Report - healthfinance.com.au/wp-includes/IXR/youngbawz1.exe

Report Overview

Visited public
2025-03-22 21:54:33
Tags
URL
healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Finishing URL
healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
IP / ASN
116.90.57.33
#55803 Hostopia Australia Web Pty Ltd
Title
Page not found – Health & Finance Integrated

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
salesiq.zohopublic.com.au	unknown	unknown	2020-08-08	2025-03-15	802 B	31 kB	103.138.128.75
to.getnitropack.com	17316	2018-04-24	2020-05-19	2025-03-16	470 B	233 B	104.18.39.246
ajax.googleapis.com	12905	2005-01-25	2012-05-22	2025-03-19	448 B	14 kB	142.250.74.170
salesiq.zoho.com.au	unknown	unknown	2020-03-28	2025-03-15	443 B	162 kB	103.138.128.75
healthfinance.talhatonmoy.com	unknown	2019-12-02	2025-03-22	2025-03-22	486 B	25 kB	185.151.30.172
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2025-03-19	1.5 kB	19 kB	142.250.74.10
css.zohocdn.com	15316	2019-04-16	2019-07-30	2025-03-22	4.6 kB	458 kB	185.20.209.147
www.googletagmanager.com	75	2011-11-11	2012-10-04	2025-03-19	2.0 kB	1.2 MB	142.250.74.136
js.zohocdn.com	14060	2019-04-16	2019-07-30	2025-03-22	2.1 kB	1.5 MB	185.20.209.147
vts.zohopublic.com.au	unknown	unknown	2020-03-28	2025-02-21	923 B	174 B	103.138.128.121
nitroscripts.com	unknown	2023-10-29	2023-11-20	2025-03-16	442 B	1.4 kB	172.64.154.248
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-03-19	2.8 kB	85 kB	142.250.178.99
healthfinance.com.au	unknown	unknown	2015-09-23	2025-03-22	46 kB	5.7 MB	116.90.57.33

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2025-03-22 21:54:12	high	Client IP	116.90.57.33	ET MALWARE EXE Download Request To Wordpress Folder Likely Malicious

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (73)

	URL	From	Size	First Seen	Last Seen
	healthfinance.com.au/wp-includes/IXR/youngbawz1.exe	EventHandler	16 B	2023-04-10	2025-04-26
Pretty URL healthfinance.com.au/wp-includes/IXR/youngbawz1.exe IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-10 15:57 Last Seen2025-04-26 00:10 Times Seen55572 Hash 7c3c3ddeb80438dcbb3d081d2d00e152 5a4016732ee72ec77b4f6ab17047bcea6d2ea34d 321b4f657afbf8ba49518e6ab4cbad07ea967d0b4c68f71c7deed05ed09c1187 Loading...

	healthfinance.com.au/wp-includes/IXR/youngbawz1.exe	ScriptElement	80 B	2023-03-08	2025-03-22
Pretty URL healthfinance.com.au/wp-includes/IXR/youngbawz1.exe IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 01:04 Last Seen2025-03-22 21:54 Times Seen3 Hash 48fb0837ebe3fc1987a65f7ef9163577 61d0530048e88fa36f2e896814c4dbcaab1cf3f5 2822cfff24fe793ee05cd858d49bd3452866fce7c0af376abd4f2eba184c7e7b Loading...

	healthfinance.com.au/wp-includes/IXR/youngbawz1.exe	ScriptElement	269 B	2023-03-07	2025-03-22
Pretty URL healthfinance.com.au/wp-includes/IXR/youngbawz1.exe IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:34 Last Seen2025-03-22 21:54 Times Seen26 Hash 45afc2a4cb2c8089ffec450505462ded 6ad842cdb1efea01cc501aab92845589d6d5e77f bfee0b73d70907b27c81ad2e684259c52fe42611bb41c0a4b86e9bbdb32f0a2f Loading...

	healthfinance.com.au/wp-content/themes/niva/js/bootstrap.min.js?ver=3.3.1	ScriptElement	36 kB	2023-03-07	2025-03-22
Pretty URL healthfinance.com.au/wp-content/themes/niva/js/bootstrap.min.js?ver=3.3.1 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01 Last Seen2025-03-22 21:54 Times Seen20 Hash 692a2e80b2644c46869ce60c8c88dd50 4ceb99bd27e7de9fb97b865e9a978dbc1919dc18 971c911439ab85a4623b278224b81aaacc64277ebea29b6b553a6b837328356a Loading...

	healthfinance.com.au/wp-content/plugins/mailchimp-for-wp/assets/js/forms.js?ver=4.10.2	ScriptElement	6.6 kB	2024-07-17	2025-04-25
Pretty URL healthfinance.com.au/wp-content/plugins/mailchimp-for-wp/assets/js/forms.js?ver=4.10.2 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2024-07-17 16:24 Last Seen2025-04-25 18:23 Times Seen468 Hash d95beb0a21cea323311c7bfd35bed9f9 784a24288e272dececeaaa33cc84ac226369bed3 739d93ee10d220cd2d44f5bcb6956c99b3f9ba70647176e5f6bb0186ed0233c2 Loading...

	healthfinance.com.au/wp-includes/IXR/youngbawz1.exe	ScriptElement	6.8 kB	2025-03-22	2025-03-22
Pretty URL healthfinance.com.au/wp-includes/IXR/youngbawz1.exe IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-22 21:54 Last Seen2025-03-22 21:54 Times Seen1 Hash 9bd4dca44a81366cccc3680a937eebb4 ae90025c478c80369fae02e2e542e4cd716c72ac 42eaeb59d542f9876640307a4144b3237eaee9342ca89ef45cb3bae30eddc950 Loading...

	healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/classie.js?ver=1.0.0	ScriptElement	2.0 kB	2023-03-13	2025-03-22
Pretty URL healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/classie.js?ver=1.0.0 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 23:16 Last Seen2025-03-22 21:54 Times Seen6 Hash e29da423a1dcc98d44b26ed6bfaf3d9e c325252fd6643b1665da0d75938d81008eb1c0df ed33771c1a75c0086d7aca8c3dd6d330b9b51cdfe988f4667083ebf4d97e710f Loading...

	healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/mt-skills-circle/percircle.js?ver=1.0.0	ScriptElement	5.3 kB	2023-04-26	2025-03-22
Pretty URL healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/mt-skills-circle/percircle.js?ver=1.0.0 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-26 18:23 Last Seen2025-03-22 21:54 Times Seen3 Hash 9c9c4ce3166a5c6c0765b44ca5569924 27eb0fdf942c5d808270be65a17d0be0f77038ea 67c0c20d8eda3785bb8a77de23cfd24099da25a81a7ea1f7b22bc2a60b43b0f8 Loading...

	healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/mt-video/jquery.magnific-popup.js?ver=1.0.0	ScriptElement	45 kB	2023-03-12	2025-03-22
Pretty URL healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/mt-video/jquery.magnific-popup.js?ver=1.0.0 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 07:34 Last Seen2025-03-22 21:54 Times Seen7 Hash c9eeadae1796ef55e1451a4cdd8128a6 262a02373e64efd6edb8150ed8c7f44e6fb40b36 4a6c771cbcf617104ef460aa3092ac053422f51190b794f6cd2d4f45dd28a7f8 Loading...

	healthfinance.com.au/wp-content/themes/niva/js/slick.min.js?ver=1.0.0	ScriptElement	43 kB	2023-03-07	2025-04-25
Pretty URL healthfinance.com.au/wp-content/themes/niva/js/slick.min.js?ver=1.0.0 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06 Last Seen2025-04-25 21:42 Times Seen22323 Hash d5a61c749e44e47159af8a6579dda121 3b41b3bc956685015a347a2238e71db29dfa0dbb 0c7178cc6ca34fb18e30f070a5e7a1c287b2d7ccfcba2cfdf06e0f46eda55740 Loading...

	healthfinance.com.au/wp-includes/IXR/youngbawz1.exe	ScriptElement	3.3 kB	2025-03-22	2025-03-22
Pretty URL healthfinance.com.au/wp-includes/IXR/youngbawz1.exe IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-22 21:54 Last Seen2025-03-22 21:54 Times Seen1 Hash 48b05cf9ffb2751dd4e289fb2c5edde0 46346edd366482d28e79c0a6eb5616381c3a635a f4805dc3e4b46420628105d052b21757035fbdce74fc2130a514f84142d41fd2 Loading...

	healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/mt-plugins.js?ver=1.0.0	ScriptElement	16 kB	2023-04-26	2025-03-22
Pretty URL healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/mt-plugins.js?ver=1.0.0 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-26 18:23 Last Seen2025-03-22 21:54 Times Seen3 Hash fec5faccea5c67e68485cb8da5af04c6 81635c8d4b7686bba18c93d98e113e3f451f157e f61b6782de77aef0d1ee77e9ae5659b7fb73c53ebbf4fe4e7dcea9a7f0ead8fb Loading...

	js.zohocdn.com/salesiq/js/floatbutton1_cLmRt3f0MqrXWtZQcOf-fytinnWkqMkqc32eoN7UEXHmdNRjLetrg2kVC7ADH5FS_.js	ScriptElement	42 kB	2025-03-17	2025-03-22
Pretty URL js.zohocdn.com/salesiq/js/floatbutton1_cLmRt3f0MqrXWtZQcOf-fytinnWkqMkqc32eoN7UEXHmdNRjLetrg2kVC7ADH5FS_.js IP 185.20.209.147 ASN #41913 Computerline GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-17 09:50 Last Seen2025-03-22 23:17 Times Seen40 Hash 808c873c0f4260dd8514ac0654079b2b 3620f534f4d1e722643e81602420c18c0b26d5bd 82ceb317d968fb1b0929351b723135920b0b6a107d73c6603e94962d9759c036 Loading...

	healthfinance.com.au/wp-includes/IXR/youngbawz1.exe	ScriptElement	364 B	2025-03-22	2025-03-22
Pretty URL healthfinance.com.au/wp-includes/IXR/youngbawz1.exe IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-22 21:54 Last Seen2025-03-22 21:54 Times Seen1 Hash a3eb7a4612ad8a9c8012c2587bd8d4de c98feb9c32ce758529b4f570099b12c27fda7e1f 68266794b9daae68af8e64320d4fda7b99d5011aa623c60e225d590ef7996912 Loading...

	healthfinance.com.au/wp-includes/IXR/youngbawz1.exe	ScriptElement	146 B	2023-08-26	2025-03-22
Pretty URL healthfinance.com.au/wp-includes/IXR/youngbawz1.exe IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-26 13:30 Last Seen2025-03-22 21:54 Times Seen3 Hash e2e452b1dc4228ea3dc1c240c976f30b 8a45ac10ad6038719a33d9882d506c19732c8e7f d2e5a673c04444c0b0e7199a963baaf20824e257b9a4489b31a2a2af92fa2eae Loading...

	healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/select2.min.js?ver=1.0.0	ScriptElement	67 kB	2023-03-07	2025-03-25
Pretty URL healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/select2.min.js?ver=1.0.0 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06 Last Seen2025-03-25 13:28 Times Seen58 Hash 97fd156ee3487a569b9f28813c26a5db 6e6534c8d2cc9e5431c983c61735a1acef1cb892 4aff817e0e140bcb17428e26c93750f200f952658c53a4093d9ecc6fe60c2f01 Loading...

	healthfinance.com.au/wp-content/themes/niva/js/jquery.countTo.js?ver=1.0.0	ScriptElement	3.2 kB	2023-03-07	2025-03-22
Pretty URL healthfinance.com.au/wp-content/themes/niva/js/jquery.countTo.js?ver=1.0.0 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01 Last Seen2025-03-22 21:54 Times Seen11 Hash 3ebb00ff5a4a6bb90af62be4e1fa914f 0782df4b392d4bbf10fce5f7e8cb742f406c9233 976ad6090f2b61093857925a322f83b0cc492df5d0a8d77f8499b229470d7f13 Loading...

	healthfinance.com.au/wp-content/themes/niva/js/niva-custom.js?ver=1.0.0	ScriptElement	21 kB	2023-04-26	2025-03-22
Pretty URL healthfinance.com.au/wp-content/themes/niva/js/niva-custom.js?ver=1.0.0 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-26 18:23 Last Seen2025-03-22 21:54 Times Seen3 Hash 1361841e8583d13da2961cfc76804e92 a442babcc5d765c271a68dbf981f69510a258c13 e514ae14e2e35798330fff8c9eb4b84a38c69b1b58740fa18a30a93f84b3dfc5 Loading...

	healthfinance.com.au/wp-includes/IXR/youngbawz1.exe	ScriptElement	136 B	2024-02-21	2025-04-03
Pretty URL healthfinance.com.au/wp-includes/IXR/youngbawz1.exe IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-21 15:21 Last Seen2025-04-03 13:46 Times Seen23 Hash 37e75081fb348191796e7f9d1ea5a80a e2b038a432db909e8a98fd0afefbfb44a9acb0f6 76c28c3c4707298ec6814ddcbe349ed0520f9f155aa99d39466e89f05797f6fb Loading...

	healthfinance.com.au/wp-includes/IXR/youngbawz1.exe	ScriptElement	1.2 kB	2025-03-22	2025-03-22
Pretty URL healthfinance.com.au/wp-includes/IXR/youngbawz1.exe IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-22 21:54 Last Seen2025-03-22 21:54 Times Seen1 Hash 016af2d987bbc884d0eb04883fd362ce f5ca164c231f40937a897fe3c12d7c832f12a5ba 0885514250a95bce4d359242fe68b25523efbf8dc119cfe6e2d7026cec9fd288 Loading...

	healthfinance.com.au/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=6.0.5	ScriptElement	12 kB	2025-03-11	2025-04-25
Pretty URL healthfinance.com.au/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=6.0.5 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-11 19:47 Last Seen2025-04-25 21:56 Times Seen1206 Hash 96e7dc3f0e8559e4a3f3ca40b17ab9c3 d363d0291e92c233e828023583dcf6685f2da5a2 29fdd17a7002a2e1bbd9b33adafc53457c64006b5aca8f6e4dbf907de35433ca Loading...

	healthfinance.com.au/wp-content/themes/niva/js/jquery.parallax.js?ver=1.1.3	ScriptElement	2.2 kB	2023-03-07	2025-03-22
Pretty URL healthfinance.com.au/wp-content/themes/niva/js/jquery.parallax.js?ver=1.1.3 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01 Last Seen2025-03-22 21:54 Times Seen4 Hash 218da3bd62126ac0d3becce253df1d8d 6a722fcdcf47509983f9858ebfd0d9f29c15d536 4d2de0921f72d5b577cc5a8baf191deca1619635b5c4a939068ee1bb9692c75f Loading...

	healthfinance.com.au/wp-content/themes/niva/js/jquery.countdown.js?ver=1.0.0	ScriptElement	5.3 kB	2023-03-07	2025-04-25
Pretty URL healthfinance.com.au/wp-content/themes/niva/js/jquery.countdown.js?ver=1.0.0 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-04-25 10:07 Times Seen4504 Hash 5d3ff3c3fbaa67cc639501f44eeb07be bd66e4cd58de09c198e7abc77fa4c883955d189e 2249399b2268c260d0698542503d16afebc80e437c846239f12196744ebbd40f Loading...

	healthfinance.com.au/wp-includes/IXR/youngbawz1.exe	ScriptElement	215 B	2023-03-07	2025-04-25
Pretty URL healthfinance.com.au/wp-includes/IXR/youngbawz1.exe IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-04-25 18:23 Times Seen1960 Hash 1bb7b821b587959d4c0cc406c49077ff 2cb4827d5cd5a05729418b369019b9c1eb0798ed 1f93a5f6091369b8b6cdb7be01a6c7044ec8c3af0eeac05a5f0dfb3aea2a3e31 Loading...

	www.googletagmanager.com/gtag/js?id=G-PC7EG1PJSD	ScriptElement	307 kB	2025-03-22	2025-03-22
Pretty URL www.googletagmanager.com/gtag/js?id=G-PC7EG1PJSD IP 142.250.74.136 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-22 21:54 Last Seen2025-03-22 21:54 Times Seen1 Hash 247979e21890d6a3ae461f0cc7309dc9 8c24841b95b8067ae8ab233e63c25377b21b6029 aac4cf8654dd256aea7390913699805c6e1a6e7bfd014539c0c52ac7416ba158 Loading...

	healthfinance.com.au/wp-content/themes/niva/js/jquery.appear.js?ver=1.0.0	ScriptElement	1.5 kB	2023-03-07	2025-03-22
Pretty URL healthfinance.com.au/wp-content/themes/niva/js/jquery.appear.js?ver=1.0.0 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01 Last Seen2025-03-22 21:54 Times Seen15 Hash 540158d9f2b0d002efa055bbd9945323 d92e3c1286260856e2cae66653f789af7e44122a 7eb2e1db4c4edc6b21e0913d82c5101ef0c5b5836da1a969bfc77feb8bb792eb Loading...

	healthfinance.com.au/wp-content/plugins/brave-popup-builder/assets/frontend/brave.js?ver=77685e716c4cd53aef6ebd8abd129ff3	ScriptElement	131 kB	2024-03-28	2025-04-25
Pretty URL healthfinance.com.au/wp-content/plugins/brave-popup-builder/assets/frontend/brave.js?ver=77685e716c4cd53aef6ebd8abd129ff3 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-28 07:16 Last Seen2025-04-25 03:04 Times Seen62 Hash b8a505a397af9cc30c77e79266a9ac42 16cabbbbea918748363b3d95043b38aa9c68cd29 d783c0b6c9ba625a0cf90341486fc4f3afdcddb53d8b63497ac4762f7aa11a21 Loading...

	healthfinance.com.au/wp-includes/IXR/youngbawz1.exe	EventHandler	71 B	2023-08-26	2025-03-22
Pretty URL healthfinance.com.au/wp-includes/IXR/youngbawz1.exe IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by eventHandler Embedded in HTML false Observations First Seen2023-08-26 13:30 Last Seen2025-03-22 21:54 Times Seen3 Hash aa100a3aeea41c7e657d946ee311a5df 49c75e62699de69b426f81a334c4d8db6ca5ebb9 f9b636c156d4ace93e32d6e412b5bd733f016145bdb04dfd9af3a7df466ac7ed Loading...

	healthfinance.com.au/wp-includes/IXR/youngbawz1.exe	ScriptElement	110 B	2023-03-12	2025-04-25
Pretty URL healthfinance.com.au/wp-includes/IXR/youngbawz1.exe IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 22:31 Last Seen2025-04-25 02:12 Times Seen1209 Hash 4e5ff8cd112333e739e563a49b4c49d0 4b2f15087893595b4d3c7e1eb5b5b2a04cf19d7c c960770914255fd4e96bc105e886b7e248a9a537a23f859f332d258980468111 Loading...

	healthfinance.com.au/wp-content/plugins/contact-form-7/includes/js/index.js?ver=6.0.5	ScriptElement	14 kB	2024-11-04	2025-04-25
Pretty URL healthfinance.com.au/wp-content/plugins/contact-form-7/includes/js/index.js?ver=6.0.5 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2024-11-04 17:50 Last Seen2025-04-25 21:56 Times Seen4904 Hash 2912c657d0592cc532dff73d0d2ce7bb 70a679e2769825236f83bcc56965a9d0bd86c4e9 ddcce687729cb358abf9d0d8e1217a097859be2b0d18c23d7c851b38c87bc9c0 Loading...

	healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/sweetthemes-custom.js?ver=1.0.0	ScriptElement	18 kB	2023-04-26	2025-03-22
Pretty URL healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/sweetthemes-custom.js?ver=1.0.0 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-26 18:23 Last Seen2025-03-22 21:54 Times Seen3 Hash 3d56433392f45090bd4b48fb3d09d29c 3265e8c63d485d48fda23624d1d8be2da32d85af f4ac135eab1d7174e0660763bca643f05fedc35d9634f7bdd7604064e580ca79 Loading...

	healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/filters-main.js?ver=1.0.0	ScriptElement	7.6 kB	2023-04-26	2025-03-22
Pretty URL healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/filters-main.js?ver=1.0.0 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-26 18:23 Last Seen2025-03-22 21:54 Times Seen3 Hash eef19953a75ac27ab8f72914a50ff171 512817b67b82efae5332924c21c56914d7e59c33 abe2c526d8c68cc9bbc5c81548128385b7b2d1499ba6509a86c572262001dceb Loading...

	healthfinance.com.au/wp-content/themes/niva/js/animate.js?ver=1.0.0	ScriptElement	2.2 kB	2023-03-07	2025-03-22
Pretty URL healthfinance.com.au/wp-content/themes/niva/js/animate.js?ver=1.0.0 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01 Last Seen2025-03-22 21:54 Times Seen15 Hash 9b1a28f109a080c6501856900018d9f9 aa6dfe576944859056704f3a95d5257984e95457 d36b4a21a4d7c5f7a0b44bb029c775ff79dc4f2066a2109e03a47ac4907fae0c Loading...

	www.googletagmanager.com/gtag/js?id=UA-81643902-1	ScriptElement	256 kB	2025-03-22	2025-03-22
Pretty URL www.googletagmanager.com/gtag/js?id=UA-81643902-1 IP 142.250.74.136 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-22 21:54 Last Seen2025-03-22 21:54 Times Seen1 Hash f95da99195cee9aabbdcccadc42fd605 4d25cec57775440c18f36f6c655e3b63b2da38f3 f4b649081050fa7ca9bbeb1c500ee5c8c2fa52107e8fda162405a1940fd19a02 Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-04-26
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-04-26 00:07 Times Seen337189 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	healthfinance.com.au/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=9.3.0	ScriptElement	12 kB	2024-10-23	2025-04-25
Pretty URL healthfinance.com.au/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=9.3.0 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-23 16:25 Last Seen2025-04-25 19:35 Times Seen1080 Hash c0b1556b9e1a9994fd779ceaffe12c9b dc70ce7fd7c058bbc47e8d8534014c0a12ae1885 7790882b18f7b3e10750f4474dc1a13150a2ef8510ef4c2e3e52c5d5f776db87 Loading...

	healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/st-particles/app.js?ver=1.0.0	ScriptElement	3.1 kB	2023-04-26	2025-03-22
Pretty URL healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/st-particles/app.js?ver=1.0.0 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-26 18:23 Last Seen2025-03-22 21:54 Times Seen3 Hash d00e1302e1c0ca63bae0184afefdc3cb 73f0bd55d1357d8b382df1ef4e9828aababdb201 9bffd6aa2f9cb2eaf18ca1b6bcd94f875e05402e4d1ded28d1d6b74fb4f09b40 Loading...

	healthfinance.com.au/wp-content/themes/niva/js/modernizr.custom.js?ver=2.6.2	ScriptElement	15 kB	2023-03-07	2025-04-13
Pretty URL healthfinance.com.au/wp-content/themes/niva/js/modernizr.custom.js?ver=2.6.2 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:20 Last Seen2025-04-13 03:35 Times Seen275 Hash 1258d3cdc71540b07f3422a31e41f21a a426c47c8eb8910ac2a552b2e51b8791858da693 7e26ca2fd58d9878a3754800828a0b4a1af34f747c19c7d48ff1add55b1759c3 Loading...

	healthfinance.com.au/wp-includes/IXR/youngbawz1.exe	ScriptElement	215 B	2023-03-07	2025-04-25
Pretty URL healthfinance.com.au/wp-includes/IXR/youngbawz1.exe IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-04-25 18:23 Times Seen1960 Hash 1bb7b821b587959d4c0cc406c49077ff 2cb4827d5cd5a05729418b369019b9c1eb0798ed 1f93a5f6091369b8b6cdb7be01a6c7044ec8c3af0eeac05a5f0dfb3aea2a3e31 Loading...

	salesiq.zoho.com.au/widget?plugin_source=wordpress	ScriptElement	161 kB	2025-03-22	2025-03-22
Pretty URL salesiq.zoho.com.au/widget?plugin_source=wordpress IP 103.138.128.75 ASN #139006 Zoho Corporation PTY LTD Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-22 21:54 Last Seen2025-03-22 21:54 Times Seen1 Hash 6da53a862edb6272daf7fe9c1af3fa9f f5fb027e6a1c55f0fdef0b4a3c180365d6bb7e33 bf74c9aeb90b4e851f8e195dd7322e584219cf2466dab95e14c9576286698a74 Loading...

	healthfinance.com.au/wp-includes/IXR/youngbawz1.exe	ScriptElement	432 B	2023-08-26	2025-03-22
Pretty URL healthfinance.com.au/wp-includes/IXR/youngbawz1.exe IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-26 13:30 Last Seen2025-03-22 21:54 Times Seen3 Hash d2b67628105f6dfb589b0cb418965928 22aabb7e56a8a95b0a8305cb2c7a13e9a859bd45 69f27c2e1ffeec2be82dfb4bc3cef7231901609a231ccb40ba9095fe5c54ebc6 Loading...

	healthfinance.com.au/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1	ScriptElement	14 kB	2023-05-09	2025-04-25
Pretty URL healthfinance.com.au/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 19:21 Last Seen2025-04-25 23:34 Times Seen102681 Hash 9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89 Loading...

	healthfinance.com.au/wp-includes/IXR/youngbawz1.exe	ScriptElement	1.1 kB	2023-08-26	2025-03-22
Pretty URL healthfinance.com.au/wp-includes/IXR/youngbawz1.exe IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-26 13:30 Last Seen2025-03-22 21:54 Times Seen3 Hash 9a4ebbcb3000bf8e1cd4db955c79f9f3 300ab5d73ea4433726017fd0dcf5409bc2bb2206 dd1acc664f6ad001a6ab14fa542afeb09f9ace186f208ac7e2b5c5671834e81f Loading...

	healthfinance.com.au/wp-includes/js/dist/i18n.min.js?ver=5e580eb46a90c2b997e6	ScriptElement	9.1 kB	2024-04-03	2025-04-26
Pretty URL healthfinance.com.au/wp-includes/js/dist/i18n.min.js?ver=5e580eb46a90c2b997e6 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-03 08:25 Last Seen2025-04-26 00:12 Times Seen26504 Hash a8127c1a87bb4f99edbeec7c37311dcd 9997a1745f48bdd233dbe9bd8164daa53eba105b f313d12ea6124bd28fc4a6b7163d253bb83d5aeab5edce594880c5c3df475cbc Loading...

	healthfinance.com.au/wp-includes/IXR/youngbawz1.exe	ScriptElement	366 B	2023-03-12	2025-04-25
Pretty URL healthfinance.com.au/wp-includes/IXR/youngbawz1.exe IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 22:06 Last Seen2025-04-25 18:23 Times Seen1657 Hash 0203838dba446c5041508bf7bac8571c 50520dc9862f9293f116c673b117ab5adb3439b7 533609a6035017a05159e1dd8e8f7edf67a320c836b3f6f6c375dc78cdefa02a Loading...

	healthfinance.com.au/wp-includes/IXR/youngbawz1.exe	ScriptElement	1.7 kB	2025-03-22	2025-03-22
Pretty URL healthfinance.com.au/wp-includes/IXR/youngbawz1.exe IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-22 21:54 Last Seen2025-03-22 21:54 Times Seen1 Hash 934f22bd6ad25aa809f36bc5bbc1dc5e b89b19224f41bdf32900f49c6f95e8c7c4087cc9 3d807f4e26e7b44d7db62f64567751ea7e0d92fcadac7bf4ea2b7277244909e8 Loading...

	js.zohocdn.com/salesiq/js/resource/embed/resource_lnOu4cFqZ8sk0V9k61BAJNxYRo2Dn2cZX70mdklESIPIwbt-2AUpin2ZmnwDrmK8_.js	ScriptElement	55 kB	2025-03-06	2025-03-25
Pretty URL js.zohocdn.com/salesiq/js/resource/embed/resource_lnOu4cFqZ8sk0V9k61BAJNxYRo2Dn2cZX70mdklESIPIwbt-2AUpin2ZmnwDrmK8_.js IP 185.20.209.147 ASN #41913 Computerline GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-06 12:40 Last Seen2025-03-25 01:50 Times Seen146 Hash beb6a2ea9aeba15ea2583d09195084a5 9d94dddeedde251914464cccf1ef034f8ad0dd20 f273a8bbb45cb4e8d8db3c2d1cb4d37cb9811bba6254d85a4afa3a3ed42aa8a8 Loading...

	healthfinance.com.au/wp-content/themes/niva/js/jquery.validation.js?ver=1.13.1	ScriptElement	22 kB	2023-04-26	2025-03-22
Pretty URL healthfinance.com.au/wp-content/themes/niva/js/jquery.validation.js?ver=1.13.1 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-26 18:23 Last Seen2025-03-22 21:54 Times Seen19 Hash 222a499792595a3f2e86537423b6da97 f0174816bfb1f71caf1845c65928e3bab5953ca0 511e7347493e0cb20ca34e33a62bc7599f967b5a5ee9bd7d7505fc759abc4390 Loading...

	healthfinance.com.au/wp-content/themes/niva/js/jquery.ketchup.js?ver=0.3.1	ScriptElement	12 kB	2023-03-07	2025-03-22
Pretty URL healthfinance.com.au/wp-content/themes/niva/js/jquery.ketchup.js?ver=0.3.1 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01 Last Seen2025-03-22 21:54 Times Seen10 Hash 09088491c20d54e98d4b8f9176412079 01e79e687dc5714b2a52bf8a317be7f9a4cda0fd 15c6ba22bb25cc74ad6d1e2ee1e9603a9e9310255083aaff5ff1099b72f9235f Loading...

	healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/filters-mixitup.min.js?ver=1.0.0	ScriptElement	28 kB	2023-04-26	2025-03-22
Pretty URL healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/filters-mixitup.min.js?ver=1.0.0 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-26 18:23 Last Seen2025-03-22 21:54 Times Seen3 Hash 3815dd0c5c2f4ad2586d1e2cab1ca924 fdf0f879c0c47b97f1d3e89f3cda609a4acef9ee 3cc821baa0f09a49a88174c31b18ca6cf90dc7b9a30e0d6c3552e3bbb3f18d12 Loading...

	healthfinance.com.au/wp-content/themes/niva/js/uisearch.js?ver=1.0.0	ScriptElement	7.0 kB	2023-04-26	2025-03-22
Pretty URL healthfinance.com.au/wp-content/themes/niva/js/uisearch.js?ver=1.0.0 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-26 18:23 Last Seen2025-03-22 21:54 Times Seen3 Hash 719b6876eb852ae52f34c0b6300f88fd 2f00c7c635e140eaf61b87deeda4aac9e2bbb7e7 39364794c234c0483f2454ffd181cbe20e26f2852ef01f6250228676f71c012e Loading...

	healthfinance.com.au/wp-includes/IXR/youngbawz1.exe	ScriptElement	94 B	2023-11-08	2025-04-25
Pretty URL healthfinance.com.au/wp-includes/IXR/youngbawz1.exe IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-08 00:42 Last Seen2025-04-25 23:34 Times Seen16515 Hash 02d7d8402b7ddb8e6fe47f2a35071e8d 174b5a8fe0ecdfa989fbf40f3ecd51f1d0117693 8a96c1a0a8b1c2a8eab8adfa21634b7f2c4226f6bc5322df1ab7efc4f1f1af7f Loading...

	healthfinance.com.au/wp-includes/js/jquery/jquery.min.js?ver=3.7.1	ScriptElement	88 kB	2023-11-03	2025-04-26
Pretty URL healthfinance.com.au/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-03 09:26 Last Seen2025-04-26 00:12 Times Seen88367 Hash 826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf Loading...

	healthfinance.com.au/wp-includes/IXR/youngbawz1.exe	ScriptElement	183 B	2025-03-22	2025-03-22
Pretty URL healthfinance.com.au/wp-includes/IXR/youngbawz1.exe IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-22 21:54 Last Seen2025-03-22 21:54 Times Seen1 Hash 07bdd8ce9a8431722ecf10fbeb9f700d 323fab8f161019cb15c2f9f5cdf9354f78ae74e9 63f4ef8b3a17e7a8625c05b59c8fc221017f60bb0485206deb83e6387cd007d3 Loading...

	healthfinance.com.au/wp-includes/IXR/youngbawz1.exe	ScriptElement	979 B	2025-03-22	2025-03-22
Pretty URL healthfinance.com.au/wp-includes/IXR/youngbawz1.exe IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-22 21:54 Last Seen2025-03-22 21:54 Times Seen1 Hash 178d9243f9522cd0b3ce48f64bc37c21 7dd1b96f2363c38cb8f548e22a32bf8a3be634e6 f839e3c352c1f72d0fe953c08d579fe450ada8988e16389427d4d1836d2f6327 Loading...

	healthfinance.com.au/wp-includes/IXR/youngbawz1.exe	ScriptElement	22 B	2023-03-07	2025-04-23
Pretty URL healthfinance.com.au/wp-includes/IXR/youngbawz1.exe IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:19 Last Seen2025-04-23 16:06 Times Seen92 Hash 250f85350178e4b5522eb8219fd22d9e ff467fc1f9899df465fdca7bdb60460fe21b4fc0 cfdb157b66949b91835950fd18f440dd4cbb3b87f083853b981191b81f1451af Loading...

	healthfinance.com.au/wp-content/themes/niva/js/wow.min.js?ver=1.0.0	ScriptElement	7.1 kB	2023-03-07	2025-04-25
Pretty URL healthfinance.com.au/wp-content/themes/niva/js/wow.min.js?ver=1.0.0 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01 Last Seen2025-04-25 18:23 Times Seen285 Hash 5fa2e4b6acb5db11843b66b812040de3 13895175fe8fc3bb341af017a197ce8599e59451 36a88df037dc6c940450a9e251a34c9321d76d894d3d1734ee8cede45028d84c Loading...

	www.googletagmanager.com/gtag/js?id=G-VF26QS3GZB&l=dataLayer&cx=c&gtm=457e53j1za200zb9108136510&tag_exp=102482433~102788824~102803279~102813109~102887799	ScriptElement	401 kB	2025-03-22	2025-03-22
Pretty URL www.googletagmanager.com/gtag/js?id=G-VF26QS3GZB&l=dataLayer&cx=c&gtm=457e53j1za200zb9108136510&tag_exp=102482433~102788824~102803279~102813109~102887799 IP 142.250.74.136 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-22 21:54 Last Seen2025-03-22 21:54 Times Seen1 Hash 353c293d3d800e9cb98205a372809be8 2f6c7864f7279c46035d63d43c3d4a286c6ae882 6ec155f0a3b1ebe3e9a3d61c91fb7c3f5ff9c823de043847bb1950fddae8605c Loading...

	healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/st-particles/particles.min.js?ver=2.0.0	ScriptElement	23 kB	2023-04-26	2025-03-22
Pretty URL healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/st-particles/particles.min.js?ver=2.0.0 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-26 18:23 Last Seen2025-03-22 21:54 Times Seen3 Hash aeae1360e6144ffe4faa794564459c86 a9da1c56930cd13a689ae473128aef6c85cf5c80 26e91d563c6b3c4614032f1a55a5b14e98e028c94d73e2f207da108bf0e4db04 Loading...

	healthfinance.com.au/wp-content/themes/niva/js/modernizr.viewport.js?ver=2.6.2	ScriptElement	8.5 kB	2023-03-07	2025-03-22
Pretty URL healthfinance.com.au/wp-content/themes/niva/js/modernizr.viewport.js?ver=2.6.2 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01 Last Seen2025-03-22 21:54 Times Seen21 Hash 7bc662ee8719fa0917c68f81bddf4a49 a8937d012b5a24db1f84b59124b63156dd31442d 0f0bd6fd7d6c2cb0ace928788cfaf8cf69696a437541e337c5373380d5c0a04f Loading...

	healthfinance.com.au/wp-content/plugins/vc_responsive_pro//assets/js/script.js?ver=1.0	ScriptElement	0 B	0001-01-01	2025-04-26
Pretty URL healthfinance.com.au/wp-content/plugins/vc_responsive_pro//assets/js/script.js?ver=1.0 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen0001-01-01 00:00 Last Seen2025-04-26 00:12 Times Seen4535305 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	healthfinance.com.au/wp-includes/js/wp-emoji-release.min.js?ver=77685e716c4cd53aef6ebd8abd129ff3	ScriptElement	19 kB	2024-03-13	2025-04-25
Pretty URL healthfinance.com.au/wp-includes/js/wp-emoji-release.min.js?ver=77685e716c4cd53aef6ebd8abd129ff3 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-13 16:02 Last Seen2025-04-25 23:34 Times Seen45423 Hash b976b651932bfd25b9ddb5b7693d88a7 7fcb7cb5c11227f9213b1e08a07d0212209e1432 4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3 Loading...

	js.zohocdn.com/salesiq/js/siqnewchatwindow_ZbDcggGZrPIwhPlC3bn-f15XO3PjJRJH1ynzkii9kNScsxxteH4z8HhilVU0Dp-f_.js	ScriptElement	1.4 MB	2025-03-17	2025-03-22
Pretty URL js.zohocdn.com/salesiq/js/siqnewchatwindow_ZbDcggGZrPIwhPlC3bn-f15XO3PjJRJH1ynzkii9kNScsxxteH4z8HhilVU0Dp-f_.js IP 185.20.209.147 ASN #41913 Computerline GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-17 09:50 Last Seen2025-03-22 23:17 Times Seen42 Hash fa1052cabd5f53b903570da6a29dd748 e96ebe8c49a08978afeb4936a297e7642b910d55 ee7c69dee8b8604f44d66a408fc983fb260c879a04e45ce669f693077b586b17 Loading...

	healthfinance.com.au/wp-includes/js/jquery/jquery.form.min.js?ver=4.3.0	ScriptElement	16 kB	2023-04-01	2025-04-25
Pretty URL healthfinance.com.au/wp-includes/js/jquery/jquery.form.min.js?ver=4.3.0 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:28 Last Seen2025-04-25 04:20 Times Seen1718 Hash ee858e15db40066634ae2d7c3959fbf0 82d919c1c636bbad55ae555ce661f9c34a3a7cfc dc869996cbc8f47cab9aeb9523f81a7f420207a2601cce9ba45e9b7e0e261452 Loading...

	healthfinance.com.au/wp-content/themes/niva/js/owl.carousel.js?ver=1.0.0	ScriptElement	24 kB	2023-03-07	2025-03-22
Pretty URL healthfinance.com.au/wp-content/themes/niva/js/owl.carousel.js?ver=1.0.0 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01 Last Seen2025-03-22 21:54 Times Seen21 Hash 4a6a5bb9ceebe31c468a81dafb5606b0 edab9fe5efacf3818d8e6abf9a025265436f9b57 d83f449255b521432b4bd6d21a6341a1a4e24709afaaf9170606a7c8c728b98a Loading...

	www.googletagmanager.com/gtag/js?id=UA-81643902-1&l=dataLayer&cx=c&gtm=45je53j1v9108136510za200&tag_exp=102482433~102788824~102803279~102813109~102887800	ScriptElement	256 kB	2025-03-22	2025-03-22
Pretty URL www.googletagmanager.com/gtag/js?id=UA-81643902-1&l=dataLayer&cx=c&gtm=45je53j1v9108136510za200&tag_exp=102482433~102788824~102803279~102813109~102887800 IP 142.250.74.136 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-22 21:54 Last Seen2025-03-22 21:54 Times Seen1 Hash 9135994337cca754ec2aae24386aa754 3e8884b337ec2b7d68c48ead1ec9d5ae61734026 d412c85b4cb000f58c6afc451b03f834a8964873157dc59e9e26aa5fb96efb23 Loading...

	healthfinance.com.au/wp-includes/IXR/sandbox%20eval%20code		147 B	2023-04-11	2025-04-26
Pretty URL healthfinance.com.au/wp-includes/IXR/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-04-26 00:07 Times Seen337984 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/vivus.min.js?ver=1.0.0	ScriptElement	11 kB	2023-03-13	2025-03-22
Pretty URL healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/vivus.min.js?ver=1.0.0 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:38 Last Seen2025-03-22 21:54 Times Seen3 Hash bb9997220dbbab6fddb7dd264a7347c6 04ad0cd2e1007e8b5163ab3fb0ff2126642b25ac de356608f07b236b972574c21e03bff716e05b3506fa4a3922bc542637d7ded0 Loading...

	healthfinance.com.au/wp-includes/js/dist/hooks.min.js?ver=4d63a3d491d11ffd8ac6	ScriptElement	4.8 kB	2024-11-13	2025-04-26
Pretty URL healthfinance.com.au/wp-includes/js/dist/hooks.min.js?ver=4d63a3d491d11ffd8ac6 IP 116.90.57.33 ASN #55803 Hostopia Australia Web Pty Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2024-11-13 05:08 Last Seen2025-04-26 00:12 Times Seen12265 Hash c6fddbb6be69793478de26fc245b2acf a136ebf5054fdc19729b3592005fe0fefec4bb4c 9a1e0d38b691f1d22a92cff65ec0439b428170ac39a4493c7ecb06d5585f56a3 Loading...

	nitroscripts.com/XNAcCnYyVvWNsIBXTeleKRBGUDGzPDOO	ScriptElement	993 B	2025-03-22	2025-03-22
Pretty URL nitroscripts.com/XNAcCnYyVvWNsIBXTeleKRBGUDGzPDOO IP 172.64.154.248 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-22 21:54 Last Seen2025-03-22 21:54 Times Seen1 Hash 88f01b4a16edb7c075c0227709970513 93183c435312a794dbf3301caf5ed27e65056451 c1f80b74f3393f27b04784fa9b5474c15f95de9e3ed5af0f0978b0b3c8f145ee Loading...

	ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js	ScriptElement	13 kB	2023-03-07	2025-04-25
Pretty URL ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js IP 142.250.74.170 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-04-25 19:24 Times Seen17300 Hash 7c96a5f11d9741541d5e3c42ff6380d7 d3fa2564c021cf730e58ffddb138cf6b57ed126e 81016ac6be850b72df5d4faa0c3cec8e2c1b0ba0045712144a6766adfad40bee Loading...

	js.zohocdn.com/ichat/js/Mar_13_2025_10182154_wmsliteapi.js	ScriptElement	26 kB	2025-03-20	2025-04-24
Pretty URL js.zohocdn.com/ichat/js/Mar_13_2025_10182154_wmsliteapi.js IP 185.20.209.147 ASN #41913 Computerline GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-20 19:34 Last Seen2025-04-24 23:12 Times Seen139 Hash a571caa21bf2a8040d446052ddf8a5b7 06b81e064eb36afd3acac60e5a5b31ff4098202c 7dd15cb4e2908ce892d62fc9ca4b4c3cd95c8a2cd283ef91e47afbd4dfac8bba Loading...

		Size	First Seen	Last Seen
	#1 Write - 370d3f795604de0ce85cbec326dca72f	1.0 kB	2025-03-20 19:34	2025-03-22 23:17
Pretty Observations First Seen2025-03-20 19:34 Last Seen2025-03-22 23:17 Times Seen4 Hash 370d3f795604de0ce85cbec326dca72f 039b2f3bfe73528859554d4af29c7ed5e44cd9bd f610f4822d0dde08762eaabfc6740c1c4df3db877049bde99e1781f82c56ae86 Loading...

HTTP Transactions (118)

URL IP Response Size

healthfinance.com.au/wp-content/themes/niva/css/js_composer.css?ver=77685e716c4cd53aef6ebd8abd129ff3

116.90.57.33

200 OK

454 kB

URL GET
healthfinance.com.au/wp-content/themes/niva/css/js_composer.css?ver=77685e716c4cd53aef6ebd8abd129ff3
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
454 kB (454095 bytes)
Hash
1b84e76b4affade9e8dd4db1c0c55bfa
1ad6153692d97ed8af131998b7b3fa65addaec1a
0b3babcc2067913db4dc52739dde2adf0327908b33d7dfd014fa13e5a9cdda44

HTTP Headers

GET /wp-content/themes/niva/css/js_composer.css?ver=77685e716c4cd53aef6ebd8abd129ff3 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: text/css
last-modified: Sun, 12 Sep 2021 18:22:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 40369
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=9.3.0

116.90.57.33

200 OK

12 kB

URL GET
healthfinance.com.au/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=9.3.0
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JavaScript source, ASCII text, with very long lines (1392)
Size
12 kB (11894 bytes)
Hash
c0b1556b9e1a9994fd779ceaffe12c9b
dc70ce7fd7c058bbc47e8d8534014c0a12ae1885
7790882b18f7b3e10750f4474dc1a13150a2ef8510ef4c2e3e52c5d5f776db87

HTTP Headers

GET /wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=9.3.0 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Thu, 20 Feb 2025 06:27:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3063
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/filters-main.js?ver=1.0.0

116.90.57.33

200 OK

7.6 kB

URL GET
healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/filters-main.js?ver=1.0.0
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JavaScript source, ASCII text, with very long lines (8277), with no line terminators
Size
7.6 kB (7639 bytes)
Hash
120639679b5b2eb8bd1447df267f17f0
8a8f791b7384c69b564728af313894dc9f7de614
9dababd802ae8db89c5ba0d500dd5edd1b8be1391ed610a72e1b4a8d71117bea

HTTP Headers

GET /wp-content/plugins/sweetthemes-framework/js/filters-main.js?ver=1.0.0 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Sun, 12 Sep 2021 18:21:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2244
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Poppins

142.250.74.10

200 OK

794 B

URL GET
fonts.googleapis.com/css?family=Poppins
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint69:99:38:F9:7C:82:8E:AC:7D:DA:EA:3E:1C:E4:7F:52:1B:36:41:AA
ValidityMon, 10 Mar 2025 08:37:02 GMT - Mon, 02 Jun 2025 08:37:01 GMT

File type
ASCII text, with very long lines (810), with no line terminators
Size
794 B (794 bytes)
Hash
ca8352d8c991c54072630875b16bd858
89ddb142b56594ccb7f790bfed400ea9715ddf11
2b2f27498d389a7696dbce90d631384fcfd6eaaf29594aab6f887d94d1fd349f

HTTP Headers

GET /css?family=Poppins HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 22 Mar 2025 21:54:17 GMT
date: Sat, 22 Mar 2025 21:54:17 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

healthfinance.com.au/wp-content/uploads/2021/08/ms-cell-862x402-1-150x150.jpg

116.90.57.33

200 OK

7.2 kB

URL GET
healthfinance.com.au/wp-content/uploads/2021/08/ms-cell-862x402-1-150x150.jpg
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3
Size
7.2 kB (7226 bytes)
Hash
ecf51ebbbcddd88e1c6b65f1cd26df71
425f72cccf8e655b8ed1690c110cb5977898b2aa
85602720a4ca710fd57c3b76dd3fe8f8be357455f8f371f99fec50af944be9f9

HTTP Headers

GET /wp-content/uploads/2021/08/ms-cell-862x402-1-150x150.jpg HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: image/jpeg
last-modified: Sun, 12 Sep 2021 18:29:23 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 7070
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/uploads/2022/11/MicrosoftTeams-image-scaled.jpg

116.90.57.33

200 OK

326 kB

URL GET
healthfinance.com.au/wp-content/uploads/2022/11/MicrosoftTeams-image-scaled.jpg
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 2560x1707, components 3
Size
326 kB (325705 bytes)
Hash
3bdcb7fc407d1bf538538adb0855b821
7129bdc6237b76bb06041a968341142cbe5aa54f
5c1124b4577513b8f082d651ac9342abbf16564effdd933ad3e3f70008341d2b

HTTP Headers

GET /wp-content/uploads/2022/11/MicrosoftTeams-image-scaled.jpg HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: image/jpeg
last-modified: Wed, 23 Nov 2022 02:15:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 321699
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/plugins/contact-form-7/includes/js/index.js?ver=6.0.5

116.90.57.33

200 OK

14 kB

URL GET
healthfinance.com.au/wp-content/plugins/contact-form-7/includes/js/index.js?ver=6.0.5
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JavaScript source, ASCII text, with very long lines (13452), with no line terminators
Size
14 kB (13452 bytes)
Hash
2912c657d0592cc532dff73d0d2ce7bb
70a679e2769825236f83bcc56965a9d0bd86c4e9
ddcce687729cb358abf9d0d8e1217a097859be2b0d18c23d7c851b38c87bc9c0

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=6.0.5 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Tue, 11 Mar 2025 17:36:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4008
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

css.zohocdn.com/salesiq/styles/newembedtheme_7nMmFo0ESIxWpUGdpIA_Gji1F1wXJfgzxXqzov8GXJfF87FZxcjEP__h96HoqdCb_.css

185.20.209.147

200 OK

248 kB

URL GET
css.zohocdn.com/salesiq/styles/newembedtheme_7nMmFo0ESIxWpUGdpIA_Gji1F1wXJfgzxXqzov8GXJfF87FZxcjEP__h96HoqdCb_.css
IP
185.20.209.147:443
ASN
#41913 Computerline GmbH

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerSectigo Limited
Subject*.zohocdn.com
FingerprintB3:AC:93:6B:90:A8:06:99:EB:A0:C5:46:5E:D5:00:4A:C7:84:95:35
ValidityMon, 16 Sep 2024 00:00:00 GMT - Thu, 16 Oct 2025 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
248 kB (247889 bytes)
Hash
eebfeee3f737b675b3de872700f3317c
569d821731e09b8c3b1adc1699a443b3d233c69d
723b765d195535fb9df8b6afb97c5c24988c90e2a87a8d652810a05f01beb67d

HTTP Headers

GET /salesiq/styles/newembedtheme_7nMmFo0ESIxWpUGdpIA_Gji1F1wXJfgzxXqzov8GXJfF87FZxcjEP__h96HoqdCb_.css HTTP/1.1
Host: css.zohocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://healthfinance.com.au
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ZGS
date: Sat, 22 Mar 2025 21:54:29 GMT
content-type: text/css;charset=UTF-8
content-length: 57285
x-content-type-options: nosniff
cache-control: public, max-age=7776000, immutable
access-control-expose-headers: *
access-control-allow-origin: *
etag: "260bdca9a0df8b45ce11038380e9bf3a"
content-language: en-US
last-modified: Wed, 26 Feb 2025 17:22:05 GMT
vary: Accept-Encoding
strict-transport-security: max-age=15768000
content-encoding: br
timing-allow-origin: *
x-cache: HIT
nb-request-id: 91ec0b4b996e5f30361b5df33a69ff02
z-origin-id: ex1-b130c932294449a4bafef91d46c103c1
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/themes/niva-child/style.css?ver=77685e716c4cd53aef6ebd8abd129ff3

116.90.57.33

200 OK

449 B

URL GET
healthfinance.com.au/wp-content/themes/niva-child/style.css?ver=77685e716c4cd53aef6ebd8abd129ff3
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
ASCII text, with very long lines (483), with no line terminators
Size
449 B (449 bytes)
Hash
3d9d35ec7fb3110740f5888d17cf4f6d
b15315661c33272a60487541b69821cddb674217
f5a8d8f2c662d6caff484bcbcf15ca42c43b749fe46f7ea06683843ef15104c8

HTTP Headers

GET /wp-content/themes/niva-child/style.css?ver=77685e716c4cd53aef6ebd8abd129ff3 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: text/css
last-modified: Sun, 12 Sep 2021 18:22:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 247
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/plugins/brave-popup-builder/assets/css/frontend.min.css?ver=77685e716c4cd53aef6ebd8abd129ff3

116.90.57.33

200 OK

63 kB

URL GET
healthfinance.com.au/wp-content/plugins/brave-popup-builder/assets/css/frontend.min.css?ver=77685e716c4cd53aef6ebd8abd129ff3
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
ASCII text, with very long lines (63293), with no line terminators
Size
63 kB (63293 bytes)
Hash
1c8f9d8d395d7eba8e0a9e71f6ac402a
f73c6f314c44d6224351a3b84bb56207f7a6142f
4054cadcd803adb6c8db8ce695712cdbe0e20708aead53b81bfbfa28d0f1e42a

HTTP Headers

GET /wp-content/plugins/brave-popup-builder/assets/css/frontend.min.css?ver=77685e716c4cd53aef6ebd8abd129ff3 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: text/css
last-modified: Thu, 09 Jan 2025 17:38:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 7994
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-includes/js/jquery/jquery.form.min.js?ver=4.3.0

116.90.57.33

200 OK

16 kB

URL GET
healthfinance.com.au/wp-includes/js/jquery/jquery.form.min.js?ver=4.3.0
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JavaScript source, ASCII text, with very long lines (15977), with no line terminators
Size
16 kB (15977 bytes)
Hash
ee858e15db40066634ae2d7c3959fbf0
82d919c1c636bbad55ae555ce661f9c34a3a7cfc
dc869996cbc8f47cab9aeb9523f81a7f420207a2601cce9ba45e9b7e0e261452

HTTP Headers

GET /wp-includes/js/jquery/jquery.form.min.js?ver=4.3.0 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Wed, 29 Mar 2023 18:48:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5690
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/plugins/vc_responsive_pro//assets/js/script.js?ver=1.0

116.90.57.33

200 OK

0 B

URL GET
healthfinance.com.au/wp-content/plugins/vc_responsive_pro//assets/js/script.js?ver=1.0
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/plugins/vc_responsive_pro//assets/js/script.js?ver=1.0 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Sun, 12 Sep 2021 18:21:40 GMT
accept-ranges: bytes
content-length: 0
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-VF26QS3GZB&l=dataLayer&cx=c&gtm=457e53j1za200zb9108136510&tag_exp=102482433~102788824~102803279~102813109~102887799

142.250.74.136

200 OK

401 kB

URL GET
www.googletagmanager.com/gtag/js?id=G-VF26QS3GZB&l=dataLayer&cx=c&gtm=457e53j1za200zb9108136510&tag_exp=102482433~102788824~102803279~102813109~102887799
IP
142.250.74.136:443
ASN
#15169 GOOGLE

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint16:BA:A3:B5:22:51:BB:87:46:7F:17:3F:9D:14:B3:35:F0:FE:B1:8D
ValidityMon, 10 Mar 2025 08:35:59 GMT - Mon, 02 Jun 2025 08:35:58 GMT

File type
JavaScript source, ASCII text, with very long lines (17272)
Size
401 kB (400854 bytes)
Hash
353c293d3d800e9cb98205a372809be8
2f6c7864f7279c46035d63d43c3d4a286c6ae882
6ec155f0a3b1ebe3e9a3d61c91fb7c3f5ff9c823de043847bb1950fddae8605c

HTTP Headers

GET /gtag/js?id=G-VF26QS3GZB&l=dataLayer&cx=c&gtm=457e53j1za200zb9108136510&tag_exp=102482433~102788824~102803279~102813109~102887799 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 22 Mar 2025 21:54:16 GMT
expires: Sat, 22 Mar 2025 21:54:16 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1020:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1020:0
report-to: {"group":"ascgcycc:1020:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1020:0"}],}
server: Google Tag Manager
content-length: 133434
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

js.zohocdn.com/salesiq/js/floatbutton1_cLmRt3f0MqrXWtZQcOf-fytinnWkqMkqc32eoN7UEXHmdNRjLetrg2kVC7ADH5FS_.js

185.20.209.147

200 OK

42 kB

URL GET
js.zohocdn.com/salesiq/js/floatbutton1_cLmRt3f0MqrXWtZQcOf-fytinnWkqMkqc32eoN7UEXHmdNRjLetrg2kVC7ADH5FS_.js
IP
185.20.209.147:443
ASN
#41913 Computerline GmbH

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerSectigo Limited
Subject*.zohocdn.com
FingerprintB3:AC:93:6B:90:A8:06:99:EB:A0:C5:46:5E:D5:00:4A:C7:84:95:35
ValidityMon, 16 Sep 2024 00:00:00 GMT - Thu, 16 Oct 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (41545), with no line terminators
Size
42 kB (41545 bytes)
Hash
808c873c0f4260dd8514ac0654079b2b
3620f534f4d1e722643e81602420c18c0b26d5bd
82ceb317d968fb1b0929351b723135920b0b6a107d73c6603e94962d9759c036

HTTP Headers

GET /salesiq/js/floatbutton1_cLmRt3f0MqrXWtZQcOf-fytinnWkqMkqc32eoN7UEXHmdNRjLetrg2kVC7ADH5FS_.js HTTP/1.1
Host: js.zohocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://healthfinance.com.au
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ZGS
date: Sat, 22 Mar 2025 21:54:18 GMT
content-type: text/javascript;charset=UTF-8
content-length: 14007
x-content-type-options: nosniff
cache-control: public, max-age=7776000, immutable
access-control-expose-headers: *
access-control-allow-origin: *
etag: "a1100349f019e0c6596c9e2588d99c98"
content-language: en-US
last-modified: Fri, 14 Mar 2025 12:19:25 GMT
vary: Accept-Encoding
strict-transport-security: max-age=15768000
content-encoding: br
timing-allow-origin: *
x-cache: HIT
nb-request-id: b2dc28bbcada7eb1b4e62c201d4abf8f
z-origin-id: ex1-708ec469d006484782c70b6cd50c8fb6
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2

js.zohocdn.com/ichat/js/Mar_13_2025_10182154_wmsliteapi.js

185.20.209.147

200 OK

26 kB

URL GET
js.zohocdn.com/ichat/js/Mar_13_2025_10182154_wmsliteapi.js
IP
185.20.209.147:443
ASN
#41913 Computerline GmbH

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerSectigo Limited
Subject*.zohocdn.com
FingerprintB3:AC:93:6B:90:A8:06:99:EB:A0:C5:46:5E:D5:00:4A:C7:84:95:35
ValidityMon, 16 Sep 2024 00:00:00 GMT - Thu, 16 Oct 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (26452)
Size
26 kB (26509 bytes)
Hash
a571caa21bf2a8040d446052ddf8a5b7
06b81e064eb36afd3acac60e5a5b31ff4098202c
7dd15cb4e2908ce892d62fc9ca4b4c3cd95c8a2cd283ef91e47afbd4dfac8bba

HTTP Headers

GET /ichat/js/Mar_13_2025_10182154_wmsliteapi.js HTTP/1.1
Host: js.zohocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ZGS
date: Sat, 22 Mar 2025 21:54:29 GMT
content-type: text/javascript;charset=UTF-8
content-length: 8941
x-content-type-options: nosniff
cache-control: public, max-age=7776000, immutable
access-control-expose-headers: *
access-control-allow-origin: *
etag: "9af074e243e1542a9d583fd03c5661f5"
content-language: en-US
last-modified: Thu, 13 Mar 2025 13:18:28 GMT
vary: Accept-Encoding
strict-transport-security: max-age=15768000
content-encoding: br
timing-allow-origin: *
x-cache: HIT
nb-request-id: c05cb7472fd584ce3d44b265309508f9
z-origin-id: ex1-779adf2cc4dc450f971de26dd95600ca
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2

css.zohocdn.com/salesiq/styles/fonts/float/siq_mpWsf52LIPg9mU40fjRdjF6WMUs-Q0VNu4KH07GkhNZGQTRxW2eRyFJLAq9VKCYB_.ttf

185.20.209.147

200 OK

14 kB

URL GET
css.zohocdn.com/salesiq/styles/fonts/float/siq_mpWsf52LIPg9mU40fjRdjF6WMUs-Q0VNu4KH07GkhNZGQTRxW2eRyFJLAq9VKCYB_.ttf
IP
185.20.209.147:443
ASN
#41913 Computerline GmbH

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerSectigo Limited
Subject*.zohocdn.com
FingerprintB3:AC:93:6B:90:A8:06:99:EB:A0:C5:46:5E:D5:00:4A:C7:84:95:35
ValidityMon, 16 Sep 2024 00:00:00 GMT - Thu, 16 Oct 2025 23:59:59 GMT

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, Revamp
Size
14 kB (14424 bytes)
Hash
f81f442e24ead3f83a2bd0dd7127484f
01c7d0487df08ef5bbc13cce444f61cabdd6d0db
cf1f73b76f318b2d7b59319d22f03d9f40ae8ab9ed942d338aeca9d03860fc15

HTTP Headers

GET /salesiq/styles/fonts/float/siq_mpWsf52LIPg9mU40fjRdjF6WMUs-Q0VNu4KH07GkhNZGQTRxW2eRyFJLAq9VKCYB_.ttf HTTP/1.1
Host: css.zohocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://healthfinance.com.au
DNT: 1
Connection: keep-alive
Referer: https://css.zohocdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ZGS
date: Sat, 22 Mar 2025 21:54:29 GMT
content-type: font/ttf
content-length: 9343
x-content-type-options: nosniff
cache-control: public, max-age=7776000, immutable
etag: "20f374e9afc772f2ce62f64c5b3b772f"
content-language: en-US
last-modified: Thu, 04 Apr 2024 08:42:57 GMT
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
content-encoding: br
timing-allow-origin: *
x-cache: HIT
nb-request-id: 93815d4b3bc672115beceeae5fed6de5
z-origin-id: ex1-af627f9d125a4cbeab74776370c37fe0
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2

css.zohocdn.com/salesiq/images/cw/offline-chat_NKJseh8mzXaZLP1NR-fn7qoN2lffjpb8oCBXjb7WY969BWVk6OsKWSF13oYD3KDp_.svg

185.20.209.147

200 OK

5.0 kB

URL GET
css.zohocdn.com/salesiq/images/cw/offline-chat_NKJseh8mzXaZLP1NR-fn7qoN2lffjpb8oCBXjb7WY969BWVk6OsKWSF13oYD3KDp_.svg
IP
185.20.209.147:443
ASN
#41913 Computerline GmbH

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerSectigo Limited
Subject*.zohocdn.com
FingerprintB3:AC:93:6B:90:A8:06:99:EB:A0:C5:46:5E:D5:00:4A:C7:84:95:35
ValidityMon, 16 Sep 2024 00:00:00 GMT - Thu, 16 Oct 2025 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
5.0 kB (4988 bytes)
Hash
8f063372a8ecf5ee9d9319dfb87d95a2
b1698eae870209bdf39a3c59c3f424fb6e34245f
0e7cd1c2ed3ee5e8c15ac87241ddb5d52b2adba2d3afe2c4de0b6e3daf58b47e

HTTP Headers

GET /salesiq/images/cw/offline-chat_NKJseh8mzXaZLP1NR-fn7qoN2lffjpb8oCBXjb7WY969BWVk6OsKWSF13oYD3KDp_.svg HTTP/1.1
Host: css.zohocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://css.zohocdn.com/salesiq/styles/newembedtheme_7nMmFo0ESIxWpUGdpIA_Gji1F1wXJfgzxXqzov8GXJfF87FZxcjEP__h96HoqdCb_.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ZGS
date: Sat, 22 Mar 2025 21:54:29 GMT
content-type: image/svg+xml
content-length: 2010
x-content-type-options: nosniff
cache-control: public, max-age=7776000, immutable
etag: "b3c559934e0832b419aed0c35056f85a"
content-language: en-US
last-modified: Thu, 04 Apr 2024 08:42:35 GMT
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
content-encoding: br
timing-allow-origin: *
x-cache: HIT
nb-request-id: 0f73f44d730817ee88c2a5ed86150449
z-origin-id: ex1-5edcf2e6e8d845cb9cde977e143465cb
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/themes/niva/css/styles-footer.css?ver=77685e716c4cd53aef6ebd8abd129ff3

116.90.57.33

200 OK

12 kB

URL GET
healthfinance.com.au/wp-content/themes/niva/css/styles-footer.css?ver=77685e716c4cd53aef6ebd8abd129ff3
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
ASCII text
Size
12 kB (11735 bytes)
Hash
9bb26f5fb559a86b2325fbe4b0593637
d1ee31a938608f84a2b2225a979e080be757e6c9
932bfdc31974b6efb2e6fc326eb7e29f8d47a332c8ce1eb03058dd793fea8528

HTTP Headers

GET /wp-content/themes/niva/css/styles-footer.css?ver=77685e716c4cd53aef6ebd8abd129ff3 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: text/css
last-modified: Sun, 12 Sep 2021 18:22:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2391
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/filters-mixitup.min.js?ver=1.0.0

116.90.57.33

200 OK

28 kB

URL GET
healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/filters-mixitup.min.js?ver=1.0.0
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JavaScript source, ASCII text, with very long lines (28118), with no line terminators
Size
28 kB (28118 bytes)
Hash
3815dd0c5c2f4ad2586d1e2cab1ca924
fdf0f879c0c47b97f1d3e89f3cda609a4acef9ee
3cc821baa0f09a49a88174c31b18ca6cf90dc7b9a30e0d6c3552e3bbb3f18d12

HTTP Headers

GET /wp-content/plugins/sweetthemes-framework/js/filters-mixitup.min.js?ver=1.0.0 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Sun, 12 Sep 2021 18:21:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 7614
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/themes/niva/js/jquery.countTo.js?ver=1.0.0

116.90.57.33

200 OK

3.2 kB

URL GET
healthfinance.com.au/wp-content/themes/niva/js/jquery.countTo.js?ver=1.0.0
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JavaScript source, ASCII text, with very long lines (3246), with no line terminators
Size
3.2 kB (3162 bytes)
Hash
127d9517f9d18c37cb507ad8baee9956
6d2446dbe8d61cb23cdfd427f926cc244b234d07
4ab5f50f2cca64aeadd8da8d332b2b20c8478e3b7affb5cf68247534e2e726aa

HTTP Headers

GET /wp-content/themes/niva/js/jquery.countTo.js?ver=1.0.0 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Sun, 12 Sep 2021 18:22:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 879
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/uploads/2021/09/HFi-Logo-Px-1.png

116.90.57.33

200 OK

94 kB

URL GET
healthfinance.com.au/wp-content/uploads/2021/09/HFi-Logo-Px-1.png
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
PNG image data, 461 x 512, 8-bit/color RGBA, non-interlaced
Size
94 kB (94533 bytes)
Hash
856d2abe0ff482a63cd9c0246bf6006e
8dde59abcf7104d663f5b4d579a35cf22e1b7da8
efc1ddc94ebfdf464930a294da6054dc968ac90de3615b6ee1be811c93a4a77e

HTTP Headers

GET /wp-content/uploads/2021/09/HFi-Logo-Px-1.png HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Cookie: _ga_PC7EG1PJSD=GS1.1.1742680455.1.0.1742680455.0.0.0; _ga=GA1.1.942076731.1742680455; nitroCachedPage=0; _ga_VF26QS3GZB=GS1.1.1742680456.1.0.1742680456.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:17 GMT
content-type: image/png
last-modified: Mon, 13 Sep 2021 00:23:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 94540
date: Sat, 22 Mar 2025 21:54:17 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

css.zohocdn.com/salesiq/styles/fonts/cw/siq_1tbvHqREU7yOmOoZ1tXPKJh3D_3cyHRwaMGn99XYxz3Dy6GapQI3Pq7UMJFStaET_.ttf

185.20.209.147

200 OK

35 kB

URL GET
css.zohocdn.com/salesiq/styles/fonts/cw/siq_1tbvHqREU7yOmOoZ1tXPKJh3D_3cyHRwaMGn99XYxz3Dy6GapQI3Pq7UMJFStaET_.ttf
IP
185.20.209.147:443
ASN
#41913 Computerline GmbH

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerSectigo Limited
Subject*.zohocdn.com
FingerprintB3:AC:93:6B:90:A8:06:99:EB:A0:C5:46:5E:D5:00:4A:C7:84:95:35
ValidityMon, 16 Sep 2024 00:00:00 GMT - Thu, 16 Oct 2025 23:59:59 GMT

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon
Size
35 kB (34936 bytes)
Hash
126d03bdd2b5b096575c5888e0c456c2
5a5b9adc31067e67cd3711f7fba6334b637ce8d0
2f91199e5e8c4600f10c540b7d9db7552abbca403ac6b8c16a5760e3f4fb6463

HTTP Headers

GET /salesiq/styles/fonts/cw/siq_1tbvHqREU7yOmOoZ1tXPKJh3D_3cyHRwaMGn99XYxz3Dy6GapQI3Pq7UMJFStaET_.ttf HTTP/1.1
Host: css.zohocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://healthfinance.com.au
DNT: 1
Connection: keep-alive
Referer: https://css.zohocdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ZGS
date: Sat, 22 Mar 2025 21:54:29 GMT
content-type: font/ttf
content-length: 20853
x-content-type-options: nosniff
cache-control: public, max-age=7776000, immutable
etag: "3ccbb36bf5fe6c13d2d835413a0247fd"
content-language: en-US
last-modified: Thu, 04 Apr 2024 08:42:22 GMT
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
content-encoding: br
timing-allow-origin: *
x-cache: HIT
nb-request-id: ba69aeb13e2377aaf37ab125f4be5e75
z-origin-id: ex1-7d7f41bf5ff540c1a4a5a66dff5e6e8b
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/plugins/sweetthemes-framework/inc/shortcodes/shortcodes.css?ver=77685e716c4cd53aef6ebd8abd129ff3

116.90.57.33

200 OK

174 kB

URL GET
healthfinance.com.au/wp-content/plugins/sweetthemes-framework/inc/shortcodes/shortcodes.css?ver=77685e716c4cd53aef6ebd8abd129ff3
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
assembler source, ASCII text
Size
174 kB (174107 bytes)
Hash
fe7a3342fff524a72e6576d1dee9455f
d081bf0e6cdac639910b93fa44102dc1f630dd01
13af117708584b7878200418ff4b6f162c1b0abe6f6a251b79fb9d528699c5c7

HTTP Headers

GET /wp-content/plugins/sweetthemes-framework/inc/shortcodes/shortcodes.css?ver=77685e716c4cd53aef6ebd8abd129ff3 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: text/css
last-modified: Sun, 12 Sep 2021 18:21:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 25411
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/themes/niva/css/styles.css?ver=77685e716c4cd53aef6ebd8abd129ff3

116.90.57.33

200 OK

211 kB

URL GET
healthfinance.com.au/wp-content/themes/niva/css/styles.css?ver=77685e716c4cd53aef6ebd8abd129ff3
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
assembler source, ASCII text
Size
211 kB (210638 bytes)
Hash
192ad889f30b838e87ae9e133b6b69d6
7fe108b69d7430b53139e9724784b841a9b0a25f
1187ff352b6901efc89ea9212f95c367539ccffcee2faef6fcd99b9358ea436c

HTTP Headers

GET /wp-content/themes/niva/css/styles.css?ver=77685e716c4cd53aef6ebd8abd129ff3 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: text/css
last-modified: Sun, 12 Sep 2021 18:22:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 33965
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/uploads/2022/02/Kaplan-Trauma-Course-Blog-Post-Image-150x150.png

116.90.57.33

200 OK

20 kB

URL GET
healthfinance.com.au/wp-content/uploads/2022/02/Kaplan-Trauma-Course-Blog-Post-Image-150x150.png
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced
Size
20 kB (20254 bytes)
Hash
dbd9d309a88118a52e2e376dc1f367e9
53ab0faf8c8332f5d0d9e6318ad6293c900c1d94
e06d71654b7f564c59c4be170afa5ed2f4989c1e1f7066f8d18f7cfb40a9c018

HTTP Headers

GET /wp-content/uploads/2022/02/Kaplan-Trauma-Course-Blog-Post-Image-150x150.png HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: image/png
last-modified: Fri, 18 Feb 2022 04:52:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 20258
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/uploads/2021/08/NDIS-e1632793515174-150x150.jpg

116.90.57.33

200 OK

6.9 kB

URL GET
healthfinance.com.au/wp-content/uploads/2021/08/NDIS-e1632793515174-150x150.jpg
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3
Size
6.9 kB (6925 bytes)
Hash
faa6a20009b950f869296a4c317ab5e4
3ca53127997e8cd6c0ca25dc6a767ae21daab3dd
60985e9f15092ae7e52c2692af58a5a72da8e8889df587a2b4ffbb35295f5f67

HTTP Headers

GET /wp-content/uploads/2021/08/NDIS-e1632793515174-150x150.jpg HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: image/jpeg
last-modified: Tue, 28 Sep 2021 01:45:15 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6770
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/themes/niva/js/uisearch.js?ver=1.0.0

116.90.57.33

200 OK

7.0 kB

URL GET
healthfinance.com.au/wp-content/themes/niva/js/uisearch.js?ver=1.0.0
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JavaScript source, ASCII text, with very long lines (7251), with no line terminators
Size
7.0 kB (7040 bytes)
Hash
3df6f9f11ca3417e7e9c1dbb8c39e1fd
b088871f329d4a46ba1d8a65ccc5ad091003d9de
fe9a343e2703e850f980d267f71dcb3cc0ec3779ab43f5d3b243386d08d3f6d2

HTTP Headers

GET /wp-content/themes/niva/js/uisearch.js?ver=1.0.0 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Sun, 12 Sep 2021 18:22:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2589
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

salesiq.zohopublic.com.au/visitor/v2/channels/website?widgetcode=703d06ce388af4e2e9ae2de2c6ae9c30c69d01930196734399c9e067e81882c5ba1e5663a1ed7592dc3256bfb8b325c1&internal_channel_req=true&language_api=true&browser_language=en&current_domain=https%3A%2F%2Fhealthfinance.com.au&pagetitle=Page%20not%20found%20%E2%80%93%20Health%20%26%20Finance%20Integrated&include_fields=avuid

103.138.128.75

200

30 kB

URL GET
salesiq.zohopublic.com.au/visitor/v2/channels/website?widgetcode=703d06ce388af4e2e9ae2de2c6ae9c30c69d01930196734399c9e067e81882c5ba1e5663a1ed7592dc3256bfb8b325c1&internal_channel_req=true&language_api=true&browser_language=en&current_domain=https%3A%2F%2Fhealthfinance.com.au&pagetitle=Page%20not%20found%20%E2%80%93%20Health%20%26%20Finance%20Integrated&include_fields=avuid
IP
103.138.128.75:443
ASN
#139006 Zoho Corporation PTY LTD

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerSectigo Limited
Subjectzohoportal.com.au
FingerprintED:63:88:8D:C2:27:EC:70:A5:95:60:2C:52:71:D3:C0:64:75:2D:A5
ValidityTue, 06 Aug 2024 00:00:00 GMT - Fri, 05 Sep 2025 23:59:59 GMT

File type

Size
30 kB (29662 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /visitor/v2/channels/website?widgetcode=703d06ce388af4e2e9ae2de2c6ae9c30c69d01930196734399c9e067e81882c5ba1e5663a1ed7592dc3256bfb8b325c1&internal_channel_req=true&language_api=true&browser_language=en&current_domain=https%3A%2F%2Fhealthfinance.com.au&pagetitle=Page%20not%20found%20%E2%80%93%20Health%20%26%20Finance%20Integrated&include_fields=avuid HTTP/1.1
Host: salesiq.zohopublic.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://healthfinance.com.au
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: ZGS
Date: Sat, 22 Mar 2025 21:54:18 GMT
Content-Type: application/json;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Expose-Headers: Waf-Encryption-Key
X-Content-Type-Options: nosniff
Encoding: UTF-8
Access-Control-Allow-Headers: Content-Type,x-siq-internal-channel,Waf-Encryption-Key
Set-Cookie: zalb_24a7e33ab6=74d2f07f2eb748c566078818dda9e3b2; Path=/; Secure; HttpOnly
LS_CSRF_TOKEN=9439fd8a-0e93-4240-8ed6-24ed32ff0fab;path=/;SameSite=None;Secure;priority=high
_zcsr_tmp=9439fd8a-0e93-4240-8ed6-24ed32ff0fab;path=/;SameSite=Strict;Secure;priority=high
uesign=ad69b99a87ac0cfedca341d5af0d81c1ba3646856b0bb3b3b2406d4bd68eefdfd9eca0a36aae960bfb0fbf339148cd2b;Max-Age=2592000;Path=/;Secure;SameSite=None;priority=high
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://healthfinance.com.au
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Cache-Control: no-cache
Content-Language: en-US
Strict-Transport-Security: max-age=64072000; includeSubDomains; preload
Content-Encoding: gzip

wss://vts.zohopublic.com.au/watchws?x-e=ablefinancialservices&x-s=ablefinancialservices&cpage=https%3A%2F%2Fhealthfinance.com.au%2Fwp-includes%2FIXR%2Fyoungbawz1.exe&ptitle=Page%20not%20found%20%E2%80%93%20Health%20%26%20Finance%20Integrated&localtime=GMT%2B0000%20(GMT)&gmttime=GMT%2B0000&resolution=1280x1024&lsid=7859000000002058&lang_embed=en&con_id=1742680458751&connection_count=1

103.138.128.121

101 Switching Protocols

0 B

URL GET
wss://vts.zohopublic.com.au/watchws?x-e=ablefinancialservices&x-s=ablefinancialservices&cpage=https%3A%2F%2Fhealthfinance.com.au%2Fwp-includes%2FIXR%2Fyoungbawz1.exe&ptitle=Page%20not%20found%20%E2%80%93%20Health%20%26%20Finance%20Integrated&localtime=GMT%2B0000%20(GMT)&gmttime=GMT%2B0000&resolution=1280x1024&lsid=7859000000002058&lang_embed=en&con_id=1742680458751&connection_count=1
IP
103.138.128.121:443
ASN
#139006 Zoho Corporation PTY LTD

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerSectigo Limited
Subject*.zohopublic.com.au
Fingerprint7A:84:0B:26:A4:70:C8:A2:9C:E6:2A:EF:79:5F:25:C8:80:0F:D4:06
ValidityThu, 04 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /watchws?x-e=ablefinancialservices&x-s=ablefinancialservices&cpage=https%3A%2F%2Fhealthfinance.com.au%2Fwp-includes%2FIXR%2Fyoungbawz1.exe&ptitle=Page%20not%20found%20%E2%80%93%20Health%20%26%20Finance%20Integrated&localtime=GMT%2B0000%20(GMT)&gmttime=GMT%2B0000&resolution=1280x1024&lsid=7859000000002058&lang_embed=en&con_id=1742680458751&connection_count=1 HTTP/1.1
Host: vts.zohopublic.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://healthfinance.com.au
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: wsOvFxIg1mF5GTZTUDTtew==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Sec-WebSocket-Accept: CSi9f9QGmZfxDuL9buv7ktj1MWk=
Upgrade: websocket
Strict-Transport-Security: max-age=15768000
Connection: Upgrade

healthfinance.com.au/wp-content/themes/niva/css/gutenberg-frontend.css?ver=77685e716c4cd53aef6ebd8abd129ff3

116.90.57.33

200 OK

4.9 kB

URL GET
healthfinance.com.au/wp-content/themes/niva/css/gutenberg-frontend.css?ver=77685e716c4cd53aef6ebd8abd129ff3
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
ASCII text, with very long lines (5134), with no line terminators
Size
4.9 kB (4906 bytes)
Hash
f5290726d05b1aa92225937533670372
e8fc6174d42d4b961bd9a4b643fffdcbe4d7b85d
b8cda051953f947196d5621fdb902fbadc2626b6e5386230e051e834e9a0bfce

HTTP Headers

GET /wp-content/themes/niva/css/gutenberg-frontend.css?ver=77685e716c4cd53aef6ebd8abd129ff3 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: text/css
last-modified: Sun, 12 Sep 2021 18:22:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1194
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto%7CPhilosopher:400%7CPoppins:400&display=swap&ver=1670752527

142.250.74.10

200 OK

8.5 kB

URL GET
fonts.googleapis.com/css?family=Roboto%7CPhilosopher:400%7CPoppins:400&display=swap&ver=1670752527
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint69:99:38:F9:7C:82:8E:AC:7D:DA:EA:3E:1C:E4:7F:52:1B:36:41:AA
ValidityMon, 10 Mar 2025 08:37:02 GMT - Mon, 02 Jun 2025 08:37:01 GMT

File type
ASCII text, with very long lines (8643), with no line terminators
Size
8.5 kB (8490 bytes)
Hash
24128a0a6148f5b5f4a740d7fe628096
3ccae12baee48b8494e27a81d9e18bfde3c5df0f
0dacb5e8b4a7c23c1df83801677c588a2afd8b955b77d3153cfe74cbbfd2f39b

HTTP Headers

GET /css?family=Roboto%7CPhilosopher:400%7CPoppins:400&display=swap&ver=1670752527 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 22 Mar 2025 21:54:15 GMT
date: Sat, 22 Mar 2025 21:54:15 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/vivus.min.js?ver=1.0.0

116.90.57.33

200 OK

11 kB

URL GET
healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/vivus.min.js?ver=1.0.0
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JavaScript source, ASCII text, with very long lines (11176), with CRLF line terminators
Size
11 kB (11333 bytes)
Hash
bb9997220dbbab6fddb7dd264a7347c6
04ad0cd2e1007e8b5163ab3fb0ff2126642b25ac
de356608f07b236b972574c21e03bff716e05b3506fa4a3922bc542637d7ded0

HTTP Headers

GET /wp-content/plugins/sweetthemes-framework/js/vivus.min.js?ver=1.0.0 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Sun, 12 Sep 2021 18:21:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3558
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-includes/js/jquery/jquery.min.js?ver=3.7.1

116.90.57.33

200 OK

88 kB

URL GET
healthfinance.com.au/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
88 kB (87553 bytes)
Hash
826eb77e86b02ab7724fe3d0141ff87c
79cd3587d565afe290076a8d36c31c305a573d18
cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Wed, 08 Nov 2023 05:54:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 29744
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/uploads/2021/08/logo.png

116.90.57.33

200 OK

43 kB

URL GET
healthfinance.com.au/wp-content/uploads/2021/08/logo.png
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
PNG image data, 2048 x 1314, 8-bit colormap, non-interlaced
Size
43 kB (42583 bytes)
Hash
7f93a1b02aa349e8975063381ac4fad1
45670546ce282b08e7739058d4a655d448998a83
7f9b7a11a8227851f8b0a9c05639421a424a4a00060c47db18eebe13e3af644c

HTTP Headers

GET /wp-content/uploads/2021/08/logo.png HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: image/png
last-modified: Sun, 12 Sep 2021 18:22:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 41074
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/uploads/2025/03/Screenshot-2025-03.png

116.90.57.33

200 OK

1.4 MB

URL GET
healthfinance.com.au/wp-content/uploads/2025/03/Screenshot-2025-03.png
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
PNG image data, 1496 x 635, 8-bit/color RGBA, non-interlaced
Size
1.4 MB (1438409 bytes)
Hash
922ed40128eb239b30decc8575b2d7d8
43ba68b40493de89779ba7c9f3cbc41cdd936e5d
dceea6f839a921af5d2a9980ae534d47aa8517bfef14fbcd2f2d7c9d0667e855

HTTP Headers

GET /wp-content/uploads/2025/03/Screenshot-2025-03.png HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: image/png
last-modified: Tue, 18 Mar 2025 03:09:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1438461
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=6.0.5

116.90.57.33

200 OK

12 kB

URL GET
healthfinance.com.au/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=6.0.5
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JavaScript source, ASCII text, with very long lines (12512), with no line terminators
Size
12 kB (12512 bytes)
Hash
96e7dc3f0e8559e4a3f3ca40b17ab9c3
d363d0291e92c233e828023583dcf6685f2da5a2
29fdd17a7002a2e1bbd9b33adafc53457c64006b5aca8f6e4dbf907de35433ca

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=6.0.5 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Tue, 11 Mar 2025 17:36:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3369
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/classie.js?ver=1.0.0

116.90.57.33

200 OK

2.0 kB

URL GET
healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/classie.js?ver=1.0.0
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JavaScript source, ASCII text, with very long lines (2243), with no line terminators
Size
2.0 kB (1995 bytes)
Hash
6a8dc2024d13b5a58fd3cc86096f9fbc
0fba9be9ff517434488c87ac0bcf7e9d02dea21e
d2f288528fc850e492fb84fa5fdf65b067eafc9b649e97d042058cc6796c0320

HTTP Headers

GET /wp-content/plugins/sweetthemes-framework/js/classie.js?ver=1.0.0 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Sun, 12 Sep 2021 18:21:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 639
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-includes/IXR/youngbawz1.exe

116.90.57.33

301 Moved Permanently

128 kB

URL User Request GET
healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
IP
116.90.57.33:80
ASN
#55803 Hostopia Australia Web Pty Ltd

File type

Size
128 kB (128035 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

NIDS	Severity	Alert
suricata	high	ET MALWARE EXE Download Request To Wordpress Folder Likely Malicious

HTTP Headers

GET /wp-includes/IXR/youngbawz1.exe HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 795
date: Sat, 22 Mar 2025 21:54:12 GMT
server: LiteSpeed
location: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
vary: User-Agent

healthfinance.com.au/wp-content/themes/niva/css/responsive.css?ver=77685e716c4cd53aef6ebd8abd129ff3

116.90.57.33

200 OK

113 kB

URL GET
healthfinance.com.au/wp-content/themes/niva/css/responsive.css?ver=77685e716c4cd53aef6ebd8abd129ff3
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
ASCII text, with very long lines (65172), with CRLF line terminators
Size
113 kB (113303 bytes)
Hash
b13de9970d55dfb29b48859560ab22ff
8c5ce818651835ec750731690318366bdb8765a1
f62df03e1e33ca9985e76d282e501d6caaf7ba215e6def3ec2d873c99aded8cb

HTTP Headers

GET /wp-content/themes/niva/css/responsive.css?ver=77685e716c4cd53aef6ebd8abd129ff3 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: text/css
last-modified: Sun, 12 Sep 2021 19:05:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 17274
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/themes/niva/js/jquery.appear.js?ver=1.0.0

116.90.57.33

200 OK

1.5 kB

URL GET
healthfinance.com.au/wp-content/themes/niva/js/jquery.appear.js?ver=1.0.0
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JavaScript source, ASCII text, with very long lines (1494), with no line terminators
Size
1.5 kB (1484 bytes)
Hash
33b9099e6218e9f53c08e428035f2c50
4eee81e9afe8ce7d4b7060f1a7089a43e7588b67
3c35f9ada9962d8930263b3936dbb62507f0d237fb8d8f252ed7dd8d7fd5b263

HTTP Headers

GET /wp-content/themes/niva/js/jquery.appear.js?ver=1.0.0 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Sun, 12 Sep 2021 18:22:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 632
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

nitroscripts.com/XNAcCnYyVvWNsIBXTeleKRBGUDGzPDOO

172.64.154.248

200 OK

993 B

URL GET
nitroscripts.com/XNAcCnYyVvWNsIBXTeleKRBGUDGzPDOO
IP
172.64.154.248:443
ASN
#13335 CLOUDFLARENET

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerGoogle Trust Services
Subjectnitroscripts.com
FingerprintE1:C7:DC:6E:F3:38:97:9D:08:A4:93:4C:0D:21:DB:EB:D7:F4:F2:5E
ValidityFri, 21 Feb 2025 02:43:12 GMT - Thu, 22 May 2025 03:43:11 GMT

File type
ASCII text, with very long lines (1017), with no line terminators
Size
993 B (993 bytes)
Hash
dd4714423ae9ab56de37376e887f7e3d
57a932728de24203ee5b0d29c1937c0d3f14a95e
caa612a97ec47c32fb6104b03a2a42061d4b823d3a891ce0b7765c97dee438c6

HTTP Headers

GET /XNAcCnYyVvWNsIBXTeleKRBGUDGzPDOO HTTP/1.1
Host: nitroscripts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 22 Mar 2025 21:54:16 GMT
content-type: text/javascript
strict-transport-security: max-age=15724800; includeSubDomains
last-modified: Sat, 22 Mar 2025 21:54:16 GMT
cf-cache-status: EXPIRED
vary: Accept-Encoding
cache-control: public, max-age=600, stale-while-revalidate=31536000
server: cloudflare
cf-ray: 9248ed338b4a0b41-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

css.zohocdn.com/salesiq/styles/floatbutton1_bHMUH6QRyg-y4UwolhbfAFrRqOHGBNpYjKZlHLLG8Alb3uIpXyqEzmZexzeC6CuU_.css

185.20.209.147

200 OK

61 kB

URL GET
css.zohocdn.com/salesiq/styles/floatbutton1_bHMUH6QRyg-y4UwolhbfAFrRqOHGBNpYjKZlHLLG8Alb3uIpXyqEzmZexzeC6CuU_.css
IP
185.20.209.147:443
ASN
#41913 Computerline GmbH

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerSectigo Limited
Subject*.zohocdn.com
FingerprintB3:AC:93:6B:90:A8:06:99:EB:A0:C5:46:5E:D5:00:4A:C7:84:95:35
ValidityMon, 16 Sep 2024 00:00:00 GMT - Thu, 16 Oct 2025 23:59:59 GMT

File type
ASCII text, with very long lines (61374), with no line terminators
Size
61 kB (61374 bytes)
Hash
3a5cce1b3842431c60ae230aa3514165
8d87e6083ad9c966cd38b1e0ad5e7da44dccc92c
261d247bda79080d5435e032ca0de97659b4d7c87edd68805eb945ee11084743

HTTP Headers

GET /salesiq/styles/floatbutton1_bHMUH6QRyg-y4UwolhbfAFrRqOHGBNpYjKZlHLLG8Alb3uIpXyqEzmZexzeC6CuU_.css HTTP/1.1
Host: css.zohocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://healthfinance.com.au
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ZGS
date: Sat, 22 Mar 2025 21:54:18 GMT
content-type: text/css;charset=UTF-8
content-length: 13988
x-content-type-options: nosniff
cache-control: public, max-age=7776000, immutable
access-control-expose-headers: *
access-control-allow-origin: *
etag: "5768b3a4d6794580e670d3e7dae41d03"
content-language: en-US
last-modified: Wed, 05 Mar 2025 09:43:23 GMT
vary: Accept-Encoding
strict-transport-security: max-age=15768000
content-encoding: br
timing-allow-origin: *
x-cache: HIT
nb-request-id: 66da9c1d9a016b639709f6552e72737b
z-origin-id: ex1-d15815fc58f142f39ddd6294474b7960
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-81643902-1

142.250.74.136

200 OK

256 kB

URL GET
www.googletagmanager.com/gtag/js?id=UA-81643902-1
IP
142.250.74.136:443
ASN
#15169 GOOGLE

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint16:BA:A3:B5:22:51:BB:87:46:7F:17:3F:9D:14:B3:35:F0:FE:B1:8D
ValidityMon, 10 Mar 2025 08:35:59 GMT - Mon, 02 Jun 2025 08:35:58 GMT

File type
JavaScript source, ASCII text, with very long lines (5343)
Size
256 kB (256103 bytes)
Hash
f95da99195cee9aabbdcccadc42fd605
4d25cec57775440c18f36f6c655e3b63b2da38f3
f4b649081050fa7ca9bbeb1c500ee5c8c2fa52107e8fda162405a1940fd19a02

HTTP Headers

GET /gtag/js?id=UA-81643902-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 22 Mar 2025 21:54:15 GMT
expires: Sat, 22 Mar 2025 21:54:15 GMT
cache-control: private, max-age=900
last-modified: Sat, 22 Mar 2025 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1020:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1020:0
report-to: {"group":"ascgcycc:1020:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1020:0"}],}
server: Google Tag Manager
content-length: 90839
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/uploads/2022/02/julia-zyablova-S1v7hVUiCg0-unsplash-150x150.jpg

116.90.57.33

200 OK

5.2 kB

URL GET
healthfinance.com.au/wp-content/uploads/2022/02/julia-zyablova-S1v7hVUiCg0-unsplash-150x150.jpg
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3
Size
5.2 kB (5228 bytes)
Hash
36eebaffa9abe3013dfdb97a49292972
03364f3bf0a421732b59bd69ed1e7609c7cdd9dd
3d86fde39b6acb64d7f0153147619fc11963e20dfba044cd55e8e33e355aa4f2

HTTP Headers

GET /wp-content/uploads/2022/02/julia-zyablova-S1v7hVUiCg0-unsplash-150x150.jpg HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: image/jpeg
last-modified: Mon, 21 Feb 2022 07:29:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5019
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/themes/niva/js/slick.min.js?ver=1.0.0

116.90.57.33

200 OK

43 kB

URL GET
healthfinance.com.au/wp-content/themes/niva/js/slick.min.js?ver=1.0.0
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JavaScript source, ASCII text, with very long lines (42862)
Size
43 kB (42863 bytes)
Hash
d5a61c749e44e47159af8a6579dda121
3b41b3bc956685015a347a2238e71db29dfa0dbb
0c7178cc6ca34fb18e30f070a5e7a1c287b2d7ccfcba2cfdf06e0f46eda55740

HTTP Headers

GET /wp-content/themes/niva/js/slick.min.js?ver=1.0.0 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Sun, 12 Sep 2021 18:22:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 10097
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-81643902-1&l=dataLayer&cx=c&gtm=45je53j1v9108136510za200&tag_exp=102482433~102788824~102803279~102813109~102887800

142.250.74.136

200 OK

256 kB

URL GET
www.googletagmanager.com/gtag/js?id=UA-81643902-1&l=dataLayer&cx=c&gtm=45je53j1v9108136510za200&tag_exp=102482433~102788824~102803279~102813109~102887800
IP
142.250.74.136:443
ASN
#15169 GOOGLE

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint16:BA:A3:B5:22:51:BB:87:46:7F:17:3F:9D:14:B3:35:F0:FE:B1:8D
ValidityMon, 10 Mar 2025 08:35:59 GMT - Mon, 02 Jun 2025 08:35:58 GMT

File type
JavaScript source, ASCII text, with very long lines (5343)
Size
256 kB (256101 bytes)
Hash
9135994337cca754ec2aae24386aa754
3e8884b337ec2b7d68c48ead1ec9d5ae61734026
d412c85b4cb000f58c6afc451b03f834a8964873157dc59e9e26aa5fb96efb23

HTTP Headers

GET /gtag/js?id=UA-81643902-1&l=dataLayer&cx=c&gtm=45je53j1v9108136510za200&tag_exp=102482433~102788824~102803279~102813109~102887800 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 22 Mar 2025 21:54:16 GMT
expires: Sat, 22 Mar 2025 21:54:16 GMT
cache-control: private, max-age=900
last-modified: Sat, 22 Mar 2025 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1020:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1020:0
report-to: {"group":"ascgcycc:1020:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1020:0"}],}
server: Google Tag Manager
content-length: 90887
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.googletagmanager.com/gtag/js?id=G-PC7EG1PJSD

142.250.74.136

200 OK

307 kB

URL GET
www.googletagmanager.com/gtag/js?id=G-PC7EG1PJSD
IP
142.250.74.136:443
ASN
#15169 GOOGLE

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint16:BA:A3:B5:22:51:BB:87:46:7F:17:3F:9D:14:B3:35:F0:FE:B1:8D
ValidityMon, 10 Mar 2025 08:35:59 GMT - Mon, 02 Jun 2025 08:35:58 GMT

File type
JavaScript source, ASCII text, with very long lines (6055)
Size
307 kB (306787 bytes)
Hash
247979e21890d6a3ae461f0cc7309dc9
8c24841b95b8067ae8ab233e63c25377b21b6029
aac4cf8654dd256aea7390913699805c6e1a6e7bfd014539c0c52ac7416ba158

HTTP Headers

GET /gtag/js?id=G-PC7EG1PJSD HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 22 Mar 2025 21:54:15 GMT
expires: Sat, 22 Mar 2025 21:54:15 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1020:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1020:0
report-to: {"group":"ascgcycc:1020:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1020:0"}],}
server: Google Tag Manager
content-length: 107892
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

healthfinance.com.au/wp-includes/js/dist/hooks.min.js?ver=4d63a3d491d11ffd8ac6

116.90.57.33

200 OK

4.8 kB

URL GET
healthfinance.com.au/wp-includes/js/dist/hooks.min.js?ver=4d63a3d491d11ffd8ac6
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JavaScript source, ASCII text, with very long lines (4857), with no line terminators
Size
4.8 kB (4776 bytes)
Hash
cfbe9331246b6a20bc00d02c1db2ed47
d8b879cbb8cb0084001505a04a9487ff985c683e
f810169ba5c970d191ecfd6385f2a1f8a95aea42d1bbb1ad039c5e4f70e56bea

HTTP Headers

GET /wp-includes/js/dist/hooks.min.js?ver=4d63a3d491d11ffd8ac6 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Wed, 13 Nov 2024 19:20:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1571
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=6.0.5

116.90.57.33

200 OK

2.9 kB

URL GET
healthfinance.com.au/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=6.0.5
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
ASCII text, with very long lines (3172), with no line terminators
Size
2.9 kB (2894 bytes)
Hash
4ff394b4fc55e546c2457e1a49a044fa
0f3fe404c0821a795cb73aa6bb5c062d52af7e68
4858dafdb763b5027e97ca50c5747329e16d4c19ecc575aff7454335e71cba33

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=6.0.5 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: text/css
last-modified: Tue, 11 Mar 2025 17:36:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 890
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/select2.min.js?ver=1.0.0

116.90.57.33

200 OK

67 kB

URL GET
healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/select2.min.js?ver=1.0.0
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type

Size
67 kB (66843 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/plugins/sweetthemes-framework/js/select2.min.js?ver=1.0.0 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Sun, 12 Sep 2021 18:21:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 17646
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/themes/niva/js/owl.carousel.js?ver=1.0.0

116.90.57.33

200 OK

24 kB

URL GET
healthfinance.com.au/wp-content/themes/niva/js/owl.carousel.js?ver=1.0.0
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JavaScript source, ASCII text, with very long lines (635)
Size
24 kB (23957 bytes)
Hash
4a6a5bb9ceebe31c468a81dafb5606b0
edab9fe5efacf3818d8e6abf9a025265436f9b57
d83f449255b521432b4bd6d21a6341a1a4e24709afaaf9170606a7c8c728b98a

HTTP Headers

GET /wp-content/themes/niva/js/owl.carousel.js?ver=1.0.0 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Sun, 12 Sep 2021 18:22:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6308
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/themes/niva/js/modernizr.viewport.js?ver=2.6.2

116.90.57.33

200 OK

8.5 kB

URL GET
healthfinance.com.au/wp-content/themes/niva/js/modernizr.viewport.js?ver=2.6.2
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JavaScript source, ASCII text, with very long lines (8730), with no line terminators
Size
8.5 kB (8523 bytes)
Hash
847eda28368fa26997f648d5485a950f
5348c248d6520eb92ffb4388d4556b94a9d542df
2693770b4b163ad0dd1c2d63849b717a658cec55bd559812bf490eaea32a87d3

HTTP Headers

GET /wp-content/themes/niva/js/modernizr.viewport.js?ver=2.6.2 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Sun, 12 Sep 2021 18:22:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3569
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/themes/niva/style.css?ver=77685e716c4cd53aef6ebd8abd129ff3

116.90.57.33

200 OK

23 kB

URL GET
healthfinance.com.au/wp-content/themes/niva/style.css?ver=77685e716c4cd53aef6ebd8abd129ff3
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
ASCII text
Size
23 kB (22887 bytes)
Hash
99a00ae3d249b9ec1fc2cc779485aae8
564918a06b1504d3b3d1df6f1de168864daabd21
506d178f7f7388dbf2b35ac0b9c1feaad6d5ce35ad702ac2a15d3f7b8cab9162

HTTP Headers

GET /wp-content/themes/niva/style.css?ver=77685e716c4cd53aef6ebd8abd129ff3 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: text/css
last-modified: Sun, 12 Sep 2021 18:22:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5353
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/themes/niva/css/styles-headers.css?ver=77685e716c4cd53aef6ebd8abd129ff3

116.90.57.33

200 OK

65 kB

URL GET
healthfinance.com.au/wp-content/themes/niva/css/styles-headers.css?ver=77685e716c4cd53aef6ebd8abd129ff3
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
ASCII text
Size
65 kB (65104 bytes)
Hash
dbcab2f08bb0141f4d2d8b1914fba133
23d53302350cb1c9f64097f50eb8dffef556ca16
3e561f877e92eba7089dc98812dcc9af946f6d75271f1b9e9d3d962205511e50

HTTP Headers

GET /wp-content/themes/niva/css/styles-headers.css?ver=77685e716c4cd53aef6ebd8abd129ff3 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: text/css
last-modified: Sun, 12 Sep 2021 18:22:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 8189
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/uploads/2021/09/HFi-Logo-Px-1-100x100.png

116.90.57.33

200 OK

14 kB

URL GET
healthfinance.com.au/wp-content/uploads/2021/09/HFi-Logo-Px-1-100x100.png
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced
Size
14 kB (13729 bytes)
Hash
47d36c18313b7bb6be252a31c28c7380
e07d48cc762eccfbb62be377dd9290fdba0ae097
34b0b829fc930b4cb3cb8b75e6ad30db72470ba005e1e029dc2be43aa976f061

HTTP Headers

GET /wp-content/uploads/2021/09/HFi-Logo-Px-1-100x100.png HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Cookie: _ga_PC7EG1PJSD=GS1.1.1742680455.1.0.1742680455.0.0.0; _ga=GA1.1.942076731.1742680455; nitroCachedPage=0; _ga_VF26QS3GZB=GS1.1.1742680456.1.0.1742680456.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:17 GMT
content-type: image/png
last-modified: Mon, 13 Sep 2021 00:23:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 13724
date: Sat, 22 Mar 2025 21:54:17 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Philosopher%3Aregular%2Citalic%2C700%2C700italic%2Clatin%2Ccyrillic&ver=1.0.0

142.250.74.10

200 OK

7.2 kB

URL GET
fonts.googleapis.com/css?family=Philosopher%3Aregular%2Citalic%2C700%2C700italic%2Clatin%2Ccyrillic&ver=1.0.0
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint69:99:38:F9:7C:82:8E:AC:7D:DA:EA:3E:1C:E4:7F:52:1B:36:41:AA
ValidityMon, 10 Mar 2025 08:37:02 GMT - Mon, 02 Jun 2025 08:37:01 GMT

File type
ASCII text, with very long lines (7406), with no line terminators
Size
7.2 kB (7246 bytes)
Hash
ea85fac73651d87c49a07e5d838d504a
c2c6e232ea62a51c9911c5cebb4777baf80ce12b
292820c5f45bfeb24f296c82f5657d68e13c55f47d4982fe5882874e5d381a54

HTTP Headers

GET /css?family=Philosopher%3Aregular%2Citalic%2C700%2C700italic%2Clatin%2Ccyrillic&ver=1.0.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 22 Mar 2025 21:54:15 GMT
date: Sat, 22 Mar 2025 21:54:15 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

healthfinance.com.au/wp-includes/js/dist/i18n.min.js?ver=5e580eb46a90c2b997e6

116.90.57.33

200 OK

9.1 kB

URL GET
healthfinance.com.au/wp-includes/js/dist/i18n.min.js?ver=5e580eb46a90c2b997e6
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JavaScript source, ASCII text, with very long lines (9425), with no line terminators
Size
9.1 kB (9141 bytes)
Hash
1fb2af886396b544159f85c0c83bd895
e95db4a68dcaf71d20f92f4626ad7818496b3c35
0b05f9ebb0e1023e006019337a5642980ac33491097276b0851b9e8e42ae5daf

HTTP Headers

GET /wp-includes/js/dist/i18n.min.js?ver=5e580eb46a90c2b997e6 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Wed, 03 Apr 2024 05:50:25 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3542
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/mt-video/jquery.magnific-popup.js?ver=1.0.0

116.90.57.33

200 OK

45 kB

URL GET
healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/mt-video/jquery.magnific-popup.js?ver=1.0.0
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JavaScript source, ASCII text, with CRLF, CR line terminators
Size
45 kB (45448 bytes)
Hash
c9eeadae1796ef55e1451a4cdd8128a6
262a02373e64efd6edb8150ed8c7f44e6fb40b36
4a6c771cbcf617104ef460aa3092ac053422f51190b794f6cd2d4f45dd28a7f8

HTTP Headers

GET /wp-content/plugins/sweetthemes-framework/js/mt-video/jquery.magnific-popup.js?ver=1.0.0 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Sun, 12 Sep 2021 18:21:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 12378
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/themes/niva/js/bootstrap.min.js?ver=3.3.1

116.90.57.33

200 OK

36 kB

URL GET
healthfinance.com.au/wp-content/themes/niva/js/bootstrap.min.js?ver=3.3.1
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JavaScript source, ASCII text, with very long lines (32087)
Size
36 kB (35606 bytes)
Hash
692a2e80b2644c46869ce60c8c88dd50
4ceb99bd27e7de9fb97b865e9a978dbc1919dc18
971c911439ab85a4623b278224b81aaacc64277ebea29b6b553a6b837328356a

HTTP Headers

GET /wp-content/themes/niva/js/bootstrap.min.js?ver=3.3.1 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Sun, 12 Sep 2021 18:22:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 9103
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/themes/niva/css/styles-module-navigations.css?ver=77685e716c4cd53aef6ebd8abd129ff3

116.90.57.33

200 OK

24 kB

URL GET
healthfinance.com.au/wp-content/themes/niva/css/styles-module-navigations.css?ver=77685e716c4cd53aef6ebd8abd129ff3
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
ASCII text
Size
24 kB (23477 bytes)
Hash
cd12186f0ae7e8fba4e443e2966c98ed
e28105ceb5c8ff298006671abd08c269c67dc1b6
f9cc7caa835a8e59c49b72601e8489d2e2a8b1076dbf6e007688d8eb8cd22a39

HTTP Headers

GET /wp-content/themes/niva/css/styles-module-navigations.css?ver=77685e716c4cd53aef6ebd8abd129ff3 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: text/css
last-modified: Sun, 12 Sep 2021 18:22:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2228
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/mt-skills-circle/percircle.js?ver=1.0.0

116.90.57.33

200 OK

5.3 kB

URL GET
healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/mt-skills-circle/percircle.js?ver=1.0.0
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JavaScript source, ASCII text, with very long lines (5662), with no line terminators
Size
5.3 kB (5318 bytes)
Hash
5aea77d0f30449b3bc1eedc89b85c488
ddcd620236f264c429ee4a5f39cb5d3d4325167c
6c169fefbcb7f33e875d9d76d5a1e882127fdefbd55e1ffd2934945b830395b5

HTTP Headers

GET /wp-content/plugins/sweetthemes-framework/js/mt-skills-circle/percircle.js?ver=1.0.0 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Sun, 12 Sep 2021 18:21:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1105
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-includes/IXR/youngbawz1.exe

116.90.57.33

404 Not Found

128 kB

URL User Request GET
healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type

Size
128 kB (128035 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

NIDS	Severity	Alert
suricata	high	ET MALWARE EXE Download Request To Wordpress Folder Likely Malicious

HTTP Headers

GET /wp-includes/IXR/youngbawz1.exe HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
x-powered-by: PHP/7.4.33
x-litespeed-vary: cookie=np_wc_currency,cookie=np_wc_currency_language,cookie=_icl_current_language, value=nitrodesktop
x-litespeed-tag: uri=1bb9be1ba84e495de04cfe29d6aff692
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-litespeed-cache-control: no-cache
content-type: text/html; charset=UTF-8
x-nitro-cache: MISS
x-nitro-disabled-reason: 404
x-nitro-disabled: 1
link: <https://healthfinance.com.au/wp-json/>; rel="https://api.w.org/"
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sat, 22 Mar 2025 21:54:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/themes/niva/js/wow.min.js?ver=1.0.0

116.90.57.33

200 OK

7.1 kB

URL GET
healthfinance.com.au/wp-content/themes/niva/js/wow.min.js?ver=1.0.0
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JavaScript source, ASCII text, with very long lines (7166), with no line terminators
Size
7.1 kB (7082 bytes)
Hash
1f873581d78031d488feb5e82f9c318f
b69b19b43a699e8a4a2c8ce7640536b4b76c9bb8
dc233e649ae48d22b85846e17a2bf21fd3e614e59fbdeca5cd3c21aa18c00069

HTTP Headers

GET /wp-content/themes/niva/js/wow.min.js?ver=1.0.0 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Sun, 12 Sep 2021 18:22:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2263
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v22/pxiEyp8kv8JHgFVrJJfecg.woff2

142.250.178.99

200 OK

7.9 kB

URL GET
fonts.gstatic.com/s/poppins/v22/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
142.250.178.99:443
ASN
#15169 GOOGLE

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B
ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /s/poppins/v22/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://healthfinance.com.au
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 20 Mar 2025 18:15:57 GMT
expires: Fri, 20 Mar 2026 18:15:57 GMT
cache-control: public, max-age=31536000
age: 185900
last-modified: Wed, 04 Dec 2024 06:53:08 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

js.zohocdn.com/salesiq/js/siqnewchatwindow_ZbDcggGZrPIwhPlC3bn-f15XO3PjJRJH1ynzkii9kNScsxxteH4z8HhilVU0Dp-f_.js

185.20.209.147

200 OK

1.4 MB

URL GET
js.zohocdn.com/salesiq/js/siqnewchatwindow_ZbDcggGZrPIwhPlC3bn-f15XO3PjJRJH1ynzkii9kNScsxxteH4z8HhilVU0Dp-f_.js
IP
185.20.209.147:443
ASN
#41913 Computerline GmbH

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerSectigo Limited
Subject*.zohocdn.com
FingerprintB3:AC:93:6B:90:A8:06:99:EB:A0:C5:46:5E:D5:00:4A:C7:84:95:35
ValidityMon, 16 Sep 2024 00:00:00 GMT - Thu, 16 Oct 2025 23:59:59 GMT

File type

Size
1.4 MB (1410089 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /salesiq/js/siqnewchatwindow_ZbDcggGZrPIwhPlC3bn-f15XO3PjJRJH1ynzkii9kNScsxxteH4z8HhilVU0Dp-f_.js HTTP/1.1
Host: js.zohocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://healthfinance.com.au
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ZGS
date: Sat, 22 Mar 2025 21:54:29 GMT
content-type: text/javascript;charset=UTF-8
content-length: 373679
x-content-type-options: nosniff
cache-control: public, max-age=7776000, immutable
access-control-expose-headers: *
access-control-allow-origin: *
etag: "d2f33d3908dbd1bc15458ddff99376a3"
content-language: en-US
last-modified: Fri, 14 Mar 2025 12:19:21 GMT
vary: Accept-Encoding
strict-transport-security: max-age=15768000
content-encoding: br
timing-allow-origin: *
x-cache: HIT
nb-request-id: 552f63e5fe19fffd2d5269f6e08a3324
z-origin-id: ex1-22493365518146a5b79efcfa00036254
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/themes/niva/css/simple-line-icons.css?ver=77685e716c4cd53aef6ebd8abd129ff3

116.90.57.33

200 OK

13 kB

URL GET
healthfinance.com.au/wp-content/themes/niva/css/simple-line-icons.css?ver=77685e716c4cd53aef6ebd8abd129ff3
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
ASCII text
Size
13 kB (12593 bytes)
Hash
534f3e6c61596e6f9209da4288a89015
ada9262ecd9666c895edca6ae4f41c8e391955dd
39d625b053f1ad0ff49891d480909565b2f7ad43e0a1088ead155771b80ff668

HTTP Headers

GET /wp-content/themes/niva/css/simple-line-icons.css?ver=77685e716c4cd53aef6ebd8abd129ff3 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: text/css
last-modified: Sun, 12 Sep 2021 18:22:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2483
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/sweetthemes-custom.js?ver=1.0.0

116.90.57.33

200 OK

18 kB

URL GET
healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/sweetthemes-custom.js?ver=1.0.0
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JavaScript source, ASCII text
Size
18 kB (18035 bytes)
Hash
3d56433392f45090bd4b48fb3d09d29c
3265e8c63d485d48fda23624d1d8be2da32d85af
f4ac135eab1d7174e0660763bca643f05fedc35d9634f7bdd7604064e580ca79

HTTP Headers

GET /wp-content/plugins/sweetthemes-framework/js/sweetthemes-custom.js?ver=1.0.0 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Sun, 12 Sep 2021 18:21:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3337
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/themes/niva/js/modernizr.custom.js?ver=2.6.2

116.90.57.33

200 OK

15 kB

URL GET
healthfinance.com.au/wp-content/themes/niva/js/modernizr.custom.js?ver=2.6.2
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JavaScript source, ASCII text, with very long lines (14596)
Size
15 kB (15250 bytes)
Hash
1258d3cdc71540b07f3422a31e41f21a
a426c47c8eb8910ac2a552b2e51b8791858da693
7e26ca2fd58d9878a3754800828a0b4a1af34f747c19c7d48ff1add55b1759c3

HTTP Headers

GET /wp-content/themes/niva/js/modernizr.custom.js?ver=2.6.2 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Sun, 12 Sep 2021 18:22:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5906
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

to.getnitropack.com/p

104.18.39.246

200 OK

0 B

URL POST
to.getnitropack.com/p
IP
104.18.39.246:443
ASN
#13335 CLOUDFLARENET

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerGoogle Trust Services
Subjectgetnitropack.com
Fingerprint74:58:BA:D7:3D:FC:8A:33:CA:53:02:3E:60:72:77:72:1E:87:FC:35
ValiditySat, 01 Feb 2025 04:32:07 GMT - Fri, 02 May 2025 05:32:04 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /p HTTP/1.1
Host: to.getnitropack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 226
Origin: https://healthfinance.com.au
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 22 Mar 2025 21:54:17 GMT
content-length: 0
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 9248ed3d19250b59-OSL
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js

142.250.74.170

200 OK

13 kB

URL GET
ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint69:99:38:F9:7C:82:8E:AC:7D:DA:EA:3E:1C:E4:7F:52:1B:36:41:AA
ValidityMon, 10 Mar 2025 08:37:02 GMT - Mon, 02 Jun 2025 08:37:01 GMT

File type
JavaScript source, ASCII text, with very long lines (2134)
Size
13 kB (13188 bytes)
Hash
7c96a5f11d9741541d5e3c42ff6380d7
d3fa2564c021cf730e58ffddb138cf6b57ed126e
81016ac6be850b72df5d4faa0c3cec8e2c1b0ba0045712144a6766adfad40bee

HTTP Headers

GET /ajax/libs/webfont/1.6.26/webfont.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 5437
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 20 Mar 2025 09:15:32 GMT
expires: Fri, 20 Mar 2026 09:15:32 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 218325
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

salesiq.zoho.com.au/widget?plugin_source=wordpress

103.138.128.75

200

161 kB

URL GET
salesiq.zoho.com.au/widget?plugin_source=wordpress
IP
103.138.128.75:443
ASN
#139006 Zoho Corporation PTY LTD

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerDigiCert Inc
Subject*.zoho.com.au
Fingerprint15:17:C0:CD:B9:DD:B0:AF:28:BB:CA:1D:22:F2:A3:70:A8:85:5A:CC
ValidityTue, 07 May 2024 00:00:00 GMT - Sat, 24 May 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
161 kB (161437 bytes)
Hash
6da53a862edb6272daf7fe9c1af3fa9f
f5fb027e6a1c55f0fdef0b4a3c180365d6bb7e33
bf74c9aeb90b4e851f8e195dd7322e584219cf2466dab95e14c9576286698a74

HTTP Headers

GET /widget?plugin_source=wordpress HTTP/1.1
Host: salesiq.zoho.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: ZGS
Date: Sat, 22 Mar 2025 21:54:17 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Content-Type-Options: nosniff
Encoding: UTF-8
Set-Cookie: zalb_24a7e33ab6=4bf9e3a65b188e63839a8b5bb59e39f6; Path=/; Secure; HttpOnly
LS_CSRF_TOKEN=59c7b036-262e-45f8-8a0f-e2df2272d181;path=/;SameSite=None;Secure;priority=high
_zcsr_tmp=59c7b036-262e-45f8-8a0f-e2df2272d181;path=/;SameSite=Strict;Secure;priority=high
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: *
Cache-Control: must-revalidate
Pragma: 
Expires: Sat, 22 Mar 2025 21:59:17 GMT
ETag: W/da775c5b2a033161e1afca0890c38412f98e304db0a9fe98ee3f47eb5ff47ee1
vary: accept-encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=64072000; includeSubDomains; preload

healthfinance.com.au/wp-includes/js/wp-emoji-release.min.js?ver=77685e716c4cd53aef6ebd8abd129ff3

116.90.57.33

200 OK

19 kB

URL GET
healthfinance.com.au/wp-includes/js/wp-emoji-release.min.js?ver=77685e716c4cd53aef6ebd8abd129ff3
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JavaScript source, ASCII text, with very long lines (15752)
Size
19 kB (18726 bytes)
Hash
b976b651932bfd25b9ddb5b7693d88a7
7fcb7cb5c11227f9213b1e08a07d0212209e1432
4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=77685e716c4cd53aef6ebd8abd129ff3 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Cookie: _ga_PC7EG1PJSD=GS1.1.1742680455.1.0.1742680455.0.0.0; _ga=GA1.1.942076731.1742680455; nitroCachedPage=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:16 GMT
content-type: application/javascript
last-modified: Wed, 03 Apr 2024 05:50:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4676
date: Sat, 22 Mar 2025 21:54:16 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/plugins/vc_responsive_pro//assets/css/style.css?ver=77685e716c4cd53aef6ebd8abd129ff3

116.90.57.33

200 OK

0 B

URL GET
healthfinance.com.au/wp-content/plugins/vc_responsive_pro//assets/css/style.css?ver=77685e716c4cd53aef6ebd8abd129ff3
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/plugins/vc_responsive_pro//assets/css/style.css?ver=77685e716c4cd53aef6ebd8abd129ff3 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: text/css
last-modified: Sun, 12 Sep 2021 18:21:39 GMT
accept-ranges: bytes
content-length: 0
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/plugins/vc_responsive_pro/bestbugcore//assets/css/style.css?ver=1.4.6

116.90.57.33

200 OK

394 B

URL GET
healthfinance.com.au/wp-content/plugins/vc_responsive_pro/bestbugcore//assets/css/style.css?ver=1.4.6
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
ASCII text, with very long lines (432), with no line terminators
Size
394 B (394 bytes)
Hash
447e7a3a01c5d2e739366537d579a39a
cef045633a2697ddc54746cd6b4dcd0626b150bf
785742758e4ec9ac7a883978a221e120351124a68f46072089209abbae373f9f

HTTP Headers

GET /wp-content/plugins/vc_responsive_pro/bestbugcore//assets/css/style.css?ver=1.4.6 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: text/css
last-modified: Sun, 12 Sep 2021 18:21:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 162
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/themes/niva/js/animate.js?ver=1.0.0

116.90.57.33

200 OK

2.2 kB

URL GET
healthfinance.com.au/wp-content/themes/niva/js/animate.js?ver=1.0.0
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JavaScript source, ASCII text, with very long lines (2317), with no line terminators
Size
2.2 kB (2234 bytes)
Hash
ce9e98f6e85983ee2d1a307d4e738540
24056f4911d07734ef4b0f9f3556501903570b84
141401ca8cdbaa7627a5a225df2c5438d695eead61fa459a29793f6f0d1c3e16

HTTP Headers

GET /wp-content/themes/niva/js/animate.js?ver=1.0.0 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Sun, 12 Sep 2021 18:22:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 719
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/plugins/mailchimp-for-wp/assets/js/forms.js?ver=4.10.2

116.90.57.33

200 OK

6.6 kB

URL GET
healthfinance.com.au/wp-content/plugins/mailchimp-for-wp/assets/js/forms.js?ver=4.10.2
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JavaScript source, ASCII text, with very long lines (6757), with no line terminators
Size
6.6 kB (6569 bytes)
Hash
5cbfd2acc29d56416071cd4b0136ce20
e0757a96dab762ea366bcc3e59af4803bbbdd88c
eb09a519aaafb91785c23b3aa2fa137af1260fc369b849a35bab7236f5cd5d75

HTTP Headers

GET /wp-content/plugins/mailchimp-for-wp/assets/js/forms.js?ver=4.10.2 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Fri, 28 Feb 2025 17:36:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2446
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/uploads/2023/12/HFI-Christmas-Holiday-Advice-2023-900x450-1-150x150.jpg

116.90.57.33

200 OK

8.2 kB

URL GET
healthfinance.com.au/wp-content/uploads/2023/12/HFI-Christmas-Holiday-Advice-2023-900x450-1-150x150.jpg
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3
Size
8.2 kB (8182 bytes)
Hash
ea67e663cc214e2b4e2175695e4dac5a
5c22eaa9469141c1a18b6b7715fa69c6658a2271
df2275a87a5b34bd84219f96399d307aef028805dbf7867546c795ff4ea5cced

HTTP Headers

GET /wp-content/uploads/2023/12/HFI-Christmas-Holiday-Advice-2023-900x450-1-150x150.jpg HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: image/jpeg
last-modified: Tue, 12 Dec 2023 04:22:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 8029
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/uploads/2021/08/NDIS-Assessments-150x150.jpg

116.90.57.33

200 OK

4.9 kB

URL GET
healthfinance.com.au/wp-content/uploads/2021/08/NDIS-Assessments-150x150.jpg
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3
Size
4.9 kB (4910 bytes)
Hash
98b0ee1882f640d31ee41262ee1b528c
ac31e8d8071367f6ba118c3c1b25ede127f91777
969815dc5adcb2c68dbf8dec1ac506894c5bc152b885c43afe98bff178aae365

HTTP Headers

GET /wp-content/uploads/2021/08/NDIS-Assessments-150x150.jpg HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: image/jpeg
last-modified: Sun, 12 Sep 2021 18:29:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4758
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/mt-plugins.js?ver=1.0.0

116.90.57.33

200 OK

16 kB

URL GET
healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/mt-plugins.js?ver=1.0.0
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JavaScript source, ASCII text, with CRLF, CR line terminators
Size
16 kB (16511 bytes)
Hash
fec5faccea5c67e68485cb8da5af04c6
81635c8d4b7686bba18c93d98e113e3f451f157e
f61b6782de77aef0d1ee77e9ae5659b7fb73c53ebbf4fe4e7dcea9a7f0ead8fb

HTTP Headers

GET /wp-content/plugins/sweetthemes-framework/js/mt-plugins.js?ver=1.0.0 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Sun, 12 Sep 2021 18:21:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3946
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/themes/niva/fonts/fontawesome-webfont.woff2?v=4.7.0

116.90.57.33

200 OK

77 kB

URL GET
healthfinance.com.au/wp-content/themes/niva/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

HTTP Headers

GET /wp-content/themes/niva/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-content/themes/niva/css/font-awesome.min.css?ver=77685e716c4cd53aef6ebd8abd129ff3
Cookie: _ga_PC7EG1PJSD=GS1.1.1742680455.1.0.1742680455.0.0.0; _ga=GA1.1.942076731.1742680455; nitroCachedPage=0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: font/woff2
last-modified: Sun, 12 Sep 2021 18:22:01 GMT
accept-ranges: bytes
content-length: 77160
date: Sat, 22 Mar 2025 21:54:16 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/themes/niva/css/styles-module-blogloops.css?ver=77685e716c4cd53aef6ebd8abd129ff3

116.90.57.33

200 OK

14 kB

URL GET
healthfinance.com.au/wp-content/themes/niva/css/styles-module-blogloops.css?ver=77685e716c4cd53aef6ebd8abd129ff3
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
ASCII text
Size
14 kB (14046 bytes)
Hash
14184384fe704eaa04f642bdd34b28d2
caf4e8d260d885f5b80a544e6c8437e3a49a2cc9
e1d83fa75df516e40637cde13134513896de15688989c9aaaf0617e822817bdd

HTTP Headers

GET /wp-content/themes/niva/css/styles-module-blogloops.css?ver=77685e716c4cd53aef6ebd8abd129ff3 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: text/css
last-modified: Sun, 12 Sep 2021 18:22:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2182
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v22/pxiEyp8kv8JHgFVrJJfecg.woff2

142.250.178.99

200 OK

7.9 kB

URL GET
fonts.gstatic.com/s/poppins/v22/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
142.250.178.99:443
ASN
#15169 GOOGLE

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B
ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /s/poppins/v22/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://healthfinance.com.au
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 20 Mar 2025 18:15:57 GMT
expires: Fri, 20 Mar 2026 18:15:57 GMT
cache-control: public, max-age=31536000
age: 185900
last-modified: Wed, 04 Dec 2024 06:53:08 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/plugins/brave-popup-builder/assets/frontend/brave.js?ver=77685e716c4cd53aef6ebd8abd129ff3

116.90.57.33

200 OK

131 kB

URL GET
healthfinance.com.au/wp-content/plugins/brave-popup-builder/assets/frontend/brave.js?ver=77685e716c4cd53aef6ebd8abd129ff3
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type

Size
131 kB (130938 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/plugins/brave-popup-builder/assets/frontend/brave.js?ver=77685e716c4cd53aef6ebd8abd129ff3 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Thu, 09 Jan 2025 17:38:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 23854
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/themes/niva/js/jquery.parallax.js?ver=1.1.3

116.90.57.33

200 OK

2.2 kB

URL GET
healthfinance.com.au/wp-content/themes/niva/js/jquery.parallax.js?ver=1.1.3
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JavaScript source, ASCII text, with very long lines (2237), with no line terminators
Size
2.2 kB (2161 bytes)
Hash
e71a9216d71967edb91f130e3b7e2816
36c834597feaf8e7fae245cee35ae0bbfe320eda
03b35ee95a7dbcb1ece9c2a7035b234f2947eccb058c2089c993b3e9e0f6dc37

HTTP Headers

GET /wp-content/themes/niva/js/jquery.parallax.js?ver=1.1.3 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Sun, 12 Sep 2021 18:22:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 751
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/themes/niva/js/jquery.countdown.js?ver=1.0.0

116.90.57.33

200 OK

5.3 kB

URL GET
healthfinance.com.au/wp-content/themes/niva/js/jquery.countdown.js?ver=1.0.0
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JavaScript source, ASCII text, with very long lines (5465), with no line terminators
Size
5.3 kB (5339 bytes)
Hash
0b3c9d3b99e7706b9c4bfe81939d5bb9
88d1fe7e60e7abeeeb7a05c362e23404a94f5e68
661e2d380688330acf43647d2eebca43fc0a2b246259352a04edfd7ff44fd0f4

HTTP Headers

GET /wp-content/themes/niva/js/jquery.countdown.js?ver=1.0.0 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Sun, 12 Sep 2021 18:22:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2238
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

fonts.gstatic.com/s/philosopher/v20/vEFI2_5QCwIS4_Dhez5jcWjValgb8tc.woff2

142.250.178.99

200 OK

22 kB

URL GET
fonts.gstatic.com/s/philosopher/v20/vEFI2_5QCwIS4_Dhez5jcWjValgb8tc.woff2
IP
142.250.178.99:443
ASN
#15169 GOOGLE

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B
ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT

File type
Web Open Font Format (Version 2), TrueType, length 22236, version 1.0
Size
22 kB (22236 bytes)
Hash
ef63a2968fbe1eab4828d049d3ed6dc3
0565b16b6faa13246dc8903d6f7bc277a96dbb47
e7294b3e0e300d23da465dbc29120cc43e8c504b6f79c76c44bb58cbe73a9245

HTTP Headers

GET /s/philosopher/v20/vEFI2_5QCwIS4_Dhez5jcWjValgb8tc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://healthfinance.com.au
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 20 Mar 2025 19:35:39 GMT
expires: Fri, 20 Mar 2026 19:35:39 GMT
cache-control: public, max-age=31536000
age: 181117
last-modified: Mon, 29 Jul 2024 22:35:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/plugins/sweetthemes-framework/css/fiters-style.css?ver=77685e716c4cd53aef6ebd8abd129ff3

116.90.57.33

200 OK

20 kB

URL GET
healthfinance.com.au/wp-content/plugins/sweetthemes-framework/css/fiters-style.css?ver=77685e716c4cd53aef6ebd8abd129ff3
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
ASCII text
Size
20 kB (19517 bytes)
Hash
80c5a6f1a42f5c6a6265cc7edef1f270
58079d0c0cdf26012d683f1c74b34f27e03ee1c3
1b6cbfb17216dc27c8ee918705da08fac05aa30e12f4efce12cffec00a37ff67

HTTP Headers

GET /wp-content/plugins/sweetthemes-framework/css/fiters-style.css?ver=77685e716c4cd53aef6ebd8abd129ff3 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: text/css
last-modified: Sun, 12 Sep 2021 18:21:41 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3576
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/themes/niva/css/font-awesome.min.css?ver=77685e716c4cd53aef6ebd8abd129ff3

116.90.57.33

200 OK

31 kB

URL GET
healthfinance.com.au/wp-content/themes/niva/css/font-awesome.min.css?ver=77685e716c4cd53aef6ebd8abd129ff3
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
ASCII text, with very long lines (30837)
Size
31 kB (31000 bytes)
Hash
8374aba72243950036b3388728416f75
8339a3aaaafa938ae4c793f9a40ed3424ba94511
56737669da1898b03e3a66eecbed242dfcfd1bad59f86742b04592fa2150f26c

HTTP Headers

GET /wp-content/themes/niva/css/font-awesome.min.css?ver=77685e716c4cd53aef6ebd8abd129ff3 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: text/css
last-modified: Sun, 12 Sep 2021 18:22:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6662
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/themes/niva/css/media-screens.css?ver=77685e716c4cd53aef6ebd8abd129ff3

116.90.57.33

200 OK

40 kB

URL GET
healthfinance.com.au/wp-content/themes/niva/css/media-screens.css?ver=77685e716c4cd53aef6ebd8abd129ff3
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
ASCII text
Size
40 kB (40412 bytes)
Hash
82e74e1ed49028cccf00c832ce56285a
118f43aa5e72eeccdc81e98a96e17f4705c7480e
7579b66ffea6b0d803204408d100e995493c87d698b918d8580bb013e3f6693a

HTTP Headers

GET /wp-content/themes/niva/css/media-screens.css?ver=77685e716c4cd53aef6ebd8abd129ff3 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: text/css
last-modified: Sun, 12 Sep 2021 18:22:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6213
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/uploads/2022/02/julia-zyablova-S1v7hVUiCg0-unsplash-scaled.jpg

116.90.57.33

200 OK

351 kB

URL GET
healthfinance.com.au/wp-content/uploads/2022/02/julia-zyablova-S1v7hVUiCg0-unsplash-scaled.jpg
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 2560x1707, components 3
Size
351 kB (350909 bytes)
Hash
14134668a8ebc68f493baa2dde9023c2
94743e2788177ea84b34157208bfc181eabacaff
3e26d21b66ed58766b6af02de7cf7bb21b7fcc9058170868dc0135a655685283

HTTP Headers

GET /wp-content/uploads/2022/02/julia-zyablova-S1v7hVUiCg0-unsplash-scaled.jpg HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: image/jpeg
last-modified: Mon, 21 Feb 2022 07:28:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 315358
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/themes/niva/js/jquery.ketchup.js?ver=0.3.1

116.90.57.33

200 OK

12 kB

URL GET
healthfinance.com.au/wp-content/themes/niva/js/jquery.ketchup.js?ver=0.3.1
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JavaScript source, ASCII text, with very long lines (2369)
Size
12 kB (12395 bytes)
Hash
09088491c20d54e98d4b8f9176412079
01e79e687dc5714b2a52bf8a317be7f9a4cda0fd
15c6ba22bb25cc74ad6d1e2ee1e9603a9e9310255083aaff5ff1099b72f9235f

HTTP Headers

GET /wp-content/themes/niva/js/jquery.ketchup.js?ver=0.3.1 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Sun, 12 Sep 2021 18:22:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3574
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

css.zohocdn.com/salesiq/styles/floatbuttonpostload_Pa0WG0fin4SjrnBZjHin5vP3GQC_Nv9XqLM6KV_i-I5DsoInRo88Uwa8oyhuF8bR_.css

185.20.209.147

200 OK

37 kB

URL GET
css.zohocdn.com/salesiq/styles/floatbuttonpostload_Pa0WG0fin4SjrnBZjHin5vP3GQC_Nv9XqLM6KV_i-I5DsoInRo88Uwa8oyhuF8bR_.css
IP
185.20.209.147:443
ASN
#41913 Computerline GmbH

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerSectigo Limited
Subject*.zohocdn.com
FingerprintB3:AC:93:6B:90:A8:06:99:EB:A0:C5:46:5E:D5:00:4A:C7:84:95:35
ValidityMon, 16 Sep 2024 00:00:00 GMT - Thu, 16 Oct 2025 23:59:59 GMT

File type
ASCII text, with very long lines (36652), with no line terminators
Size
37 kB (36652 bytes)
Hash
8b42ad7c29c3999e459b6c56da6dfdee
9c38a650de4003157dba2257b615f499e2c9c31a
dfdf5a8650051e9a7db532e26ab6fe0fb30c2aa23d7c54baa7919b87c28a0297

HTTP Headers

GET /salesiq/styles/floatbuttonpostload_Pa0WG0fin4SjrnBZjHin5vP3GQC_Nv9XqLM6KV_i-I5DsoInRo88Uwa8oyhuF8bR_.css HTTP/1.1
Host: css.zohocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ZGS
date: Sat, 22 Mar 2025 21:54:29 GMT
content-type: text/css;charset=UTF-8
content-length: 8317
x-content-type-options: nosniff
cache-control: public, max-age=7776000, immutable
etag: "e56b55b2d1f90ac82e672c656585926d"
content-language: en-US
last-modified: Mon, 06 Jan 2025 10:46:29 GMT
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
content-encoding: br
timing-allow-origin: *
x-cache: HIT
nb-request-id: 0c1c4e60c08f551cc3b07cd3cdfa102e
z-origin-id: ex1-b438b4a2ca3e48c8b30bfd6e8d350907
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2

healthfinance.com.au/wp-includes/css/dist/block-library/style.min.css?ver=77685e716c4cd53aef6ebd8abd129ff3

116.90.57.33

200 OK

115 kB

URL GET
healthfinance.com.au/wp-includes/css/dist/block-library/style.min.css?ver=77685e716c4cd53aef6ebd8abd129ff3
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type

Size
115 kB (114706 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=77685e716c4cd53aef6ebd8abd129ff3 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: text/css
last-modified: Wed, 13 Nov 2024 19:20:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 14225
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/themes/niva/js/niva-custom.js?ver=1.0.0

116.90.57.33

200 OK

21 kB

URL GET
healthfinance.com.au/wp-content/themes/niva/js/niva-custom.js?ver=1.0.0
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JavaScript source, ASCII text, with very long lines (2061)
Size
21 kB (21262 bytes)
Hash
1361841e8583d13da2961cfc76804e92
a442babcc5d765c271a68dbf981f69510a258c13
e514ae14e2e35798330fff8c9eb4b84a38c69b1b58740fa18a30a93f84b3dfc5

HTTP Headers

GET /wp-content/themes/niva/js/niva-custom.js?ver=1.0.0 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Sun, 12 Sep 2021 18:22:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5865
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v47/KFOMCnqEu92Fr1ME7kSn66aGLdTylUAMQXC89YmC2DPNWubEbVmUiAo.woff2

142.250.178.99

200 OK

21 kB

URL GET
fonts.gstatic.com/s/roboto/v47/KFOMCnqEu92Fr1ME7kSn66aGLdTylUAMQXC89YmC2DPNWubEbVmUiAo.woff2
IP
142.250.178.99:443
ASN
#15169 GOOGLE

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B
ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT

File type
Web Open Font Format (Version 2), TrueType, length 20612, version 1.0
Size
21 kB (20612 bytes)
Hash
b07da7aa3e4f363c5cdbc11312239e8c
47bf5b2f24ea4a4caafccc89b9d2a6677ef9e3b8
e44c11f4834bdd4d6b6da7b8ee5eaebc8acb41250cd6bce5cc82ea8262140eaa

HTTP Headers

GET /s/roboto/v47/KFOMCnqEu92Fr1ME7kSn66aGLdTylUAMQXC89YmC2DPNWubEbVmUiAo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://healthfinance.com.au
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20612
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 20 Mar 2025 18:16:03 GMT
expires: Fri, 20 Mar 2026 18:16:03 GMT
cache-control: public, max-age=31536000
age: 185893
last-modified: Wed, 08 Jan 2025 18:23:11 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/uploads/2022/11/MicrosoftTeams-image-150x150.jpg

116.90.57.33

200 OK

6.4 kB

URL GET
healthfinance.com.au/wp-content/uploads/2022/11/MicrosoftTeams-image-150x150.jpg
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3
Size
6.4 kB (6423 bytes)
Hash
8349c924841ccb9decbb146a2534ffc7
8686d5e4fea3bb36bb03421edc96b48e8d609fa3
6efaa410254d49f5e9f536b2df2911e5adfd730f0256c142b35264f534f15509

HTTP Headers

GET /wp-content/uploads/2022/11/MicrosoftTeams-image-150x150.jpg HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: image/jpeg
last-modified: Wed, 23 Nov 2022 02:15:31 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6269
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

css.zohocdn.com/webfonts/latoregular/font.woff

185.20.209.147

200 OK

38 kB

URL GET
css.zohocdn.com/webfonts/latoregular/font.woff
IP
185.20.209.147:443
ASN
#41913 Computerline GmbH

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerSectigo Limited
Subject*.zohocdn.com
FingerprintB3:AC:93:6B:90:A8:06:99:EB:A0:C5:46:5E:D5:00:4A:C7:84:95:35
ValidityMon, 16 Sep 2024 00:00:00 GMT - Thu, 16 Oct 2025 23:59:59 GMT

File type
Web Open Font Format, TrueType, length 37676, version 0.0
Size
38 kB (37676 bytes)
Hash
cbdddd82da22c6cbdd41ea4342266abf
080a92c0fe8ff513ee966a446be89128fa31e79a
251d58cc997156886bac2cefc52d1330129544d5f1d6c2a4722242fe3eaa7e9d

HTTP Headers

GET /webfonts/latoregular/font.woff HTTP/1.1
Host: css.zohocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://healthfinance.com.au
DNT: 1
Connection: keep-alive
Referer: https://css.zohocdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ZGS
date: Sat, 22 Mar 2025 21:54:29 GMT
content-type: font/woff
content-length: 37676
x-content-type-options: nosniff
cache-control: public, max-age=5184000, immutable
access-control-expose-headers: *
access-control-allow-origin: *
etag: "f73a195cf160c3c1c1eaf8fcf8eabc04"
content-language: en-US
last-modified: Fri, 22 Dec 2023 12:05:45 GMT
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: 4549b163d1deabc89e8a1e632db0d176
z-origin-id: ex1-b9fd0c5b84614de9a0825ea355b29b1a
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2

css.zohocdn.com/salesiq/styles/fonts/float/siq_mpWsf52LIPg9mU40fjRdjF6WMUs-Q0VNu4KH07GkhNZGQTRxW2eRyFJLAq9VKCYB_.ttf

185.20.209.147

200 OK

14 kB

URL GET
css.zohocdn.com/salesiq/styles/fonts/float/siq_mpWsf52LIPg9mU40fjRdjF6WMUs-Q0VNu4KH07GkhNZGQTRxW2eRyFJLAq9VKCYB_.ttf
IP
185.20.209.147:443
ASN
#41913 Computerline GmbH

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerSectigo Limited
Subject*.zohocdn.com
FingerprintB3:AC:93:6B:90:A8:06:99:EB:A0:C5:46:5E:D5:00:4A:C7:84:95:35
ValidityMon, 16 Sep 2024 00:00:00 GMT - Thu, 16 Oct 2025 23:59:59 GMT

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, Revamp
Size
14 kB (14424 bytes)
Hash
f81f442e24ead3f83a2bd0dd7127484f
01c7d0487df08ef5bbc13cce444f61cabdd6d0db
cf1f73b76f318b2d7b59319d22f03d9f40ae8ab9ed942d338aeca9d03860fc15

HTTP Headers

GET /salesiq/styles/fonts/float/siq_mpWsf52LIPg9mU40fjRdjF6WMUs-Q0VNu4KH07GkhNZGQTRxW2eRyFJLAq9VKCYB_.ttf HTTP/1.1
Host: css.zohocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://healthfinance.com.au
DNT: 1
Connection: keep-alive
Referer: https://css.zohocdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ZGS
date: Sat, 22 Mar 2025 21:54:19 GMT
content-type: font/ttf
content-length: 9343
x-content-type-options: nosniff
cache-control: public, max-age=7776000, immutable
etag: "20f374e9afc772f2ce62f64c5b3b772f"
content-language: en-US
last-modified: Thu, 04 Apr 2024 08:42:57 GMT
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
content-encoding: br
timing-allow-origin: *
x-cache: HIT
nb-request-id: b6f1c3b474c4a3401f059127913d37ee
z-origin-id: ex1-af627f9d125a4cbeab74776370c37fe0
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/themes/niva/css/animate.css?ver=77685e716c4cd53aef6ebd8abd129ff3

116.90.57.33

200 OK

73 kB

URL GET
healthfinance.com.au/wp-content/themes/niva/css/animate.css?ver=77685e716c4cd53aef6ebd8abd129ff3
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
ASCII text
Size
73 kB (73112 bytes)
Hash
3b492864566a1027d2ac0d509c7264c8
bc6a44c405ca7f7ed2a1a6f0ee3cc4f41247cdd7
8074d5b417ab22dbd5cc387d6693c7c5883b545900d8897c1b1abc8864d129cd

HTTP Headers

GET /wp-content/themes/niva/css/animate.css?ver=77685e716c4cd53aef6ebd8abd129ff3 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: text/css
last-modified: Sun, 12 Sep 2021 18:22:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4392
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1

116.90.57.33

200 OK

14 kB

URL GET
healthfinance.com.au/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JavaScript source, ASCII text, with very long lines (13479)
Size
14 kB (13577 bytes)
Hash
9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Wed, 09 Aug 2023 06:11:27 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4678
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/uploads/2022/01/Rapid-Antigen-Tests-150x150.jpg

116.90.57.33

200 OK

3.8 kB

URL GET
healthfinance.com.au/wp-content/uploads/2022/01/Rapid-Antigen-Tests-150x150.jpg
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3
Size
3.8 kB (3795 bytes)
Hash
cc621ca560372df35f3f11d8a81d0a78
f9df1f552b42b016c9a1c880eabdd5038bc4e441
8718ec4067bb6f07654afd1c6598fdfc977211cf62453ca438a62982c280be6a

HTTP Headers

GET /wp-content/uploads/2022/01/Rapid-Antigen-Tests-150x150.jpg HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: image/jpeg
last-modified: Tue, 25 Jan 2022 00:07:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3641
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/uploads/2025/02/markets.webp

116.90.57.33

200 OK

404 kB

URL GET
healthfinance.com.au/wp-content/uploads/2025/02/markets.webp
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1024x1024, Scaling: [none]x[none], YUV color, decoders should clamp
Size
404 kB (404376 bytes)
Hash
6ddeb84c6ceadfe5a7180de614f8b08c
fdf457133567c2bb9b77ec9f787a4c13b74aa308
ecb3e54413911ddfaed8b8ad1262edab8347b38a95ad39e90eb435299638d96f

HTTP Headers

GET /wp-content/uploads/2025/02/markets.webp HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: image/webp
last-modified: Mon, 17 Feb 2025 23:48:26 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 388479
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/themes/niva/js/jquery.validation.js?ver=1.13.1

116.90.57.33

200 OK

22 kB

URL GET
healthfinance.com.au/wp-content/themes/niva/js/jquery.validation.js?ver=1.13.1
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type

Size
22 kB (21591 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/themes/niva/js/jquery.validation.js?ver=1.13.1 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Sun, 12 Sep 2021 18:22:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6542
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/plugins/brave-popup-builder/assets/images/preloader.png

116.90.57.33

200 OK

119 B

URL GET
healthfinance.com.au/wp-content/plugins/brave-popup-builder/assets/images/preloader.png
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
PNG image data, 300 x 300, 1-bit colormap, non-interlaced
Size
119 B (119 bytes)
Hash
d83d22ad5c496bc85ee3cad8b58342cc
1959a4ae3391d200894578d02142625dc377f490
b68ac6d6c6b79e1a6886250561f4d0a7764df7eac14e77ec9596e83b0aef23aa

HTTP Headers

GET /wp-content/plugins/brave-popup-builder/assets/images/preloader.png HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: image/png
last-modified: Thu, 09 Jan 2025 17:38:11 GMT
accept-ranges: bytes
content-length: 119
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/uploads/redux/custom-fonts/fonts.css?ver=1674193745

116.90.57.33

200 OK

0 B

URL GET
healthfinance.com.au/wp-content/uploads/redux/custom-fonts/fonts.css?ver=1674193745
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/uploads/redux/custom-fonts/fonts.css?ver=1674193745 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: text/css
last-modified: Fri, 20 Jan 2023 05:49:05 GMT
accept-ranges: bytes
content-length: 0
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2

healthfinance.com.au/wp-admin/admin-ajax.php

116.90.57.33

200 OK

1 B

URL POST
healthfinance.com.au/wp-admin/admin-ajax.php
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
cfcd208495d565ef66e7dff9f98764da
b6589fc6ab0dc82cf12099d1c2d40ab994e8410c
5feceb66ffc86f38d952786c6d696c79c2dbc239dd4e91b46729d73a27fb57e9

HTTP Headers

POST /wp-admin/admin-ajax.php HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 240
Origin: https://healthfinance.com.au
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Cookie: _ga_PC7EG1PJSD=GS1.1.1742680455.1.0.1742680455.0.0.0; _ga=GA1.1.942076731.1742680455; nitroCachedPage=0; _ga_VF26QS3GZB=GS1.1.1742680456.1.0.1742680456.0.0.0; ablefinancialservices-_zldp=DXIB8PtSFgUk6pQWvbyCW9quMkDbQckLWrP%2BL6CHny6d6kghtPRoZIHaSwNITHQhexZc4W1%2BYXc%3D; ablefinancialservices-_zldt=7b3e898b-d219-45c0-bc30-4af2d0dca5a9-0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-powered-by: PHP/7.4.33
access-control-allow-origin: https://healthfinance.com.au
access-control-allow-credentials: true
content-type: text/html; charset=UTF-8
x-robots-tag: noindex
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 21
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sat, 22 Mar 2025 21:54:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/st-particles/app.js?ver=1.0.0

116.90.57.33

200 OK

3.1 kB

URL GET
healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/st-particles/app.js?ver=1.0.0
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JavaScript source, ASCII text, with very long lines (3294), with no line terminators
Size
3.1 kB (3069 bytes)
Hash
4d89a5ad0a4cf9666f1a77c7b13b7153
69e14ebf3996234ebb1ce42d4a4039c55b7724c8
156ed6aeae9385ebeebad55072fe87d09aa6663c4c48f89e837194065b8c5b4e

HTTP Headers

GET /wp-content/plugins/sweetthemes-framework/js/st-particles/app.js?ver=1.0.0 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Sun, 12 Sep 2021 18:21:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 727
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/plugins/reviews-feed/assets/css/sbr-styles.css?ver=2.0

116.90.57.33

200 OK

34 kB

URL GET
healthfinance.com.au/wp-content/plugins/reviews-feed/assets/css/sbr-styles.css?ver=2.0
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
ASCII text
Size
34 kB (34501 bytes)
Hash
b36f7f88b783b25a915522207b697fca
7aa5b9ac8950c445899b9d694073e1d5eb1d1234
cfccb908a9f1cb08cff0ebfa64a062d867d0a71f2cf9282f6c90ab4670919f35

HTTP Headers

GET /wp-content/plugins/reviews-feed/assets/css/sbr-styles.css?ver=2.0 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:14 GMT
content-type: text/css
last-modified: Thu, 20 Feb 2025 06:27:27 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5768
date: Sat, 22 Mar 2025 21:54:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/plugins/sweetthemes-framework/css/animations.css?ver=77685e716c4cd53aef6ebd8abd129ff3

116.90.57.33

200 OK

28 kB

URL GET
healthfinance.com.au/wp-content/plugins/sweetthemes-framework/css/animations.css?ver=77685e716c4cd53aef6ebd8abd129ff3
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
ASCII text, with CRLF, CR line terminators
Size
28 kB (27806 bytes)
Hash
f1483bfe9b43944eae6748120ee987b6
2897b24c0398c5dd83c7d99d36eec9fc5bc4d968
c0a8ec57f81cefc7a9c443f246887dee46464ff61f24ba2c3c1c47f89c3eeb00

HTTP Headers

GET /wp-content/plugins/sweetthemes-framework/css/animations.css?ver=77685e716c4cd53aef6ebd8abd129ff3 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: text/css
last-modified: Sun, 12 Sep 2021 18:21:41 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1419
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/uploads/2025/03/Screenshot-2025-03-150x150.png

116.90.57.33

200 OK

41 kB

URL GET
healthfinance.com.au/wp-content/uploads/2025/03/Screenshot-2025-03-150x150.png
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced
Size
41 kB (41134 bytes)
Hash
7eac9fbe0063e3bd535087f010c9c40d
d64985b93e5a1d5425302bc571616cf5a2bc36c8
abbf0076930a16f3702f8d6addbadb0396bb43992a7760a742ab28a6e4c3de29

HTTP Headers

GET /wp-content/uploads/2025/03/Screenshot-2025-03-150x150.png HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: image/png
last-modified: Tue, 18 Mar 2025 03:09:31 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 41138
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/uploads/2025/02/markets-150x150.webp

116.90.57.33

200 OK

7.7 kB

URL GET
healthfinance.com.au/wp-content/uploads/2025/02/markets-150x150.webp
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 150x150, Scaling: [none]x[none], YUV color, decoders should clamp
Size
7.7 kB (7670 bytes)
Hash
33ec16d0fd32e277b7f062cabf419dbe
df00e3fb185f63e7679ae52b19ecc07ed4aa4079
f2b9523a1a0092f765b14380d96ecb3149d28162a5d09caef6c73c1a92f42b34

HTTP Headers

GET /wp-content/uploads/2025/02/markets-150x150.webp HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: image/webp
last-modified: Mon, 17 Feb 2025 23:48:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 7674
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/st-particles/particles.min.js?ver=2.0.0

116.90.57.33

200 OK

23 kB

URL GET
healthfinance.com.au/wp-content/plugins/sweetthemes-framework/js/st-particles/particles.min.js?ver=2.0.0
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
ASCII text, with very long lines (23003)
Size
23 kB (23405 bytes)
Hash
aeae1360e6144ffe4faa794564459c86
a9da1c56930cd13a689ae473128aef6c85cf5c80
26e91d563c6b3c4614032f1a55a5b14e98e028c94d73e2f207da108bf0e4db04

HTTP Headers

GET /wp-content/plugins/sweetthemes-framework/js/st-particles/particles.min.js?ver=2.0.0 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: application/javascript
last-modified: Sun, 12 Sep 2021 18:21:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5757
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.com.au/wp-includes/IXR/youngbawz1.exe

116.90.57.33

404 Not Found

128 kB

URL User Request GET
healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type

Size
128 kB (128035 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

NIDS	Severity	Alert
suricata	high	ET MALWARE EXE Download Request To Wordpress Folder Likely Malicious

HTTP Headers

GET /wp-includes/IXR/youngbawz1.exe HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
x-powered-by: PHP/7.4.33
x-litespeed-vary: cookie=np_wc_currency,cookie=np_wc_currency_language,cookie=_icl_current_language, value=nitrodesktop
x-litespeed-tag: uri=1bb9be1ba84e495de04cfe29d6aff692
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-litespeed-cache-control: no-cache
content-type: text/html; charset=UTF-8
x-nitro-cache: MISS
x-nitro-disabled-reason: 404
x-nitro-disabled: 1
link: <https://healthfinance.com.au/wp-json/>; rel="https://api.w.org/"
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sat, 22 Mar 2025 21:54:12 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/uploads/2023/12/HFI-Christmas-Holiday-Advice-2023-900x450-1.jpg

116.90.57.33

200 OK

123 kB

URL GET
healthfinance.com.au/wp-content/uploads/2023/12/HFI-Christmas-Holiday-Advice-2023-900x450-1.jpg
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
JPEG image data, progressive, precision 8, 893x450, components 3
Size
123 kB (122964 bytes)
Hash
c466c8dddee0efaf4aae00606c27f98a
20a602838a482bb5abf871960f5d656348e0df1c
21fb99984eb771417065c1e16fa1a9186cee73fd10f421b20fc63ac1c5c2b8df

HTTP Headers

GET /wp-content/uploads/2023/12/HFI-Christmas-Holiday-Advice-2023-900x450-1.jpg HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: image/jpeg
last-modified: Tue, 12 Dec 2023 04:22:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 121576
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

fonts.gstatic.com/s/philosopher/v20/vEFV2_5QCwIS4_Dhez5jcWBuT00.woff2

142.250.178.99

200 OK

22 kB

URL GET
fonts.gstatic.com/s/philosopher/v20/vEFV2_5QCwIS4_Dhez5jcWBuT00.woff2
IP
142.250.178.99:443
ASN
#15169 GOOGLE

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B
ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT

File type
Web Open Font Format (Version 2), TrueType, length 22184, version 1.0
Size
22 kB (22184 bytes)
Hash
7db7fbcf1f7df16041f73a13b6330a8a
bc3edd1c1b8e34fcede6a46256fbdcb1efac8bcf
fbd93526b6e34fd3c11f6659c947cf38e417bd46eee531413d1b254192af41db

HTTP Headers

GET /s/philosopher/v20/vEFV2_5QCwIS4_Dhez5jcWBuT00.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://healthfinance.com.au
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22184
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 20 Mar 2025 19:19:57 GMT
expires: Fri, 20 Mar 2026 19:19:57 GMT
cache-control: public, max-age=31536000
age: 182059
last-modified: Mon, 29 Jul 2024 22:34:51 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

healthfinance.com.au/wp-content/themes/niva/css/owl.carousel.css?ver=77685e716c4cd53aef6ebd8abd129ff3

116.90.57.33

200 OK

7.8 kB

URL GET
healthfinance.com.au/wp-content/themes/niva/css/owl.carousel.css?ver=77685e716c4cd53aef6ebd8abd129ff3
IP
116.90.57.33:443
ASN
#55803 Hostopia Australia Web Pty Ltd

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subjecthealthfinance.com.au
FingerprintAC:D9:43:4E:AF:EB:86:E0:59:B0:F8:C0:9D:F4:B2:60:0D:1D:58:86
ValidityMon, 24 Feb 2025 18:07:04 GMT - Sun, 25 May 2025 18:07:03 GMT

File type
ASCII text, with very long lines (8165), with no line terminators
Size
7.8 kB (7765 bytes)
Hash
de89d29e8bf4412803cc7ae6c9ecdc07
5be2e75f530273b3cdf92f222e22bc85f03b7833
f807dd6d878fbd9bd06a2a535ddba236a1c21183c7c15a68bbd78dfe8dc5a308

HTTP Headers

GET /wp-content/themes/niva/css/owl.carousel.css?ver=77685e716c4cd53aef6ebd8abd129ff3 HTTP/1.1
Host: healthfinance.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 29 Mar 2025 21:54:15 GMT
content-type: text/css
last-modified: Sun, 12 Sep 2021 18:22:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1513
date: Sat, 22 Mar 2025 21:54:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

healthfinance.talhatonmoy.com/wp-content/uploads/2021/08/HFI_Horizontal_Ver2-scaled-e1584319550887-862x320-1.jpg

185.151.30.172

200 OK

24 kB

URL GET
healthfinance.talhatonmoy.com/wp-content/uploads/2021/08/HFI_Horizontal_Ver2-scaled-e1584319550887-862x320-1.jpg
IP
185.151.30.172:443
ASN
#48254 20i Limited

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerLet's Encrypt
Subject*.talhatonmoy.com
Fingerprint2B:C6:82:5D:59:9C:5C:78:B4:30:81:3B:9F:4B:30:AB:05:31:72:1B
ValiditySat, 15 Feb 2025 19:43:48 GMT - Fri, 16 May 2025 19:43:47 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 862x320, components 3
Size
24 kB (24452 bytes)
Hash
6112143e810adc56791d66630155570a
7bffa25448034a0d9bb47f38c700f2548432ce6f
09bb242ca078a11ff4668a08d065405e6ba731f2c431e1fdb595e22edcf458c5

HTTP Headers

GET /wp-content/uploads/2021/08/HFI_Horizontal_Ver2-scaled-e1584319550887-862x320-1.jpg HTTP/1.1
Host: healthfinance.talhatonmoy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 22 Mar 2025 21:54:26 GMT
content-type: image/jpeg
content-length: 24452
server: Apache
x-provided-by: StackCDN
last-modified: Fri, 27 Aug 2021 04:07:27 GMT
etag: "5f84-5ca829f225a78"
x-origin-cache-status: MISS
accept-ranges: bytes
x-cdn-cache-status: MISS
x-via: FRA1
X-Firefox-Spdy: h2

js.zohocdn.com/salesiq/js/resource/embed/resource_lnOu4cFqZ8sk0V9k61BAJNxYRo2Dn2cZX70mdklESIPIwbt-2AUpin2ZmnwDrmK8_.js

185.20.209.147

200 OK

55 kB

URL GET
js.zohocdn.com/salesiq/js/resource/embed/resource_lnOu4cFqZ8sk0V9k61BAJNxYRo2Dn2cZX70mdklESIPIwbt-2AUpin2ZmnwDrmK8_.js
IP
185.20.209.147:443
ASN
#41913 Computerline GmbH

Requested by
https://healthfinance.com.au/wp-includes/IXR/youngbawz1.exe
Certificate
IssuerSectigo Limited
Subject*.zohocdn.com
FingerprintB3:AC:93:6B:90:A8:06:99:EB:A0:C5:46:5E:D5:00:4A:C7:84:95:35
ValidityMon, 16 Sep 2024 00:00:00 GMT - Thu, 16 Oct 2025 23:59:59 GMT

File type

Size
55 kB (54907 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /salesiq/js/resource/embed/resource_lnOu4cFqZ8sk0V9k61BAJNxYRo2Dn2cZX70mdklESIPIwbt-2AUpin2ZmnwDrmK8_.js HTTP/1.1
Host: js.zohocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://healthfinance.com.au
DNT: 1
Connection: keep-alive
Referer: https://healthfinance.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ZGS
date: Sat, 22 Mar 2025 21:54:29 GMT
content-type: text/javascript;charset=UTF-8
content-length: 15627
x-content-type-options: nosniff
cache-control: public, max-age=7776000, immutable
access-control-expose-headers: *
access-control-allow-origin: *
etag: "4b3ba949910d9a786c745ef6fd760fe0"
content-language: en-US
last-modified: Wed, 05 Mar 2025 09:43:46 GMT
vary: Accept-Encoding
strict-transport-security: max-age=15768000
content-encoding: br
timing-allow-origin: *
x-cache: HIT
nb-request-id: 7274e0f8b5b22677872bac0444b5afb5
z-origin-id: ex1-484a7b472fd0473a94bbf1af6c62a65f
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (73)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML