thu, 22 Jul 2021 07:52:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1017
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (2750), with no line terminators
Size:   1017
Md5:    1b8fe2644fef57191ece9c6b91548028
Sha1:   9f6dbeab0f48032a1985662e325a7d2b02370290
Sha256: 6d8ec46817a79a5d60f41727cd986f94cdc4543092041a34d0c7c3b1d875161d
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:51 GMT
Server: Apache
Last-Modified: Thu, 22 Jul 2021 07:52:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3533
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (9172)
Size:   3533
Md5:    c5ed233484e496839d8a5c379017e476
Sha1:   2c281f9e4e88b9f64f97c20ddcb1003064705bca
Sha256: 7e7f8ed6d44a1fc906799b6c41f26575b45176b5abb8ff093bb8fe0babd7c078
                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:51 GMT
Server: Apache
Last-Modified: Sun, 02 Dec 2018 23:30:11 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 18090
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (64614), with CRLF line terminators
Size:   18090
Md5:    b300af7280cf82d31e7f0b75c128598c
Sha1:   66b506bb8254f08ffe57c2b1e42722b73464670f
Sha256: feffecee338ad546654ada73f52882c96356f6882a3e59cb540878415d77db1d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Thu, 22 Jul 2021 07:52:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 770
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1272)
Size:   770
Md5:    de79e5df89a53b4224c76e00dfdbb587
Sha1:   dfa6b1cfdc67e5039c2c0725737db2056431811c
Sha256: 26b83c52b4e5c60a0d23b5c487d25e5fa5667a7259d1f66c4589941e5f8a4cc3

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce-currency-switcher/css/front.css?ver=1.3.4.3 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Mon, 17 May 2021 11:05:11 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1029
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   1029
Md5:    c3a153d7fba98c988e1edaaee53d09bc
Sha1:   1829dae439232be7ada471b4e7b074f7c35c3ab2
Sha256: 7743427b50ea27a85a3b71387f9e47517dacb5bc9792505a8d5e44a67811a2cb
                                        
                                            GET /wp-content/plugins/cf7-redirection/js/wpcf7-redirect-script.js HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Tue, 02 Mar 2021 05:49:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 867
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text
Size:   867
Md5:    89763009613371867caebc3620f72dca
Sha1:   a5a03fe608825f76db8616b4ea598ceabdeaa61c
Sha256: c557140f351e473f4dbb5a761574edb3218cb09a3bcd0f5f4a683ac7e9c924cd

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce-google-adwords-conversion-tracking-tag/js/public/wooptpm.js?ver=1.10.4 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Mon, 17 May 2021 11:04:55 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 6927
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   6927
Md5:    af3269d489d3d01b8ea4ce181c6493a7
Sha1:   e947161b445ca6e560fe0f46e3bc2edd8a8a4fc2
Sha256: ac4fa79ba7c45bf11916b2e782e965b2f18026e325b35996af1017ca535c1891

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.6 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Thu, 06 Feb 2020 06:34:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3993
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   3993
Md5:    179ff7e7ba061cb009f29849fc15f071
Sha1:   f824ebc474c27b208137b68aa51d5d0d2b3a89e9
Sha256: b889c73e9da05e33847d3ab6f1f98c172204c3e4cb2e4832863695f34e2270de
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Thu, 22 Jul 2021 07:52:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 981
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1680)
Size:   981
Md5:    2238631cf6be3be50e2ab84374f6381d
Sha1:   f1525686e4d6b7d39727aaf30db49ac9b2bc3fa8
Sha256: 8e46659318c5590dc20944c2d2464b93a06a89e0a4f7353112da4cf06bc213e6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1_FvsUZiZQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mail.tuffashop.com.au
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Sep 2022 21:09:41 GMT
expires: Tue, 12 Sep 2023 21:09:41 GMT
cache-control: public, max-age=31536000
age: 373571
last-modified: Mon, 18 Jul 2022 19:24:04 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 9840, version 1.0\012- data
Size:   9840
Md5:    afda6e429fd299054de28e1f157c683d
Sha1:   c1847d6f3df5fe11d5e96fd5e6a59b73ff7ed96b
Sha256: 81cd29d1413ecf75834fb3ce1da572fe5c39e53b22c61f5dafec5b14ed4ee12e
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.8.2 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Thu, 22 Jul 2021 07:52:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 619
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1472), with no line terminators
Size:   619
Md5:    e5cffe0bdc96a56424c5fb6c192274d0
Sha1:   53ee24a03f243c428a4460dac7da2862ce1800e8
Sha256: 5ab78456ac52f7b3e26e317fa2816d25fe113cf1f0af71adac416773c9e20851
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.8.2 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Thu, 22 Jul 2021 07:52:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1042
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (2940), with no line terminators
Size:   1042
Md5:    e02277bbb27796df7a21fbecacff427e
Sha1:   89ae0705044f9532359034bfb9a6c462d9fc07a9
Sha256: 2176445638719be847e19c307532a59b3d31ec744268b6e261dd324d9913f1d4
                                        
                                            GET /wp-includes/js/underscore.min.js?ver=1.8.3 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Wed, 28 Apr 2021 08:39:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5634
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (16010), with no line terminators
Size:   5634
Md5:    070849fee3018d72378b08358e03f4f6
Sha1:   14e74888118980062ece9e51760b4bad2604be9a
Sha256: cc86a0410d67e3de5271bde6263019bdc6e9f1b063370c010a8282f9ea4f3e5c
                                        
                                            GET /wp-includes/js/wp-util.min.js?ver=5.2.16 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Wed, 28 Apr 2021 08:39:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 563
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1042), with no line terminators
Size:   563
Md5:    f0e45443d3b88766b9df4187bf9a1c51
Sha1:   66b78fc82ff127c78c5565d6ea557c8c58fef3de
Sha256: 44cfadc6574891ab7a9b2aadfc6f6fcb33b7f565854644652db2545137f2f0b2
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=3.8.2 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Thu, 22 Jul 2021 07:52:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3488
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (13225), with no line terminators
Size:   3488
Md5:    c4a41e864bd7789c4d182c9c5fafbaa0
Sha1:   9d22a90cf586d8f342fcc48fba0e0953bff259b9
Sha256: 9b2270f7b3708bca898f4866400780ecf0599c652363c6687d849e76dd5ca6f6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/sober/js/sticky-kit.min.js?ver=1.1.3 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Tue, 18 Dec 2018 12:49:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1411
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (546)
Size:   1411
Md5:    5e4b292edc9592e49efdfd287423b2d6
Sha1:   41532059d1029d9d47780e1a44c4cadf6d1cfc08
Sha256: d9d4646d51ba646692ff44ed932b41cf62cdd9ac7bea061299d7569d5d292f74
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/zoom/jquery.zoom.min.js?ver=1.7.21 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Thu, 22 Jul 2021 07:52:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1176
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (2550)
Size:   1176
Md5:    55c40b1da51c9f88b684a66c0b0b380e
Sha1:   194c90b6240f0430c5786787c0cf532f987a1ddd
Sha256: 71494f2339302138d11cc5b6bc73ea7d74c6ec4632a33858e16d516552ce2707

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/imagesloaded.min.js?ver=3.2.0 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Wed, 23 May 2018 10:05:31 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2551
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (7996)
Size:   2551
Md5:    38b694df325f3d381d4d839d33cfb59c
Sha1:   82c4d20653dc93197b17e84a7b1274dac4f49588
Sha256: e220e69ff51b9e853e6206a7d3204c8129e175141f5dd4e93e67a72fefdaa3b5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /css?family=Poppins%3A300%2C400%2C500%2C600%2C700%7COswald&subset=latin%2Clatin-ext&ver=5.2.16 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 17 Sep 2022 04:55:50 GMT
date: Sat, 17 Sep 2022 04:55:50 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32010)
Size:   10396
Md5:    750287f328511910fd0ac3a560b387c3
Sha1:   a088f9aeb12a3528057c710ca99627cf6514d0b8
Sha256: 8078d0770205e8789194a9b195f0aeddef0b55a269edcdee9fa2d5ac07a62cf6
                                        
                                            GET /wp-content/themes/sober/js/owl.carousel.min.js?ver=2.2.1 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Tue, 18 Dec 2018 12:49:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 10926
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (32000)
Size:   10926
Md5:    694074c04c049ebfa9fab7d7b5363875
Sha1:   613568d2ddb188144906c19beab972314bfde12d
Sha256: 3c721f2669ccc0655d376af0d8b3510d111516b179ac678edd2802c28fa928ab

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/sober/js/jquery.fitvids.js?ver=1.1 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Tue, 18 Dec 2018 12:49:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1298
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document, ASCII text
Size:   1298
Md5:    31bd6f103266422712d7f21fd221259c
Sha1:   478fe2a563f8edd20468c878ad0c8dabcc506159
Sha256: 4f7cd006453252967505df8f72f72333de4ba5b2734773aaeca3f250fcf0b5e1
                                        
                                            GET /wp-content/themes/sober/js/simple-scrollbar.min.js?ver=0.2.1 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Tue, 18 Dec 2018 12:49:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 840
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1986), with no line terminators
Size:   840
Md5:    53eb21f6e6822a3db31b1071bce20b76
Sha1:   587410e0af86271fe33b716c8388ad4171969dae
Sha256: ac3edcc3b2621f0ed9235351979047c0d189aa707e05b7083ac7a353ad473eab
                                        
                                            GET /wp-content/themes/sober/js/script.js?ver=2.1.0 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Tue, 18 Dec 2018 12:49:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 12846
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   12846
Md5:    c4a52c64d5e91ff055f2e1190e634303
Sha1:   ada879a773c02f5fb981386a535e3821ad02789c
Sha256: 75e738ecdb99e838852f09a52d33e2a69bb86b15ffffef63b3f107dbd4a45590

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce-google-adwords-conversion-tracking-tag/js/public/google-ads.js?ver=1.10.4 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Mon, 17 May 2021 11:04:55 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 951
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   951
Md5:    ffd9b9a386a7736c3fa8adb4f159e900
Sha1:   8ab663eaf6cdac10676d03b7975c68f815ff227d
Sha256: fd8d58ce4b878ce0cbd2155121afaebd6421d234fc01888211b54a22fccc0af3

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Wed, 28 Apr 2021 08:39:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1811
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (3704)
Size:   1811
Md5:    8681c8c59fe450daeacc2f499e351dfe
Sha1:   1bedefb4c8fa62628816eaeea85677d637a6e4e0
Sha256: d2160a6f66510d16512fd1fd387aee7d3763f0b4799273125faa777128dc5430

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Wed, 28 Apr 2021 08:39:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2543
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (6603)
Size:   2543
Md5:    ec6dcd00af82068551b3a60045c86824
Sha1:   140ac89dc8ae6ffebecb269e0ebd88bfbc0c2686
Sha256: 1a9a7a2329ce40bd74814e4f6acaddce722e9b53187fb109f39e793ffe50c46e
                                        
                                            GET /wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Wed, 28 Apr 2021 08:39:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 991
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (2927)
Size:   991
Md5:    0a9656f23585bbaa3376e904fa025a7f
Sha1:   37b57e7fa8a0ab85bc257573847acc1b4fa94dcc
Sha256: 4c9c329df2e0b3306dd4838ce24ae58eb441bcf4c6067899a97323c8d688c59d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/ui/slider.min.js?ver=1.11.4 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Wed, 28 Apr 2021 08:39:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3053
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (10694)
Size:   3053
Md5:    10aa8ebc5880a6468df6f5fc1e6e6382
Sha1:   26c55c30b7ab074ba81a638125fd256108df0591
Sha256: 4c64c3fa0a59f218045cc60a960df7e37c7e0157cc886fb0758c200bbe02ac95
                                        
                                            GET /wp-includes/js/jquery/jquery.serialize-object.js?ver=0.2 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Thu, 20 Jan 2011 23:09:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 443
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   443
Md5:    43e4f66776ba964a2ad3b223a7f0daa8
Sha1:   7291860c4a339029d87738369cbab0b26d2796f6
Sha256: 83cd0d9e81953bfc26f3fcfbd1dc8ef67cf6e514948b2d82e977f172710c1a61

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/soo-product-filter/assets/js/frontend.js?ver=20160623 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Sun, 02 Dec 2018 23:30:13 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1906
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1906
Md5:    6abcd5a812b6e2a18ca23cb0acea6aad
Sha1:   788238953f2a91d90ebe1c5e473a49ba02a65cdb
Sha256: 4db79d6ac3329e697a9b213a7e5d9587f2ae8869326ba72f1c72127f19930e84
                                        
                                            GET /wp-content/plugins/soo-wishlist/assets/js/wishlist.js?ver=1.1.0 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Sun, 02 Dec 2018 23:30:14 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1085
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1085
Md5:    9c9b149e623f88d52542f97889daabb7
Sha1:   ab1f860159b89937d2a700e74ad8ac22875f32b1
Sha256: 36db7bf909358b6693639c8d8a41b2e8860ab5d9298fd2ad7f94d75c67d97dcc
                                        
                                            GET /wp-content/plugins/variation-swatches-for-woocommerce/assets/js/frontend.js?ver=20200317 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Thu, 24 Sep 2020 06:26:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 896
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   896
Md5:    4f55d100029dd13159cacd31f2f7e127
Sha1:   be01d00f8a1048a95e3c49edcf57b5ad63cc809e
Sha256: b51963a5cdbe6b90e8e3903aac1e0ba9a2a2ad1a65b92173f710ad2f3ab8cfe2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/sober-addons/assets/js/jquery.countdown.js?ver=2.0.4 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Tue, 18 Dec 2018 13:46:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2590
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   2590
Md5:    8305d5bf3851fb68c5eed12fe107e104
Sha1:   9c8012e445eb8dcbf7d9c824765ed744645b714d
Sha256: 6361ab2509bae5dc1098ce8b72e4aceb7b35f04377a34ec09e813400a3713b10

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/sober-addons/assets/js/circle-progress.js?ver=1.1.3 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Tue, 18 Dec 2018 13:46:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3668
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   3668
Md5:    54e429a820d43365cd06568539ae4df9
Sha1:   6502a89750956d899911354dce2f2186fb3828dc
Sha256: 72721096dc32fab7ec5188964fc0230af34fdd28d786f160f8f2abff1eb58306

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/sober-addons/assets/js/shortcodes.js?ver=20160725 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Tue, 18 Dec 2018 13:46:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3355
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   3355
Md5:    9455a87fe0c3c6a263225295d9a0df9b
Sha1:   a7a41049c5181473b5bc2f362d46e00a171be550
Sha256: b877eff2632fd6445ce070d2cd99a2cb32ed2bcd8dc37fe5e3d1df349e5936e9

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/wp-embed.min.js?ver=5.2.16 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Wed, 28 Apr 2021 08:39:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 739
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1391), with no line terminators
Size:   739
Md5:    60d8829560031a011771efa2f39708af
Sha1:   a4689c3b70f773deb896eec78028e0902ef15097
Sha256: a0176bd4cc53bd2e920b0dfd10f56d2a4a3820d671539414ef4b3e2b3e50b9b7

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/jquery-ui-touch-punch/jquery-ui-touch-punch.min.js?ver=3.8.2 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Thu, 22 Jul 2021 07:52:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 596
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (1090)
Size:   596
Md5:    2f180f38e80c18ed2e494aeaf2b60ec9
Sha1:   e5c943d63d89efbf970d145eb95c6498b50d026e
Sha256: f11089e0f2e6cbc7fc0597601c7dfbb6c0fee6fad5dbdcfe40b9076c4d95b6e2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce-currency-switcher/js/price-slider_33.js?ver=1.3.4.3 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Mon, 17 May 2021 11:05:11 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1025
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   1025
Md5:    7a84ecc900989ca5b41c5dd2b7c8faf8
Sha1:   c53789e1da8442dc407ce4a49b194cadee56804d
Sha256: ca0faa5c6bbba3e6b56df855c5e7aefd362175f893340dab270841f5a4869968

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce-currency-switcher/js/jquery.ddslick.min.js?ver=1.3.4.3 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Mon, 17 May 2021 11:05:11 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2373
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document, Unicode text, UTF-8 text, with very long lines (7149), with CRLF line terminators
Size:   2373
Md5:    55cb6402937f77ad558a6514e74ad068
Sha1:   4f29961ac8dd382ba3cae536f728e7cdd4b4b03d
Sha256: 240e41349f90e2c0692fcacddd3d9231e99310bfcf09e0989f97bbfade0f2c85

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce-currency-switcher/js/front.js?ver=1.3.4.3 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Mon, 17 May 2021 11:05:11 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4305
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   4305
Md5:    54994c151d6b0cc78a18c5b3c5f1af8f
Sha1:   e44263bd71c5c1cd8e5c09ea2c0067b907896761
Sha256: 473bf809faf74faae78265a5293a5ce971cdb975672a82f2b61e0b3fbdfe88b1

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2018/12/T_LOGO.png HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 17 Sep 2022 04:55:53 GMT
Server: Apache
Last-Modified: Thu, 20 Jun 2019 06:57:14 GMT
Accept-Ranges: bytes
Content-Length: 7641
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 1303 x 232, 8-bit colormap, non-interlaced\012- data
Size:   7641
Md5:    a13d4401755d4cfaf243298bfc2e1164
Sha1:   0c97ba9214d7fddccefe6a80b42ab593c91dc33a
Sha256: 5ed1d42a88cd59a1933b3dfa990506aee6b87c19d92a70c2c19e570162d297cb
                                        
                                            GET /wp-content/uploads/2018/06/TUFFA.png HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 17 Sep 2022 04:55:53 GMT
Server: Apache
Last-Modified: Fri, 01 Jun 2018 05:17:52 GMT
Accept-Ranges: bytes
Content-Length: 1889
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 109 x 53, 8-bit/color RGBA, non-interlaced\012- data
Size:   1889
Md5:    09c5d53a92e354c608b495903c800071
Sha1:   1aa81621c24a578ae9b3c5d78080c06c5511c0c8
Sha256: c255e6afe548509b990b7807c5e28eac8f8c3ae07cf410c074ae6005f6898b90
                                        
                                            POST /?wc-ajax=get_refreshed_fragments HTTP/1.1 
Host: mail.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://mail.tuffashop.com.au
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Cookie: _gcl_au=1.1.773792004.1663390534
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/json; charset=UTF-8
                                        
Date: Sat, 17 Sep 2022 04:55:53 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 454
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  JSON data\012- HTML document, ASCII text, with very long lines (901), with no line terminators
Size:   454
Md5:    524117aad090767827cf5e6ef6de117a
Sha1:   12322b6e0fd883f637a5c303d0ba4387677a9ab2
Sha256: 9d6309bb9422c327af84828b62e0c93746b77906659d97bc6e942f378fbc8907

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mail.tuffashop.com.au
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:31:02 GMT
expires: Thu, 14 Sep 2023 19:31:02 GMT
cache-control: public, max-age=31536000
age: 206691
last-modified: Wed, 27 Apr 2022 16:51:55 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 7840, version 1.0\012- data
Size:   7840
Md5:    8d91ec1ca2d8b56640a47117e313a3e9
Sha1:   a9e9bafe64666f4595051a0e895b47a5fa39e67e
Sha256: 78bc3aa78faec288bbb3bf26c9a0fa4eb67b1e69da94a17233c5cab60525efdb
                                        
                                            POST /?wc-ajax=get_refreshed_fragments HTTP/1.1 
Host: mail.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://mail.tuffashop.com.au
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Cookie: _gcl_au=1.1.773792004.1663390534
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/json; charset=UTF-8
                                        
Date: Sat, 17 Sep 2022 04:55:53 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 454
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  JSON data\012- HTML document, ASCII text, with very long lines (901), with no line terminators
Size:   454
Md5:    524117aad090767827cf5e6ef6de117a
Sha1:   12322b6e0fd883f637a5c303d0ba4387677a9ab2
Sha256: 9d6309bb9422c327af84828b62e0c93746b77906659d97bc6e942f378fbc8907

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/fonts/fontawesome-webfont.ttf?v=4.7.0 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mail.tuffashop.com.au
Connection: keep-alive
Referer: https://www.tuffashop.com.au/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: font/ttf
                                        
Date: Sat, 17 Sep 2022 04:55:53 GMT
Server: Apache
Last-Modified: Tue, 18 Dec 2018 13:46:31 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  data
Size:   28112
Md5:    26d9ea45c9c420f614e94bc41047be69
Sha1:   f91ee4f82076d814ca0fb41a43fe6b67f8c5c619
Sha256: c9b8fbab63c3f9b5e16512cf270e2547e852e5f798dc90b01327a30ffb72d0dd

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 17 Sep 2022 04:55:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /pagead/conversion_async.js HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sat, 17 Sep 2022 04:55:54 GMT
expires: Sat, 17 Sep 2022 04:55:54 GMT
cache-control: private, max-age=3600
etag: 3080337328058561381
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 15693
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1654)
Size:   15693
Md5:    890f716858b5f72587e47c5eca121cb5
Sha1:   91871a0acd9a0ab644d51036bb5ca0c3bdc5e687
Sha256: 7a3629e375468328b3fb25e1a6cc5749604f09099e8d2109f366e7e0226aee4a
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 17 Sep 2022 04:55:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /wp-admin/admin-ajax.php HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 28
Origin: https://mail.tuffashop.com.au
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/json; charset=UTF-8
                                        
Date: Sat, 17 Sep 2022 04:55:53 GMT
Server: Apache
X-Robots-Tag: noindex
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Referrer-Policy: strict-origin-when-cross-origin
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-transform, no-cache, no-store, must-revalidate
Set-Cookie: tk_ai=woo%3AYasLjRwVU9modyx1daQ9cSa8; path=/
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 181
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   181
Md5:    49230da711065103f7aa09be8512a937
Sha1:   14f3707b8e30e5978786c066d6adabd765d85e27
Sha256: e552150e897a3baf64888fce7920147a8d88576827c430567b4cce2065b01292

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2018/12/cropped-TUFFA_CUFF_PANTS_BACK_web-32x32.jpg HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Cookie: _gcl_au=1.1.773792004.1663390534
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 17 Sep 2022 04:55:54 GMT
Server: Apache
Last-Modified: Mon, 11 Feb 2019 03:07:19 GMT
Accept-Ranges: bytes
Content-Length: 984
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 32x32, components 3\012- data
Size:   984
Md5:    45b0e9dd7c615c586d82b12810609836
Sha1:   72179ef74b7f77b52a03f7974baf927c3eb5ac41
Sha256: 1d4e5d8864b7682981e5d0c3b9632beb501f0e502ec6c21a77991d7ae6b5c95e
                                        
                                            GET /wp-content/uploads/2018/12/cropped-TUFFA_CUFF_PANTS_BACK_web-192x192.jpg HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Cookie: _gcl_au=1.1.773792004.1663390534
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 17 Sep 2022 04:55:54 GMT
Server: Apache
Last-Modified: Mon, 11 Feb 2019 03:07:19 GMT
Accept-Ranges: bytes
Content-Length: 5457
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 192x192, components 3\012- data
Size:   5457
Md5:    07eb1f8f6ee8acae44814dee3c135060
Sha1:   6d14e1f783490bbfd7dfb22f1a99fcfe45e073b4
Sha256: 46dfbbbf6398be7c706a39718a53a9b10558bc27398dcea67e5cc302684a7255
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 17 Sep 2022 04:55:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 17 Sep 2022 04:55:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/uploads/2018/05/BG.jpg HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Cookie: _gcl_au=1.1.773792004.1663390534
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 17 Sep 2022 04:55:53 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-transform, no-cache, no-store, must-revalidate
Link: <https://www.tuffashop.com.au/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 30653
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive


--- Additional Info ---
Magic:  data
Size:   25398
Md5:    c7f1394577a72fa5b87717837fb61577
Sha1:   fdcafdb3cc36265b5200ca179742ef20577b5367
Sha256: fca00314b0b78411654792f18dadc51b0bb9de4f9a8740b86d828af4bd686cc7
                                        
                                            GET /pagead/viewthroughconversion/617029512/?random=1663390537210&cv=9&fst=1663390537210&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa9e0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fmail.tuffashop.com.au%2Fusps%2Fhome.php%3Fip%3D80.167.121.81%26countrycode%3Ddk%26os%3Dmac%2Bos%2Bx&tiba=Page%20not%20found%20-%20Tuffa%20Shop&auid=773792004.1663390534&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.34
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 17 Sep 2022 04:55:54 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1102
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 17-Sep-2022 05:10:54 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2432), with no line terminators
Size:   1102
Md5:    6a39b1c03f1033efc16e87a3dc3a45a2
Sha1:   485fd8af33c6cf94a19d4e61f35aaf74686349c8
Sha256: 84f47fc8d53c7d9e619acb8592739f42ad5c61b54402f25fffce830a3af3b1f3
                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-132659890-1&cid=1276878711.1663390537&jid=1833481378&gjid=1398742374&_gid=476638763.1663390537&_u=aGDAAUIpAAAAAC~&z=2091349167 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://mail.tuffashop.com.au
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.251.1.156
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://mail.tuffashop.com.au
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 17 Sep 2022 04:55:54 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  very short file (no magic)
Size:   1
Md5:    c4ca4238a0b923820dcc509a6f75849b
Sha1:   356a192b7913b04c54574d18c28d46e6395428ab
Sha256: 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-132659890-1&cid=1276878711.1663390537&jid=1741464419&gjid=1933885246&_gid=476638763.1663390537&_u=YEBAAUIoAAAAAC~&z=2042000452 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://mail.tuffashop.com.au
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.251.1.156
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://mail.tuffashop.com.au
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 17 Sep 2022 04:55:54 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  very short file (no magic)
Size:   1
Md5:    c4ca4238a0b923820dcc509a6f75849b
Sha1:   356a192b7913b04c54574d18c28d46e6395428ab
Sha256: 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 17 Sep 2022 04:55:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 17 Sep 2022 04:55:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 17 Sep 2022 04:55:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /pagead/1p-user-list/617029512/?random=1663390537207&cv=9&fst=1663387200000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa9e0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fmail.tuffashop.com.au%2Fusps%2Fhome.php%3Fip%3D80.167.121.81%26countrycode%3Ddk%26os%3Dmac%2Bos%2Bx&tiba=Page%20not%20found%20-%20Tuffa%20Shop&async=1&fmt=3&is_vtc=1&random=3657531773&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 17 Sep 2022 04:55:54 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /pagead/1p-user-list/617029512/?random=1663390537210&cv=9&fst=1663387200000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa9e0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fmail.tuffashop.com.au%2Fusps%2Fhome.php%3Fip%3D80.167.121.81%26countrycode%3Ddk%26os%3Dmac%2Bos%2Bx&tiba=Page%20not%20found%20-%20Tuffa%20Shop&async=1&fmt=3&is_vtc=1&random=3228557754&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 17 Sep 2022 04:55:54 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 17 Sep 2022 04:55:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-admin/admin-ajax.php?action=wooptpm_get_cart_items HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mail.tuffashop.com.au
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/json; charset=UTF-8
                                        
Date: Sat, 17 Sep 2022 04:55:54 GMT
Server: Apache
X-Robots-Tag: noindex
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Referrer-Policy: strict-origin-when-cross-origin
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-transform, no-cache, no-store, must-revalidate
Set-Cookie: tk_ai=woo%3AOnHF7nEQY6XXd6mruq1NT5cI; path=/
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 22
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   22
Md5:    061faf60a30dde2f20ba8f454c3020de
Sha1:   1940a26a9be338cb36f5b50a1d638ef36b124d51
Sha256: 21947b02ead137acb20e602e9448c7c453b2836d1a755aadd5e1c61ecd2eb034
                                        
                                            GET /wp-content/fonts/oswald/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUZiYySUhiCnAw.woff HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mail.tuffashop.com.au
Connection: keep-alive
Referer: https://mail.tuffashop.com.au/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Fri, 22 Jul 2022 01:34:35 GMT
Accept-Ranges: bytes
Content-Length: 13268
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/sober/fonts/SofiaProLight-webfont.woff2 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mail.tuffashop.com.au
Connection: keep-alive
Referer: https://www.tuffashop.com.au/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Tue, 18 Dec 2018 12:49:53 GMT
Accept-Ranges: bytes
Content-Length: 21428
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mail.tuffashop.com.au
Connection: keep-alive
Referer: https://www.tuffashop.com.au/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Date: Sat, 17 Sep 2022 04:55:52 GMT
Server: Apache
Last-Modified: Tue, 18 Dec 2018 13:46:31 GMT
Accept-Ranges: bytes
Content-Length: 77160
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
                                        
                                            GET /wp-content/themes/sober/fonts/SofiaProLight-webfont.ttf HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mail.tuffashop.com.au
Connection: keep-alive
Referer: https://www.tuffashop.com.au/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: font/ttf
                                        
Date: Sat, 17 Sep 2022 04:55:53 GMT
Server: Apache
Last-Modified: Tue, 18 Dec 2018 12:49:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 27050
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/sober/fonts/SofiaProLight-webfont.woff HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mail.tuffashop.com.au
Connection: keep-alive
Referer: https://www.tuffashop.com.au/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Date: Sat, 17 Sep 2022 04:55:53 GMT
Server: Apache
Last-Modified: Tue, 18 Dec 2018 12:49:53 GMT
Accept-Ranges: bytes
Content-Length: 26820
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/fonts/fontawesome-webfont.woff?v=4.7.0 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mail.tuffashop.com.au
Connection: keep-alive
Referer: https://www.tuffashop.com.au/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Date: Sat, 17 Sep 2022 04:55:53 GMT
Server: Apache
Last-Modified: Tue, 18 Dec 2018 13:46:31 GMT
Accept-Ranges: bytes
Content-Length: 98024
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing