Overview

URL tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
IP216.194.164.236
ASNINMOTION
Location United States
Report completed2022-09-16 23:22:05 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-16 2 www.tuffashop.com.au/wp-content/plugins/blog-designer-for-post-and-widget/a (...) Phishing
2022-09-16 2 www.tuffashop.com.au/wp-includes/css/dist/block-library/style.min.css?ver=5.2.16 Phishing
2022-09-16 2 www.tuffashop.com.au/wp-includes/css/dist/block-library/theme.min.css?ver=5.2.16 Phishing
2022-09-16 2 www.tuffashop.com.au/wp-content/plugins/simple-sitemap/lib/assets/css/simpl (...) Phishing
2022-09-16 2 www.tuffashop.com.au/wp-content/plugins/blog-designer-for-post-and-widget/a (...) Phishing
2022-09-16 2 www.tuffashop.com.au/wp-content/plugins/contact-form-7/includes/css/styles. (...) Phishing
2022-09-16 2 www.tuffashop.com.au/wp-content/plugins/woocommerce/assets/css/woocommerce. (...) Phishing
2022-09-16 2 www.tuffashop.com.au/wp-content/plugins/js_composer/assets/lib/bower/font-a (...) Phishing
2022-09-16 2 www.tuffashop.com.au/wp-content/plugins/soo-product-filter/assets/css/front (...) Phishing
2022-09-16 2 www.tuffashop.com.au/wp-content/plugins/soo-wishlist/assets/css/wishlist.cs (...) Phishing
2022-09-16 2 www.tuffashop.com.au/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 Phishing
2022-09-16 2 www.tuffashop.com.au/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp Phishing
2022-09-16 2 www.tuffashop.com.au/wp-content/themes/sober/style.css?ver=2.1.0 Phishing
2022-09-16 2 www.tuffashop.com.au/wp-content/plugins/revslider/public/assets/js/jquery.t (...) Phishing
2022-09-16 2 www.tuffashop.com.au/wp-content/plugins/js_composer/assets/js/vendors/wooco (...) Phishing
2022-09-16 2 www.tuffashop.com.au/wp-content/plugins/revslider/public/assets/js/jquery.t (...) Phishing
2022-09-16 2 www.tuffashop.com.au/wp-content/plugins/woocommerce/assets/js/jquery-cookie (...) Phishing
2022-09-16 2 www.tuffashop.com.au/wp-content/plugins/woocommerce-google-adwords-conversi (...) Phishing
2022-09-16 2 www.tuffashop.com.au/wp-content/plugins/cf7-redirection/js/wpcf7-redirect-s (...) Phishing
2022-09-16 2 www.tuffashop.com.au/wp-content/plugins/woocommerce/assets/js/js-cookie/js. (...) Phishing
2022-09-16 2 www.tuffashop.com.au/wp-content/plugins/woocommerce/assets/js/frontend/add- (...) Phishing
2022-09-16 2 www.tuffashop.com.au/wp-content/plugins/woocommerce/assets/js/zoom/jquery.z (...) Phishing
2022-09-16 2 www.tuffashop.com.au/wp-includes/js/imagesloaded.min.js?ver=3.2.0 Phishing
2022-09-16 2 www.tuffashop.com.au/wp-content/plugins/sober-addons/assets/js/isotope.pkgd (...) Phishing
2022-09-16 2 www.tuffashop.com.au/wp-content/themes/sober/js/owl.carousel.min.js?ver=2.2.1 Phishing
2022-09-16 2 www.tuffashop.com.au/wp-content/themes/sober/js/script.js?ver=2.1.0 Phishing
2022-09-16 2 www.tuffashop.com.au/wp-content/plugins/woocommerce-google-adwords-conversi (...) Phishing
2022-09-16 2 www.tuffashop.com.au/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 Phishing
2022-09-16 2 www.tuffashop.com.au/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4 Phishing
2022-09-16 2 www.tuffashop.com.au/wp-includes/js/jquery/jquery.serialize-object.js?ver=0.2 Phishing
2022-09-16 2 www.tuffashop.com.au/wp-content/plugins/variation-swatches-for-woocommerce/ (...) Phishing
2022-09-16 2 www.tuffashop.com.au/wp-content/plugins/sober-addons/assets/js/jquery.count (...) Phishing
2022-09-16 2 www.tuffashop.com.au/wp-content/plugins/sober-addons/assets/js/circle-progr (...) Phishing
2022-09-16 2 www.tuffashop.com.au/wp-content/plugins/sober-addons/assets/js/shortcodes.j (...) Phishing
2022-09-16 2 www.tuffashop.com.au/wp-includes/js/wp-embed.min.js?ver=5.2.16 Phishing
2022-09-16 2 www.tuffashop.com.au/wp-content/plugins/woocommerce/assets/js/jquery-ui-tou (...) Phishing
2022-09-16 2 www.tuffashop.com.au/wp-content/plugins/woocommerce-currency-switcher/js/pr (...) Phishing
2022-09-16 2 www.tuffashop.com.au/wp-content/plugins/woocommerce-currency-switcher/js/jq (...) Phishing
2022-09-16 2 www.tuffashop.com.au/wp-content/plugins/woocommerce-currency-switcher/js/fr (...) Phishing
2022-09-16 2 www.tuffashop.com.au/wp-content/fonts/oswald/TK3_WkUHHAIjg75cFRf3bXL8LICs1x (...) Phishing
2022-09-16 2 www.tuffashop.com.au/wp-content/themes/sober/fonts/SofiaProLight-webfont.woff2 Phishing
2022-09-16 2 www.tuffashop.com.au/?wc-ajax=get_refreshed_fragments Phishing
2022-09-16 2 www.tuffashop.com.au/?wc-ajax=get_refreshed_fragments Phishing
2022-09-16 2 www.tuffashop.com.au/wp-admin/admin-ajax.php Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (17)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-16 04:25:30 UTC 143.204.55.35
mnemonic passive DNS tuffashop.com.au (2) 0 2019-01-18 17:02:30 UTC 2022-08-15 11:47:50 UTC 216.194.164.236 Unknown ranking
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-16 17:35:14 UTC 93.184.220.29
mnemonic passive DNS img-getpocket.cdn.mozilla.net (7) 1631 2017-09-01 03:40:57 UTC 2022-09-16 15:59:39 UTC 34.120.237.76
mnemonic passive DNS www.googletagmanager.com (3) 75 2012-12-25 14:52:06 UTC 2022-09-16 04:32:17 UTC 142.250.74.72
mnemonic passive DNS fonts.googleapis.com (1) 8877 2014-07-21 13:19:55 UTC 2022-09-16 21:25:59 UTC 142.250.74.10
mnemonic passive DNS r3.o.lencr.org (4) 344 2020-12-02 08:52:13 UTC 2022-09-16 04:41:23 UTC 23.36.77.32
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-27 20:08:30 UTC 2022-09-16 18:35:00 UTC 143.204.55.115
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-16 04:23:36 UTC 34.117.237.239
mnemonic passive DNS www.tuffashop.com.au (73) 0 2019-06-16 10:12:04 UTC 2022-08-15 11:47:50 UTC 216.194.164.236 Unknown ranking
mnemonic passive DNS stats.g.doubleclick.net (2) 96 2013-06-02 22:47:44 UTC 2022-09-16 04:26:22 UTC 142.251.1.157
mnemonic passive DNS www.google.no (2) 25607 2016-04-05 19:50:59 UTC 2022-09-16 05:34:59 UTC 142.250.74.3
mnemonic passive DNS ocsp.pki.goog (16) 175 2017-06-14 07:23:31 UTC 2022-09-16 04:23:37 UTC 142.250.74.3
mnemonic passive DNS fonts.gstatic.com (1) 0 2014-08-29 13:43:22 UTC 2022-09-16 04:23:38 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-09-16 16:16:17 UTC 142.250.74.174
mnemonic passive DNS googleads.g.doubleclick.net (2) 42 2021-02-20 15:43:32 UTC 2022-09-16 21:45:05 UTC 216.58.211.2
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-16 05:11:10 UTC 44.242.41.15


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 216.194.164.236

Date UQ / IDS / BL URL IP
2022-09-19 05:28:12 +0000
0 - 0 - 48 www.dmdesign.com.au/ 216.194.164.236
2022-09-17 04:56:00 +0000
0 - 0 - 46 mail.tuffashop.com.au/usps/home.php?ip=80.167 (...) 216.194.164.236
2022-09-17 01:46:22 +0000
0 - 0 - 43 www.tuffashop.com.au/usps/home.php?ip=80.167. (...) 216.194.164.236
2022-09-16 23:54:43 +0000
0 - 0 - 44 mail.tuffashop.com.au/usps/home.php?ip=80.167 (...) 216.194.164.236
2022-09-16 23:22:05 +0000
0 - 0 - 44 tuffashop.com.au/usps/home.php?ip=80.167.121. (...) 216.194.164.236

Last 5 reports on ASN: INMOTION

Date UQ / IDS / BL URL IP
2022-12-05 20:26:20 +0000
0 - 0 - 1 lpqarq.com/ 199.250.215.210
2022-12-05 20:26:20 +0000
0 - 0 - 1 lpqarq.com/ 199.250.215.210
2022-12-05 16:37:23 +0000
0 - 0 - 1 remembrance.sufipaths.net/etc_mendosuficamp.o (...) 144.208.68.180
2022-12-05 16:28:47 +0000
0 - 0 - 1 remembrance.sufipaths.net/etc_goldengatesufi. (...) 144.208.68.180
2022-12-04 18:33:27 +0000
0 - 0 - 1 remembrance.sufipaths.net/etc_goldengatesufi. (...) 144.208.68.180

Last 4 reports on domain: tuffashop.com.au

Date UQ / IDS / BL URL IP
2022-09-17 04:56:00 +0000
0 - 0 - 46 mail.tuffashop.com.au/usps/home.php?ip=80.167 (...) 216.194.164.236
2022-09-17 01:46:22 +0000
0 - 0 - 43 www.tuffashop.com.au/usps/home.php?ip=80.167. (...) 216.194.164.236
2022-09-16 23:54:43 +0000
0 - 0 - 44 mail.tuffashop.com.au/usps/home.php?ip=80.167 (...) 216.194.164.236
2022-09-16 23:22:05 +0000
0 - 0 - 44 tuffashop.com.au/usps/home.php?ip=80.167.121. (...) 216.194.164.236

Last 2 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-09-17 04:56:00 +0000
0 - 0 - 46 mail.tuffashop.com.au/usps/home.php?ip=80.167 (...) 216.194.164.236
2022-09-17 01:46:22 +0000
0 - 0 - 43 www.tuffashop.com.au/usps/home.php?ip=80.167. (...) 216.194.164.236


JavaScript

Executed Scripts (84)


Executed Evals (1)

#1 JavaScript::Eval (size: 500, repeated: 1) - SHA256: dce4f97980216edc0e62310634dc618996744e4d04592aa9526b34facef944a5

                                        (function($) {
    $(document.body).off('click', '.remove').on('click', '.remove', function() {
        ga('ec:addProduct', {
            'id': ($(this).data('product_sku')) ? ($(this).data('product_sku')) : ('#' + $(this).data('product_id')),
            'quantity': $(this).parent().parent().find('.qty').val() ? $(this).parent().parent().find('.qty').val() : '1',
        });
        ga('ec:setAction', 'remove');
        ga('send', 'event', 'UX', 'click', 'remove from cart');
    });
})(jQuery);
                                    

Executed Writes (0)



HTTP Transactions (120)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "17CBB43FD6662576BA3FE8E06CF44247C903C1313CC419053599C41E286A2442"
Last-Modified: Thu, 15 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5944
Expires: Sat, 17 Sep 2022 01:00:58 GMT
Date: Fri, 16 Sep 2022 23:21:54 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 16 Sep 2022 23:11:01 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: zOXtIKG5CbysoDQdoX_Sj_50muB94bf6HWPwBFB58PytxgsQGF8zlA==
Age: 653


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    b593eb39329cfe060d55be5e4a5405e2
Sha1:   78e46c1028e9f94f8569303ad2d90d7df13a059a
Sha256: 08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 16 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Brd3gD_vBAC3zUPFgE_ExSiLdeAgtfjymHtWzMi9LZok7q8VuCFaTA==
age: 67599
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x HTTP/1.1 
Host: tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         216.194.164.236
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 16 Sep 2022 23:21:54 GMT
Server: Apache
Location: https://tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Content-Length: 298
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   298
Md5:    c70b87ed5669d16833546d34833b9f65
Sha1:   ec8407855208dabcfaca39684b26c20ab2ac769c
Sha256: 75aa33a126e6417fcf6ea4fdd66f12521f5cdb74d5849450c1444ed4a55f1957
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Fri, 16 Sep 2022 23:21:54 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Fri, 16 Sep 2022 23:03:22 GMT
Expires: Fri, 16 Sep 2022 23:29:05 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 9lii2MVhccwmaxfZk7KkZcFRldpfp9xVm_XPSgfb2Lja1XupInmLpQ==
Age: 1112


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6186
Cache-Control: max-age=124075
Date: Fri, 16 Sep 2022 23:21:54 GMT
Etag: "63242e93-1d7"
Expires: Sun, 18 Sep 2022 09:49:49 GMT
Last-Modified: Fri, 16 Sep 2022 08:06:43 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: coYmtLP1om19zmkXExY2Lg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         44.242.41.15
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Y6Iip0AhGRVWc8EWYLy76H0gZfg=

                                        
                                            GET /usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x HTTP/1.1 
Host: tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         216.194.164.236
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 16 Sep 2022 23:21:54 GMT
Server: Apache
Expires: Sat, 17 Sep 2022 00:21:55 GMT
Cache-Control: max-age=3600
X-Redirect-By: WordPress
Location: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Vary: User-Agent
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8638
Expires: Sat, 17 Sep 2022 01:45:54 GMT
Date: Fri, 16 Sep 2022 23:21:56 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8638
Expires: Sat, 17 Sep 2022 01:45:54 GMT
Date: Fri, 16 Sep 2022 23:21:56 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8638
Expires: Sat, 17 Sep 2022 01:45:54 GMT
Date: Fri, 16 Sep 2022 23:21:56 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F14e8614f-d7d5-4a87-adf0-ab2cfcfb023b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5956
x-amzn-requestid: 19032fea-67c3-404f-bf3e-9b436a61a7f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeNW4G30oAMFw0w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63225c2b-3da099be3781af033658520f;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:56:43 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: FU7qiAFNHIIxNo_zRH3xQzmMMORVZ4Q5W-GgwdhA5ZQJPokQssZv5A==
via: 1.1 74aa91fe819001bcedd882694f52b436.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 12:55:52 GMT
age: 37564
etag: "ff29c630c2ed8a67fe5cd4622dc9f1d23234b58c"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5956
Md5:    3e963daffb462e89d9d67e6193944cc3
Sha1:   ff29c630c2ed8a67fe5cd4622dc9f1d23234b58c
Sha256: cc24af0aedb89ab059b6706b8e51708547ea2ce2b2c2743425810b44af7c68c8
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e43d1ff-79bc-430f-826f-2af5ae602556.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8500
x-amzn-requestid: e1ca6cef-c033-4887-80cf-2014ab8e620c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Ykn5cEnLIAMFrzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324ed09-3afc16cf66fef0e62dd6f3cc;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 21:39:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: pPCI5VDX3PIldEnkLv-VNCFWuykiarYQdLYguNTfmbwxYCDVaS2EcA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 22:01:45 GMT
age: 4811
etag: "28ac45ef155c66dd79a306f14d3b38f597b6a32e"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8500
Md5:    d46a910081eb782408f1a2fa3c6aabba
Sha1:   28ac45ef155c66dd79a306f14d3b38f597b6a32e
Sha256: d5787a6a12d275555c627e3245b37d4e751148345a09d5671b343cfebe7173b4
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62071590-e532-4ed4-a54b-1fb5a73d2f63.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13098
x-amzn-requestid: 5f4b3013-e2e5-4efc-bb37-ad3a48246c32
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YbTBxF3RoAMFkRw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6321320b-146edea60890413e7ebac28b;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 01:44:43 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: a0IVdWhkfwm-zx3d-0NhWnr9hrOxxOxyO0ZwbKA9COU_VHzAGHrTSA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 21:38:59 GMT
age: 6177
etag: "4ae396f23a386b68ea35e348da9fdaabf973e978"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13098
Md5:    591051a00cb3f972934af2f5f945b9c3
Sha1:   4ae396f23a386b68ea35e348da9fdaabf973e978
Sha256: ad4dbe49c25ca214af9c54466551826325e4b2d6db9346e812572be81f7e8133
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca80d3e7-37ec-4908-bc70-808d7f648efe.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5323
x-amzn-requestid: debbdcf5-f9b1-4798-9d58-3e23847d22dc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YIQp3FdgoAMFaMw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631994a5-6e0abb211dbd59e85665f1ac;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 07:07:17 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MkN8DEUY-0hYIeosGmPOK0iEmw3rBeuF-XKG5S9XM80qB2DRq0GJ-Q==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 22:28:41 GMT
age: 3195
etag: "4e4f279e66eac8989833dd5b46706aa50f6e5031"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5323
Md5:    dc2201eab308312a7429e3f22510fc27
Sha1:   4e4f279e66eac8989833dd5b46706aa50f6e5031
Sha256: d5b73edbd1ec0eaffacf03ff232924e376d3af7447aeed6e7197177e20e2bc82
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcaf888ee-3a5f-426b-9b83-8ea161780db3.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5234
x-amzn-requestid: 55e23e9a-f85c-42f2-87b6-aff3646bf1fc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yknn_EFzoAMF2Ag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324ec99-62f023426230c7b46116d4b7;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 21:37:29 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: fb2wN0gTI9OKgDghf1u4DKwrADkYcS5_7LIxaLxmbo0OciwezGh_LA==
via: 1.1 95785220a566cd050f3ad80928463374.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 21:37:55 GMT
age: 6241
etag: "428fe80d3f35758433a6b2cf25e6bcb5f63a6a63"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5234
Md5:    9c807387d303abb2bca1ef14b14c9e26
Sha1:   428fe80d3f35758433a6b2cf25e6bcb5f63a6a63
Sha256: 277a74204dc8bec8a227ca43cdb840b5dda71f74e8aec56606e862e70a5ba19c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77aee3f-a7fb-4d87-92a7-6b33dd4ebf28.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5983
x-amzn-requestid: ba84a9a2-3ebe-4dc9-9604-98d5cccb4f2d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YknUqFxpoAMFrpw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324ec1d-55cd6d0a6e39357c226dd21d;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 21:35:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: J2fbb_t40ioxBvoRAT28rW4ujQw-qpPX3mMN97GBdEK_D8_oDz2g4g==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 21:51:07 GMT
age: 5449
etag: "b9c4cd422b818c859ac6ca928bc9e932a578ce30"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5983
Md5:    e1b42bfa9fc6593b0444391dc260329a
Sha1:   b9c4cd422b818c859ac6ca928bc9e932a578ce30
Sha256: 89eee7200bf7a8bf100f64aee2208d7852265a85feb133fc87846b15cd96e842
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 23:21:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         216.194.164.236
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 16 Sep 2022 23:21:55 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-transform, no-cache, no-store, must-revalidate
Link: <https://www.tuffashop.com.au/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 30025
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (36446), with CRLF, LF line terminators
Size:   30025
Md5:    01ec6a9dcf89d6614caaae02010c750d
Sha1:   818b31bab935b7aaab3c898375bfbb1115f1f202
Sha256: e3d4a25c5326ad2ea4a11bf3a41b1f3e5111af955e85f0b361d53505c13f896d
                                        
                                            GET /wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=2.9.1 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 16 Sep 2022 23:21:56 GMT
Server: Apache
Last-Modified: Mon, 17 May 2021 11:04:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2850
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (16845), with no line terminators
Size:   2850
Md5:    293dc3ab37a779f674430b24add48dda
Sha1:   428c398ef138ecd2c60a3d6cf942bd92559ffdcc
Sha256: 010ebcc43818880d0af83955c60589adaa657ed5ff5defa817176c05eec4cd6e
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 23:21:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 23:21:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 23:21:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /gtag/js?id=AW-617029512 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 16 Sep 2022 23:21:56 GMT
expires: Fri, 16 Sep 2022 23:21:56 GMT
cache-control: private, max-age=900
last-modified: Fri, 16 Sep 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46546
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1720)
Size:   46546
Md5:    823f7b99cc5f2a3dd0979cde79c48512
Sha1:   74ef2660079cb66f2e99e91ea6fdc9fa62d95003
Sha256: 1547f100c2c0667935311bdb280f0ee806902e4292c0a1eddb65fcf740138033
                                        
                                            GET /wp-content/plugins/blog-designer-for-post-and-widget/assets/css/bdpw-public.css?ver=2.2.3.1 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 16 Sep 2022 23:21:56 GMT
Server: Apache
Last-Modified: Wed, 02 Feb 2022 04:41:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2882
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (351), with CRLF line terminators
Size:   2882
Md5:    27ee9a3725da670cc4d42f1c98c6bf03
Sha1:   4610feff658c3e0fa108c87f04ac30c1797b155c
Sha256: 2345bfa188913209e6e5cb2c2a784ac97e3b2a812399869729184d9e63f5c229

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /gtag/js?id=UA-132659890-1&l=dataLayer&cx=c HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 16 Sep 2022 23:21:56 GMT
expires: Fri, 16 Sep 2022 23:21:56 GMT
cache-control: private, max-age=900
last-modified: Fri, 16 Sep 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42381
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1720)
Size:   42381
Md5:    167d5a5984a0ed0dc22449a82d59f0f6
Sha1:   c752b4d79d47fbdf18ad6e364b78d66176043b50
Sha256: 23cd72bf127f63abf252e38b1b78bac1c3b7623c4f89f35bd3ebf486b1b17e2f
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=5.2.16 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 16 Sep 2022 23:21:56 GMT
Server: Apache
Last-Modified: Wed, 28 Apr 2021 08:39:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4788
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (29271), with no line terminators
Size:   4788
Md5:    dd7c1726a47a6a643915b33ff7d58ff1
Sha1:   af1eebb836aa766817ed21c3e35d2a3eb3e1aaba
Sha256: d45cf6975f3b7ec4e2f867d0e6f718b8950a0245132bda965240d0d49c7a2c65

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/css/dist/block-library/theme.min.css?ver=5.2.16 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 16 Sep 2022 23:21:56 GMT
Server: Apache
Last-Modified: Thu, 07 Mar 2019 09:09:59 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 562
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1495), with no line terminators
Size:   562
Md5:    c2c7e785ac554128579699541f35bc59
Sha1:   6cc27ac81033e580ec4abff557c6f0b86886a861
Sha256: 155a9547ffd9bd7c7a88d7ce3e02d6eac5a99151910565fc6ffcf4d5010cb78f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/simple-sitemap/lib/assets/css/simple-sitemap.css?ver=5.2.16 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 16 Sep 2022 23:21:56 GMT
Server: Apache
Last-Modified: Mon, 22 Mar 2021 08:34:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1779
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1779
Md5:    e314e49ac9b3ea324829ffa37f3594a6
Sha1:   46ff68a559c77e15f6303d8cc8a2d042c3eb5a5b
Sha256: 68fd2de615a4d1b7d6afe9c10992f04cac4dc2dfdb37d76246652e833c3b1e51

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=2.4.5 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 16 Sep 2022 23:21:56 GMT
Server: Apache
Last-Modified: Thu, 22 Jul 2021 07:52:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4290
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (6383)
Size:   4290
Md5:    941bd788d366c8fe2f238ba421aeca25
Sha1:   68d11a730dbf3e1c0bed5d7e3f3420266eafc2e3
Sha256: 5918cf3c3a7e96c4c21fb7ac80644dc62252271c2bd250908fda242966d67c8a
                                        
                                            GET /wp-content/plugins/blog-designer-for-post-and-widget/assets/css/slick.css?ver=2.2.3.1 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 16 Sep 2022 23:21:56 GMT
Server: Apache
Last-Modified: Wed, 02 Feb 2022 04:41:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 570
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (332)
Size:   570
Md5:    44fc28e83ed6ab178a2ce0ea508c843a
Sha1:   a827ba9746ae01e06998504f98fa29d3b1c1b25d
Sha256: a66bcad63a3d27d2e682a1de069982f2e51518f52d1335d5da8e17f0fc263361

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 23:21:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.6 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 16 Sep 2022 23:21:57 GMT
Server: Apache
Last-Modified: Thu, 06 Feb 2020 06:34:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 649
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   649
Md5:    76aba5da6a0d822d5b7ed296888c8758
Sha1:   9bd4319bc86fb62d04a7593569084a978fed2793
Sha256: 220aff2fb7a928001bdc0e30d89b683c92c5f41f259759ca04c198a678eab56e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=3.8.2 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 16 Sep 2022 23:21:57 GMT
Server: Apache
Last-Modified: Thu, 22 Jul 2021 07:52:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 8820
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (62655), with no line terminators
Size:   8820
Md5:    ae602d7a441a68e36c75e028185bdc25
Sha1:   37a6b28345ae2fd0f43450a0695760698eba5014
Sha256: ea11c686069d234f068929171313ff8c0c2366f6579b78a95a2e014271b3d3b8

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 16 Sep 2022 23:21:57 GMT
Server: Apache
Last-Modified: Sun, 02 Dec 2018 23:30:11 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 9545
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (5178), with CRLF line terminators
Size:   9545
Md5:    d263d5eaa7c883c3657af7dbb878b8a1
Sha1:   3d7423e15e86031092227572a6bfea1d1400ce9e
Sha256: adf2c10039a96f761770b8744b46b019d0e80b2c1ee5d2eb077bae0e19a23a43
                                        
                                            GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/font-awesome.min.css?ver=5.6 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 16 Sep 2022 23:21:57 GMT
Server: Apache
Last-Modified: Tue, 18 Dec 2018 13:46:31 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 6970
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (30449)
Size:   6970
Md5:    8063116190a065a58dc545fec81d8ce5
Sha1:   20e4bf239450f01eb800bb37ef8e771366e8f8a6
Sha256: ee2fb2d879295b26dab2900936501dd9ebb648e22e0bcb0bc113524c8f23cc20

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 23:21:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/soo-product-filter/assets/css/frontend.css?ver=20160623 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 16 Sep 2022 23:21:57 GMT
Server: Apache
Last-Modified: Sun, 02 Dec 2018 23:30:13 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 670
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   670
Md5:    f8a5557e9588aad0837c7ec877308035
Sha1:   043a6d92cf3aeca4e97ac569ab4eaba948789d50
Sha256: 225b317d63afe8e9b610361574597432484c4939bb4d8b6c8544da5527748b13

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/soo-wishlist/assets/css/wishlist.css?ver=1.1.0 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 16 Sep 2022 23:21:57 GMT
Server: Apache
Last-Modified: Sun, 02 Dec 2018 23:30:14 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 125
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   125
Md5:    e4167a63b5b017aa62eca30c3b283629
Sha1:   b24efe97437f73238b42a8a7ae87645f8219b685
Sha256: ca5137f021778ba8ec9bfbc88cab07369c39626f350793d83ee67b61525caf6a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/variation-swatches-for-woocommerce/assets/css/frontend.css?ver=20200222 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 16 Sep 2022 23:21:57 GMT
Server: Apache
Last-Modified: Thu, 24 Sep 2020 06:26:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 727
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   727
Md5:    94b0b54d0dc03012820339abed20ecf5
Sha1:   965f7c60588ec83be9f85e2beb0786747377c309
Sha256: 86e2d4884878cb3bcd61e3a8b2d07fc48e9902e0eb122639f8f197b57e2e1efe
                                        
                                            GET /wp-content/themes/sober/css/bootstrap.css?ver=3.3.6 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 16 Sep 2022 23:21:57 GMT
Server: Apache
Last-Modified: Tue, 18 Dec 2018 12:49:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 21293
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (540)
Size:   21293
Md5:    486756c49cb717da38606814c67d8a0f
Sha1:   45bd1bfde8ac20780a444e9fb2ec08afa44c6413
Sha256: aca9928dcaef2ef70235699d87594ad24f94dbe11f7e6c2556e743a3a00d6c71
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:57 GMT
Server: Apache
Last-Modified: Fri, 20 May 2016 06:11:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4014
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (9959)
Size:   4014
Md5:    a6c81e2f02bd04160d2de88c4e8f3559
Sha1:   e3f3c91427d785820ca97dabe738f01faf041f36
Sha256: b734d83af5da0eb627e04d3e62ce652b9eb7de19667a1b91da6b93f0ea5d7ffe

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/accordions/assets/frontend/js/scripts.js?ver=5.2.16 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:57 GMT
Server: Apache
Last-Modified: Mon, 17 May 2021 11:01:26 GMT
Accept-Ranges: bytes
Content-Length: 43
Vary: User-Agent
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   43
Md5:    d91f3cef00a21c1f34e9ec59d0e57283
Sha1:   76a0273ba69ca7a499a0578f0d63eba8e7aabb5d
Sha256: abbff281326efaaf147ef1fd2ad7bdf23c69073fb7e826b9c41cac1ebd27332e
                                        
                                            GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:57 GMT
Server: Apache
Last-Modified: Fri, 17 May 2019 17:08:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 33776
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (31997)
Size:   33776
Md5:    acf54950dfb2d6981e941d733b377591
Sha1:   340de686aecd9e6246a32c71e7de63ed69229ceb
Sha256: d97f66caea5260bc71609f0da43ac0d937ecc09253910e5dda4c9fe4dbde20fc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js?ver=6.7.0 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:57 GMT
Server: Apache
Last-Modified: Mon, 22 Mar 2021 08:32:44 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2800
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1071)
Size:   2800
Md5:    56e285e90bf37c3fc88ba98955fb4431
Sha1:   436ea108396b45c91a656c82e32433203f376123
Sha256: cf91608d0e68cf7bc1165a6876bfb015e9f8c71823ca111e8df5d8e7f1137aba
                                        
                                            GET /wp-content/themes/sober/style.css?ver=2.1.0 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 16 Sep 2022 23:21:57 GMT
Server: Apache
Last-Modified: Wed, 05 Feb 2020 05:52:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 45331
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (587)
Size:   45331
Md5:    3423cd8b716da9d01f4f9f0c818ac9c1
Sha1:   fa20b2343252ebb74224773b7631065c6bf5a18d
Sha256: 2212f8e0d8b83788054524c2d5f92b3c7deaf0df16c1b6bbb7f123723ddd0434

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:57 GMT
Server: Apache
Last-Modified: Sun, 02 Dec 2018 23:30:11 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 18090
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (64614), with CRLF line terminators
Size:   18090
Md5:    b300af7280cf82d31e7f0b75c128598c
Sha1:   66b506bb8254f08ffe57c2b1e42722b73464670f
Sha256: feffecee338ad546654ada73f52882c96356f6882a3e59cb540878415d77db1d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:57 GMT
Server: Apache
Last-Modified: Thu, 22 Jul 2021 07:52:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3533
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (9172)
Size:   3533
Md5:    c5ed233484e496839d8a5c379017e476
Sha1:   2c281f9e4e88b9f64f97c20ddcb1003064705bca
Sha256: 7e7f8ed6d44a1fc906799b6c41f26575b45176b5abb8ff093bb8fe0babd7c078
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.8.2 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:57 GMT
Server: Apache
Last-Modified: Thu, 22 Jul 2021 07:52:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1017
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (2750), with no line terminators
Size:   1017
Md5:    1b8fe2644fef57191ece9c6b91548028
Sha1:   9f6dbeab0f48032a1985662e325a7d2b02370290
Sha256: 6d8ec46817a79a5d60f41727cd986f94cdc4543092041a34d0c7c3b1d875161d
                                        
                                            GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=5.6 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:57 GMT
Server: Apache
Last-Modified: Tue, 18 Dec 2018 13:46:31 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 351
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   351
Md5:    caa6ca5d23d1adf35e63b219631fff8e
Sha1:   786acb0cf5a9033939c4c4b8f5c4109e2e15401f
Sha256: 50973c0a98e9463c4417b2ccd9424a5f89a9924b80878548f19422b25d23d901

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:57 GMT
Server: Apache
Last-Modified: Sun, 02 Dec 2018 23:30:11 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 38337
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (27287), with CRLF line terminators
Size:   38337
Md5:    33ad97fbd5f6d0ad97af5461cc857da3
Sha1:   a975057df83659e526059661a2dae1a5a4d23fe2
Sha256: ba0476734001e6e0808e7882a24852cf298dacac37b2beaf2c17718d2032afb2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:57 GMT
Server: Apache
Last-Modified: Thu, 22 Jul 2021 07:52:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 770
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1272)
Size:   770
Md5:    de79e5df89a53b4224c76e00dfdbb587
Sha1:   dfa6b1cfdc67e5039c2c0725737db2056431811c
Sha256: 26b83c52b4e5c60a0d23b5c487d25e5fa5667a7259d1f66c4589941e5f8a4cc3

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce-google-adwords-conversion-tracking-tag/js/public/wooptpm.js?ver=1.10.4 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:57 GMT
Server: Apache
Last-Modified: Mon, 17 May 2021 11:04:55 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 6927
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   6927
Md5:    af3269d489d3d01b8ea4ce181c6493a7
Sha1:   e947161b445ca6e560fe0f46e3bc2edd8a8a4fc2
Sha256: ac4fa79ba7c45bf11916b2e782e965b2f18026e325b35996af1017ca535c1891

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce-currency-switcher/css/front.css?ver=1.3.4.3 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 16 Sep 2022 23:21:57 GMT
Server: Apache
Last-Modified: Mon, 17 May 2021 11:05:11 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1029
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   1029
Md5:    c3a153d7fba98c988e1edaaee53d09bc
Sha1:   1829dae439232be7ada471b4e7b074f7c35c3ab2
Sha256: 7743427b50ea27a85a3b71387f9e47517dacb5bc9792505a8d5e44a67811a2cb
                                        
                                            GET /wp-content/plugins/cf7-redirection/js/wpcf7-redirect-script.js HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:57 GMT
Server: Apache
Last-Modified: Tue, 02 Mar 2021 05:49:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 867
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text
Size:   867
Md5:    89763009613371867caebc3620f72dca
Sha1:   a5a03fe608825f76db8616b4ea598ceabdeaa61c
Sha256: c557140f351e473f4dbb5a761574edb3218cb09a3bcd0f5f4a683ac7e9c924cd

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /css?family=Poppins%3A300%2C400%2C500%2C600%2C700%7COswald&subset=latin%2Clatin-ext&ver=5.2.16 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 16 Sep 2022 23:21:56 GMT
date: Fri, 16 Sep 2022 23:21:56 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   4711
Md5:    ea26c7d7635a03f1fab106f75b97e727
Sha1:   a57cfbfef1dd70f34e76357d41b3f59adff9e214
Sha256: a415528b302be661ea3fda97f42a2ec45e0ce90e025111d49c75f605b91d5efc
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:57 GMT
Server: Apache
Last-Modified: Thu, 22 Jul 2021 07:52:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 981
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1680)
Size:   981
Md5:    2238631cf6be3be50e2ab84374f6381d
Sha1:   f1525686e4d6b7d39727aaf30db49ac9b2bc3fa8
Sha256: 8e46659318c5590dc20944c2d2464b93a06a89e0a4f7353112da4cf06bc213e6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.8.2 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:57 GMT
Server: Apache
Last-Modified: Thu, 22 Jul 2021 07:52:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 619
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1472), with no line terminators
Size:   619
Md5:    e5cffe0bdc96a56424c5fb6c192274d0
Sha1:   53ee24a03f243c428a4460dac7da2862ce1800e8
Sha256: 5ab78456ac52f7b3e26e317fa2816d25fe113cf1f0af71adac416773c9e20851
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 23:21:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1_FvsUZiZQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tuffashop.com.au
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Sep 2022 21:09:41 GMT
expires: Tue, 12 Sep 2023 21:09:41 GMT
cache-control: public, max-age=31536000
age: 353536
last-modified: Mon, 18 Jul 2022 19:24:04 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 9840, version 1.0\012- data
Size:   9840
Md5:    afda6e429fd299054de28e1f157c683d
Sha1:   c1847d6f3df5fe11d5e96fd5e6a59b73ff7ed96b
Sha256: 81cd29d1413ecf75834fb3ce1da572fe5c39e53b22c61f5dafec5b14ed4ee12e
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 23:21:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.8.2 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:57 GMT
Server: Apache
Last-Modified: Thu, 22 Jul 2021 07:52:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1042
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (2940), with no line terminators
Size:   1042
Md5:    e02277bbb27796df7a21fbecacff427e
Sha1:   89ae0705044f9532359034bfb9a6c462d9fc07a9
Sha256: 2176445638719be847e19c307532a59b3d31ec744268b6e261dd324d9913f1d4
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=3.8.2 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:57 GMT
Server: Apache
Last-Modified: Thu, 22 Jul 2021 07:52:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3488
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (13225), with no line terminators
Size:   3488
Md5:    c4a41e864bd7789c4d182c9c5fafbaa0
Sha1:   9d22a90cf586d8f342fcc48fba0e0953bff259b9
Sha256: 9b2270f7b3708bca898f4866400780ecf0599c652363c6687d849e76dd5ca6f6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/wp-util.min.js?ver=5.2.16 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:57 GMT
Server: Apache
Last-Modified: Wed, 28 Apr 2021 08:39:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 563
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1042), with no line terminators
Size:   563
Md5:    f0e45443d3b88766b9df4187bf9a1c51
Sha1:   66b78fc82ff127c78c5565d6ea557c8c58fef3de
Sha256: 44cfadc6574891ab7a9b2aadfc6f6fcb33b7f565854644652db2545137f2f0b2
                                        
                                            GET /wp-includes/js/underscore.min.js?ver=1.8.3 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:57 GMT
Server: Apache
Last-Modified: Wed, 28 Apr 2021 08:39:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5634
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (16010), with no line terminators
Size:   5634
Md5:    070849fee3018d72378b08358e03f4f6
Sha1:   14e74888118980062ece9e51760b4bad2604be9a
Sha256: cc86a0410d67e3de5271bde6263019bdc6e9f1b063370c010a8282f9ea4f3e5c
                                        
                                            GET /wp-content/themes/sober/js/sticky-kit.min.js?ver=1.1.3 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:57 GMT
Server: Apache
Last-Modified: Tue, 18 Dec 2018 12:49:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1411
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (546)
Size:   1411
Md5:    5e4b292edc9592e49efdfd287423b2d6
Sha1:   41532059d1029d9d47780e1a44c4cadf6d1cfc08
Sha256: d9d4646d51ba646692ff44ed932b41cf62cdd9ac7bea061299d7569d5d292f74
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/zoom/jquery.zoom.min.js?ver=1.7.21 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:58 GMT
Server: Apache
Last-Modified: Thu, 22 Jul 2021 07:52:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1176
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (2550)
Size:   1176
Md5:    55c40b1da51c9f88b684a66c0b0b380e
Sha1:   194c90b6240f0430c5786787c0cf532f987a1ddd
Sha256: 71494f2339302138d11cc5b6bc73ea7d74c6ec4632a33858e16d516552ce2707

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/imagesloaded.min.js?ver=3.2.0 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:58 GMT
Server: Apache
Last-Modified: Wed, 23 May 2018 10:05:31 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2551
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (7996)
Size:   2551
Md5:    38b694df325f3d381d4d839d33cfb59c
Sha1:   82c4d20653dc93197b17e84a7b1274dac4f49588
Sha256: e220e69ff51b9e853e6206a7d3204c8129e175141f5dd4e93e67a72fefdaa3b5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/sober/js/jquery.fitvids.js?ver=1.1 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:58 GMT
Server: Apache
Last-Modified: Tue, 18 Dec 2018 12:49:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1298
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document, ASCII text
Size:   1298
Md5:    31bd6f103266422712d7f21fd221259c
Sha1:   478fe2a563f8edd20468c878ad0c8dabcc506159
Sha256: 4f7cd006453252967505df8f72f72333de4ba5b2734773aaeca3f250fcf0b5e1
                                        
                                            GET /wp-content/plugins/sober-addons/assets/js/isotope.pkgd.min.js?ver=3.0.1 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:58 GMT
Server: Apache
Last-Modified: Tue, 18 Dec 2018 13:46:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 9678
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (32010)
Size:   9678
Md5:    5ee1b1e9038a43640a018d799e4f5b96
Sha1:   0ea161edfbb2f816c55a3322d77decaae80bdf18
Sha256: 12b67b8bf4fbc2d04f396c4f4f52af1b9dcc5f025647bc6a8833a2936f053bdc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/sober/js/owl.carousel.min.js?ver=2.2.1 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:58 GMT
Server: Apache
Last-Modified: Tue, 18 Dec 2018 12:49:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 10926
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (32000)
Size:   10926
Md5:    694074c04c049ebfa9fab7d7b5363875
Sha1:   613568d2ddb188144906c19beab972314bfde12d
Sha256: 3c721f2669ccc0655d376af0d8b3510d111516b179ac678edd2802c28fa928ab

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/sober/js/simple-scrollbar.min.js?ver=0.2.1 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:58 GMT
Server: Apache
Last-Modified: Tue, 18 Dec 2018 12:49:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 840
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1986), with no line terminators
Size:   840
Md5:    53eb21f6e6822a3db31b1071bce20b76
Sha1:   587410e0af86271fe33b716c8388ad4171969dae
Sha256: ac3edcc3b2621f0ed9235351979047c0d189aa707e05b7083ac7a353ad473eab
                                        
                                            GET /wp-content/themes/sober/js/script.js?ver=2.1.0 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:58 GMT
Server: Apache
Last-Modified: Tue, 18 Dec 2018 12:49:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 12846
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   12846
Md5:    c4a52c64d5e91ff055f2e1190e634303
Sha1:   ada879a773c02f5fb981386a535e3821ad02789c
Sha256: 75e738ecdb99e838852f09a52d33e2a69bb86b15ffffef63b3f107dbd4a45590

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce-google-adwords-conversion-tracking-tag/js/public/google-ads.js?ver=1.10.4 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:58 GMT
Server: Apache
Last-Modified: Mon, 17 May 2021 11:04:55 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 951
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   951
Md5:    ffd9b9a386a7736c3fa8adb4f159e900
Sha1:   8ab663eaf6cdac10676d03b7975c68f815ff227d
Sha256: fd8d58ce4b878ce0cbd2155121afaebd6421d234fc01888211b54a22fccc0af3

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:58 GMT
Server: Apache
Last-Modified: Wed, 28 Apr 2021 08:39:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1811
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (3704)
Size:   1811
Md5:    8681c8c59fe450daeacc2f499e351dfe
Sha1:   1bedefb4c8fa62628816eaeea85677d637a6e4e0
Sha256: d2160a6f66510d16512fd1fd387aee7d3763f0b4799273125faa777128dc5430

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:58 GMT
Server: Apache
Last-Modified: Wed, 28 Apr 2021 08:39:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2543
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (6603)
Size:   2543
Md5:    ec6dcd00af82068551b3a60045c86824
Sha1:   140ac89dc8ae6ffebecb269e0ebd88bfbc0c2686
Sha256: 1a9a7a2329ce40bd74814e4f6acaddce722e9b53187fb109f39e793ffe50c46e
                                        
                                            GET /wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:58 GMT
Server: Apache
Last-Modified: Wed, 28 Apr 2021 08:39:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 991
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (2927)
Size:   991
Md5:    0a9656f23585bbaa3376e904fa025a7f
Sha1:   37b57e7fa8a0ab85bc257573847acc1b4fa94dcc
Sha256: 4c9c329df2e0b3306dd4838ce24ae58eb441bcf4c6067899a97323c8d688c59d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/ui/slider.min.js?ver=1.11.4 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:58 GMT
Server: Apache
Last-Modified: Wed, 28 Apr 2021 08:39:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3053
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (10694)
Size:   3053
Md5:    10aa8ebc5880a6468df6f5fc1e6e6382
Sha1:   26c55c30b7ab074ba81a638125fd256108df0591
Sha256: 4c64c3fa0a59f218045cc60a960df7e37c7e0157cc886fb0758c200bbe02ac95
                                        
                                            GET /wp-includes/js/jquery/jquery.serialize-object.js?ver=0.2 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:58 GMT
Server: Apache
Last-Modified: Thu, 20 Jan 2011 23:09:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 443
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   443
Md5:    43e4f66776ba964a2ad3b223a7f0daa8
Sha1:   7291860c4a339029d87738369cbab0b26d2796f6
Sha256: 83cd0d9e81953bfc26f3fcfbd1dc8ef67cf6e514948b2d82e977f172710c1a61

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/soo-product-filter/assets/js/frontend.js?ver=20160623 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:58 GMT
Server: Apache
Last-Modified: Sun, 02 Dec 2018 23:30:13 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1906
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1906
Md5:    6abcd5a812b6e2a18ca23cb0acea6aad
Sha1:   788238953f2a91d90ebe1c5e473a49ba02a65cdb
Sha256: 4db79d6ac3329e697a9b213a7e5d9587f2ae8869326ba72f1c72127f19930e84
                                        
                                            GET /wp-content/plugins/soo-wishlist/assets/js/wishlist.js?ver=1.1.0 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:58 GMT
Server: Apache
Last-Modified: Sun, 02 Dec 2018 23:30:14 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1085
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1085
Md5:    9c9b149e623f88d52542f97889daabb7
Sha1:   ab1f860159b89937d2a700e74ad8ac22875f32b1
Sha256: 36db7bf909358b6693639c8d8a41b2e8860ab5d9298fd2ad7f94d75c67d97dcc
                                        
                                            GET /wp-content/plugins/variation-swatches-for-woocommerce/assets/js/frontend.js?ver=20200317 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:58 GMT
Server: Apache
Last-Modified: Thu, 24 Sep 2020 06:26:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 896
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   896
Md5:    4f55d100029dd13159cacd31f2f7e127
Sha1:   be01d00f8a1048a95e3c49edcf57b5ad63cc809e
Sha256: b51963a5cdbe6b90e8e3903aac1e0ba9a2a2ad1a65b92173f710ad2f3ab8cfe2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/sober-addons/assets/js/jquery.countdown.js?ver=2.0.4 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:58 GMT
Server: Apache
Last-Modified: Tue, 18 Dec 2018 13:46:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2590
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   2590
Md5:    8305d5bf3851fb68c5eed12fe107e104
Sha1:   9c8012e445eb8dcbf7d9c824765ed744645b714d
Sha256: 6361ab2509bae5dc1098ce8b72e4aceb7b35f04377a34ec09e813400a3713b10

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/sober-addons/assets/js/circle-progress.js?ver=1.1.3 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:58 GMT
Server: Apache
Last-Modified: Tue, 18 Dec 2018 13:46:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3668
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   3668
Md5:    54e429a820d43365cd06568539ae4df9
Sha1:   6502a89750956d899911354dce2f2186fb3828dc
Sha256: 72721096dc32fab7ec5188964fc0230af34fdd28d786f160f8f2abff1eb58306

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/sober-addons/assets/js/shortcodes.js?ver=20160725 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:58 GMT
Server: Apache
Last-Modified: Tue, 18 Dec 2018 13:46:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3355
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   3355
Md5:    9455a87fe0c3c6a263225295d9a0df9b
Sha1:   a7a41049c5181473b5bc2f362d46e00a171be550
Sha256: b877eff2632fd6445ce070d2cd99a2cb32ed2bcd8dc37fe5e3d1df349e5936e9

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/wp-embed.min.js?ver=5.2.16 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:58 GMT
Server: Apache
Last-Modified: Wed, 28 Apr 2021 08:39:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 739
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1391), with no line terminators
Size:   739
Md5:    60d8829560031a011771efa2f39708af
Sha1:   a4689c3b70f773deb896eec78028e0902ef15097
Sha256: a0176bd4cc53bd2e920b0dfd10f56d2a4a3820d671539414ef4b3e2b3e50b9b7

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/jquery-ui-touch-punch/jquery-ui-touch-punch.min.js?ver=3.8.2 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:58 GMT
Server: Apache
Last-Modified: Thu, 22 Jul 2021 07:52:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 596
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (1090)
Size:   596
Md5:    2f180f38e80c18ed2e494aeaf2b60ec9
Sha1:   e5c943d63d89efbf970d145eb95c6498b50d026e
Sha256: f11089e0f2e6cbc7fc0597601c7dfbb6c0fee6fad5dbdcfe40b9076c4d95b6e2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce-currency-switcher/js/price-slider_33.js?ver=1.3.4.3 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:58 GMT
Server: Apache
Last-Modified: Mon, 17 May 2021 11:05:11 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1025
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   1025
Md5:    7a84ecc900989ca5b41c5dd2b7c8faf8
Sha1:   c53789e1da8442dc407ce4a49b194cadee56804d
Sha256: ca0faa5c6bbba3e6b56df855c5e7aefd362175f893340dab270841f5a4869968

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce-currency-switcher/js/jquery.ddslick.min.js?ver=1.3.4.3 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:58 GMT
Server: Apache
Last-Modified: Mon, 17 May 2021 11:05:11 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2373
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document, Unicode text, UTF-8 text, with very long lines (7149), with CRLF line terminators
Size:   2373
Md5:    55cb6402937f77ad558a6514e74ad068
Sha1:   4f29961ac8dd382ba3cae536f728e7cdd4b4b03d
Sha256: 240e41349f90e2c0692fcacddd3d9231e99310bfcf09e0989f97bbfade0f2c85

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce-currency-switcher/js/front.js?ver=1.3.4.3 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 23:21:58 GMT
Server: Apache
Last-Modified: Mon, 17 May 2021 11:05:11 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4305
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   4305
Md5:    54994c151d6b0cc78a18c5b3c5f1af8f
Sha1:   e44263bd71c5c1cd8e5c09ea2c0067b907896761
Sha256: 473bf809faf74faae78265a5293a5ce971cdb975672a82f2b61e0b3fbdfe88b1

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/fonts/oswald/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUZiYySUhiCnAw.woff HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Cookie: _gcl_au=1.1.1201656133.1663370500
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Date: Fri, 16 Sep 2022 23:21:58 GMT
Server: Apache
Last-Modified: Fri, 22 Jul 2022 01:34:35 GMT
Accept-Ranges: bytes
Content-Length: 13268
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 13268, version 1.1\012- data
Size:   13268
Md5:    f9d359c5efe44f13a0fe803d4f3cabe2
Sha1:   e415ae72396fef4eb6e21c17472625f6ba987d5a
Sha256: 77b08ed80d35c1015b13f7669b0b50f41b0a1c88112f00b3fce8510473e4580a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/sober/fonts/SofiaProLight-webfont.woff2 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.tuffashop.com.au/wp-content/themes/sober/style.css?ver=2.1.0
Cookie: _gcl_au=1.1.1201656133.1663370500
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Date: Fri, 16 Sep 2022 23:21:58 GMT
Server: Apache
Last-Modified: Tue, 18 Dec 2018 12:49:53 GMT
Accept-Ranges: bytes
Content-Length: 21428
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 21428, version 2.0\012- data
Size:   21428
Md5:    63bfaeafbb5e7d855c56e113458f701e
Sha1:   c0cc130158ce0f7349ad84bddb8627886b59bf0d
Sha256: 65b254077cf4e24fc4e1a1be41b875c97955fd9ca409b954cadeb322abd7bf28

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2018/12/T_LOGO.png HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 16 Sep 2022 23:21:58 GMT
Server: Apache
Last-Modified: Thu, 20 Jun 2019 06:57:14 GMT
Accept-Ranges: bytes
Content-Length: 7641
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 1303 x 232, 8-bit colormap, non-interlaced\012- data
Size:   7641
Md5:    a13d4401755d4cfaf243298bfc2e1164
Sha1:   0c97ba9214d7fddccefe6a80b42ab593c91dc33a
Sha256: 5ed1d42a88cd59a1933b3dfa990506aee6b87c19d92a70c2c19e570162d297cb
                                        
                                            GET /wp-content/uploads/2018/06/TUFFA.png HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 16 Sep 2022 23:21:58 GMT
Server: Apache
Last-Modified: Fri, 01 Jun 2018 05:17:52 GMT
Accept-Ranges: bytes
Content-Length: 1889
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 109 x 53, 8-bit/color RGBA, non-interlaced\012- data
Size:   1889
Md5:    09c5d53a92e354c608b495903c800071
Sha1:   1aa81621c24a578ae9b3c5d78080c06c5511c0c8
Sha256: c255e6afe548509b990b7807c5e28eac8f8c3ae07cf410c074ae6005f6898b90
                                        
                                            GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.tuffashop.com.au/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/font-awesome.min.css?ver=5.6
Cookie: _gcl_au=1.1.1201656133.1663370500
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Date: Fri, 16 Sep 2022 23:21:58 GMT
Server: Apache
Last-Modified: Tue, 18 Dec 2018 13:46:31 GMT
Accept-Ranges: bytes
Content-Length: 77160
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size:   77160
Md5:    af7ae505a9eed503f8b8e6982036873e
Sha1:   d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
Sha256: 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
                                        
                                            POST /?wc-ajax=get_refreshed_fragments HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://www.tuffashop.com.au
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Cookie: _gcl_au=1.1.1201656133.1663370500
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/json; charset=UTF-8
                                        
Date: Fri, 16 Sep 2022 23:21:58 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 454
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive


--- Additional Info ---
Magic:  JSON data\012- HTML document, ASCII text, with very long lines (901), with no line terminators
Size:   454
Md5:    524117aad090767827cf5e6ef6de117a
Sha1:   12322b6e0fd883f637a5c303d0ba4387677a9ab2
Sha256: 9d6309bb9422c327af84828b62e0c93746b77906659d97bc6e942f378fbc8907

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /?wc-ajax=get_refreshed_fragments HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://www.tuffashop.com.au
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Cookie: _gcl_au=1.1.1201656133.1663370500
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/json; charset=UTF-8
                                        
Date: Fri, 16 Sep 2022 23:21:58 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 454
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive


--- Additional Info ---
Magic:  JSON data\012- HTML document, ASCII text, with very long lines (901), with no line terminators
Size:   454
Md5:    524117aad090767827cf5e6ef6de117a
Sha1:   12322b6e0fd883f637a5c303d0ba4387677a9ab2
Sha256: 9d6309bb9422c327af84828b62e0c93746b77906659d97bc6e942f378fbc8907

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Fri, 16 Sep 2022 22:41:12 GMT
expires: Sat, 17 Sep 2022 00:41:12 GMT
cache-control: public, max-age=7200
age: 2447
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   20006
Md5:    56f5d7f608e25d64207135f045f988cb
Sha1:   901eb59372ae330ae85e1384da93479b21ae1082
Sha256: 1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 23:21:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/uploads/2018/05/BG.jpg HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Cookie: _gcl_au=1.1.1201656133.1663370500
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 16 Sep 2022 23:21:58 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-transform, no-cache, no-store, must-revalidate
Link: <https://www.tuffashop.com.au/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 30653
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive


--- Additional Info ---
Magic:  data
Size:   23799
Md5:    6e8994deba76f1680db3a0343e2f63c2
Sha1:   a6749603ec1e4522d4ebf7c477fedbb4b55529d4
Sha256: c352c12d0790e53a3af66ec107b938442e4539d1cefb8f3bd0e572df5dbc1aa1
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 23:21:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/uploads/2018/12/cropped-TUFFA_CUFF_PANTS_BACK_web-192x192.jpg HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Cookie: _gcl_au=1.1.1201656133.1663370500
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Fri, 16 Sep 2022 23:21:59 GMT
Server: Apache
Last-Modified: Mon, 11 Feb 2019 03:07:19 GMT
Accept-Ranges: bytes
Content-Length: 5457
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 192x192, components 3\012- data
Size:   5457
Md5:    07eb1f8f6ee8acae44814dee3c135060
Sha1:   6d14e1f783490bbfd7dfb22f1a99fcfe45e073b4
Sha256: 46dfbbbf6398be7c706a39718a53a9b10558bc27398dcea67e5cc302684a7255
                                        
                                            GET /wp-content/uploads/2018/12/cropped-TUFFA_CUFF_PANTS_BACK_web-32x32.jpg HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Cookie: _gcl_au=1.1.1201656133.1663370500
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Fri, 16 Sep 2022 23:21:59 GMT
Server: Apache
Last-Modified: Mon, 11 Feb 2019 03:07:19 GMT
Accept-Ranges: bytes
Content-Length: 984
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 32x32, components 3\012- data
Size:   984
Md5:    45b0e9dd7c615c586d82b12810609836
Sha1:   72179ef74b7f77b52a03f7974baf927c3eb5ac41
Sha256: 1d4e5d8864b7682981e5d0c3b9632beb501f0e502ec6c21a77991d7ae6b5c95e
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 23:21:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 23:21:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /pagead/viewthroughconversion/617029512/?random=1663370503136&cv=9&fst=1663370503136&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa9e0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.tuffashop.com.au%2Fusps%2Fhome.php%3Fip%3D80.167.121.81%26countrycode%3Ddk%26os%3Dmac%2Bos%2Bx&tiba=Page%20not%20found%20-%20Tuffa%20Shop&auid=1201656133.1663370500&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.211.2
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 16 Sep 2022 23:21:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1099
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 16-Sep-2022 23:36:59 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2428), with no line terminators
Size:   1099
Md5:    cbcb154032aebf2a8e7f31a370501033
Sha1:   209d000a8f33dd9e57de0689b0856b9b3e8d6321
Sha256: 065a5da7ba4280ee21b158ea47d6eaff1d67ee91722d0a15a4cb2ce1b6e5dd22
                                        
                                            GET /pagead/viewthroughconversion/617029512/?random=1663370503134&cv=9&fst=1663370503134&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa9e0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.tuffashop.com.au%2Fusps%2Fhome.php%3Fip%3D80.167.121.81%26countrycode%3Ddk%26os%3Dmac%2Bos%2Bx&tiba=Page%20not%20found%20-%20Tuffa%20Shop&auid=1201656133.1663370500&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.211.2
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 16 Sep 2022 23:21:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1098
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 16-Sep-2022 23:36:59 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2428), with no line terminators
Size:   1098
Md5:    5ad4d07aa4b2f65f78ec8bdd4c3d2786
Sha1:   c177be0b3d1bdcdaf393b60f860254a3d6fee4aa
Sha256: 47fc91107893e2c92d3dcc39fbfa82117417bdd89d27a2636c2426200a8deedf
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 23:21:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /wp-admin/admin-ajax.php HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 28
Origin: https://www.tuffashop.com.au
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Cookie: _gcl_au=1.1.1201656133.1663370500
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/json; charset=UTF-8
                                        
Date: Fri, 16 Sep 2022 23:21:58 GMT
Server: Apache
Access-Control-Allow-Origin: https://www.tuffashop.com.au
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Referrer-Policy: strict-origin-when-cross-origin
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-transform, no-cache, no-store, must-revalidate
Set-Cookie: tk_ai=woo%3AksLHGeu%2BQbi1VosN%2FV%2BMclzD; path=/
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 181
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   181
Md5:    49230da711065103f7aa09be8512a937
Sha1:   14f3707b8e30e5978786c066d6adabd765d85e27
Sha256: e552150e897a3baf64888fce7920147a8d88576827c430567b4cce2065b01292

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 23:22:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 23:22:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-132659890-1&cid=2124086641.1663370503&jid=1252350075&gjid=889513323&_gid=61844023.1663370503&_u=YEBAAUIoAAAAAC~&z=1072524294 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.tuffashop.com.au
Connection: keep-alive
Referer: https://www.tuffashop.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.251.1.157
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://www.tuffashop.com.au
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 16 Sep 2022 23:22:00 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  very short file (no magic)
Size:   1
Md5:    c4ca4238a0b923820dcc509a6f75849b
Sha1:   356a192b7913b04c54574d18c28d46e6395428ab
Sha256: 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-132659890-1&cid=2124086641.1663370503&jid=1157114320&gjid=1048059819&_gid=61844023.1663370503&_u=aGDAAUIpAAAAAC~&z=317305418 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.tuffashop.com.au
Connection: keep-alive
Referer: https://www.tuffashop.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.251.1.157
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://www.tuffashop.com.au
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 16 Sep 2022 23:22:00 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  very short file (no magic)
Size:   1
Md5:    c4ca4238a0b923820dcc509a6f75849b
Sha1:   356a192b7913b04c54574d18c28d46e6395428ab
Sha256: 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
                                        
                                            GET /pagead/1p-user-list/617029512/?random=1663370503134&cv=9&fst=1663369200000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa9e0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.tuffashop.com.au%2Fusps%2Fhome.php%3Fip%3D80.167.121.81%26countrycode%3Ddk%26os%3Dmac%2Bos%2Bx&tiba=Page%20not%20found%20-%20Tuffa%20Shop&async=1&fmt=3&is_vtc=1&random=289101993&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 16 Sep 2022 23:22:00 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /pagead/1p-user-list/617029512/?random=1663370503136&cv=9&fst=1663369200000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa9e0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.tuffashop.com.au%2Fusps%2Fhome.php%3Fip%3D80.167.121.81%26countrycode%3Ddk%26os%3Dmac%2Bos%2Bx&tiba=Page%20not%20found%20-%20Tuffa%20Shop&async=1&fmt=3&is_vtc=1&random=907417698&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 16 Sep 2022 23:22:00 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 23:22:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-admin/admin-ajax.php?action=wooptpm_get_cart_items HTTP/1.1 
Host: www.tuffashop.com.au
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.tuffashop.com.au/usps/home.php?ip=80.167.121.81&countrycode=dk&os=mac+os+x
Cookie: _gcl_au=1.1.1201656133.1663370500; _ga=GA1.3.2124086641.1663370503; _gid=GA1.3.61844023.1663370503; _gat_gtag_UA_132659890_1=1; _gat=1; tk_ai=woo%3AksLHGeu%2BQbi1VosN%2FV%2BMclzD
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         216.194.164.236
HTTP/1.1 200 OK
Content-Type: application/json; charset=UTF-8
                                        
Date: Fri, 16 Sep 2022 23:22:00 GMT
Server: Apache
X-Robots-Tag: noindex
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Referrer-Policy: strict-origin-when-cross-origin
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-transform, no-cache, no-store, must-revalidate
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 22
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   22
Md5:    061faf60a30dde2f20ba8f454c3020de
Sha1:   1940a26a9be338cb36f5b50a1d638ef36b124d51
Sha256: 21947b02ead137acb20e602e9448c7c453b2836d1a755aadd5e1c61ecd2eb034
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48175642-3cf3-4778-a740-c2b7f09853e1.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7465
x-amzn-requestid: 658c3d9d-1527-4126-8639-1e9701ddcda9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Ybve0FbpIAMFhhw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63215f91-7ac260200d96b950512fe55f;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 04:58:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: bvwcDSHxkxIRHJzNBtOpWhK-vRYFCuPHX6jCaiEMFhFGmjqAGLc2og==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 21:48:34 GMT
age: 5609
etag: "beba56afde25abd753d162aaaa95b5e01ba60fb6"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7465
Md5:    c1898b54c79423102c5bd010ac7b1220
Sha1:   beba56afde25abd753d162aaaa95b5e01ba60fb6
Sha256: b93af660bef22579c03f943df26147b9e364915eaf011464d6891331138a2b6b
                                        
                                            GET /gtag/js?id=UA-132659890-1 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tuffashop.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 16 Sep 2022 23:21:56 GMT
expires: Fri, 16 Sep 2022 23:21:56 GMT
cache-control: private, max-age=900
last-modified: Fri, 16 Sep 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42369
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---