r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a5daf4dc99951793ae2315d4795e8146
4427507ca4d3a5632cc8f598afbc85e2195d00bd
94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6541
Expires: Thu, 01 Dec 2022 12:51:23 GMT
Date: Thu, 01 Dec 2022 11:02:22 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f3cf023c797da81728c0ac84c8759331
fa07c5e39e4b0741ea484101cccb2202acea9d9c
5206a0bac8bf78d6b84322519271a1ece2c1039a0090e583de6d6192d88873d0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4829
Cache-Control: max-age=89366
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:02:22 GMT
Etag: "638730f7-1d7"
Expires: Fri, 02 Dec 2022 11:51:48 GMT
Last-Modified: Wed, 30 Nov 2022 10:31:19 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 6d9d34c96b9a826ae5676640c966469c
8052a16d41a637e420478b7de1ff5a2dc951fccd
f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13051
Expires: Thu, 01 Dec 2022 14:39:53 GMT
Date: Thu, 01 Dec 2022 11:02:22 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 01 Dec 2022 10:19:46 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2556
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: iIut6mQGamBbDCZOuhDsO1lHJSn+qjfW5dgKrPzrYChiQMBQMEQZy7G3Pt1MOUGH7Wjd7/KdVxA=
x-amz-request-id: 36RH4CKGNH7VVK1P
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 10:45:38 GMT
age: 1004
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 11:02:22 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 01 Dec 2022 10:11:15 GMT
cache-control: public,max-age=3600
age: 3068
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4825
Cache-Control: max-age=170691
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:02:23 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 10:27:14 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.162.52.254101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.162.52.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: NKdtnk97t91R/V1KuLFfRQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: /1BIipCQ0fuFf5mbS491pp4domQ=
wz.net.au/
43.250.142.76301 Moved Permanently 0 B IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/7.4.33
content-type: text/html; charset=UTF-8
x-redirect-by: WordPress
location: https://wz.net.au/
content-length: 0
date: Thu, 01 Dec 2022 11:02:24 GMT
server: LiteSpeed
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21105
Expires: Thu, 01 Dec 2022 16:54:09 GMT
Date: Thu, 01 Dec 2022 11:02:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21105
Expires: Thu, 01 Dec 2022 16:54:09 GMT
Date: Thu, 01 Dec 2022 11:02:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21105
Expires: Thu, 01 Dec 2022 16:54:09 GMT
Date: Thu, 01 Dec 2022 11:02:24 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CJiSRzIK7-rQE81gaP2We0LhgKX1YmuJKEGYEqW34Bm1KMx6NB8yhQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 04:29:19 GMT
age: 23585
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 26d6dffbf400da4803a2e76e2a8ef2f8
2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8
04c6e31623fe48cbe83dc91635bfa47b337590f18919995b08d5bde27e929e03
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8740
x-amzn-requestid: 4823cf63-98eb-40d3-bb8b-e09cd2262f36
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7SqHjYIAMF8xw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830c10-316b213c33ce9bc2355c0900;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:04:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tK4wl-g5kcUhVFE3iZGILhZhZSsaMzQD9JTBHj1JXV95yXs_e3gMGw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 13:21:34 GMT
age: 78050
etag: "2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 820cf89fcab8380adff42982c9fb11ed
84241ddddbbfd7de30118307fb1a62800d0a4cb3
0d051495f06ac84de934283b40cbfee7a042d32153a73486dd7c017430e882d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12898
x-amzn-requestid: 9b594c3c-6b8c-4589-8fcb-b3d7518b46f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cQZBNFxToAMF_9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63833ba1-767f510d72eef86d0cc892df;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 10:27:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gsn5uUFEzDZDOMPTvW9UQxtccvRfJKUM4eJ8U99jvUGzNIKkF9SzeA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:49:20 GMT
age: 47584
etag: "84241ddddbbfd7de30118307fb1a62800d0a4cb3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc2c1d47-fc4a-4f23-a6f7-5ac8f3a68490.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc2c1d47-fc4a-4f23-a6f7-5ac8f3a68490.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash acffcb88ce68b2d70c9c046a7b5a4aa8
cd016e6c0bf5c6eef06e933c9a5257ff4fca9bc1
692d782ac1d812de6dadbcfe46034b6b5d8bbd586e56beedd96dc4d65445dd4c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc2c1d47-fc4a-4f23-a6f7-5ac8f3a68490.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12035
x-amzn-requestid: eef7d417-c6ca-4e3f-ac00-1425f3d5c4a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb0TSGHDIAMF_jA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cdae-467c79a805dfb5622687f628;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:39:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: haFJ2LZecbT4HRbkvcaZxR4SAIx5cGxNyghKiDOJVX6xDkPwzc2wNQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:45:34 GMT
age: 47810
etag: "cd016e6c0bf5c6eef06e933c9a5257ff4fca9bc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ffd12f9c423ffc627d9e3b3145944fe4
5cf9a7a784952e1bb0cbe499104f1774b1269d08
a25f1b752d9af599aefd73073c105853130f1759905269de3d582d2eb35fe167
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16038
x-amzn-requestid: 9d34c42b-ba0c-498f-8f99-d4ab527ffa89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbzMdHXNIAMFgaw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cbe9-376846f31dc9b995797cbd18;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:32:25 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: DngCuOTO9fQAwWe_ip6EtBcgruigZN6Bl1_v5BHM2dsWlhqCXCL3gg==
via: 1.1 efcf7b9d0f917f9ebf314db03e52d9b6.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:45:33 GMT
age: 47811
etag: "5cf9a7a784952e1bb0cbe499104f1774b1269d08"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5508d05a290b663fd89ead9b58f2efd8
53650399f9a986ba54addd668b4557109d12003b
65704a961410fdd318c491fedf002c8e9b184cd34b76fe1b67026d42ce21be3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9674
x-amzn-requestid: 7e7d0183-9667-462a-8d44-d125998c1ae3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgEoHVAoAMFvAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a1d-280ba97e3fe1bf7244cbde35;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qftF-GQkcjKTs30KMGCTDymw2SVSXeAYKGNWUnaMfvIb8HjtfHUx8A==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:44:47 GMT
age: 47857
etag: "53650399f9a986ba54addd668b4557109d12003b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 2f1d1e0007d1ba038ac919cc334dca7d
4f3c8cf53099b4a2844ce33d927d2f637d568ff0
d34a6d2d4672091f991673b5cf5e89dd224ff90ff20360db8493241ad1e31fde
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4829
Cache-Control: max-age=163172
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:02:26 GMT
Etag: "63885149-117"
Expires: Sat, 03 Dec 2022 08:21:58 GMT
Last-Modified: Thu, 01 Dec 2022 07:01:29 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 2f1d1e0007d1ba038ac919cc334dca7d
4f3c8cf53099b4a2844ce33d927d2f637d568ff0
d34a6d2d4672091f991673b5cf5e89dd224ff90ff20360db8493241ad1e31fde
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4829
Cache-Control: max-age=163172
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:02:26 GMT
Etag: "63885149-117"
Expires: Sat, 03 Dec 2022 08:21:58 GMT
Last-Modified: Thu, 01 Dec 2022 07:01:29 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279
wz.net.au/wp-includes/css/dist/block-library/style.min.css?ver=5.6.10
43.250.142.76200 OK 7.4 kB URL HTTP/2 wz.net.au/wp-includes/css/dist/block-library/style.min.css?ver=5.6.10
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (27525)
Hash f4992a99706388d1e769f1c2f3425657
f5832a6e30ba031a00fe4c7d6ed435d0a2259092
6ce5e100f597320bed1cbed9a418336a679b5d754719d7f7917b2dd95a4e556a
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.6.10 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: text/css
last-modified: Mon, 22 Feb 2021 18:45:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7413
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4.2
43.250.142.76200 OK 824 B URL HTTP/2 wz.net.au/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4.2
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
Hash 269ed2215d4adf9265132f4135d49185
2e1bf415040627ed8041c1444de11034efe66f89
dad114286e260217aae476d3c4f7da41e7356438bb63a4e742787c6463e19963
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4.2 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: text/css
last-modified: Wed, 14 Jul 2021 07:43:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 824
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/assets/css/style.min.css?ver=5.6.2
43.250.142.76200 OK 31 kB URL HTTP/2 wz.net.au/wp-content/themes/workzone/assets/css/style.min.css?ver=5.6.2
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (65536), with no line terminators
Hash 2496970038b47eadbd7ffa015fb94fe0
c20a66ddea97e295a21c815f80fea10cdc30ebf9
9857942748864b2b9e9bcb2c00a5f380eace454ae7224b9e1790344ab755c120
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/assets/css/style.min.css?ver=5.6.2 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: text/css
last-modified: Thu, 27 Sep 2018 02:32:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30762
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/
43.250.142.76200 OK 90 kB IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2174), with CRLF, LF line terminators
Hash a3465241a2a09013c8bbc0e99455ca38
8d87e828e7ce7651ecdcc4d57d65e7135d9875ee
7846eefd824352998cc3ca43b753008d37bec9d8178add3c384d2d8e53b849b8
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
content-type: text/html; charset=UTF-8
link: <https://wz.net.au/wp-json/>; rel="https://api.w.org/", <https://wz.net.au/wp-json/wp/v2/pages/1279>; rel="alternate"; type="application/json", <https://wz.net.au/>; rel=shortlink
content-encoding: br
vary: Accept-Encoding
date: Thu, 01 Dec 2022 11:02:25 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
wz.net.au/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
43.250.142.76200 OK 4.0 kB URL HTTP/2 wz.net.au/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (11126)
Hash 7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Wed, 10 Feb 2021 07:21:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/uploads/2018/11/NSW-Trains-400x180.jpg
43.250.142.76200 OK 5.1 kB URL HTTP/2 wz.net.au/wp-content/uploads/2018/11/NSW-Trains-400x180.jpg
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x180, components 3\012- data
Hash 81bba543b44282aa52ed909567028d4a
838fa9e86a085f8c858f55824172bdd3e77298fb
8d873f19f6995d3311951eb600eb79e41d79b84d9cf37ae771e5880922d42099
GET /wp-content/uploads/2018/11/NSW-Trains-400x180.jpg HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: image/jpeg
last-modified: Wed, 07 Nov 2018 06:07:16 GMT
accept-ranges: bytes
content-length: 5140
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-includes/js/jquery/jquery.min.js?ver=3.5.1
43.250.142.76200 OK 30 kB URL HTTP/2 wz.net.au/wp-includes/js/jquery/jquery.min.js?ver=3.5.1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (65451)
Hash ef2cb9901cc106c049c57b6bb1c6eec4
3773a0684805600ac8a1c5543d0586e7f8b7e2de
386fc33b0d773cbabecd02bfa72605f417d337fcc8f26f5f919a8c7e6b7a5a0b
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.5.1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Wed, 10 Feb 2021 07:21:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30287
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:02:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:02:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:02:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:02:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrQ.ttf
142.250.74.35200 OK 28 kB URL HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrQ.ttf
IP 142.250.74.35:0
File type TrueType Font data, 18 tables, 1st "GDEF", 12 names, Microsoft, language 0x409, Copyright 2010 The Raleway Project Authors (impallari@gmail.com), with Reserved Font Name "Ralew\012- data
Hash b1b32ba0ce4dc32e3a6f24f0578da6e4
15fd22ba41611fb73c9e031ce10705b722b0c784
bb0920842f4dead2f01f3bd58a47df3553375cb0049d9b1b2618380bc1f03000
GET /s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrQ.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://wz.net.au
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27688
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 02:50:29 GMT
expires: Wed, 29 Nov 2023 02:50:29 GMT
cache-control: public, max-age=31536000
age: 202318
last-modified: Mon, 18 Jul 2022 19:57:58 GMT
content-type: font/ttf
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvoorCIPrQ.ttf
142.250.74.35200 OK 27 kB URL HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvoorCIPrQ.ttf
IP 142.250.74.35:0
File type TrueType Font data, 18 tables, 1st "GDEF", 14 names, Microsoft, language 0x409, Copyright 2010 The Raleway Project Authors (impallari@gmail.com), with Reserved Font Name "Ralew\012- data
Hash 5b2992116c442b6b4c53dae9c3da5609
625018d3656c3d7dc32c84426d57cb112c8898d0
4fe88e1fcb4e0225e6417e7fe3257c4cc6ba980ba1cdefdda3637ce9b5991616
GET /s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvoorCIPrQ.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://wz.net.au
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27067
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 05:53:12 GMT
expires: Wed, 29 Nov 2023 05:53:12 GMT
cache-control: public, max-age=31536000
age: 191355
last-modified: Mon, 18 Jul 2022 19:57:59 GMT
content-type: font/ttf
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w5aX8.ttf
142.250.74.35200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w5aX8.ttf
IP 142.250.74.35:0
File type TrueType Font data, 16 tables, 1st "GDEF", 12 names, Microsoft, language 0x409, Copyright 2011 The Montserrat Project Authors (https://github.com/JulietaUla/Montserrat)Montserr\012- data
Hash 63f7fd9c26f3ffcfa5e2534b0b8dad3b
5162ca5b8f65e1e30c823ab1d67b7c79e50fb68e
21d47fd9e34809d72bd98a11399467d8c95b53c62991b19a71e689a8e9146f2f
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w5aX8.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://wz.net.au
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16601
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 25 Nov 2022 02:59:47 GMT
expires: Sat, 25 Nov 2023 02:59:47 GMT
cache-control: public, max-age=31536000
age: 547360
last-modified: Mon, 11 Jul 2022 18:56:00 GMT
content-type: font/ttf
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVs9pbCIPrQ.ttf
142.250.74.35200 OK 28 kB URL HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVs9pbCIPrQ.ttf
IP 142.250.74.35:0
File type TrueType Font data, 18 tables, 1st "GDEF", 12 names, Microsoft, language 0x409, Copyright 2010 The Raleway Project Authors (impallari@gmail.com), with Reserved Font Name "Ralew\012- data
Hash 93049fde95bac5243273c58f8576f165
f1ea7c79732b8a2aea835d66fcfaf2231013e0fd
015a96054e9cc8341cd61fc0ae6e70e4d9218f20ee1baa5f77738bb0214019c8
GET /s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVs9pbCIPrQ.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://wz.net.au
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28039
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 06:33:55 GMT
expires: Thu, 30 Nov 2023 06:33:55 GMT
cache-control: public, max-age=31536000
age: 102512
last-modified: Mon, 18 Jul 2022 19:57:56 GMT
content-type: font/ttf
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
wz.net.au/wp-content/uploads/2018/11/Sydney-Trains-400x180.jpg
43.250.142.76200 OK 5.1 kB URL HTTP/2 wz.net.au/wp-content/uploads/2018/11/Sydney-Trains-400x180.jpg
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x180, components 3\012- data
Hash ccfea7875aeffd210d501753bb1ad59b
9c56335c1ca25eb0a7fcfd5417f7f9dbcfbeedd6
625366ac739bbfb34f335169e17a9fb141fa62fcf643af7e04ab22b68329a821
GET /wp-content/uploads/2018/11/Sydney-Trains-400x180.jpg HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: image/jpeg
last-modified: Wed, 07 Nov 2018 06:07:22 GMT
accept-ranges: bytes
content-length: 5095
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/uploads/2018/11/WA-PTA-400x180.jpg
43.250.142.76200 OK 7.4 kB URL HTTP/2 wz.net.au/wp-content/uploads/2018/11/WA-PTA-400x180.jpg
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x180, components 3\012- data
Hash 753d4a1a2ea630d1953e1acd3f673a52
7ae90a3e3dee889cdf9530d15a8dd816a0ecbb7a
295cc028e7b1886965d543eb2a2c76273daffac0b33319488c413b0082f4ed47
GET /wp-content/uploads/2018/11/WA-PTA-400x180.jpg HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: image/jpeg
last-modified: Wed, 07 Nov 2018 06:07:28 GMT
accept-ranges: bytes
content-length: 7390
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/uploads/2018/11/workzone-logo-329x200-2018-11.png
43.250.142.76200 OK 30 kB URL HTTP/2 wz.net.au/wp-content/uploads/2018/11/workzone-logo-329x200-2018-11.png
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type PNG image data, 329 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash a8550f11d590116fa1f37e03899136a3
d43d0c2a105e43d3c71f8e712105be562efe0b37
45ff08a4b77af22ccdcdb5115fa0b69e54f33c0d424055c3e13c7d6bf359a8d0
GET /wp-content/uploads/2018/11/workzone-logo-329x200-2018-11.png HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: image/png
last-modified: Thu, 22 Nov 2018 04:56:32 GMT
accept-ranges: bytes
content-length: 30021
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/plugins/expand-maker/css/readMoreStyles.css?ver=3.03
43.250.142.76200 OK 549 B URL HTTP/2 wz.net.au/wp-content/plugins/expand-maker/css/readMoreStyles.css?ver=3.03
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
Hash 489dece59e8aa7b539f2bb13faa4e7dc
0b262e72acb6e50ee93e6551230cbba346f5a0da
3468b76397b02e30c6c9c4d659a8844c94dedeccff681703c9c8ffc7b606141d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/expand-maker/css/readMoreStyles.css?ver=3.03 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: text/css
last-modified: Fri, 11 Nov 2022 21:12:31 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 549
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/plugins/expand-maker/css/animate.css?ver=5.6.10
43.250.142.76200 OK 2.8 kB URL HTTP/2 wz.net.au/wp-content/plugins/expand-maker/css/animate.css?ver=5.6.10
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
Hash 35ef401c9d0a057606ab12eb99f088be
0d4b182157ef52cf592d42a8e7cc52718046c9aa
fb555e6ccd2f1794be65c33b4c6bd8d7ccd3301951dc58f792818d582dd6b440
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/expand-maker/css/animate.css?ver=5.6.10 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: text/css
last-modified: Fri, 11 Nov 2022 21:12:31 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2770
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4.2
43.250.142.76200 OK 3.8 kB URL HTTP/2 wz.net.au/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4.2
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (12987), with no line terminators
Hash aeed4395ecf003f676da91a15c6f480a
7fd4fe08f1fe55d0da4e60dd49384b1fa31ab0fe
f5df04123f2022862a56b4a547cf4b0bebb54a6fc1dc6313c460f927d6902919
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4.2 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Wed, 14 Jul 2021 07:43:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3837
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.fitvids.js?ver=1.1
43.250.142.76200 OK 652 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.fitvids.js?ver=1.1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type HTML document, ASCII text, with very long lines (1771), with no line terminators
Hash 83b077232597d0fa32c5f488ba025196
35b233d091ee5cb04b7d1fa18eac93260962c6ef
2ce3e087b9d18ccb7dedc1fb8137d8b31ad9f28c713fc82d58e8a9534b0af0bd
GET /wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.fitvids.js?ver=1.1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 652
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/modernizr.js?ver=3.3.1
43.250.142.76200 OK 4.9 kB URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/modernizr.js?ver=3.3.1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (13090), with no line terminators
Hash 32ff1bb1b86808c0af6fba223be912de
093a14d2b38f7ec8d6d0eb78e839a58eb327aac0
dd7b3a09caa00c3590ef8f32b0eedbf41d7f2b952d4e0c386e5187bdb203778c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/includes/lib/assets/min/js/library/modernizr.js?ver=3.3.1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4886
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/fusion-video-general.js?ver=1
43.250.142.76200 OK 1.7 kB URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/fusion-video-general.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (5743), with no line terminators
Hash 702ecf986e0584bc1d913d4d0a44c35d
9cbdda2e5c217cfd37f556eb19a8e0543865fe67
d9dc5db4f562436496371c2f4294410b4a61f18aff1891ecef613e6fe856d92d
GET /wp-content/themes/workzone/includes/lib/assets/min/js/library/fusion-video-general.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1700
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/plugins/fusion-core/js/min/avada-portfolio.js?ver=1
43.250.142.76200 OK 2.7 kB URL HTTP/2 wz.net.au/wp-content/plugins/fusion-core/js/min/avada-portfolio.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (12790), with no line terminators
Hash 0059fea1c673b96cf256895c9903dfcd
264277d136c31f83f41f04da8c5200e79a6a1ab0
49ac5352b62105859eab246fbfcd25a37c8dbd4cfc4196bef43e889e4f06d8a1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-core/js/min/avada-portfolio.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:33:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2735
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-lightbox.js?ver=1
43.250.142.76200 OK 1.7 kB URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-lightbox.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (6453), with no line terminators
Hash fb17d16b884dc389633bffa1f057d520
921005087fffb26ce44b0b95e8bcf61b47c65a50
6ee61828f5f5f82d17337d50b76b3e3f63c918f91784feb286501f0eb475f101
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-lightbox.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1711
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/packery.js?ver=2.0.0
43.250.142.76200 OK 4.1 kB URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/packery.js?ver=2.0.0
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (13772), with no line terminators
Hash fc0db75ed98303af2dd653175a92e188
66cfa0d7ff1f440f7671c722d5be2c3f2e428f47
e497a7ce74d9a8421b3a1ce9f412d2bbaa1973c6a69e32e7f82e2cb4eb267461
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/includes/lib/assets/min/js/library/packery.js?ver=2.0.0 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4064
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/plugins/fusion-core/js/min/avada-faqs.js?ver=1
43.250.142.76200 OK 312 B URL HTTP/2 wz.net.au/wp-content/plugins/fusion-core/js/min/avada-faqs.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (979), with no line terminators
Hash cbfeef9af6b2ce0d63f401b1ebaa6b01
79999a670b9ade7146211dd9b7a4a6c97b8e9ace
04ca70efe26ad119d40b4f5dcc66246ada85e16e50410922aab56cdac89ae503
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-core/js/min/avada-faqs.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:33:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 312
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/imagesLoaded.js?ver=3.1.8
43.250.142.76200 OK 2.1 kB URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/imagesLoaded.js?ver=3.1.8
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (6808), with no line terminators
Hash 049319321c3e528cb57762a42cbf8554
55d3bf4c14be0172c43d607e6bdc6ad0646f5f96
8d442b5201e9056ea8b2e016de6fece039995374086bd11aa78a501d12164ee7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/includes/lib/assets/min/js/library/imagesLoaded.js?ver=3.1.8 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2142
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-chart.js?ver=1
43.250.142.76200 OK 1.6 kB URL HTTP/2 wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-chart.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (5264), with no line terminators
Hash 70815b27b4a9b6238f01e0751d6b4323
408ed62c3c8f5af61cdb816d856a7698c722d839
a67a9264adf6205b44591fddb47de76598872fd19b26b32465dd910ad1b7ecb3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-chart.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:34:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1552
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/bootstrap.tab.js?ver=3.1.1
43.250.142.76200 OK 654 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/bootstrap.tab.js?ver=3.1.1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (1495), with no line terminators
Hash f45a104782ffe9e328bbf5616643fa01
b832d0fed2e2951e664187222dc59f04f505ebf8
a434981fc59a3704468811e686dad270d2494261fba58dcdbbdc50416acfd3db
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/includes/lib/assets/min/js/library/bootstrap.tab.js?ver=3.1.1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 654
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/bootstrap.transition.js?ver=3.3.6
43.250.142.76200 OK 327 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/bootstrap.transition.js?ver=3.3.6
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (752), with no line terminators
Hash 7d346165b667534811438f59eb16420b
54fdca7278c450ccd34f8b77c78df48545541644
0e34b4a2cc92c88c50ce58e590c12c3f3eefb339dd67d9e185dc50060829d092
GET /wp-content/themes/workzone/includes/lib/assets/min/js/library/bootstrap.transition.js?ver=3.3.6 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 327
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.waypoints.js?ver=2.0.3
43.250.142.76200 OK 2.3 kB URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.waypoints.js?ver=2.0.3
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (7511), with no line terminators
Hash ae2fa850f51f982f3fef14930b1d8d9f
1b7a6280cdac5a80ec49b556414331288f089bf2
3004ed7ec2db0365b46354a532438db20b7de6c8b6a6d58dcc718f297927f900
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.waypoints.js?ver=2.0.3 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2266
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-equal-heights.js?ver=1
43.250.142.76200 OK 398 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-equal-heights.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (1281), with no line terminators
Hash 90a201ffc1ce2a00c65d47323c4696f1
f2b184022c09b4695bc311c23de943c4ad436193
2bb3645b1b06b296e9e07ed868d7116258c46938971d32b956e22b39204bdeb3
GET /wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-equal-heights.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 398
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.mousewheel.js?ver=3.0.6
43.250.142.76200 OK 420 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.mousewheel.js?ver=3.0.6
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (1006), with no line terminators
Hash 21255c21a7087b452dfd06b285c5caee
cbd78a26f60ce4191b74e2576ef8654101aac374
4235f3829619e1670190e1739550977d72bd4ae0544c1252d19eebfc3508e399
GET /wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.mousewheel.js?ver=3.0.6 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 420
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-recent-posts.js?ver=1
43.250.142.76200 OK 1.1 kB URL HTTP/2 wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-recent-posts.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (4263), with no line terminators
Hash 31ab68701ed92ec69b820a3ef564ffe4
92d6c6d179432740c20d18758c3e1a30331e5039
08e7e3743f1aaec994fd231a9657918cc5f4bcf797bceae407f01998c2ae9f16
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-recent-posts.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:34:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1133
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-events.js?ver=1
43.250.142.76200 OK 975 B URL HTTP/2 wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-events.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (3291), with no line terminators
Hash 36eb17e4fb5ca010b26702967d170e39
e1453343dd9da0aca716ef769ea36ce0483b5f77
2ad6f38e6e4a4620dd16d772797f8096a34c410cf42ba073edfe44f71ee0d981
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-events.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:34:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 975
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-waypoints.js?ver=1
43.250.142.76200 OK 230 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-waypoints.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (447), with no line terminators
Hash 8c9b9a3842fb92040d9fc9cb30e39078
20eae8d2321da3775a13340055aa869e49faa07a
7496e9df4319a5ceae4cf8af6e2fbbe5ee6c95707446fc43a3fd66ca0db869d0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-waypoints.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 230
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-tabs.js?ver=1
43.250.142.76200 OK 1.0 kB URL HTTP/2 wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-tabs.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (4553), with no line terminators
Hash e1f6522784a160008749160537ef6ad0
affbfddd4dc1934a1bf61cc454a13df7738f836f
88f8909cf78b91a818130a149bf7be872c6c8dcfbdfa71b300b1562c04219d65
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-tabs.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:34:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1020
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-modal.js?ver=1
43.250.142.76200 OK 1.0 kB URL HTTP/2 wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-modal.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (4143), with no line terminators
Hash 104fd5b147044ffdf41b29997fb46e00
cda3d8a05dd550f9f60cec3e0145458eb12cad67
830a38fc31eaf504e66ba31bc461c2c9b2f8724b620aaa533ba89727e8613e7e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-modal.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:34:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1045
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-content-boxes.js?ver=1
43.250.142.76200 OK 764 B URL HTTP/2 wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-content-boxes.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (4165), with no line terminators
Hash 04b1ae767eac37a92d35bf2f49aebf7a
fcf9cfe10a3677b648a32adf6101087b1ab35cc5
b94b13b7c44d98a33354c00ba3932b417a2296e822479acb5e07e3f4dd144a2b
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-content-boxes.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:34:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 764
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-animations.js?ver=1
43.250.142.76200 OK 412 B URL HTTP/2 wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-animations.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (1072), with no line terminators
Hash 413d8517979ebed829b7441271736e3c
3e80c4970245079c375a31f57829a64ea9dffe44
e41ab0d2f4de619368934b5880022d5542c3b1480874fd70b3566f5af5808d8d
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-animations.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:34:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 412
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-progress.js?ver=1
43.250.142.76200 OK 300 B URL HTTP/2 wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-progress.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (786), with no line terminators
Hash 94f12cfd9e53768ed89a1a8145487a49
8f0c60f26bf9bfff8faad5986ac54a42e1823c4f
5f76ae9a32c7feded4472ad42a7c844f6c55b423f08b1c6b029bbe0c9b4b6b4b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-progress.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:34:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 300
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.fade.js?ver=1
43.250.142.76200 OK 403 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.fade.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (1166), with no line terminators
Hash 503ff95ed5fc468ee76cd3996f846a56
36835e57398915d951ebefb65a7440d96688d963
27eb96a743573d0bcde6dfe536a2592ee85711e9efe5c043277700829ffa1a98
GET /wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.fade.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 403
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/bootstrap.modal.js?ver=3.1.1
43.250.142.76200 OK 1.2 kB URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/bootstrap.modal.js?ver=3.1.1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (3955), with no line terminators
Hash 6c2b2e697a019ea0c438d271ce7c8ec8
db8d847ae9f69b0a662b3729ab440cfa265e78c4
2c70d890c05a5d1fe8f9aed604db1deb7ddf760c89b837e2f92a6327e3617bf5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/includes/lib/assets/min/js/library/bootstrap.modal.js?ver=3.1.1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1183
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.cycle.js?ver=3.0.3
43.250.142.76200 OK 7.2 kB URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.cycle.js?ver=3.0.3
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (26209), with no line terminators
Hash 4a2e97c4f18b3d90f305f469456f9125
c74330c6ff3b359902d6d25fef73c04c6fd1451a
a0778380b913b8830b380ef5acf615fd3d25e8921bb916b9125da55eb2ecdbe4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.cycle.js?ver=3.0.3 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7210
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/fusion-video-bg.js?ver=1
43.250.142.76200 OK 1.8 kB URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/fusion-video-bg.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (5326), with no line terminators
Hash 4a21b3986c0ad8a271e8b04d72a6f9e6
be41834690adf12de22ee3034a7a1537ce46ee1b
be5a16cf547ad01e08a7edbd9c4fe83afb8a63fa9367abbdfdff5b79b87878b0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/includes/lib/assets/min/js/library/fusion-video-bg.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1834
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:02:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-toggles.js?ver=1
43.250.142.76200 OK 713 B URL HTTP/2 wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-toggles.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (2472), with no line terminators
Hash 93f5f82f643114dcdff9e51bffd68c18
aa2ddd42bdaca499bda90d2765d80f249ec0ba2a
a8b873681e70c4f9e525aed06a8a5159c76f81952c40b6497c228ad35fdb12be
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-toggles.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:34:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 713
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.requestAnimationFrame.js?ver=1
43.250.142.76200 OK 291 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.requestAnimationFrame.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (695), with no line terminators
Hash 829d4bbcfa4196775e98c87a1ff88a79
c3dfc3a7f2671959badf8b6465c12a96105a2fa9
f5409bd77c6a8e6b785ec2ddbf3cdeabf8658d801877dba9a3f25aee8aa0fb04
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.requestAnimationFrame.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 291
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.appear.js?ver=1
43.250.142.76200 OK 1.2 kB URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.appear.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (3004), with no line terminators
Hash d2ee5d0ea4599d368b935c09bd2144f1
a00773eff848e53502620798c4d969159a63dc11
d59dda40370cbf225596f5b8828467a3125820afea86a53c8849416490d24e43
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.appear.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1248
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/bootstrap.collapse.js?ver=3.1.1
43.250.142.76200 OK 1.1 kB URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/bootstrap.collapse.js?ver=3.1.1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (3394), with no line terminators
Hash b9dbc7ab90864c6c6f32c641446373c1
cf4de1f523a67181725a31a93399de4f793fba33
f9b1311d85f760fe80bab00c1c3b42bd33ed5cdb445bc37312ee305cc6bfc4c9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/includes/lib/assets/min/js/library/bootstrap.collapse.js?ver=3.1.1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1051
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/cssua.js?ver=2.1.28
43.250.142.76200 OK 1.4 kB URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/cssua.js?ver=2.1.28
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (3341), with no line terminators
Hash ba9a37fb5d1aa823fa4527b71bb645f6
5b3ee11cf230aca508094ec2fe65e34faddae8f7
37f9f20ac946a720a944d9d7e9ad686759811756a9b7f309c1fcf614b05c77ca
GET /wp-content/themes/workzone/includes/lib/assets/min/js/library/cssua.js?ver=2.1.28 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1410
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-box.js?ver=1
43.250.142.76200 OK 394 B URL HTTP/2 wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-box.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (926), with no line terminators
Hash 27fbe79c085586c421523fa5a6e2e322
64b80f47a2542784d9b62bfb7c30c6606e646a80
5b7c3fd8979780ceac26c406b9be15fb9e44cd4feeda44bddc4c6b706104a4d5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-box.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:34:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 394
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-container.js?ver=1
43.250.142.76200 OK 1.7 kB URL HTTP/2 wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-container.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (9566), with no line terminators
Hash 429cd6dd80a7bd99a94c2711380f608f
c3a3e74b82db152d79eeb88b265e4d89e8a12a97
132aa3069d77a2ea66f3f2f17db1868b7534e37810709c10213728cc848b649b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-container.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:34:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1737
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-syntax-highlighter.js?ver=1
43.250.142.76200 OK 632 B URL HTTP/2 wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-syntax-highlighter.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (1903), with no line terminators
Hash 28a4104df90bcb29a54e66941ba9abd2
dd20d96d5c5a5d0ca75ee9f75ac2ec35ef7db0e8
167b0857750c071a3f6867a359babf7845adf0d267107c2cc879ccc77072d3e4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-syntax-highlighter.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:34:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 632
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/fusion-parallax.js?ver=1
43.250.142.76200 OK 2.2 kB URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/fusion-parallax.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (9743), with no line terminators
Hash cd1ab3b978e66c2150a8f27f7729401d
ae663b5b86b1fefa30a90703cb4b54a61a4cf8ec
ee67d6452dee42c80e02a28b33846cfbc2b5d1f22358f3a3426b61731e2e4572
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/includes/lib/assets/min/js/library/fusion-parallax.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2163
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countTo.js?ver=1
43.250.142.76200 OK 393 B URL HTTP/2 wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countTo.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (945), with no line terminators
Hash 850064f8dd4582532fd7b2b75f0cca43
1928115147b1a4c078eae9229d9e80a43ded1534
139bc32c8ace186db2307ae8938a50b971c5880572a3935e271a3e6568885143
GET /wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countTo.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:34:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 393
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.event.move.js?ver=2.0
43.250.142.76200 OK 1.9 kB URL HTTP/2 wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.event.move.js?ver=2.0
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (5421), with no line terminators
Hash 4d07eda431a069e3e87ff0fc7e7fb049
e86dfa0939625d28f4e3887899ae5194034dcc68
475d82cf7bc398297091e1b7c729f4671ca60e6ade892f78c176310ff5f4946e
GET /wp-content/plugins/fusion-builder/assets/js/min/library/jquery.event.move.js?ver=2.0 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:34:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1867
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.fusion_maps.js?ver=2.2.2
43.250.142.76200 OK 1.8 kB URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.fusion_maps.js?ver=2.2.2
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (5682), with no line terminators
Hash 7bcc4d803e67c9905caf00afb069f9bc
3eaa7d541b606f2f09227d4990a817f72b92fb23
22de61d570a01ade5ce0f3ae8605be827ce8b9e0f6548d5caa9dd447d871796b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.fusion_maps.js?ver=2.2.2 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1808
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-flip-boxes.js?ver=1
43.250.142.76200 OK 323 B URL HTTP/2 wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-flip-boxes.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (1387), with no line terminators
Hash 37d5b8f5340be82b31fdc076efdbc4b8
a75a190eb05c1de0a3c9334e8ebe0b2379bccd98
775e414b859e3cf5b8dfd2d644d997aecde50787fe510d4bfba690d2eb6e5cc8
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-flip-boxes.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:34:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 323
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-circle.js?ver=1
43.250.142.76200 OK 850 B URL HTTP/2 wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-circle.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (3360), with no line terminators
Hash ffcf9be74bbe91b5dfb15933e948e0ed
899802a0cef17bc0e0dd9b2ad3fd0bc9c8f005e8
347a3fc7dec42a6f1217e7c6e8a5a8fe1a7af8a04ebc49f336de8de1cfbef288
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-circle.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:34:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 850
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-countdown.js?ver=1
43.250.142.76200 OK 258 B URL HTTP/2 wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-countdown.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (459), with no line terminators
Hash 70615852cb38e80571c5b042d14de7c8
060403e8441dd757854c602948811b2b56ee0a2c
b0e04a189c8b0792aacdce63a11fbc68e039b6254d9210e8c50f37cea96e9ffa
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-countdown.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:34:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 258
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-testimonials.js?ver=1
43.250.142.76200 OK 351 B URL HTTP/2 wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-testimonials.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (963), with no line terminators
Hash 23ae91080c1b3d6d33696a01b711cc86
155473aaa461c5d6fcf31541527e3ec6c6add450
6543ff73adf3ae47cb8ac7b91cebfa624f906fa06df87a49d25d70de6a3da7ce
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-testimonials.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:34:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 351
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-title.js?ver=1
43.250.142.76200 OK 280 B URL HTTP/2 wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-title.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (655), with no line terminators
Hash 20ca0918cb1d333c9bb27d083f70352e
0e45d53ba0fc7567b37e0c18265db5b74af65fd4
487fb19c5358dc37013b79720a84a96e3d46a36bea0852dfd7e627e4dcf6d8b3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-title.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:34:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 280
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countdown.js?ver=1.0
43.250.142.76200 OK 952 B URL HTTP/2 wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countdown.js?ver=1.0
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (2881), with no line terminators
Hash d711589a00b67eefd2fc4f382bd92962
60155f1c87656cbad49c3d2d0bf7eb22f391791d
ae950c9287bcb3be14ac8aa3dad9338733bc7ec6d43c8f46ed6db2ff1e16e60f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countdown.js?ver=1.0 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:34:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 952
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-video.js?ver=1
43.250.142.76200 OK 377 B URL HTTP/2 wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-video.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (1049), with no line terminators
Hash adf0415f308d18025c3e5f5ce75d7dd9
44d962fd005eb18cd0739bdc5a1154e356a92928
cd02134ad73cf048909640661dd47f3518a9a1da4c7c49bf30da572b41230837
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-video.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:34:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 377
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/assets/min/js/general/avada-vertical-menu-widget.js?ver=1
43.250.142.76200 OK 400 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/assets/min/js/general/avada-vertical-menu-widget.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (1882), with no line terminators
Hash 12a283699a859a08edcd00e5594d06fe
4debdc40eda1202cfcf47b051a274c787bdc78ba
4da5e96dae62017f724b29f70555eccf41d18f4421266bb20ff8c6f97008d170
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/assets/min/js/general/avada-vertical-menu-widget.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 400
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-gallery.js?ver=1
43.250.142.76200 OK 423 B URL HTTP/2 wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-gallery.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (1197), with no line terminators
Hash 86a938cf973c71adb66d4717955635f5
7920a43bbc7a4ced12111c638e6d6266980e6a80
545777016117eb9eddc87646e4f934b6539a7838f5301cfa6e94cb631480d42c
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-gallery.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:34:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 423
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column-bg-image.js?ver=1
43.250.142.76200 OK 449 B URL HTTP/2 wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column-bg-image.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (1338), with no line terminators
Hash 17819f4bdc58c8cf3508020737e87c80
76aa833b5787091745bf02dc9f1154e0edfc7de7
43a7cee9ddbd62d716950b8c77548f3e51bb4f27e0aba67703d46b54cae08e15
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column-bg-image.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:34:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 449
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/bootstrap.popover.js?ver=3.3.5
43.250.142.76200 OK 619 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/bootstrap.popover.js?ver=3.3.5
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (1587), with no line terminators
Hash cc1f558baa6911ec3f71400535e3e4a2
f0d45c29ae6f5fe40a68655decbcac335bb542f4
ad14438540474bc55e8f5e25af02caf9a2c899575bf71a4f7f62673245963507
GET /wp-content/themes/workzone/includes/lib/assets/min/js/library/bootstrap.popover.js?ver=3.3.5 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 619
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/bootstrap.tooltip.js?ver=3.3.5
43.250.142.76200 OK 2.9 kB URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/bootstrap.tooltip.js?ver=3.3.5
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (8891), with no line terminators
Hash 4fa6d39adfdbe55b50c9b07a91b76ca5
0df0a37bd01fc7107a11205116c569da47100cb4
2972b2b7f6e14581caa75c97e4d70e1de1c0979937213d923e293e3a77e5ad88
GET /wp-content/themes/workzone/includes/lib/assets/min/js/library/bootstrap.tooltip.js?ver=3.3.5 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2887
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.hoverintent.js?ver=1
43.250.142.76200 OK 422 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.hoverintent.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (1108), with no line terminators
Hash 67e847e3da1a94deaf034b1099d89044
8babbee964329dda127faf3a7bf21f490920bf06
b281c73c21b1b4b63ca430b8fea808cbae5512931dbef5fbc63f7c76fc371284
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.hoverintent.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 422
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/vimeoPlayer.js?ver=2.2.1
43.250.142.76200 OK 5.3 kB URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/vimeoPlayer.js?ver=2.2.1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type Unicode text, UTF-8 text, with very long lines (16197)
Hash a66f26dcfb78d68362bfc9721ac06f16
e29ceeffa2a26ee2ee5a8badfa340f003ba0c2b9
85d85eda94b12afa0748d6887353b50143c5682499cc6a50120af05fb464d03a
GET /wp-content/themes/workzone/includes/lib/assets/min/js/library/vimeoPlayer.js?ver=2.2.1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5345
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.flexslider.js?ver=2.2.2
43.250.142.76200 OK 6.3 kB URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.flexslider.js?ver=2.2.2
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (23013), with no line terminators
Hash 9d1869b93c0b851bb855d1c57a9c1d30
d7dca03b61b75036a2dcbaabf0b7d30a611c5b3f
004d72e757aca6a6013ac14a0ffd5c20be47a6fc0da5f1d5c0e311d52d08c339
GET /wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.flexslider.js?ver=2.2.2 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6299
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.hoverflow.js?ver=1
43.250.142.76200 OK 302 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.hoverflow.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (647), with no line terminators
Hash 312ac839833d96ecbfe3dc816ae5a95d
741f76aa64eca7e103d73d9d85290cee8a7c52e0
1fe8ba55e715e760abfae09f6456abd747ba458956d1dd606f46d4fa1d30b9e4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.hoverflow.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 302
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.easing.js?ver=1.3
43.250.142.76200 OK 774 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.easing.js?ver=1.3
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (3332), with no line terminators
Hash 0bbd26e4f17607e7294c581a8d466f43
1a232baa6930524280e87dd6f7a244d246ca5d00
c34ee4872fac6d4093521b784cda02269358cfa3158040108d80e4bb2bed67d7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.easing.js?ver=1.3 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 774
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.placeholder.js?ver=2.0.7
43.250.142.76200 OK 792 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.placeholder.js?ver=2.0.7
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (2200), with no line terminators
Hash 7fd54e92388405a32b328a29bcab6ae5
7d85e13b7e90331b11c869252289ed83b0df7bc2
db3dc58519cc72943549b894ce759b1a8b72bcc7cf07d60b8b41ebd2feeda756
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.placeholder.js?ver=2.0.7 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 792
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column.js?ver=1
43.250.142.76200 OK 277 B URL HTTP/2 wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (1989), with no line terminators
Hash e69c5c7d3dadba58b3d891d7ad990772
be3d4b57ba18ac07479bd5ce4141cd2b2bb40046
56614e9be17788bbbd192ef560c28fc84b1430fc055ba733e6e8b5a22e2e6c3c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:34:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 277
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/uploads/2018/11/WA-Finance-400x180.jpg
43.250.142.76200 OK 5.4 kB URL HTTP/2 wz.net.au/wp-content/uploads/2018/11/WA-Finance-400x180.jpg
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x180, components 3\012- data
Hash 6f79dd67738172a93f43eceaf66e3203
059522bd852ae67f8e67750caea96ddaa773b999
2a5fabf4b862908a961da0b9dc22e307f0ba578a69b8da0be350c457d5a2232d
GET /wp-content/uploads/2018/11/WA-Finance-400x180.jpg HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: image/jpeg
last-modified: Wed, 07 Nov 2018 06:07:26 GMT
accept-ranges: bytes
content-length: 5356
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-carousel.js?ver=1
43.250.142.76200 OK 1.0 kB URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-carousel.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (3596), with no line terminators
Hash e72d9e1ba5ae8ce42f33df3c10aebd82
c69410c701a3173e6e2e07aa1a80b770ee1faf31
a019f8dec86b916417d337338e78910ce48b64e04a2c774629df6480b6fc34fd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-carousel.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1031
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-flexslider.js?ver=1
43.250.142.76200 OK 871 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-flexslider.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (8366), with no line terminators
Hash 2a26dbe7196d75a1b62fe951b67f12e7
855cda01b3af3fa1c2a0b608b9d8a6fdb2a1c49c
fa178ae079b76299ca358be7dab8b9f847e07ec326b0499af7a684b894f58d2e
GET /wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-flexslider.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 871
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/uploads/2018/08/Gartnerrose-400x180.jpg
43.250.142.76200 OK 5.2 kB URL HTTP/2 wz.net.au/wp-content/uploads/2018/08/Gartnerrose-400x180.jpg
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x180, components 3\012- data
Hash 522f8b4075a782fe87dc675f46fb5424
5acbf097181a2d4c652beb8196d8c0b3382f61cb
9fac1ae115c6767af61d00f2f37f1c6c6369b59e9e06cc88f4896e887624a1d3
GET /wp-content/uploads/2018/08/Gartnerrose-400x180.jpg HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: image/jpeg
last-modified: Fri, 31 Aug 2018 07:53:18 GMT
accept-ranges: bytes
content-length: 5153
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-google-map.js?ver=1
43.250.142.76200 OK 187 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-google-map.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (325), with no line terminators
Hash 5e85afb52e9300d18bbc6082c49f882e
c2b96c3783c5a0814b69c87ccce33d2dead74dbd
d8b9afb450ac7596a0bc0ae745c695c9d45bf259a312081886e5b5e621d19e8d
GET /wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-google-map.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 187
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/uploads/2018/11/wa-communities-400x180.jpg
43.250.142.76200 OK 6.6 kB URL HTTP/2 wz.net.au/wp-content/uploads/2018/11/wa-communities-400x180.jpg
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x180, components 3\012- data
Hash b5c151d345e4a4fed9f13408e725f77c
14b6e39e8f4b2c750e747ca450688edeabfa34f2
b96eaa4e2258b3a9d2995d26640bde63fc6acb70a8048999097c01d39190a04e
GET /wp-content/uploads/2018/11/wa-communities-400x180.jpg HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: image/jpeg
last-modified: Wed, 07 Nov 2018 06:07:24 GMT
accept-ranges: bytes
content-length: 6605
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-popover.js?ver=1
43.250.142.76200 OK 154 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-popover.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with no line terminators
Hash 34971a73a100e97b10284955f54d2461
cac78369990d27ad24f186332744f3d24f17b225
8511df6b209946d2a84d9951d0805563ca1910b4a98c9b49b7256ddd38b50a71
GET /wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-popover.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 154
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/uploads/2018/08/John-Holland-400x180.jpg
43.250.142.76200 OK 8.5 kB URL HTTP/2 wz.net.au/wp-content/uploads/2018/08/John-Holland-400x180.jpg
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x180, components 3\012- data
Hash 6bd194a27c4b51f0d5559ac31d48861d
b2d33c59887f8a5c880845929d8e8c501ed51c83
a71276ef33c91027b0e8a56b2a21f331dc7bd87b696ca8ea229d9df1f811dbe5
GET /wp-content/uploads/2018/08/John-Holland-400x180.jpg HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: image/jpeg
last-modified: Fri, 31 Aug 2018 07:53:24 GMT
accept-ranges: bytes
content-length: 8544
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-image-before-after.js?ver=1.0
43.250.142.76200 OK 840 B URL HTTP/2 wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-image-before-after.js?ver=1.0
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (2553), with no line terminators
Hash ec53c00d6cbdee55b7f74f96841f377a
6f059b8a2ca911f13f5904d78f08ce723d3a5dac
076f86425ed47b7d0c1fadee16a18dbd1ae71a3b812e05174a750eae70cda1cf
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-image-before-after.js?ver=1.0 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:34:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 840
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/uploads/2018/08/McDonalds-logo-400x180.jpg
43.250.142.76200 OK 6.1 kB URL HTTP/2 wz.net.au/wp-content/uploads/2018/08/McDonalds-logo-400x180.jpg
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x180, components 3\012- data
Hash 220f0ed0270264dcb96f3077591867ec
28eb688bb5dee1cfce1269132943b321f7a31da6
95f43ead09939831d7ec933916ab8fc9571d3dc7c73ffdb77eee650d35ce0761
GET /wp-content/uploads/2018/08/McDonalds-logo-400x180.jpg HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: image/jpeg
last-modified: Tue, 28 Aug 2018 01:37:00 GMT
accept-ranges: bytes
content-length: 6117
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/uploads/2018/08/City-of-Subiaco-Logo-400x180.jpg
43.250.142.76200 OK 8.1 kB URL HTTP/2 wz.net.au/wp-content/uploads/2018/08/City-of-Subiaco-Logo-400x180.jpg
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x180, components 3\012- data
Hash 0f01f91858218aa289bc890e87383c9a
55759e8ceb74189ca01097469d3b173e93b60709
4655a7d1b948cea6174fcb00049b2510b59f081a70d699498b1340075985c089
GET /wp-content/uploads/2018/08/City-of-Subiaco-Logo-400x180.jpg HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: image/jpeg
last-modified: Tue, 28 Aug 2018 01:36:52 GMT
accept-ranges: bytes
content-length: 8142
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/uploads/2018/08/Abergeldie-400x180.jpg
43.250.142.76200 OK 6.2 kB URL HTTP/2 wz.net.au/wp-content/uploads/2018/08/Abergeldie-400x180.jpg
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x180, components 3\012- data
Hash 763df449815980f218d66a46af5dcc8c
97450a01cbfa7acedd61aacff9009c8755207eea
227867999fafb7c9b99d085309b6e7c1b9d77fcbb630a940fa0e0897cb9639c6
GET /wp-content/uploads/2018/08/Abergeldie-400x180.jpg HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: image/jpeg
last-modified: Fri, 31 Aug 2018 07:52:58 GMT
accept-ranges: bytes
content-length: 6162
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-alert.js?ver=1
43.250.142.76200 OK 138 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-alert.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with no line terminators
Hash 62c49f1e40b42075718478ac0bdbc219
8b1429611605bff5129ffd34ea6d1525bcbfb29e
9c1eedb49dbbf57672cbf97d7d70edf6918f89e58c57d49e71496dbda2a56df3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-alert.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-length: 138
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/uploads/2018/08/Laing-Orourke-400x180.jpg
43.250.142.76200 OK 4.2 kB URL HTTP/2 wz.net.au/wp-content/uploads/2018/08/Laing-Orourke-400x180.jpg
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x180, components 3\012- data
Hash f2f15058bc64cf4f71deacbe69dd5c82
c91f0f99fe702fbe543d638ca5a1d3e2b0f2f4b2
232e99050501ecf914091d37314e4c576f38f4646577ac77fb3b7e100e50bd58
GET /wp-content/uploads/2018/08/Laing-Orourke-400x180.jpg HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: image/jpeg
last-modified: Fri, 31 Aug 2018 07:53:24 GMT
accept-ranges: bytes
content-length: 4207
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/uploads/2018/08/transdev-400x180.jpg
43.250.142.76200 OK 6.7 kB URL HTTP/2 wz.net.au/wp-content/uploads/2018/08/transdev-400x180.jpg
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x180, components 3\012- data
Hash 79f1907528f5d336d5830618c8e29794
1ccbc4b2632afcbb764bd13f2864ae0a94942e84
71ae3247ec0b5553716689ea84aca039f7ddb67e85845b648fee3e7ea104a7e6
GET /wp-content/uploads/2018/08/transdev-400x180.jpg HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: image/jpeg
last-modified: Fri, 31 Aug 2018 07:53:28 GMT
accept-ranges: bytes
content-length: 6731
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/uploads/2018/08/Ford-Civil-400x180.jpg
43.250.142.76200 OK 9.7 kB URL HTTP/2 wz.net.au/wp-content/uploads/2018/08/Ford-Civil-400x180.jpg
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x180, components 3\012- data
Hash 1a02ac9dcf829566af79ae078673cbff
2b88c274a5067848111d111c34c6b03c07589a47
2b57fac0b0c778e1ef8e705075a98427ca32acf1e686796b12a95b453c4c2a2b
GET /wp-content/uploads/2018/08/Ford-Civil-400x180.jpg HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: image/jpeg
last-modified: Fri, 31 Aug 2018 07:53:14 GMT
accept-ranges: bytes
content-length: 9651
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.touchSwipe.js?ver=1.6.6
43.250.142.76200 OK 3.5 kB URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.touchSwipe.js?ver=1.6.6
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (10119), with no line terminators
Hash 47c026f54bc6c2dbc1f4a8f82dd8c238
064a3799d9ba1c342f2463cd5adab0f21e5d964a
4871fa24d8ba9b357d2b1cf0eeff231d22bd97ba62db74c80b92e2dd6087a5fd
GET /wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.touchSwipe.js?ver=1.6.6 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3503
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.carouFredSel.js?ver=6.2.1
43.250.142.76200 OK 13 kB URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.carouFredSel.js?ver=6.2.1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (31999)
Hash 34223dffa109b63009add42d8de4203b
ad6aa6ebe462f917bac409229b4ac46fc87d5592
8c2c79a5595a7a7dd92f1e464e742ac761b18f9f5918f3f47c02a3d7d21ef682
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.carouFredSel.js?ver=6.2.1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 13138
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=7.4.4
43.250.142.76200 OK 33 kB URL HTTP/2 wz.net.au/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=7.4.4
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type Unicode text, UTF-8 text, with very long lines (34729), with NEL line terminators
Hash 8b15356d1a677e5b97c729e5e0bfd9f0
ee507dc198cebd2e6dd8646ebb634eabc4251ed8
3ce863de24ea00111e33686027c22631edd7a940f3354c8695aea7640fcf1579
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=7.4.4 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Wed, 10 Feb 2021 07:21:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 32625
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.ilightbox.js?ver=2.2.3
43.250.142.76200 OK 24 kB URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.ilightbox.js?ver=2.2.3
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (31988)
Hash a5c766735f5adc69f0ba4202f43a8bd9
0a83cf2618bcfb4816c211e918a68c9c3f49f183
a50e98721e07e9e9728cd723fa615e393a576b387cb23028235620a5d6e902b7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.ilightbox.js?ver=2.2.3 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 24002
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/library/Chart.js?ver=2.7.1
43.250.142.76200 OK 44 kB URL HTTP/2 wz.net.au/wp-content/plugins/fusion-builder/assets/js/min/library/Chart.js?ver=2.7.1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (65536), with no line terminators
Hash d0638756eb3e157bc4d11b30731824dd
dc05784ce89f6ea47dfd05fb9f13b01c572cfb1b
a6b09022530747c24152a3370d0a57823d7b7a52f81ef4fa0797ddfe62f0d29b
GET /wp-content/plugins/fusion-builder/assets/js/min/library/Chart.js?ver=2.7.1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:34:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 44240
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.easyPieChart.js?ver=2.1.7
43.250.142.76200 OK 1.4 kB URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.easyPieChart.js?ver=2.1.7
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (3731), with no line terminators
Hash 637f1a3a68c147a0688c5d529fbcb7ba
5fbb5976e2bd2fd04fbd691e5591468738743023
3e959dd480c0c12612d86295dc415b24f6aaad8e7939e4404bcf16a51bf13c3b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.easyPieChart.js?ver=2.1.7 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1444
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/uploads/2018/08/degnan-400x180.jpg
43.250.142.76200 OK 4.2 kB URL HTTP/2 wz.net.au/wp-content/uploads/2018/08/degnan-400x180.jpg
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x180, components 3\012- data
Hash 2f16577d74324588ab7b7a51276b823b
8104f45b7d19fb8412b798f30fec94f4800f633b
28f8e8a1a042312add86add2c242ca6ff001eb519b4e174c07729586cfad5dc9
GET /wp-content/uploads/2018/08/degnan-400x180.jpg HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: image/jpeg
last-modified: Fri, 31 Aug 2018 07:53:10 GMT
accept-ranges: bytes
content-length: 4176
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/uploads/2018/11/programmed-400x180.jpg
43.250.142.76200 OK 5.7 kB URL HTTP/2 wz.net.au/wp-content/uploads/2018/11/programmed-400x180.jpg
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x180, components 3\012- data
Hash 1c34433aaefe245c4a78e40e4760795c
b94a26a6bcedc1e902f5fb9d4e74d2d445cc5c58
0e979410d6bd28325426485236d9e650ecea63645180fc3e65a980837cd42c24
GET /wp-content/uploads/2018/11/programmed-400x180.jpg HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: image/jpeg
last-modified: Wed, 07 Nov 2018 06:07:20 GMT
accept-ranges: bytes
content-length: 5695
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/uploads/2018/11/Metro-Trains-400x180.jpg
43.250.142.76200 OK 5.9 kB URL HTTP/2 wz.net.au/wp-content/uploads/2018/11/Metro-Trains-400x180.jpg
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x180, components 3\012- data
Hash 97eefd515fa1d452b40c0c60cc2ffee1
cb6abbe377d84f7bc8167eaac38173460ed9acc2
916a46810450219b8caef4eaf10695bb8a4e49bbbe30377f73ce21251ce3f8a4
GET /wp-content/uploads/2018/11/Metro-Trains-400x180.jpg HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: image/jpeg
last-modified: Wed, 07 Nov 2018 06:07:14 GMT
accept-ranges: bytes
content-length: 5886
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/uploads/2018/11/Curtin-Uni-400x180.jpg
43.250.142.76200 OK 5.5 kB URL HTTP/2 wz.net.au/wp-content/uploads/2018/11/Curtin-Uni-400x180.jpg
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x180, components 3\012- data
Hash e9329fb2268cedd72d7099f27364ca4a
bd59f81041b4f327be1d88ffab3b082ff4bc8d16
32c8546c3f31b1c54ca33ce1cbadbeff5cca35be78c2642aae9c73b77ae89dab
GET /wp-content/uploads/2018/11/Curtin-Uni-400x180.jpg HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: image/jpeg
last-modified: Wed, 07 Nov 2018 06:07:10 GMT
accept-ranges: bytes
content-length: 5539
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/uploads/2018/08/City-of-Armadale-400x180.jpg
43.250.142.76200 OK 6.2 kB URL HTTP/2 wz.net.au/wp-content/uploads/2018/08/City-of-Armadale-400x180.jpg
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x180, components 3\012- data
Hash ed1ea8c6e6e960e7ed9d0ec262ca4646
0f62502e232227ef87a49f17cf5e52f90b5af573
c598b46dea40b5a06740fc85af996d3354f4814f0fd0e2c97161a9e2fd4b224c
GET /wp-content/uploads/2018/08/City-of-Armadale-400x180.jpg HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: image/jpeg
last-modified: Fri, 31 Aug 2018 07:53:02 GMT
accept-ranges: bytes
content-length: 6218
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/uploads/2018/11/Infrastruction-Group-400x180.jpg
43.250.142.76200 OK 5.7 kB URL HTTP/2 wz.net.au/wp-content/uploads/2018/11/Infrastruction-Group-400x180.jpg
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x180, components 3\012- data
Hash 50e791e13a77f0ae5e31652715f39a8e
64e88f9bd28333f19e02a33543f310840d630737
1c82529d54cc94576bf42f9e45c65fe99a2fb4e204cb0f71e2ddc42d14fe298d
GET /wp-content/uploads/2018/11/Infrastruction-Group-400x180.jpg HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: image/jpeg
last-modified: Wed, 07 Nov 2018 06:07:12 GMT
accept-ranges: bytes
content-length: 5653
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/uploads/2018/08/Defence-Housing-Australia-400x180.jpg
43.250.142.76200 OK 6.8 kB URL HTTP/2 wz.net.au/wp-content/uploads/2018/08/Defence-Housing-Australia-400x180.jpg
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x180, components 3\012- data
Hash cee4101a905b4c5b211e1f551d42d483
1a3f7261daa1b7bb2be392c14e7d12590d0bc296
a8afb9aecc37680b10b8e5e8528aad0b10bd1f126340328146fca7c65a9aca6c
GET /wp-content/uploads/2018/08/Defence-Housing-Australia-400x180.jpg HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: image/jpeg
last-modified: Fri, 31 Aug 2018 07:53:08 GMT
accept-ranges: bytes
content-length: 6773
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-sharing-box.js?ver=1
43.250.142.76200 OK 169 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-sharing-box.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (610), with no line terminators
Hash a824ed639f27f8d6d545e9639edf4081
2891ef2b2d3e4e4711ef47031ca4b4c71a475902
4682623f4b378d848d304246f58c134d08fb665321e3b86e103c18e2faf0d3c7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-sharing-box.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:27 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 169
date: Thu, 01 Dec 2022 11:02:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-button.js?ver=1
43.250.142.76200 OK 131 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-button.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with no line terminators
Hash c917b45ff8a82078c9162261f1d79ab1
eb4cfde259ff8878bd9e0b985ff54ddeb45572e7
f4f73b5e3a4247ff86a7c1ca30c5f0a81b3ded6ef0be14e54434de6d5fe051fb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-button.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:27 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 131
date: Thu, 01 Dec 2022 11:02:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-blog.js?ver=1
43.250.142.76200 OK 2.1 kB URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-blog.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (9230), with no line terminators
Hash 81e0578aa579fb1cc325245588a69952
e0641e37b9b28268fe379f6bde9c5691fd1e207b
bdc721264e69e0b9ea29dfd9d5f108210443d2653c1edc309b09e3f27edd362c
GET /wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-blog.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:27 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2124
date: Thu, 01 Dec 2022 11:02:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-general-global.js?ver=1
43.250.142.76200 OK 154 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-general-global.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with no line terminators
Hash 403f12dfa93dc4afadf9f85cf1f42a92
70ba82579263450963a95ca82ba98356d98043c2
18cbcb539473f9b8d4182e3af5ceab502cc49ff3b953faa4db23d426584df33c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-general-global.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:27 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-length: 154
date: Thu, 01 Dec 2022 11:02:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-ie1011.js?ver=1
43.250.142.76200 OK 421 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-ie1011.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type HTML document, ASCII text, with very long lines (1203), with no line terminators
Hash f53ea6cfe7e18d095980a563b59ed99d
c3d038d97b04cb2101941037d22f99cf26c3d470
5f053b9313bba5762daa3076fca31b67203e60859a7e44fb0da84258668bb14e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-ie1011.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:27 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 421
date: Thu, 01 Dec 2022 11:02:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/assets/min/js/general/avada-header.js?ver=5.6.2
43.250.142.76200 OK 3.6 kB URL HTTP/2 wz.net.au/wp-content/themes/workzone/assets/min/js/general/avada-header.js?ver=5.6.2
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (31838), with no line terminators
Hash 6809b1d0405896e2b7645c214b8b2ab1
fbd37306b0cbd33674f5207ca9d7feee75b871e0
2105a861cec0488d990e45a92e6bb7a14ce8937dcaf803c5d2d528bf9ca0c70e
GET /wp-content/themes/workzone/assets/min/js/general/avada-header.js?ver=5.6.2 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:27 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3648
date: Thu, 01 Dec 2022 11:02:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/assets/min/js/general/avada-menu.js?ver=5.6.2
43.250.142.76200 OK 5.5 kB URL HTTP/2 wz.net.au/wp-content/themes/workzone/assets/min/js/general/avada-menu.js?ver=5.6.2
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (31914)
Hash b453d8bf70f886eb9e1dc052d88b2f7f
9bdd29d1a3b3c25149055dc73cee284c7ffac23b
e063e9a1f1a7198fd2f92b6a90909a2b79c1981b38b7e3c0ff2cea7415664426
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/assets/min/js/general/avada-menu.js?ver=5.6.2 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:27 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5543
date: Thu, 01 Dec 2022 11:02:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-scroll-to-anchor.js?ver=1
43.250.142.76200 OK 1.3 kB URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-scroll-to-anchor.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (4501), with no line terminators
Hash aeec208d167f0428b068250c42609f8d
803a930c62caf46e691a0a0071bbe924f406ba3c
2ff31c3a0ad235e7f9d4ccf2be65bf1721ff8ce76d57cd01589f6690986fa791
GET /wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-scroll-to-anchor.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:27 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1300
date: Thu, 01 Dec 2022 11:02:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-responsive-typography.js?ver=1
43.250.142.76200 OK 582 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-responsive-typography.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (2342), with no line terminators
Hash b328ae18f3acb305a935573e43ec8e06
74f8eb3cafb078c89d4d7b621785bbc31c4a51b0
1cd7defaf5f4996835cd532b4fd36a0d4c88b5806b1b0baad84e74ecab74444e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/includes/lib/assets/min/js/general/fusion-responsive-typography.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:27 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 582
date: Thu, 01 Dec 2022 11:02:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/assets/min/js/library/bootstrap.scrollspy.js?ver=3.3.2
43.250.142.76200 OK 983 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/assets/min/js/library/bootstrap.scrollspy.js?ver=3.3.2
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (2679), with no line terminators
Hash 2e98fda984282025d84e335dde82b989
712d7f2e232be9456b0b087878bca824d150af52
905d982d095d3563cd1b17cd641cddb3b209f805f209616bb78bb7239f9207b9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/assets/min/js/library/bootstrap.scrollspy.js?ver=3.3.2 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:27 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 983
date: Thu, 01 Dec 2022 11:02:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/assets/min/js/general/avada-comments.js?ver=5.6.2
43.250.142.76200 OK 392 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/assets/min/js/general/avada-comments.js?ver=5.6.2
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (1170), with no line terminators
Hash e5501e03c02966e8fff8086a5ce32c6e
9f171e388c27d97ecfb811e6a497ec9a0722b596
1baba4441ec776c8d593f9a9f82ca268ba53db72bff7ddaa6bcfea42e5b0932f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/assets/min/js/general/avada-comments.js?ver=5.6.2 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:27 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 392
date: Thu, 01 Dec 2022 11:02:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/assets/min/js/general/avada-general-footer.js?ver=5.6.2
43.250.142.76200 OK 276 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/assets/min/js/general/avada-general-footer.js?ver=5.6.2
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (952), with no line terminators
Hash d9a647b44376bcce244c59611969df90
c7dcd75892e8b44919a93efeb2469e5730d49f59
ce3b897c20ee2b877ff5d29effab8ea737f20134c2e41d4a17288ea7d1a96d78
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/assets/min/js/general/avada-general-footer.js?ver=5.6.2 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:27 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 276
date: Thu, 01 Dec 2022 11:02:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/assets/min/js/general/avada-quantity.js?ver=5.6.2
43.250.142.76200 OK 512 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/assets/min/js/general/avada-quantity.js?ver=5.6.2
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (1317), with no line terminators
Hash 926710070fdc81ea561aa5aecf6aa3c1
65564fa530c2550ec0bade91f88398264e0188f9
33cce4e57e4dc2f3ff968c0fa3ca430373de390b933cc787a903c669cba3dcea
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/assets/min/js/general/avada-quantity.js?ver=5.6.2 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:28 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 512
date: Thu, 01 Dec 2022 11:02:28 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/assets/min/js/general/avada-scrollspy.js?ver=5.6.2
43.250.142.76200 OK 202 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/assets/min/js/general/avada-scrollspy.js?ver=5.6.2
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (656), with no line terminators
Hash 91b5c79761297985bb24429046d6526b
ce316daaa04fe3444d57f59fbd81a2df2c7091f2
4caba36a404a577a9917685f991d5faffaa060a190e0276343e0bc125e26f8cb
GET /wp-content/themes/workzone/assets/min/js/general/avada-scrollspy.js?ver=5.6.2 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:28 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 202
date: Thu, 01 Dec 2022 11:02:28 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/assets/min/js/general/avada-select.js?ver=5.6.2
43.250.142.76200 OK 185 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/assets/min/js/general/avada-select.js?ver=5.6.2
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (501), with no line terminators
Hash 9b9c951eafd584691944b2ac77d1edec
e5dbb1dcbd73046f459a12ff1d4392f5bae10fb9
185aad6f0a6266d4dffb02f9de42e0a05b69b3e539cd8bd983570ba8bd24f660
GET /wp-content/themes/workzone/assets/min/js/general/avada-select.js?ver=5.6.2 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:28 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 185
date: Thu, 01 Dec 2022 11:02:28 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/assets/min/js/general/avada-sidebars.js?ver=5.6.2
43.250.142.76200 OK 608 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/assets/min/js/general/avada-sidebars.js?ver=5.6.2
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (2565), with no line terminators
Hash 781bbe70f49458cea1017115df5ffd65
596bdb7980b8a8d6d74b7e8a03c08a01f114c57f
f6e139300edb4bb448ef9dbc9cf44ee70a28b00af7ede0b5a936f430ee1d7cba
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/assets/min/js/general/avada-sidebars.js?ver=5.6.2 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:28 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 608
date: Thu, 01 Dec 2022 11:02:28 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/assets/min/js/library/jquery.sticky-kit.js?ver=5.6.2
43.250.142.76200 OK 1.1 kB URL HTTP/2 wz.net.au/wp-content/themes/workzone/assets/min/js/library/jquery.sticky-kit.js?ver=5.6.2
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (2746), with no line terminators
Hash 51f2ec6cfb3cbfbc8a4b567508c30d87
ac0e43d5d1039a751c3cfbe636e0715d388ae531
182e93defbec3830de07a3e35085733dd768eff27b74bcbd73610eaec7e401dc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/assets/min/js/library/jquery.sticky-kit.js?ver=5.6.2 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:28 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1104
date: Thu, 01 Dec 2022 11:02:28 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/assets/min/js/general/avada-tabs-widget.js?ver=5.6.2
43.250.142.76200 OK 170 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/assets/min/js/general/avada-tabs-widget.js?ver=5.6.2
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (453), with no line terminators
Hash caff0879fa9405bb7364397d6f24cab9
9e3257c5d1bd470301766fe376a6b8b832e25c5c
f26c3aefb7e001fa06607ce489e5db462735004d300715811f932c38739112d0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/assets/min/js/general/avada-tabs-widget.js?ver=5.6.2 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:28 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 170
date: Thu, 01 Dec 2022 11:02:28 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/assets/min/js/library/jquery.toTop.js?ver=1.2
43.250.142.76200 OK 468 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/assets/min/js/library/jquery.toTop.js?ver=1.2
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type HTML document, ASCII text, with very long lines (1024), with no line terminators
Hash 54f43c96925ea4f9882572e9bdb21859
7b8c259b9f1529e2f688fb9fed992b2fa4e35854
fd576b93513d1eb6acfd678eea395d585fac076594cdf9a8f97e4cd593e24f48
GET /wp-content/themes/workzone/assets/min/js/library/jquery.toTop.js?ver=1.2 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:28 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 468
date: Thu, 01 Dec 2022 11:02:28 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/assets/min/js/general/avada-to-top.js?ver=5.6.2
43.250.142.76200 OK 127 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/assets/min/js/general/avada-to-top.js?ver=5.6.2
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with no line terminators
Hash 5530403ce6ccf68f3183973a63b5170a
f55bc8bd05d5e14bb3911186093c9e28c2d3ec79
44a1a347120ecb57aef1a7d07559652dfc6bf223e5980d36915839d3ea79dd42
GET /wp-content/themes/workzone/assets/min/js/general/avada-to-top.js?ver=5.6.2 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:28 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 127
date: Thu, 01 Dec 2022 11:02:28 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/assets/min/js/general/avada-drop-down.js?ver=5.6.2
43.250.142.76200 OK 772 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/assets/min/js/general/avada-drop-down.js?ver=5.6.2
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (4802), with no line terminators
Hash 0a0028d2f095ed71d234ddab3c1e2260
8e37fa3b2f4128e9ab91e9aa778e62d5202bfd77
c33ac0ddd75282e9f3ead3c859f94754c0386896cc6f7faa3d0a59d139eba729
GET /wp-content/themes/workzone/assets/min/js/general/avada-drop-down.js?ver=5.6.2 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:28 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 772
date: Thu, 01 Dec 2022 11:02:28 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/assets/min/js/general/avada-parallax-footer.js?ver=5.6.2
43.250.142.76200 OK 552 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/assets/min/js/general/avada-parallax-footer.js?ver=5.6.2
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (1655), with no line terminators
Hash 426de2931a8dd277e22e194e948b10d0
e6c7c0b5473d5993c3a0bc24f5038b8fdbdec8bd
9d7c613817b080b636b286d556d41d84969d713bd56c5d8807defcc618d58367
GET /wp-content/themes/workzone/assets/min/js/general/avada-parallax-footer.js?ver=5.6.2 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:28 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 552
date: Thu, 01 Dec 2022 11:02:28 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/assets/min/js/general/avada-contact-form-7.js?ver=5.6.2
43.250.142.76200 OK 445 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/assets/min/js/general/avada-contact-form-7.js?ver=5.6.2
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (2126), with no line terminators
Hash 8b0909a6df1002a7ca678a6914acbff3
b715f0269e5534f396cf991825ad9ed88e1000fc
9f7c1a29c19c93bc659dc7f0b07678a38f22d7a1044c1f68669ba2a0c3820252
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/assets/min/js/general/avada-contact-form-7.js?ver=5.6.2 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:28 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 445
date: Thu, 01 Dec 2022 11:02:28 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/plugins/fusion-core/js/min/avada-fusion-slider.js?ver=1
43.250.142.76200 OK 3.6 kB URL HTTP/2 wz.net.au/wp-content/plugins/fusion-core/js/min/avada-fusion-slider.js?ver=1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (26526), with no line terminators
Hash 96de64aca1362e0fc570adb1781034d8
2644034c553b9dc5034afab32e23e13c3fb1372b
356475352be37f051f70c21540ef3fac7a3f6b1a7a51c8cee543ffca6d7f8a86
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-core/js/min/avada-fusion-slider.js?ver=1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:28 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:33:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3602
date: Thu, 01 Dec 2022 11:02:28 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-includes/js/wp-embed.min.js?ver=5.6.10
43.250.142.76200 OK 663 B URL HTTP/2 wz.net.au/wp-includes/js/wp-embed.min.js?ver=5.6.10
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (1391)
Hash 992198ff853eb696f88bb0ec8586d015
a6262428de1b6c68cccf617d2a503f5a3bd3aecd
ae0480bd571a7f57cccdbd08f77706edca84029f95bd90bc325224169528d21c
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-embed.min.js?ver=5.6.10 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:28 GMT
content-type: application/javascript
last-modified: Wed, 10 Feb 2021 07:21:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 663
date: Thu, 01 Dec 2022 11:02:28 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-includes/js/wp-emoji-release.min.js?ver=5.6.10
43.250.142.76200 OK 4.3 kB URL HTTP/2 wz.net.au/wp-includes/js/wp-emoji-release.min.js?ver=5.6.10
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (11272)
Hash 7d87881141a40d52cd30db52b4c49b6d
835ff8fcb3b6a2d309fe7f5bf2e97bf1f619f74f
a5ba20e36a910013cb27d443a2555f2b5fcdfe180ea759f93e2f8dd67d485583
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.6.10 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:28 GMT
content-type: application/javascript
last-modified: Wed, 10 Feb 2021 07:21:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4316
date: Thu, 01 Dec 2022 11:02:28 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/plugins/expand-maker/js/yrmMore.js?ver=3.03
43.250.142.76200 OK 2.0 kB URL HTTP/2 wz.net.au/wp-content/plugins/expand-maker/js/yrmMore.js?ver=3.03
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
Hash 058b6578cb082598014f19639a956db1
1671ff7a9afe9c39bf56b963ae922ecfc73270f9
755db4efb6149bab5920adb109b0f50b69e2eef7ce159ba90da05054ec0d947c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/expand-maker/js/yrmMore.js?ver=3.03 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:28 GMT
content-type: application/javascript
last-modified: Fri, 11 Nov 2022 21:12:31 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2029
date: Thu, 01 Dec 2022 11:02:28 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-includes/js/jquery/ui/effect.min.js?ver=1.12.1
43.250.142.76200 OK 6.2 kB URL HTTP/2 wz.net.au/wp-includes/js/jquery/ui/effect.min.js?ver=1.12.1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
File type ASCII text, with very long lines (14541)
Hash 2a2bc71bf9dc848c773e06b9e9c2391b
7d9e944e295eafdcb144f1e7ed589e8be41e0e75
0dcdd9b51f72157756a77912ff2b1696402b24219b0e6aca0b08e062ea48fa59
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/effect.min.js?ver=1.12.1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:28 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 07:51:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6155
date: Thu, 01 Dec 2022 11:02:28 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/plugins/expand-maker/js/YrmClassic.js?ver=3.03
43.250.142.76200 OK 982 B URL HTTP/2 wz.net.au/wp-content/plugins/expand-maker/js/YrmClassic.js?ver=3.03
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
Hash 5defa886795f1539cd0e2a54ae21d093
cb8849b5fc7aa8e60b8eb999056739fbb663b939
92d49fa842c2a1233df97f687bf12e46ea80c60e4d99e10923d0ac1ca73abb59
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/expand-maker/js/YrmClassic.js?ver=3.03 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:28 GMT
content-type: application/javascript
last-modified: Fri, 11 Nov 2022 21:12:31 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 982
date: Thu, 01 Dec 2022 11:02:28 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.infinitescroll.js?ver=2.1
43.250.142.76200 OK 0 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.infinitescroll.js?ver=2.1
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/includes/lib/assets/min/js/library/jquery.infinitescroll.js?ver=2.1 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11547
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
wz.net.au/wp-content/uploads/2018/08/City-of-Perth-logo-400x180.jpg
43.250.142.76200 OK 0 B URL HTTP/2 wz.net.au/wp-content/uploads/2018/08/City-of-Perth-logo-400x180.jpg
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
GET /wp-content/uploads/2018/08/City-of-Perth-logo-400x180.jpg HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: image/jpeg
last-modified: Tue, 28 Aug 2018 01:36:50 GMT
accept-ranges: bytes
content-length: 10094
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/font-awesome/4.2.0/css/font-awesome.min.css
104.18.11.207200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/font-awesome/4.2.0/css/font-awesome.min.css
IP 104.18.11.207:0
GET /font-awesome/4.2.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Dec 2022 11:02:26 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 601, 718, 718
last-modified: Mon, 25 Jan 2021 22:04:53 GMT
cdn-cachedat: 2021-04-23 05:21:01
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 247af5253dedb1b0bd0d1e5b53c5e898
cdn-cache: HIT
cf-cache-status: HIT
age: 18002849
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 772b549e08bab509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/isotope.js?ver=3.0.4
43.250.142.76200 OK 0 B URL HTTP/2 wz.net.au/wp-content/themes/workzone/includes/lib/assets/min/js/library/isotope.js?ver=3.0.4
IP 43.250.142.76:0
ASN #45638 SYNERGY WHOLESALE PTY LTD
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/workzone/includes/lib/assets/min/js/library/isotope.js?ver=3.0.4 HTTP/1.1
Host: wz.net.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wz.net.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 11:02:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Sep 2018 02:32:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 9506
date: Thu, 01 Dec 2022 11:02:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2