Report - australiabay.com.au/fox/login.php?cmd=login_submit&id=128a45aa0de70d1c39ebb7a7e309f83d128a45aa0de70d1c39ebb7a7e309f83d&session=128a45aa0de70d1c39ebb7a7e309f83d128a45aa0de70d1c39ebb7a7e309f83d

Report Overview

Submitted URL
australiabay.com.au/fox/login.php?cmd=login_submit&id=128a45aa0de70d1c39ebb7a7e309f83d128a45aa0de70d1c39ebb7a7e309f83d&session=128a45aa0de70d1c39ebb7a7e309f83d128a45aa0de70d1c39ebb7a7e309f83d
IP
50.87.150.218
ASN
#46606 UNIFIEDLAYER-AS-1
Submitted
2023-02-02 22:08:42
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
40

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
australiabay.com.au	unknown	2016-11-18T12:15:10Z	2023-02-25T14:14:49Z	522 B	614 B	50.87.150.218
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	69 kB	34.120.237.76
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	3.4 kB	8.9 kB	23.36.76.226
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	35.162.173.86
www.australiabay.com.au	unknown	2016-11-18T12:15:10Z	2023-02-25T14:14:49Z	21 kB	437 kB	50.87.150.218
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	343 B	700 B	142.250.74.131
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-13T07:36:03Z	810 B	527 B	142.250.74.110

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-02-02 22:09:00	high	Client IP	50.87.150.218	ET PHISHING Generic Phishkit Activity (GET)

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-02-02	medium	www.australiabay.com.au/login	Phishing
2023-02-02	medium	www.australiabay.com.au/js/jquery-migrate-3.0.0.min.js	Phishing
2023-02-02	medium	www.australiabay.com.au/js/slick/slick.min.js	Phishing
2023-02-02	medium	www.australiabay.com.au/js/masonry.pkgd.min.js	Phishing
2023-02-02	medium	www.australiabay.com.au/js/mods.js	Phishing
2023-02-02	medium	www.australiabay.com.au/themes/eight/js/theme.js	Phishing
2023-02-02	medium	www.australiabay.com.au/js/functions.js	Phishing
2023-02-02	medium	www.australiabay.com.au/js/bootbox.min.js	Phishing
2023-02-02	medium	www.australiabay.com.au/js/global.js	Phishing
2023-02-02	medium	www.australiabay.com.au/js/fontawesome/fa-v4-shims.min.js	Phishing
2023-02-02	medium	www.australiabay.com.au/js/cookie.js	Phishing
2023-02-02	medium	www.australiabay.com.au/js/popper.min.js	Phishing
2023-02-02	medium	www.australiabay.com.au/css/flag-icons/flags/4x3/au.svg	Phishing
2023-02-02	medium	www.australiabay.com.au/js/fontawesome/fontawesome-all.min.js	Phishing
2023-02-02	medium	www.australiabay.com.au/js/bootstrap-datetimepicker/js/tempusdominus-bootstrap-4.js	Phishing
2023-02-02	medium	www.australiabay.com.au/js/jquery.min.js	Phishing
2023-02-02	medium	www.australiabay.com.au/js/bootstrap.min.js	Phishing
2023-02-02	medium	www.australiabay.com.au/js/magnific-popup/jquery.magnific-popup.js	Phishing
2023-02-02	medium	www.australiabay.com.au/js/moment/moment-with-locales.min.js	Phishing
2023-02-02	medium	www.australiabay.com.au/js/feather.min.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (23)

	URL	Size	First Seen	Last Seen
	www.australiabay.com.au/js/moment/moment-with-locales.min.js	327 kB	2023-03-13	2023-03-26
Pretty URL www.australiabay.com.au/js/moment/moment-with-locales.min.js IP 50.87.150.218 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:05:03 Last Seen2023-03-26 09:29:43 Times Seen3 Hash c3bc1ae2db5869e870d5c429e12e454a cc0c5ef62846180a4ec924a2a4249a237e20acb9 2700818b0dcb7055a05b218fd0b25db8d467f9191ee35caee7aad0143611f9a3 Loading...

	www.australiabay.com.au/login	397 B	2023-03-13	2023-03-26
Pretty URL www.australiabay.com.au/login IP 50.87.150.218 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:05:03 Last Seen2023-03-26 09:29:43 Times Seen3 Hash 7aa38f80d83eab3dad6590aba902a3ef 2c509d9435515125107296b99c4ad583333c272d c9ca1b51aca53821d3778c3f7d0c34c3591976555e745b712b8a1e1f2acf8ba4 Loading...

	www.australiabay.com.au/js/masonry.pkgd.min.js	25 kB	2023-03-13	2023-03-26
Pretty URL www.australiabay.com.au/js/masonry.pkgd.min.js IP 50.87.150.218 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:05:03 Last Seen2023-03-26 09:29:43 Times Seen3 Hash 311e1f0f339eb2a9ee1e9bb1b97a857e b9c25c6aadc266eb559036ba2d04e61dfcc4228f 74ccc6ab2622784bb38dbc71ecee34088d69eb2f29a13fc936487b34b3a5fc28 Loading...

	www.australiabay.com.au/js/fontawesome/fa-v4-shims.min.js	16 kB	2023-03-13	2023-03-26
Pretty URL www.australiabay.com.au/js/fontawesome/fa-v4-shims.min.js IP 50.87.150.218 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:05:03 Last Seen2023-03-26 09:29:43 Times Seen3 Hash 083a1efb18f9209c0c3fda0d0ec9dba6 cc136df5f3cc4193aa66d170b9c46fc37f0b11b4 1378af4e5d8e72b8d1598b293f9c2444b27082244c4f60e00213ee6c089e6e34 Loading...

	www.australiabay.com.au/js/bootstrap-datetimepicker/js/tempusdominus-bootstrap-4.js	117 kB	2023-03-13	2023-03-26
Pretty URL www.australiabay.com.au/js/bootstrap-datetimepicker/js/tempusdominus-bootstrap-4.js IP 50.87.150.218 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:05:03 Last Seen2023-03-26 09:29:43 Times Seen3 Hash adc855f7e9803e97f94b480611045282 7ddd7e7084fa93cfc90139e18b97654be0bdce23 6c7baab83576dc6fe9e1de084ce7f887e531b71015e38488914bc4e06f1fc30f Loading...

	www.australiabay.com.au/js/jquery.min.js	88 kB	2023-03-13	2023-03-26
Pretty URL www.australiabay.com.au/js/jquery.min.js IP 50.87.150.218 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:05:03 Last Seen2023-03-26 09:29:43 Times Seen3 Hash 3ab6318354346f34c48cd2fae4b7f6e2 480c9d48de4867630f587ea516ba19751bc839bf ec0be82bd6d8b6138225dd48f991f958fe87831dba5949d5552986ba25af99f6 Loading...

	www.australiabay.com.au/js/slick/slick.min.js	44 kB	2023-03-13	2023-03-26
Pretty URL www.australiabay.com.au/js/slick/slick.min.js IP 50.87.150.218 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:05:03 Last Seen2023-03-26 09:29:43 Times Seen3 Hash 12f889784e9854f9538d2138d975bd71 6786873f47184f8bfa81ee8429c3d0e204ec8be9 68b97081ab632eef565a22ab26966b202d0650d94dbc9994060c1bfe6a67ca93 Loading...

	www.australiabay.com.au/js/functions.js	24 kB	2023-03-13	2023-03-26
Pretty URL www.australiabay.com.au/js/functions.js IP 50.87.150.218 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:05:03 Last Seen2023-03-26 09:29:43 Times Seen3 Hash d1d1f3dee5ff3e23c711c2159746e949 6d564aa319ea8a71328372e1fb71092afda1d2cf 921458736fb70e32cb8222819ae15f1c4ac112e3a7c87c04836565b3c846a3b7 Loading...

	www.australiabay.com.au/js/global.js	12 kB	2023-03-13	2023-03-26
Pretty URL www.australiabay.com.au/js/global.js IP 50.87.150.218 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:05:03 Last Seen2023-03-26 09:29:43 Times Seen3 Hash aa65fb66195b6d3b5ed5462edab5c5d1 6da0562a88002e37b83eebdd3ebc83804e7108d3 1e6ff54729964f0c91e74bb1b26bff5d963104d98fdd691c2a3b6ce0a7d42eac Loading...

	www.australiabay.com.au/login	687 B	2023-03-13	2023-03-26
Pretty URL www.australiabay.com.au/login IP 50.87.150.218 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:05:03 Last Seen2023-03-26 09:29:43 Times Seen3 Hash 31a65e6baacfa1dbcb4a2b3d4e317b4b 789b0c0cbc42e85e530e678e503a8a18cb8649a7 4c48439f40e78dd523cf8c046642c12030b852486c609afbc1aab863e21fe715 Loading...

	www.australiabay.com.au/login	39 B	2023-03-13	2023-10-19
Pretty URL www.australiabay.com.au/login IP 50.87.150.218 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:05:03 Last Seen2023-10-19 17:45:42 Times Seen5 Hash 365cf9dea707cf78b44c33c6dbec6643 c42e930d23c3d5ff48c744edbc5fe1249b123ddc cca2d218767e91847e63dbcc8c6488898121424ae3d681089ae209e62602a962 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	www.australiabay.com.au/js/jquery-migrate-3.0.0.min.js	7.9 kB	2023-03-13	2023-03-26
Pretty URL www.australiabay.com.au/js/jquery-migrate-3.0.0.min.js IP 50.87.150.218 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:05:03 Last Seen2023-03-26 09:29:43 Times Seen3 Hash 48f9d2f6adc856a86efa32282f510cba c20a91eb02e5aac2883df0f3c820eed0d5785eb4 396a06b3f684a466e1d9e28cf184b101a2c375d96a05611ba3961ab8567acf0c Loading...

	www.australiabay.com.au/js/magnific-popup/jquery.magnific-popup.js	47 kB	2023-03-13	2023-03-26
Pretty URL www.australiabay.com.au/js/magnific-popup/jquery.magnific-popup.js IP 50.87.150.218 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:05:03 Last Seen2023-03-26 09:29:43 Times Seen3 Hash 8660e61f2b9c986748bf18a21fa44c8f b5bb464301c5e0fde99f7ff6b6326540ad819ffa fe5c14c3fcdd7b6d215404a66449f295f0b713de68a094460f35bd3de7432659 Loading...

	www.australiabay.com.au/js/bootstrap.min.js	59 kB	2023-03-13	2023-03-26
Pretty URL www.australiabay.com.au/js/bootstrap.min.js IP 50.87.150.218 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:05:03 Last Seen2023-03-26 09:29:43 Times Seen3 Hash 757077b755ed9163a1876f06f858aed2 4d08dd0c7fb81ddf1a13268cb99b7b5b8e650a18 c452ace8eb79dc3c6195c45fa0f406c0933584c00eb5580b761957cd35bd63c6 Loading...

	www.australiabay.com.au/login	18 B	2023-03-12	2024-01-09
Pretty URL www.australiabay.com.au/login IP 50.87.150.218 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 23:14:08 Last Seen2024-01-09 05:30:18 Times Seen7 Hash b39c9e3ad94e169d649ecf101bcfe508 77881a32b80d34613f6bc825a1cb7e3dbeae1408 a75eacdb9dceba36e10d9b662f8bc6dc7c863f2b66ffad494b2f75af5def0a70 Loading...

	www.australiabay.com.au/js/fontawesome/fontawesome-all.min.js	673 kB	2023-03-13	2023-03-26
Pretty URL www.australiabay.com.au/js/fontawesome/fontawesome-all.min.js IP 50.87.150.218 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:05:03 Last Seen2023-03-26 09:29:43 Times Seen3 Hash 3be15588d7ca579b7db28f9e6935e616 3d5112cb31ffd4fe77ed28711712a92e232a8750 b180dee7e7cbf60a9df3ee9d61843873a9fa4a6ec042a83c1ccb0850b47ac6ba Loading...

	www.australiabay.com.au/js/cookie.js	2.3 kB	2023-03-13	2023-03-26
Pretty URL www.australiabay.com.au/js/cookie.js IP 50.87.150.218 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:05:03 Last Seen2023-03-26 09:29:43 Times Seen3 Hash 5dda790464420cf06e55f4ba2f8bb5be bd6dec608af9ecfaade711f9c5154d95a2d09e8f ad9baa249b0e5318fb587272f920b254126c4d5e5a18b7fa6b0aed15a9b1774e Loading...

	www.australiabay.com.au/js/mods.js	792 B	2023-03-13	2023-03-26
Pretty URL www.australiabay.com.au/js/mods.js IP 50.87.150.218 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:05:03 Last Seen2023-03-26 09:29:43 Times Seen3 Hash 3597ac0e66cb8b16743e485d52ed2aa3 ca43a45da69c6a1d98da8b80cddf94dc55e7685e 88dcd802098701f2bda39ac1f53fda73762ff0c7ffbf2b60b3ea790bbfa020a8 Loading...

	www.australiabay.com.au/themes/eight/js/theme.js	2.2 kB	2023-03-13	2023-03-26
Pretty URL www.australiabay.com.au/themes/eight/js/theme.js IP 50.87.150.218 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:05:03 Last Seen2023-03-26 09:29:43 Times Seen3 Hash 2517dfc172548d7af2290f034a8548ca 1450db262df8b8f1b495333c1543f1f4874943f7 52c43d6db5b541280a13244ed504c9e4a0f1e2f358e02ddc20bd01576c1cbe39 Loading...

	www.australiabay.com.au/js/feather.min.js	73 kB	2023-03-13	2023-03-26
Pretty URL www.australiabay.com.au/js/feather.min.js IP 50.87.150.218 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:05:03 Last Seen2023-03-26 09:29:43 Times Seen2 Hash 3452eb41d5c0387ac903c397ca784f55 940fdfc8878c4b9c7e796a0ae25da3fae0dfb372 4f1bec200d50bcabc39038eaeef88767c5905a4555f9e079cdab21d15bd9d188 Loading...

	www.australiabay.com.au/js/bootbox.min.js	16 kB	2023-03-13	2023-03-26
Pretty URL www.australiabay.com.au/js/bootbox.min.js IP 50.87.150.218 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:05:03 Last Seen2023-03-26 09:29:43 Times Seen3 Hash 7fdfeb6409d17d6bc70eb7211092ae6f 41ed9110047141f9174fb39fdda102f03e7143ee 27a8821b9ef8470e5a2f7ea0570ec36f2fe145879a8492cfa5e1cb7bbcf1bf0e Loading...

	www.australiabay.com.au/js/popper.min.js	20 kB	2023-03-13	2023-03-26
Pretty URL www.australiabay.com.au/js/popper.min.js IP 50.87.150.218 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:05:03 Last Seen2023-03-26 09:29:43 Times Seen3 Hash ee02ae041afd09d4caf6d6f17a7024ec 15f2b0a0fcaeb516aecbe20db4b7c09b165a146a 3ab45b0e5e0a8a7e47989d1648f3d6b999fd73a8bddec045bbf661091769c213 Loading...

HTTP Transactions (58)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11412
Expires: Fri, 03 Feb 2023 01:18:43 GMT
Date: Thu, 02 Feb 2023 22:08:31 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ec47f9eed203ae063b9c210009de54a9
19ff156471b9cffbc2432c5b65543bdd18e36271
3974208ce1840f6c9467287b7e220379ed881d76db64939f411dbc500c103d48

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3974208CE1840F6C9467287B7E220379ED881D76DB64939F411DBC500C103D48"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9376
Expires: Fri, 03 Feb 2023 00:44:47 GMT
Date: Thu, 02 Feb 2023 22:08:31 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 21:43:32 GMT
content-type: application/json
age: 1499
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12383
Expires: Fri, 03 Feb 2023 01:34:54 GMT
Date: Thu, 02 Feb 2023 22:08:31 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: +Tp8wNCtOUapff9CqGJI8XPG6S8Q4wd8PvvWBR4RC35Wt8IUu2S3CcxxLYfgHkLj3O3mpEdDvNw=
x-amz-request-id: YRDGTBNWZA5FQGXA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 21:23:16 GMT
age: 2715
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:08:31 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

australiabay.com.au/fox/login.php?cmd=login_submit&id=128a45aa0de70d1c39ebb7a7e309f83d128a45aa0de70d1c39ebb7a7e309f83d&session=128a45aa0de70d1c39ebb7a7e309f83d128a45aa0de70d1c39ebb7a7e309f83d

50.87.150.218

301 Moved Permanently

0 B

URL HTTP/1.1
australiabay.com.au/fox/login.php?cmd=login_submit&id=128a45aa0de70d1c39ebb7a7e309f83d128a45aa0de70d1c39ebb7a7e309f83d&session=128a45aa0de70d1c39ebb7a7e309f83d128a45aa0de70d1c39ebb7a7e309f83d
IP
50.87.150.218:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

NIDS	Severity	Alert
suricata	high	ET PHISHING Generic Phishkit Activity (GET)

HTTP Headers

GET /fox/login.php?cmd=login_submit&id=128a45aa0de70d1c39ebb7a7e309f83d128a45aa0de70d1c39ebb7a7e309f83d&session=128a45aa0de70d1c39ebb7a7e309f83d128a45aa0de70d1c39ebb7a7e309f83d HTTP/1.1
Host: australiabay.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Thu, 02 Feb 2023 22:08:31 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=14218c07dd683a11d7275698eca0758a; path=/
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://www.australiabay.com.au/fox/login.php?cmd=login_submit&id=128a45aa0de70d1c39ebb7a7e309f83d128a45aa0de70d1c39ebb7a7e309f83d&session=128a45aa0de70d1c39ebb7a7e309f83d128a45aa0de70d1c39ebb7a7e309f83d
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 22:07:19 GMT
age: 73
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10229
Expires: Fri, 03 Feb 2023 00:59:01 GMT
Date: Thu, 02 Feb 2023 22:08:32 GMT
Connection: keep-alive

push.services.mozilla.com/

35.162.173.86

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.162.173.86:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: TVUPRemCG9UhlWXPcg+SFQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: cFSocn6daXO9uccV9gPlZjtZGEk=

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b301f94f266a0c60cc74849c56763e7f
7e55233241e8c5d38ff9a91e6b466f3bb38002f9
9dab3c505d0dd85c56c0ddafa49f4f849f8876f95b8554f6d7e024ff226f3eee

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9DAB3C505D0DD85C56C0DDAFA49F4F849F8876F95B8554F6D7E024FF226F3EEE"
Last-Modified: Thu, 02 Feb 2023 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21540
Expires: Fri, 03 Feb 2023 04:07:33 GMT
Date: Thu, 02 Feb 2023 22:08:33 GMT
Connection: keep-alive

www.australiabay.com.au/fox/login.php?cmd=login_submit&id=128a45aa0de70d1c39ebb7a7e309f83d128a45aa0de70d1c39ebb7a7e309f83d&session=128a45aa0de70d1c39ebb7a7e309f83d128a45aa0de70d1c39ebb7a7e309f83d

50.87.150.218

301 Moved Permanently

0 B

URL HTTP/2
www.australiabay.com.au/fox/login.php?cmd=login_submit&id=128a45aa0de70d1c39ebb7a7e309f83d128a45aa0de70d1c39ebb7a7e309f83d&session=128a45aa0de70d1c39ebb7a7e309f83d128a45aa0de70d1c39ebb7a7e309f83d
IP
50.87.150.218:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /fox/login.php?cmd=login_submit&id=128a45aa0de70d1c39ebb7a7e309f83d128a45aa0de70d1c39ebb7a7e309f83d&session=128a45aa0de70d1c39ebb7a7e309f83d128a45aa0de70d1c39ebb7a7e309f83d HTTP/1.1
Host: www.australiabay.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 301 Moved Permanently
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=4d0750f320fdf0594d8fcbb89370cae8; path=/
JqEMVqOfUserToken=P06v85mpzQFydcFdkyMgmQA6H4qOzM5MghmQb5M192KJL%2BB0rqEcxW31aJSWAFV8dOMTeMxPfIMBP5R3YVuVwIDcEHjjicgWTY0%2BntOlS0Wxy7cj6DqLPUv0HFBrCk2%2B; expires=Sat, 04-Mar-2023 22:08:33 GMT; Max-Age=2592000; path=/; HttpOnly
location: https://www.australiabay.com.au/login
content-length: 0
content-type: text/html; charset=UTF-8
date: Thu, 02 Feb 2023 22:08:33 GMT
server: Apache
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10695
Expires: Fri, 03 Feb 2023 01:06:49 GMT
Date: Thu, 02 Feb 2023 22:08:34 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10695
Expires: Fri, 03 Feb 2023 01:06:49 GMT
Date: Thu, 02 Feb 2023 22:08:34 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10695
Expires: Fri, 03 Feb 2023 01:06:49 GMT
Date: Thu, 02 Feb 2023 22:08:34 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13619
Expires: Fri, 03 Feb 2023 01:55:33 GMT
Date: Thu, 02 Feb 2023 22:08:34 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13619
Expires: Fri, 03 Feb 2023 01:55:33 GMT
Date: Thu, 02 Feb 2023 22:08:34 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11367 bytes)
Hash
395bb0f71f9eba82f5ca23548d08900f
b1fada280c7ea3eb775a6fa46ce173a51eb045f5
7443babb69532e1ee3ee779e05ad4f62de2c5bf62548bcb5702f8290a527664c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11367
x-amzn-requestid: 67702c15-9a68-46ec-95e5-efb57f08e2f1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5OGfBoAMF3Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6e-033182ba55fdd0230ad5a270;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: H1HIK6zdv95V96NxqSfHCqYtDQNPZ9NLAwG5oM5mwRr3nAUR0BPxlg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:25:11 GMT
age: 85403
etag: "b1fada280c7ea3eb775a6fa46ce173a51eb045f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.2 kB (9221 bytes)
Hash
df4a4906103a8f409c066b1cded71384
22847e3926db3e3d5f6b529297a4abe8b377c3a6
84a14b73b2cc7f4641eaa5539cbee0a109ae2b05cf88d06797a2b00c8d4f0c43

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9221
x-amzn-requestid: 209c2ad4-7a1f-4867-bf98-4ca8621111a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdTBFv5IAMFgqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc13-1627a9d603c69f7760ad013b;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kAkcQOKAvuq3k-X081MLCqon-cnQJqGryVeE0fwX0a7bcXgJlySIvg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:12:07 GMT
age: 86187
etag: "22847e3926db3e3d5f6b529297a4abe8b377c3a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.4 kB (5356 bytes)
Hash
7c823f1d6bf1c50d58eb263b85e6e37c
a7b74d11494fb3254df907e5cc1eead070d84617
b2706961eb756383e0988dfdb501dc424aea59697aedd1e4a6c294c314a31935

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5356
x-amzn-requestid: fef22c83-35a4-4990-9008-af5853f838d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BEB6oAMFczg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-68d3017555c069bc3107d150;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XyDZc0F-b0rxwoS5wvSXBuBfYE7JljMmuXseBjLOBk4HvxU5gE7Oqg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:18:55 GMT
age: 85779
etag: "a7b74d11494fb3254df907e5cc1eead070d84617"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

15 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
15 kB (15051 bytes)
Hash
6bb5b89e738516f4862491eec286bf6d
8fb46b9ca85f2c578eb2a56d0007859183e12209
7f164a37b675bf39f8473392b07a2a383397da003303965fb190fd4f455bb43b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 15051
x-amzn-requestid: 72a3f2ae-538e-40dc-9496-86c28334ba0d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc6jGTAIAMFy4A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb76-72178ed13a2e70d462785b90;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CKTfQzCvXa4oL6Lm2n8Rw_9Uhj69YfgpDTP9s0zoaX5qW1vcqWIXDA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:44:41 GMT
age: 1433
etag: "8fb46b9ca85f2c578eb2a56d0007859183e12209"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

16 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
16 kB (15857 bytes)
Hash
4bb3a6fba496d54cdbbccaf2b9600386
8e30002699e9fbf2047f9ac11a36d2175fc9c591
927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C1kqthy0eZop0UZfG3_op5xeBOVGiPLYfia4uS1l4-kchEzV6ccE9w==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 07:28:37 GMT
age: 52797
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85f439bb-b615-43ac-bd20-2466bff7ff50.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.6 kB (5561 bytes)
Hash
d910c24f5a6108cb74103cd70692a703
9fe648fa464e46d16f685aca1704f3414eda4107
5cbe5e571e62555225621440203ae24a3b8c41ac7f49b6b731bc2c94e620797f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85f439bb-b615-43ac-bd20-2466bff7ff50.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5561
x-amzn-requestid: 76ca969b-a840-4d5c-97c1-2dfd93b8f630
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdKYE3-IAMFqbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadbdb-2729fe22420bcc0563c39aff;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:38:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: E91BIw8QT3vXXQY8GIPpnRqnTZV4paZ3wynf7UjLnjeIfwS0tiC1Gg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:12:07 GMT
age: 86187
etag: "9fe648fa464e46d16f685aca1704f3414eda4107"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.australiabay.com.au/login

50.87.150.218

404 Not Found

8.3 kB

URL HTTP/2
www.australiabay.com.au/login
IP
50.87.150.218:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
8.3 kB (8332 bytes)
Hash
87c91622c17d6e5375033fd22078a91f
aecd9800e14424baea572723f407cc9bc5578d66
4e72b5fa561615770bec685b55a1089e1e5255239335d0d182852002bbea203c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /login HTTP/1.1
Host: www.australiabay.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: PHPSESSID=4d0750f320fdf0594d8fcbb89370cae8; JqEMVqOfUserToken=P06v85mpzQFydcFdkyMgmQA6H4qOzM5MghmQb5M192KJL%2BB0rqEcxW31aJSWAFV8dOMTeMxPfIMBP5R3YVuVwIDcEHjjicgWTY0%2BntOlS0Wxy7cj6DqLPUv0HFBrCk2%2B
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

HTTP/2 404 Not Found
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
content-encoding: gzip
content-length: 8332
content-type: text/html; charset=UTF-8
date: Thu, 02 Feb 2023 22:08:33 GMT
server: Apache
X-Firefox-Spdy: h2

www.australiabay.com.au/js/slick/slick.css

50.87.150.218

200 OK

575 B

URL HTTP/2
www.australiabay.com.au/js/slick/slick.css
IP
50.87.150.218:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
575 B (575 bytes)
Hash
c7cd7eaaeceb626699c3f61cf0d97b31
7930a73cbfbc0683ebf12b982b4ec0ddf3498852
9782a15945372abd060dd052ac7e93e7239f7f4ac20ff8716c8f554a2e78855f

HTTP Headers

GET /js/slick/slick.css HTTP/1.1
Host: www.australiabay.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.australiabay.com.au/login
Cookie: PHPSESSID=4d0750f320fdf0594d8fcbb89370cae8; JqEMVqOfUserToken=P06v85mpzQFydcFdkyMgmQA6H4qOzM5MghmQb5M192KJL%2BB0rqEcxW31aJSWAFV8dOMTeMxPfIMBP5R3YVuVwIDcEHjjicgWTY0%2BntOlS0Wxy7cj6DqLPUv0HFBrCk2%2B
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 12 Sep 2017 03:08:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 575
content-type: text/css
date: Thu, 02 Feb 2023 22:08:34 GMT
server: Apache
X-Firefox-Spdy: h2

www.australiabay.com.au/js/slick/slick-theme.css

50.87.150.218

200 OK

1.1 kB

URL HTTP/2
www.australiabay.com.au/js/slick/slick-theme.css
IP
50.87.150.218:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 text
Size
1.1 kB (1066 bytes)
Hash
d29b2343a35231f8b46509f0514177d5
c56f4fc4633590cecb166322673c761bcfcd4d91
d4f44b46fe7d8acf6c5a80b042581bbdb696b887995f94d6747756939ee37666

HTTP Headers

GET /js/slick/slick-theme.css HTTP/1.1
Host: www.australiabay.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.australiabay.com.au/login
Cookie: PHPSESSID=4d0750f320fdf0594d8fcbb89370cae8; JqEMVqOfUserToken=P06v85mpzQFydcFdkyMgmQA6H4qOzM5MghmQb5M192KJL%2BB0rqEcxW31aJSWAFV8dOMTeMxPfIMBP5R3YVuVwIDcEHjjicgWTY0%2BntOlS0Wxy7cj6DqLPUv0HFBrCk2%2B
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 12 Sep 2017 03:08:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1066
content-type: text/css
date: Thu, 02 Feb 2023 22:08:34 GMT
server: Apache
X-Firefox-Spdy: h2

www.australiabay.com.au/css/default.css

50.87.150.218

200 OK

9.6 kB

URL HTTP/2
www.australiabay.com.au/css/default.css
IP
50.87.150.218:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (388)
Size
9.6 kB (9574 bytes)
Hash
fd5e0193ab70fed4cc3a03a333fd8fa5
3cc3f7a0d10d357d9f0bb9a3759459a956c6bbbc
9a99041c1f77282234363a5dea49d305651ac5b38ee033c3e990179a2287b3a1

HTTP Headers

GET /css/default.css HTTP/1.1
Host: www.australiabay.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.australiabay.com.au/login
Cookie: PHPSESSID=4d0750f320fdf0594d8fcbb89370cae8; JqEMVqOfUserToken=P06v85mpzQFydcFdkyMgmQA6H4qOzM5MghmQb5M192KJL%2BB0rqEcxW31aJSWAFV8dOMTeMxPfIMBP5R3YVuVwIDcEHjjicgWTY0%2BntOlS0Wxy7cj6DqLPUv0HFBrCk2%2B
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 27 May 2020 09:19:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9574
content-type: text/css
date: Thu, 02 Feb 2023 22:08:34 GMT
server: Apache
X-Firefox-Spdy: h2

www.australiabay.com.au/css/mods.css

50.87.150.218

200 OK

19 B

URL HTTP/2
www.australiabay.com.au/css/mods.css
IP
50.87.150.218:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
19 B (19 bytes)
Hash
01f2de998e60aca1be528957df294730
2417b1199f0d65320f04e6dd5687930a00b5f82c
32b616fd5857a8d8178f68978ff8901c5a16e7753ad60f195e33e926abf49b89

HTTP Headers

GET /css/mods.css HTTP/1.1
Host: www.australiabay.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.australiabay.com.au/login
Cookie: PHPSESSID=4d0750f320fdf0594d8fcbb89370cae8; JqEMVqOfUserToken=P06v85mpzQFydcFdkyMgmQA6H4qOzM5MghmQb5M192KJL%2BB0rqEcxW31aJSWAFV8dOMTeMxPfIMBP5R3YVuVwIDcEHjjicgWTY0%2BntOlS0Wxy7cj6DqLPUv0HFBrCk2%2B
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 07 Dec 2015 10:55:46 GMT
accept-ranges: bytes
content-length: 19
content-type: text/css
date: Thu, 02 Feb 2023 22:08:34 GMT
server: Apache
X-Firefox-Spdy: h2

www.australiabay.com.au/css/flag-icons/css/flag-icon.min.css

50.87.150.218

200 OK

2.3 kB

URL HTTP/2
www.australiabay.com.au/css/flag-icons/css/flag-icon.min.css
IP
50.87.150.218:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (33688), with no line terminators
Size
2.3 kB (2258 bytes)
Hash
55cd66a814121a50385838e3a171d818
3c654b282bc6526b63ac34c19ba36cd8669dfb9d
a9f5e088329dd141b2b70e541e5d627c35916c428fa157c7bda8407954f07170

HTTP Headers

GET /css/flag-icons/css/flag-icon.min.css HTTP/1.1
Host: www.australiabay.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.australiabay.com.au/login
Cookie: PHPSESSID=4d0750f320fdf0594d8fcbb89370cae8; JqEMVqOfUserToken=P06v85mpzQFydcFdkyMgmQA6H4qOzM5MghmQb5M192KJL%2BB0rqEcxW31aJSWAFV8dOMTeMxPfIMBP5R3YVuVwIDcEHjjicgWTY0%2BntOlS0Wxy7cj6DqLPUv0HFBrCk2%2B
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 19 Mar 2018 17:03:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2258
content-type: text/css
date: Thu, 02 Feb 2023 22:08:34 GMT
server: Apache
X-Firefox-Spdy: h2

www.australiabay.com.au/js/magnific-popup/magnific-popup.css

50.87.150.218

200 OK

2.4 kB

URL HTTP/2
www.australiabay.com.au/js/magnific-popup/magnific-popup.css
IP
50.87.150.218:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
2.4 kB (2374 bytes)
Hash
fc9c1dc653020cbe053b5afd14829f8a
e95fce4d679e788ba76b1dfef75feb39b275c01f
6b760a2e067b0f0af00735f5f068ddaa0f7be4c343d8ac0806aab15ee60b0a5a

HTTP Headers

GET /js/magnific-popup/magnific-popup.css HTTP/1.1
Host: www.australiabay.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.australiabay.com.au/login
Cookie: PHPSESSID=4d0750f320fdf0594d8fcbb89370cae8; JqEMVqOfUserToken=P06v85mpzQFydcFdkyMgmQA6H4qOzM5MghmQb5M192KJL%2BB0rqEcxW31aJSWAFV8dOMTeMxPfIMBP5R3YVuVwIDcEHjjicgWTY0%2BntOlS0Wxy7cj6DqLPUv0HFBrCk2%2B
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 07 Dec 2015 10:55:46 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2374
content-type: text/css
date: Thu, 02 Feb 2023 22:08:34 GMT
server: Apache
X-Firefox-Spdy: h2

www.australiabay.com.au/js/bootstrap-datetimepicker/css/tempusdominus-bootstrap-4.min.css

50.87.150.218

200 OK

1.9 kB

URL HTTP/2
www.australiabay.com.au/js/bootstrap-datetimepicker/css/tempusdominus-bootstrap-4.min.css
IP
50.87.150.218:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (836)
Size
1.9 kB (1878 bytes)
Hash
6dbe3e53bd26cbafcbaef95f2482d16c
1d0b1a5040660a2fc26b9b10bc862cb2af752e9c
146af3c862d6e8f17c84ee71c6b7b5a12ffcc97f7618262c14f7eccd0f57db00

HTTP Headers

GET /js/bootstrap-datetimepicker/css/tempusdominus-bootstrap-4.min.css HTTP/1.1
Host: www.australiabay.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.australiabay.com.au/login
Cookie: PHPSESSID=4d0750f320fdf0594d8fcbb89370cae8; JqEMVqOfUserToken=P06v85mpzQFydcFdkyMgmQA6H4qOzM5MghmQb5M192KJL%2BB0rqEcxW31aJSWAFV8dOMTeMxPfIMBP5R3YVuVwIDcEHjjicgWTY0%2BntOlS0Wxy7cj6DqLPUv0HFBrCk2%2B
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 06 Oct 2018 08:38:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1878
content-type: text/css
date: Thu, 02 Feb 2023 22:08:34 GMT
server: Apache
X-Firefox-Spdy: h2

www.australiabay.com.au/themes/eight/css/theme.css

50.87.150.218

200 OK

5.0 kB

URL HTTP/2
www.australiabay.com.au/themes/eight/css/theme.css
IP
50.87.150.218:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
5.0 kB (4958 bytes)
Hash
9bd341909f1abd78222958acd33cb2de
49b436c7456e39192981814598362e2fca6c856d
ae229a29da629bbea680d2aea8b6887b325d03c7be8a0ad66bf277c4ed51e4d7

HTTP Headers

GET /themes/eight/css/theme.css HTTP/1.1
Host: www.australiabay.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.australiabay.com.au/login
Cookie: PHPSESSID=4d0750f320fdf0594d8fcbb89370cae8; JqEMVqOfUserToken=P06v85mpzQFydcFdkyMgmQA6H4qOzM5MghmQb5M192KJL%2BB0rqEcxW31aJSWAFV8dOMTeMxPfIMBP5R3YVuVwIDcEHjjicgWTY0%2BntOlS0Wxy7cj6DqLPUv0HFBrCk2%2B
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 14 May 2020 13:14:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4958
content-type: text/css
date: Thu, 02 Feb 2023 22:08:34 GMT
server: Apache
X-Firefox-Spdy: h2

www.australiabay.com.au/themes/eight/css/colors.css

50.87.150.218

200 OK

1.3 kB

URL HTTP/2
www.australiabay.com.au/themes/eight/css/colors.css
IP
50.87.150.218:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
1.3 kB (1257 bytes)
Hash
0a4e3ce8e3bd0c8fe333eabf5070bf2c
3cf88bff4d8b0e2b5ce6470f4b1cf77ddd19653d
94fbda678703a66ea8f4d89f3f706d10b6d38ad8579f8f8ab8c91f9c3991690e

HTTP Headers

GET /themes/eight/css/colors.css HTTP/1.1
Host: www.australiabay.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.australiabay.com.au/login
Cookie: PHPSESSID=4d0750f320fdf0594d8fcbb89370cae8; JqEMVqOfUserToken=P06v85mpzQFydcFdkyMgmQA6H4qOzM5MghmQb5M192KJL%2BB0rqEcxW31aJSWAFV8dOMTeMxPfIMBP5R3YVuVwIDcEHjjicgWTY0%2BntOlS0Wxy7cj6DqLPUv0HFBrCk2%2B
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 14 May 2020 13:14:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1257
content-type: text/css
date: Thu, 02 Feb 2023 22:08:34 GMT
server: Apache
X-Firefox-Spdy: h2

www.australiabay.com.au/js/jquery-migrate-3.0.0.min.js

50.87.150.218

200 OK

3.3 kB

URL HTTP/2
www.australiabay.com.au/js/jquery-migrate-3.0.0.min.js
IP
50.87.150.218:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (7755)
Size
3.3 kB (3331 bytes)
Hash
542fb9486225407203ba1c1cf097b28c
bf08f60e748a01fbbcf2fd2adce614c83668f094
ea0af57c59ae1781431477858f881b18da9310ae2dea2a9d1208bb922639ed5b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/jquery-migrate-3.0.0.min.js HTTP/1.1
Host: www.australiabay.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.australiabay.com.au/login
Cookie: PHPSESSID=4d0750f320fdf0594d8fcbb89370cae8; JqEMVqOfUserToken=P06v85mpzQFydcFdkyMgmQA6H4qOzM5MghmQb5M192KJL%2BB0rqEcxW31aJSWAFV8dOMTeMxPfIMBP5R3YVuVwIDcEHjjicgWTY0%2BntOlS0Wxy7cj6DqLPUv0HFBrCk2%2B
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 15 Jun 2017 14:14:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3331
content-type: application/javascript
date: Thu, 02 Feb 2023 22:08:34 GMT
server: Apache
X-Firefox-Spdy: h2

www.australiabay.com.au/js/slick/slick.min.js

50.87.150.218

200 OK

15 kB

URL HTTP/2
www.australiabay.com.au/js/slick/slick.min.js
IP
50.87.150.218:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (42862)
Size
15 kB (14757 bytes)
Hash
8ba646c7542e11105098aa94f6d42a91
af53af1c4665b77178448d6e6dfe631647b50f85
27842145b26ab7f9d656a730d00bf703e5ef1276b7c6a1310f183745f8b3a96c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/slick/slick.min.js HTTP/1.1
Host: www.australiabay.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.australiabay.com.au/login
Cookie: PHPSESSID=4d0750f320fdf0594d8fcbb89370cae8; JqEMVqOfUserToken=P06v85mpzQFydcFdkyMgmQA6H4qOzM5MghmQb5M192KJL%2BB0rqEcxW31aJSWAFV8dOMTeMxPfIMBP5R3YVuVwIDcEHjjicgWTY0%2BntOlS0Wxy7cj6DqLPUv0HFBrCk2%2B
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 12 Sep 2017 03:08:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 14757
content-type: application/javascript
date: Thu, 02 Feb 2023 22:08:34 GMT
server: Apache
X-Firefox-Spdy: h2

www.australiabay.com.au/js/masonry.pkgd.min.js

50.87.150.218

200 OK

9.6 kB

URL HTTP/2
www.australiabay.com.au/js/masonry.pkgd.min.js
IP
50.87.150.218:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (24799)
Size
9.6 kB (9621 bytes)
Hash
145d67ebaa9d8292320666f586cfedc9
d1ab81a8b01313f789958ffbb13f21c9ac05f6c0
74c30a1bda2bd50dfa78bd321195066b6415d17e45306a2b9ae906a03c57e53e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/masonry.pkgd.min.js HTTP/1.1
Host: www.australiabay.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.australiabay.com.au/login
Cookie: PHPSESSID=4d0750f320fdf0594d8fcbb89370cae8; JqEMVqOfUserToken=P06v85mpzQFydcFdkyMgmQA6H4qOzM5MghmQb5M192KJL%2BB0rqEcxW31aJSWAFV8dOMTeMxPfIMBP5R3YVuVwIDcEHjjicgWTY0%2BntOlS0Wxy7cj6DqLPUv0HFBrCk2%2B
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 30 Jan 2018 12:41:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9621
content-type: application/javascript
date: Thu, 02 Feb 2023 22:08:34 GMT
server: Apache
X-Firefox-Spdy: h2

www.australiabay.com.au/uploads/ezebidlogo-(1).gif

50.87.150.218

200 OK

7.6 kB

URL HTTP/2
www.australiabay.com.au/uploads/ezebidlogo-(1).gif
IP
50.87.150.218:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
GIF image data, version 89a, 252 x 57\012- data
Size
7.6 kB (7551 bytes)
Hash
14e7894fb7d78c4523aed61d7270af4f
e0985c39d83f3b7dd300ce68cfa380fd5b4697d8
9d7c398f6517e508d4729da0fce064e66d0c2d308c89ab881298e1383c3bd903

HTTP Headers

GET /uploads/ezebidlogo-(1).gif HTTP/1.1
Host: www.australiabay.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.australiabay.com.au/login
Cookie: PHPSESSID=4d0750f320fdf0594d8fcbb89370cae8; JqEMVqOfUserToken=P06v85mpzQFydcFdkyMgmQA6H4qOzM5MghmQb5M192KJL%2BB0rqEcxW31aJSWAFV8dOMTeMxPfIMBP5R3YVuVwIDcEHjjicgWTY0%2BntOlS0Wxy7cj6DqLPUv0HFBrCk2%2B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 16 Sep 2016 04:29:38 GMT
accept-ranges: bytes
content-length: 7551
content-type: image/gif
date: Thu, 02 Feb 2023 22:08:34 GMT
server: Apache
X-Firefox-Spdy: h2

www.australiabay.com.au/themes/eight/css/header.one.css

50.87.150.218

200 OK

346 B

URL HTTP/2
www.australiabay.com.au/themes/eight/css/header.one.css
IP
50.87.150.218:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
346 B (346 bytes)
Hash
7f3367e40261ad891bf82f851514cb5e
5ba39d43f8912d10cd54fb8ebed81ba4bc477cde
29335b2cd3edcf9658eaa0080062e597ad00bfe8340ac141f6926772ad137044

HTTP Headers

GET /themes/eight/css/header.one.css HTTP/1.1
Host: www.australiabay.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.australiabay.com.au/login
Cookie: PHPSESSID=4d0750f320fdf0594d8fcbb89370cae8; JqEMVqOfUserToken=P06v85mpzQFydcFdkyMgmQA6H4qOzM5MghmQb5M192KJL%2BB0rqEcxW31aJSWAFV8dOMTeMxPfIMBP5R3YVuVwIDcEHjjicgWTY0%2BntOlS0Wxy7cj6DqLPUv0HFBrCk2%2B
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 14 May 2020 13:14:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 346
content-type: text/css
date: Thu, 02 Feb 2023 22:08:34 GMT
server: Apache
X-Firefox-Spdy: h2

www.australiabay.com.au/js/mods.js

50.87.150.218

200 OK

512 B

URL HTTP/2
www.australiabay.com.au/js/mods.js
IP
50.87.150.218:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (772)
Size
512 B (512 bytes)
Hash
f3baa74d528943a61f073a3890f4d1c8
6557038de76be7a3da1f3ae64fae7155306f9be7
34c18c92a250517fc5b574b7405ff911dbe6192dfc5c8348a9035da15d3d211f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/mods.js HTTP/1.1
Host: www.australiabay.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.australiabay.com.au/login
Cookie: PHPSESSID=4d0750f320fdf0594d8fcbb89370cae8; JqEMVqOfUserToken=P06v85mpzQFydcFdkyMgmQA6H4qOzM5MghmQb5M192KJL%2BB0rqEcxW31aJSWAFV8dOMTeMxPfIMBP5R3YVuVwIDcEHjjicgWTY0%2BntOlS0Wxy7cj6DqLPUv0HFBrCk2%2B
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 07 Dec 2015 10:55:46 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 512
content-type: application/javascript
date: Thu, 02 Feb 2023 22:08:34 GMT
server: Apache
X-Firefox-Spdy: h2

www.australiabay.com.au/themes/eight/js/theme.js

50.87.150.218

200 OK

964 B

URL HTTP/2
www.australiabay.com.au/themes/eight/js/theme.js
IP
50.87.150.218:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (769)
Size
964 B (964 bytes)
Hash
d9a1ffe676867d711b85b3017ffa816a
c7ead299122377e052293af81f621bda62b7eee8
93758fbd38c3c80172cbfa08b893c54c3a90d6a3f6f248eb2dc21773232f2125

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /themes/eight/js/theme.js HTTP/1.1
Host: www.australiabay.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.australiabay.com.au/login
Cookie: PHPSESSID=4d0750f320fdf0594d8fcbb89370cae8; JqEMVqOfUserToken=P06v85mpzQFydcFdkyMgmQA6H4qOzM5MghmQb5M192KJL%2BB0rqEcxW31aJSWAFV8dOMTeMxPfIMBP5R3YVuVwIDcEHjjicgWTY0%2BntOlS0Wxy7cj6DqLPUv0HFBrCk2%2B
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 May 2018 11:22:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 964
content-type: application/javascript
date: Thu, 02 Feb 2023 22:08:34 GMT
server: Apache
X-Firefox-Spdy: h2

www.australiabay.com.au/js/functions.js

50.87.150.218

200 OK

6.1 kB

URL HTTP/2
www.australiabay.com.au/js/functions.js
IP
50.87.150.218:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (769)
Size
6.1 kB (6133 bytes)
Hash
b3629fba89bb22b02d84b617c9c5600a
a571cf8c1f0b461f07c92e6e83b99a4fa59d9269
863533bac782f94f8814be38fbc5f023b72378714dea1cb61d61580dff094302

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/functions.js HTTP/1.1
Host: www.australiabay.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.australiabay.com.au/login
Cookie: PHPSESSID=4d0750f320fdf0594d8fcbb89370cae8; JqEMVqOfUserToken=P06v85mpzQFydcFdkyMgmQA6H4qOzM5MghmQb5M192KJL%2BB0rqEcxW31aJSWAFV8dOMTeMxPfIMBP5R3YVuVwIDcEHjjicgWTY0%2BntOlS0Wxy7cj6DqLPUv0HFBrCk2%2B
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 17 Feb 2021 08:45:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6133
content-type: application/javascript
date: Thu, 02 Feb 2023 22:08:34 GMT
server: Apache
X-Firefox-Spdy: h2

www.australiabay.com.au/js/bootbox.min.js

50.87.150.218

200 OK

5.9 kB

URL HTTP/2
www.australiabay.com.au/js/bootbox.min.js
IP
50.87.150.218:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (15604), with CRLF line terminators
Size
5.9 kB (5881 bytes)
Hash
da3badd7b6bc2b9f2ed56ab448bd6fa5
d547df977f69ad3ae0f8c9eebde2c0055c893f8a
a37cb0f4b9a132eec9e3c31b1a40b77504b121380932101dce474018e327d820

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/bootbox.min.js HTTP/1.1
Host: www.australiabay.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.australiabay.com.au/login
Cookie: PHPSESSID=4d0750f320fdf0594d8fcbb89370cae8; JqEMVqOfUserToken=P06v85mpzQFydcFdkyMgmQA6H4qOzM5MghmQb5M192KJL%2BB0rqEcxW31aJSWAFV8dOMTeMxPfIMBP5R3YVuVwIDcEHjjicgWTY0%2BntOlS0Wxy7cj6DqLPUv0HFBrCk2%2B
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 13 Jul 2019 15:16:30 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5881
content-type: application/javascript
date: Thu, 02 Feb 2023 22:08:34 GMT
server: Apache
X-Firefox-Spdy: h2

www.australiabay.com.au/js/global.js

50.87.150.218

200 OK

3.9 kB

URL HTTP/2
www.australiabay.com.au/js/global.js
IP
50.87.150.218:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (769)
Size
3.9 kB (3918 bytes)
Hash
5b9a6f9647b49cc9c652fc5b3039f766
48110ef5d5d96e0ad6a015581062fef70cd3ada5
1c77560aba8c78d95472ac4c06c57de53fbe81a0d39e3b60e28296bd55101d1d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/global.js HTTP/1.1
Host: www.australiabay.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.australiabay.com.au/login
Cookie: PHPSESSID=4d0750f320fdf0594d8fcbb89370cae8; JqEMVqOfUserToken=P06v85mpzQFydcFdkyMgmQA6H4qOzM5MghmQb5M192KJL%2BB0rqEcxW31aJSWAFV8dOMTeMxPfIMBP5R3YVuVwIDcEHjjicgWTY0%2BntOlS0Wxy7cj6DqLPUv0HFBrCk2%2B
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 27 May 2020 09:19:02 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3918
content-type: application/javascript
date: Thu, 02 Feb 2023 22:08:34 GMT
server: Apache
X-Firefox-Spdy: h2

www.australiabay.com.au/js/fontawesome/fa-v4-shims.min.js

50.87.150.218

200 OK

4.9 kB

URL HTTP/2
www.australiabay.com.au/js/fontawesome/fa-v4-shims.min.js
IP
50.87.150.218:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (15772)
Size
4.9 kB (4918 bytes)
Hash
980514a6b83f180d321c0a4d0e2baeaa
815d31dd62ad19145bdeeba9af96021d1a6ecb78
128254f366adeb1d010b3c38558ed86b2d12ee8fcb558657d2d1d58b7c7342cb

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/fontawesome/fa-v4-shims.min.js HTTP/1.1
Host: www.australiabay.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.australiabay.com.au/login
Cookie: PHPSESSID=4d0750f320fdf0594d8fcbb89370cae8; JqEMVqOfUserToken=P06v85mpzQFydcFdkyMgmQA6H4qOzM5MghmQb5M192KJL%2BB0rqEcxW31aJSWAFV8dOMTeMxPfIMBP5R3YVuVwIDcEHjjicgWTY0%2BntOlS0Wxy7cj6DqLPUv0HFBrCk2%2B
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 25 Jan 2018 23:26:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4918
content-type: application/javascript
date: Thu, 02 Feb 2023 22:08:34 GMT
server: Apache
X-Firefox-Spdy: h2

www.australiabay.com.au/js/cookie.js

50.87.150.218

200 OK

1.1 kB

URL HTTP/2
www.australiabay.com.au/js/cookie.js
IP
50.87.150.218:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (769)
Size
1.1 kB (1136 bytes)
Hash
352fdfd16e9220bf17f791f2ec5386c5
1b521a4a6f918777adf99023b8d865ee1faef36e
adbf11ebbf2daa7428f87b1008de4616bde28983b40aea7749586a229f680a59

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/cookie.js HTTP/1.1
Host: www.australiabay.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.australiabay.com.au/login
Cookie: PHPSESSID=4d0750f320fdf0594d8fcbb89370cae8; JqEMVqOfUserToken=P06v85mpzQFydcFdkyMgmQA6H4qOzM5MghmQb5M192KJL%2BB0rqEcxW31aJSWAFV8dOMTeMxPfIMBP5R3YVuVwIDcEHjjicgWTY0%2BntOlS0Wxy7cj6DqLPUv0HFBrCk2%2B
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 07 Dec 2015 10:55:46 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1136
content-type: application/javascript
date: Thu, 02 Feb 2023 22:08:34 GMT
server: Apache
X-Firefox-Spdy: h2

www.australiabay.com.au/js/popper.min.js

50.87.150.218

200 OK

8.6 kB

URL HTTP/2
www.australiabay.com.au/js/popper.min.js
IP
50.87.150.218:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (19015)
Size
8.6 kB (8599 bytes)
Hash
bfcad51cf8072dd0063089f439a349cc
d35f372f1ea4bf8e58f343452dc93f00c180b28c
496e4d286a3d44840e13286f926191cd3ff5743c3c95c70b3d0fe88e5b0d9e6c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/popper.min.js HTTP/1.1
Host: www.australiabay.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.australiabay.com.au/login
Cookie: PHPSESSID=4d0750f320fdf0594d8fcbb89370cae8; JqEMVqOfUserToken=P06v85mpzQFydcFdkyMgmQA6H4qOzM5MghmQb5M192KJL%2BB0rqEcxW31aJSWAFV8dOMTeMxPfIMBP5R3YVuVwIDcEHjjicgWTY0%2BntOlS0Wxy7cj6DqLPUv0HFBrCk2%2B
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 31 Jan 2018 14:47:50 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8599
content-type: application/javascript
date: Thu, 02 Feb 2023 22:08:34 GMT
server: Apache
X-Firefox-Spdy: h2

www.australiabay.com.au/css/flag-icons/flags/4x3/au.svg

50.87.150.218

200 OK

1.3 kB

URL HTTP/2
www.australiabay.com.au/css/flag-icons/flags/4x3/au.svg
IP
50.87.150.218:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (762)
Size
1.3 kB (1335 bytes)
Hash
013b179005ce6ef9d319fae62331bb5e
890ed12516827a63555a10d708f06ae69d2c5d06
126fa2500a315287a5f847f4d958bb929f11da9b39f35912cc440c0fcffb8b12

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /css/flag-icons/flags/4x3/au.svg HTTP/1.1
Host: www.australiabay.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.australiabay.com.au/css/flag-icons/css/flag-icon.min.css
Cookie: PHPSESSID=4d0750f320fdf0594d8fcbb89370cae8; JqEMVqOfUserToken=P06v85mpzQFydcFdkyMgmQA6H4qOzM5MghmQb5M192KJL%2BB0rqEcxW31aJSWAFV8dOMTeMxPfIMBP5R3YVuVwIDcEHjjicgWTY0%2BntOlS0Wxy7cj6DqLPUv0HFBrCk2%2B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 19 Mar 2018 17:03:26 GMT
accept-ranges: bytes
content-length: 1335
content-type: image/svg+xml
date: Thu, 02 Feb 2023 22:08:35 GMT
server: Apache
X-Firefox-Spdy: h2

www.australiabay.com.au/js/fontawesome/fontawesome-all.min.js

50.87.150.218

200 OK

277 kB

URL HTTP/2
www.australiabay.com.au/js/fontawesome/fontawesome-all.min.js
IP
50.87.150.218:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
data
Size
277 kB (277023 bytes)
Hash
ab7204eae3ef03890f2cddce297820fa
c59adf33dac95e77cab2ba3b9e36956abec5ccf9
e985e004d24e2d725f859559b84175103ff730d52396625c1e30067fbf91d7a0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/fontawesome/fontawesome-all.min.js HTTP/1.1
Host: www.australiabay.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.australiabay.com.au/login
Cookie: PHPSESSID=4d0750f320fdf0594d8fcbb89370cae8; JqEMVqOfUserToken=P06v85mpzQFydcFdkyMgmQA6H4qOzM5MghmQb5M192KJL%2BB0rqEcxW31aJSWAFV8dOMTeMxPfIMBP5R3YVuVwIDcEHjjicgWTY0%2BntOlS0Wxy7cj6DqLPUv0HFBrCk2%2B
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 25 Jan 2018 23:26:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Thu, 02 Feb 2023 22:08:34 GMT
server: Apache
X-Firefox-Spdy: h2

www.australiabay.com.au/js/bootstrap-datetimepicker/js/tempusdominus-bootstrap-4.js

50.87.150.218

200 OK

47 kB

URL HTTP/2
www.australiabay.com.au/js/bootstrap-datetimepicker/js/tempusdominus-bootstrap-4.js
IP
50.87.150.218:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (597)
Size
47 kB (47012 bytes)
Hash
2754e435dbbcc6b9bc81a80718b51a34
ef54959896e212da25e986c4a13a287de9979a9a
48606369c5e52c80b2bdf04a1001d075d31cfd51c29b980bc7ad6799534418cb

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/bootstrap-datetimepicker/js/tempusdominus-bootstrap-4.js HTTP/1.1
Host: www.australiabay.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.australiabay.com.au/login
Cookie: PHPSESSID=4d0750f320fdf0594d8fcbb89370cae8; JqEMVqOfUserToken=P06v85mpzQFydcFdkyMgmQA6H4qOzM5MghmQb5M192KJL%2BB0rqEcxW31aJSWAFV8dOMTeMxPfIMBP5R3YVuVwIDcEHjjicgWTY0%2BntOlS0Wxy7cj6DqLPUv0HFBrCk2%2B
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 06 Oct 2018 08:38:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Thu, 02 Feb 2023 22:08:34 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:08:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google-analytics.com/j/collect?v=1&_v=j99&a=1673988496&t=pageview&_s=1&dl=https%3A%2F%2Fwww.australiabay.com.au%2Flogin&ul=en-us&de=UTF-8&dt=Page%20Not%20Found%20%7C%20AustraliaBay&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1593730508&gjid=850472515&cid=105002841.1675375743&tid=UA-87945570-1&_gid=924750904.1675375743&_r=1&_slc=1&z=1351972005

142.250.74.110

200 OK

2 B

URL HTTP/2
www.google-analytics.com/j/collect?v=1&_v=j99&a=1673988496&t=pageview&_s=1&dl=https%3A%2F%2Fwww.australiabay.com.au%2Flogin&ul=en-us&de=UTF-8&dt=Page%20Not%20Found%20%7C%20AustraliaBay&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1593730508&gjid=850472515&cid=105002841.1675375743&tid=UA-87945570-1&_gid=924750904.1675375743&_r=1&_slc=1&z=1351972005
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f

HTTP Headers

POST /j/collect?v=1&_v=j99&a=1673988496&t=pageview&_s=1&dl=https%3A%2F%2Fwww.australiabay.com.au%2Flogin&ul=en-us&de=UTF-8&dt=Page%20Not%20Found%20%7C%20AustraliaBay&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1593730508&gjid=850472515&cid=105002841.1675375743&tid=UA-87945570-1&_gid=924750904.1675375743&_r=1&_slc=1&z=1351972005 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.australiabay.com.au
Connection: keep-alive
Referer: https://www.australiabay.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: https://www.australiabay.com.au
date: Thu, 02 Feb 2023 22:08:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.australiabay.com.au/uploads/favicon.png

50.87.150.218

200 OK

2.5 kB

URL HTTP/2
www.australiabay.com.au/uploads/favicon.png
IP
50.87.150.218:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 81 x 81, 8-bit/color RGBA, non-interlaced\012- data
Size
2.5 kB (2481 bytes)
Hash
a568da5ecddc9091d73f0a490540c1ab
a48bd24db2057686d825bc2bce830227f2fcdca8
8c8758832fcbc9389e73208d0a5cf2e7f3d4126852c78a4cb81c8f0a00e7ea0a

HTTP Headers

GET /uploads/favicon.png HTTP/1.1
Host: www.australiabay.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.australiabay.com.au/login
Cookie: PHPSESSID=4d0750f320fdf0594d8fcbb89370cae8; JqEMVqOfUserToken=P06v85mpzQFydcFdkyMgmQA6H4qOzM5MghmQb5M192KJL%2BB0rqEcxW31aJSWAFV8dOMTeMxPfIMBP5R3YVuVwIDcEHjjicgWTY0%2BntOlS0Wxy7cj6DqLPUv0HFBrCk2%2B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 23 Oct 2018 13:58:02 GMT
accept-ranges: bytes
content-length: 2481
content-type: image/png
date: Thu, 02 Feb 2023 22:08:35 GMT
server: Apache
X-Firefox-Spdy: h2

www.australiabay.com.au/js/jquery.min.js

50.87.150.218

200 OK

0 B

URL HTTP/2
www.australiabay.com.au/js/jquery.min.js
IP
50.87.150.218:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/jquery.min.js HTTP/1.1
Host: www.australiabay.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.australiabay.com.au/login
Cookie: PHPSESSID=4d0750f320fdf0594d8fcbb89370cae8; JqEMVqOfUserToken=P06v85mpzQFydcFdkyMgmQA6H4qOzM5MghmQb5M192KJL%2BB0rqEcxW31aJSWAFV8dOMTeMxPfIMBP5R3YVuVwIDcEHjjicgWTY0%2BntOlS0Wxy7cj6DqLPUv0HFBrCk2%2B
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 30 Jan 2018 12:36:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Thu, 02 Feb 2023 22:08:34 GMT
server: Apache
X-Firefox-Spdy: h2

www.australiabay.com.au/css/bootstrap.min.css

50.87.150.218

200 OK

0 B

URL HTTP/2
www.australiabay.com.au/css/bootstrap.min.css
IP
50.87.150.218:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css/bootstrap.min.css HTTP/1.1
Host: www.australiabay.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.australiabay.com.au/login
Cookie: PHPSESSID=4d0750f320fdf0594d8fcbb89370cae8; JqEMVqOfUserToken=P06v85mpzQFydcFdkyMgmQA6H4qOzM5MghmQb5M192KJL%2BB0rqEcxW31aJSWAFV8dOMTeMxPfIMBP5R3YVuVwIDcEHjjicgWTY0%2BntOlS0Wxy7cj6DqLPUv0HFBrCk2%2B
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 13 Feb 2019 16:47:50 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Thu, 02 Feb 2023 22:08:34 GMT
server: Apache
X-Firefox-Spdy: h2

www.australiabay.com.au/js/bootstrap.min.js

50.87.150.218

200 OK

0 B

URL HTTP/2
www.australiabay.com.au/js/bootstrap.min.js
IP
50.87.150.218:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/bootstrap.min.js HTTP/1.1
Host: www.australiabay.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.australiabay.com.au/login
Cookie: PHPSESSID=4d0750f320fdf0594d8fcbb89370cae8; JqEMVqOfUserToken=P06v85mpzQFydcFdkyMgmQA6H4qOzM5MghmQb5M192KJL%2BB0rqEcxW31aJSWAFV8dOMTeMxPfIMBP5R3YVuVwIDcEHjjicgWTY0%2BntOlS0Wxy7cj6DqLPUv0HFBrCk2%2B
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 13 Feb 2019 16:47:50 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Thu, 02 Feb 2023 22:08:34 GMT
server: Apache
X-Firefox-Spdy: h2

www.australiabay.com.au/js/magnific-popup/jquery.magnific-popup.js

50.87.150.218

200 OK

0 B

URL HTTP/2
www.australiabay.com.au/js/magnific-popup/jquery.magnific-popup.js
IP
50.87.150.218:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/magnific-popup/jquery.magnific-popup.js HTTP/1.1
Host: www.australiabay.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.australiabay.com.au/login
Cookie: PHPSESSID=4d0750f320fdf0594d8fcbb89370cae8; JqEMVqOfUserToken=P06v85mpzQFydcFdkyMgmQA6H4qOzM5MghmQb5M192KJL%2BB0rqEcxW31aJSWAFV8dOMTeMxPfIMBP5R3YVuVwIDcEHjjicgWTY0%2BntOlS0Wxy7cj6DqLPUv0HFBrCk2%2B
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 07 Dec 2015 10:55:46 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Thu, 02 Feb 2023 22:08:34 GMT
server: Apache
X-Firefox-Spdy: h2

www.australiabay.com.au/js/moment/moment-with-locales.min.js

50.87.150.218

200 OK

0 B

URL HTTP/2
www.australiabay.com.au/js/moment/moment-with-locales.min.js
IP
50.87.150.218:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/moment/moment-with-locales.min.js HTTP/1.1
Host: www.australiabay.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.australiabay.com.au/login
Cookie: PHPSESSID=4d0750f320fdf0594d8fcbb89370cae8; JqEMVqOfUserToken=P06v85mpzQFydcFdkyMgmQA6H4qOzM5MghmQb5M192KJL%2BB0rqEcxW31aJSWAFV8dOMTeMxPfIMBP5R3YVuVwIDcEHjjicgWTY0%2BntOlS0Wxy7cj6DqLPUv0HFBrCk2%2B
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 30 Oct 2018 21:55:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Thu, 02 Feb 2023 22:08:34 GMT
server: Apache
X-Firefox-Spdy: h2

www.australiabay.com.au/js/feather.min.js

50.87.150.218

200 OK

0 B

URL HTTP/2
www.australiabay.com.au/js/feather.min.js
IP
50.87.150.218:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/feather.min.js HTTP/1.1
Host: www.australiabay.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.australiabay.com.au/login
Cookie: PHPSESSID=4d0750f320fdf0594d8fcbb89370cae8; JqEMVqOfUserToken=P06v85mpzQFydcFdkyMgmQA6H4qOzM5MghmQb5M192KJL%2BB0rqEcxW31aJSWAFV8dOMTeMxPfIMBP5R3YVuVwIDcEHjjicgWTY0%2BntOlS0Wxy7cj6DqLPUv0HFBrCk2%2B
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 01 Feb 2018 12:38:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Thu, 02 Feb 2023 22:08:34 GMT
server: Apache
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (23)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML