Overview

URLharrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3'
IP 162.215.212.72 (United States)
ASN#46606 UNIFIEDLAYER-AS-1
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-12-01 11:31:42 UTC
StatusLoading report..
IDS alerts0
Blocklist alert30
urlquery alerts No alerts detected
Tags None

Domain Summary (12)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 54.186.209.73
img-getpocket.cdn.mozilla.net (5) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
fonts.gstatic.com (4) 0 2014-09-09 00:40:21 UTC 2022-12-01 04:14:51 UTC 216.58.207.227 Domain (gstatic.com) ranked at: 540
tubebendingaustralia.net (1) 0 2016-10-23 12:25:05 UTC 2022-11-29 03:44:21 UTC 162.215.212.72 Unknown ranking
ocsp.pki.goog (7) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.131
r3.o.lencr.org (7) 344 No data No data 23.36.77.32
ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-12-01 04:09:38 UTC 34.102.187.140
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-12-01 04:11:13 UTC 34.117.237.239
fonts.googleapis.com (2) 8877 2013-06-10 20:14:26 UTC 2022-12-01 04:19:36 UTC 142.250.74.106
harrowertubebending.com.au (47) 0 2020-05-02 17:31:59 UTC 2022-12-01 04:06:09 UTC 162.215.212.72 Unknown ranking

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-12-01 2 harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plug (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/contact-form-7/includes/css/s (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-includes/css/dist/block-library/style.min.css (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/themes/resiston/style.css?ver=2.1.4 Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/jet-elements/assets/css/jet-e (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/css/jet-blo (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/themes/kava/inc/modules/blog-layouts/ (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/jet-tricks/assets/css/jet-tri (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awe (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awe (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/elementor/assets/css/frontend (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/jet-blog/assets/css/jet-blog. (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awe (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 Malware
2022-12-01 2 harrowertubebending.com.au/wp-includes/js/dist/vendor/wp-polyfill.min.js?ve (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/contact-form-7/includes/js/in (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/themes/kava/assets/js/theme-script.js (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-includes/js/hoverIntent.min.js?ver=1.10.2 Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/waypoint (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/elementor/assets/js/frontend. (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-bloc (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/jet-elements/assets/js/jet-el (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/jet-tricks/assets/js/lib/tipp (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/lib/jsti (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/elementor/assets/js/webpack.r (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awe (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awe (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/elementor/assets/js/text-edit (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/kava-extra/assets/fonts/nucle (...) Malware

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 162.215.212.72
Date UQ / IDS / BL URL IP
2022-12-01 11:32:58 +0000 0 - 0 - 30 harrowertubebending.com.au/http:/harrowertube (...) 162.215.212.72
2022-12-01 11:32:57 +0000 0 - 0 - 30 harrowertubebending.com.au/http:/harrowertube (...) 162.215.212.72
2022-12-01 11:32:56 +0000 0 - 0 - 30 harrowertubebending.com.au/http:/harrowertube (...) 162.215.212.72
2022-12-01 11:32:56 +0000 0 - 0 - 1 harrowertubebending.com.au/wp-content/plugins (...) 162.215.212.72
2022-12-01 11:32:46 +0000 0 - 0 - 30 harrowertubebending.com.au/http:/harrowertube (...) 162.215.212.72


Last 5 reports on ASN: UNIFIEDLAYER-AS-1
Date UQ / IDS / BL URL IP
2023-01-29 11:28:50 +0000 0 - 2 - 3 mysouthbay.com/wp-content/uploads/2021/neww.exe 50.87.248.26
2023-01-29 11:28:48 +0000 0 - 3 - 3 mysouthbay.com/wp-content/uploads/2020/sup.exe 50.87.248.26
2023-01-29 11:28:48 +0000 0 - 2 - 3 mysouthbay.com/wp-content/uploads/supsss.exe 50.87.248.26
2023-01-29 11:28:27 +0000 0 - 1 - 3 mysouthbay.com/jook.exe 50.87.248.26
2023-01-29 11:28:22 +0000 0 - 2 - 3 mysouthbay.com/wp-content/uploads/2021/08/jokk.exe 50.87.248.26


Last 5 reports on domain: harrowertubebending.com.au
Date UQ / IDS / BL URL IP
2022-12-01 11:32:58 +0000 0 - 0 - 30 harrowertubebending.com.au/http:/harrowertube (...) 162.215.212.72
2022-12-01 11:32:57 +0000 0 - 0 - 30 harrowertubebending.com.au/http:/harrowertube (...) 162.215.212.72
2022-12-01 11:32:56 +0000 0 - 0 - 30 harrowertubebending.com.au/http:/harrowertube (...) 162.215.212.72
2022-12-01 11:32:56 +0000 0 - 0 - 1 harrowertubebending.com.au/wp-content/plugins (...) 162.215.212.72
2022-12-01 11:32:46 +0000 0 - 0 - 30 harrowertubebending.com.au/http:/harrowertube (...) 162.215.212.72


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2022-12-01 11:32:58 +0000 0 - 0 - 30 harrowertubebending.com.au/http:/harrowertube (...) 162.215.212.72
2022-12-01 11:32:56 +0000 0 - 0 - 30 harrowertubebending.com.au/http:/harrowertube (...) 162.215.212.72
2022-12-01 11:32:46 +0000 0 - 0 - 30 harrowertubebending.com.au/http:/harrowertube (...) 162.215.212.72
2022-12-01 11:32:38 +0000 0 - 0 - 30 harrowertubebending.com.au/http:/harrowertube (...) 162.215.212.72
2022-12-01 11:32:33 +0000 0 - 0 - 29 harrowertubebending.com.au/http:/harrowertube (...) 162.215.212.72

JavaScript

Executed Scripts (29)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (80)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4805
Expires: Thu, 01 Dec 2022 12:51:36 GMT
Date: Thu, 01 Dec 2022 11:31:31 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7782
Expires: Thu, 01 Dec 2022 13:41:13 GMT
Date: Thu, 01 Dec 2022 11:31:31 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6585
Cache-Control: max-age=89373
Date: Thu, 01 Dec 2022 11:31:31 GMT
Etag: "638730f7-1d7"
Expires: Fri, 02 Dec 2022 12:21:04 GMT
Last-Modified: Wed, 30 Nov 2022 10:31:19 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: iIut6mQGamBbDCZOuhDsO1lHJSn+qjfW5dgKrPzrYChiQMBQMEQZy7G3Pt1MOUGH7Wjd7/KdVxA=
x-amz-request-id: 36RH4CKGNH7VVK1P
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 10:45:38 GMT
age: 2753
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 01 Dec 2022 11:19:46 GMT
cache-control: public,max-age=3600
age: 705
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    14cd9a0afb6ba9a763651d5112760d1e
Sha1:   75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
Sha256: 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 01 Dec 2022 11:31:31 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 01 Dec 2022 11:08:56 GMT
cache-control: public,max-age=3600
age: 1355
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6558
Cache-Control: max-age=170676
Date: Thu, 01 Dec 2022 11:31:31 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 10:56:07 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: PRhNaPq0wNwZUB6RLQxzQA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         54.186.209.73
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: V5ynnqqP5QJsvGLZyb58WKKw7pg=

                                        
                                            GET /css?family=Lato%3A300%2C400%2C700%2C500%2C900&subset=latin&ver=6.0.3 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/

search
                                         142.250.74.106
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Thu, 01 Dec 2022 11:31:32 GMT
Date: Thu, 01 Dec 2022 11:31:32 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  ASCII text
Size:   402
Md5:    d8f5b9b9910d14271f5f044ecfb0e221
Sha1:   661576a41ec2ac73de9e21009cf43350efdbd2d3
Sha256: f7e5390dbc937dda86e4b922a08372e461f566d6da76f9b0e4d7c916b242c21f
                                        
                                            GET /http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         162.215.212.72
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 01 Dec 2022 11:31:31 GMT
Server: Apache
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://harrowertubebending.com.au/wp-json/>; rel="https://api.w.org/"
Set-Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f; path=/
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=100
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32851)
Size:   182643
Md5:    8e6a428e64c93bf3d0be040acdbbe553
Sha1:   a4a7988546c1ea0f62426bbdd59bc97c50398da7
Sha256: c26ea28a7fee8c3107a5b19aead9dd9d6af3c983427148e960acb68ebf017e0e

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:32 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 07 Jul 2022 16:42:46 GMT
Accept-Ranges: bytes
Content-Length: 2731
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:32 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=100


--- Additional Info ---
Magic:  ASCII text
Size:   2731
Md5:    e6fae855021a88a0067fcc58121c594f
Sha1:   6299ac3987b5e81725781799dad361d19ac3b99d
Sha256: e50f9ccd2d6582a58ba1879fa578e60d25fea4c5eedc07deafd14482b2403181

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:32 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 13 Jul 2022 07:28:55 GMT
Accept-Ranges: bytes
Content-Length: 88932
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:32 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=100


--- Additional Info ---
Magic:  ASCII text, with very long lines (43771)
Size:   88932
Md5:    b7915926fe42d76e9c802353ab01dae4
Sha1:   3a8192a4312f25f53de25b100d62829c0f14d67c
Sha256: d7705700d24d5919255576642ad2c28bfc790390b7183a369038ff5c1e814d51

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:32 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 09 Jun 2022 12:06:43 GMT
Accept-Ranges: bytes
Content-Length: 20898
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:32 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=100


--- Additional Info ---
Magic:  ASCII text, with very long lines (15660)
Size:   20898
Md5:    68ec75d3ee6a3ad63a4f340cc7090af6
Sha1:   8f498472efd97fe5fa4926cd2a5077e8a73f6323
Sha256: ce8c955ce08680fc8586b9634101ea05e998e0591bd08b8fea21b89c2b69c959
                                        
                                            GET /wp-content/themes/resiston/style.css?ver=2.1.4 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:32 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:17:37 GMT
Accept-Ranges: bytes
Content-Length: 2329
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:32 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   2329
Md5:    ef0fc05649be0aa8d2fa67ef97a395cb
Sha1:   10b26bda909cc980b4bc7f76ac26e639aeaf8476
Sha256: bf76749ca8a0efedf7ee6f51ca8ad8bbe56bf0bb286249565690653d20937db8

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:32 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 07 Jul 2022 16:42:48 GMT
Accept-Ranges: bytes
Content-Length: 30999
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:32 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=100


--- Additional Info ---
Magic:  ASCII text, with very long lines (30837)
Size:   30999
Md5:    008e0bb5ebfa7bc298a042f95944df25
Sha1:   93897ebc560b38a1d2bff43c22dd6a3b7ee90c0c
Sha256: c4047043368afb4baf1aed25d358a5c2a333842a3b436b58491ab36aeee65b9d
                                        
                                            GET /wp-content/themes/kava/style.css?ver=2.1.4 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:32 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 09 Jun 2022 12:25:51 GMT
Accept-Ranges: bytes
Content-Length: 27290
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:32 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=100


--- Additional Info ---
Magic:  ASCII text, with very long lines (698)
Size:   27290
Md5:    ec746b2bd5200f39afcf6980319e9817
Sha1:   9d07f011897643e7b372c46a6f4eb10009ae1966
Sha256: 4ff9d3868d95837b57fe139ebe0700e44ff8998c11a654f822998fa3fe8cc72a
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 11:31:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 11:31:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/jet-elements/assets/css/jet-elements-skin.css?ver=2.6.6 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:32 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:19:21 GMT
Accept-Ranges: bytes
Content-Length: 17676
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:32 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (17675)
Size:   17676
Md5:    415f0e06dc410ccd9ab9c9bab1e32aac
Sha1:   bcb97fc3783858044154fe6ab0a8afdc7c8a83fd
Sha256: fbfdff12840077769fe2cba43fd6d052bcaf9e0b284d7e78af95a90f8d6668a6

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:32 GMT
Server: Apache
Last-Modified: Thu, 07 Jul 2022 16:42:48 GMT
Accept-Ranges: bytes
Content-Length: 19128
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:32 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (19082)
Size:   19128
Md5:    50be31853049e4b4a10c277d5f95eb75
Sha1:   ac2dffc0c65ad6b209fedf2169d0c50eb4119a3e
Sha256: b651d87ef113cba0c8ec8a33bfdb694171effeba56b20be12e3c77fc15f6ae9f
                                        
                                            GET /wp-content/plugins/jet-blocks/assets/css/jet-blocks.css?ver=1.3.2 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:32 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:19:18 GMT
Accept-Ranges: bytes
Content-Length: 41373
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:32 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (41372)
Size:   41373
Md5:    0e989587d4648cce36df1bb243bd6475
Sha1:   6c99baa8f22b2960e2d38c97b577a998ba68e250
Sha256: 21e1fcdc26aed17a6b604eba06cd30b04f5033d3b9288225286ff2ee420f780a

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/kava/inc/modules/blog-layouts/assets/css/blog-layouts-module.css?ver=2.1.4 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:32 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:25:51 GMT
Accept-Ranges: bytes
Content-Length: 150297
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:32 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   150297
Md5:    6722ab5a177aeca4b8ff0a562bdece3b
Sha1:   75d3e031059be433c59545b0912ab31dc390095f
Sha256: 09452003e7cbac391a1504c9d3a7bc82f386897e829201d1745ff17799bc6090

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/kava/theme.css?ver=2.1.4 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:32 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:25:51 GMT
Accept-Ranges: bytes
Content-Length: 71938
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:32 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   71938
Md5:    6a09e9c2af2b3d03ebc7a1b055cac7cf
Sha1:   fd0c01f5a6096677cec3f73d76b8dae1a184fa01
Sha256: 57cc184151c94e026fa6782280d2375068081bb88bf550a17690f0e7c5a5a102
                                        
                                            GET /wp-content/plugins/jet-elements/assets/css/jet-elements.css?ver=2.6.6 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:32 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:19:21 GMT
Accept-Ranges: bytes
Content-Length: 232991
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:32 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   232991
Md5:    634d102985cc9a25656a9035788c7f66
Sha1:   bd37e0bf8851ce48a9c9a343d426ddeb88af7e24
Sha256: 41b6b7438bc8f7c422767ef964d215e1f57483991bb0704dd927d23685332f0c
                                        
                                            GET /wp-content/uploads/2020/03/harrower-ico-400-300x148.png HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://harrowertubebending.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.215.212.72
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Fri, 17 Jun 2022 11:39:13 GMT
accept-ranges: bytes
content-length: 7088
cache-control: max-age=86400
expires: Fri, 02 Dec 2022 11:31:33 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
date: Thu, 01 Dec 2022 11:31:33 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 300 x 148, 8-bit gray+alpha, non-interlaced\012- data
Size:   7088
Md5:    5959011bd694c40307076bd3456f3262
Sha1:   0ab5bedad037196b4cf1e0819a947dbff81d9ad7
Sha256: d32e048f7e4131ebe95a967a41d8539cb7174d0803d2b8ffdf24ce995fc99e8c
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7232
Expires: Thu, 01 Dec 2022 13:32:05 GMT
Date: Thu, 01 Dec 2022 11:31:33 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7232
Expires: Thu, 01 Dec 2022 13:32:05 GMT
Date: Thu, 01 Dec 2022 11:31:33 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7232
Expires: Thu, 01 Dec 2022 13:32:05 GMT
Date: Thu, 01 Dec 2022 11:31:33 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7232
Expires: Thu, 01 Dec 2022 13:32:05 GMT
Date: Thu, 01 Dec 2022 11:31:33 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7232
Expires: Thu, 01 Dec 2022 13:32:05 GMT
Date: Thu, 01 Dec 2022 11:31:33 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc2c1d47-fc4a-4f23-a6f7-5ac8f3a68490.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12035
x-amzn-requestid: eef7d417-c6ca-4e3f-ac00-1425f3d5c4a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb0TSGHDIAMF_jA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cdae-467c79a805dfb5622687f628;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:39:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: haFJ2LZecbT4HRbkvcaZxR4SAIx5cGxNyghKiDOJVX6xDkPwzc2wNQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:45:34 GMT
age: 49559
etag: "cd016e6c0bf5c6eef06e933c9a5257ff4fca9bc1"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12035
Md5:    acffcb88ce68b2d70c9c046a7b5a4aa8
Sha1:   cd016e6c0bf5c6eef06e933c9a5257ff4fca9bc1
Sha256: 692d782ac1d812de6dadbcfe46034b6b5d8bbd586e56beedd96dc4d65445dd4c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 16038
x-amzn-requestid: 9d34c42b-ba0c-498f-8f99-d4ab527ffa89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbzMdHXNIAMFgaw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cbe9-376846f31dc9b995797cbd18;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:32:25 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: DngCuOTO9fQAwWe_ip6EtBcgruigZN6Bl1_v5BHM2dsWlhqCXCL3gg==
via: 1.1 efcf7b9d0f917f9ebf314db03e52d9b6.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:45:33 GMT
age: 49560
etag: "5cf9a7a784952e1bb0cbe499104f1774b1269d08"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   16038
Md5:    ffd12f9c423ffc627d9e3b3145944fe4
Sha1:   5cf9a7a784952e1bb0cbe499104f1774b1269d08
Sha256: a25f1b752d9af599aefd73073c105853130f1759905269de3d582d2eb35fe167
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8740
x-amzn-requestid: 4823cf63-98eb-40d3-bb8b-e09cd2262f36
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7SqHjYIAMF8xw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830c10-316b213c33ce9bc2355c0900;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:04:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tK4wl-g5kcUhVFE3iZGILhZhZSsaMzQD9JTBHj1JXV95yXs_e3gMGw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 13:21:34 GMT
age: 79799
etag: "2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8740
Md5:    26d6dffbf400da4803a2e76e2a8ef2f8
Sha1:   2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8
Sha256: 04c6e31623fe48cbe83dc91635bfa47b337590f18919995b08d5bde27e929e03
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9674
x-amzn-requestid: 7e7d0183-9667-462a-8d44-d125998c1ae3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgEoHVAoAMFvAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a1d-280ba97e3fe1bf7244cbde35;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qftF-GQkcjKTs30KMGCTDymw2SVSXeAYKGNWUnaMfvIb8HjtfHUx8A==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:44:47 GMT
age: 49606
etag: "53650399f9a986ba54addd668b4557109d12003b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9674
Md5:    5508d05a290b663fd89ead9b58f2efd8
Sha1:   53650399f9a986ba54addd668b4557109d12003b
Sha256: 65704a961410fdd318c491fedf002c8e9b184cd34b76fe1b67026d42ce21be3f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CJiSRzIK7-rQE81gaP2We0LhgKX1YmuJKEGYEqW34Bm1KMx6NB8yhQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 04:29:19 GMT
age: 25334
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4803
Md5:    cc0a257323f882caff067adb86d906e4
Sha1:   cedf2f21be7cd366bd46055b62b5513db3011dfc
Sha256: c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
                                        
                                            GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CLato%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://harrowertubebending.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.106
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 11:31:32 GMT
date: Thu, 01 Dec 2022 11:31:32 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   14672
Md5:    3ebe7db2fe36ff4ecebfa8c588518118
Sha1:   ada5a9125940f8c6ebf5d0c9eaa2ee816638a75e
Sha256: 02b0e381c378b67ec8192fe759c68ab9b819eebd51883d45e8712ad7f0f0f5ee
                                        
                                            GET /wp-content/plugins/jet-tricks/assets/css/jet-tricks-frontend.css?ver=1.4.1 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:33 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:19:26 GMT
Accept-Ranges: bytes
Content-Length: 26811
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:33 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (26810)
Size:   26811
Md5:    89adfb44f4606706a1bf0c3e04e01fa1
Sha1:   ea422d246e92e9b22388097f125659a16dbb2619
Sha256: 82502320dcd4288fa372fbf229c477722ca2b5869d077d609b349464d7581192

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/kava-extra/assets/fonts/nucleo-outline-icon-font/nucleo-outline.css?ver=1.0.0 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:33 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:19:17 GMT
Accept-Ranges: bytes
Content-Length: 137380
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:33 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   137380
Md5:    a97d8140a7627c9cdd59fee34b4d140f
Sha1:   46dac263070bae87b10d78e68f57ca2c6e5ec0b2
Sha256: 7adf941596cb83fc892f21ebf6cc076e85606cfe4b4648a089a326e8cfa8953a
                                        
                                            GET /wp-content/uploads/2020/03/harrower-logo-200.png HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://harrowertubebending.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.215.212.72
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Fri, 17 Jun 2022 11:42:41 GMT
accept-ranges: bytes
content-length: 5130
cache-control: max-age=86400
expires: Fri, 02 Dec 2022 11:31:33 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
date: Thu, 01 Dec 2022 11:31:33 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 200 x 99, 8-bit/color RGBA, non-interlaced\012- data
Size:   5130
Md5:    334e544cb0105017ab5f33826680e6dc
Sha1:   01dc37037ed8a2589a3f6cf425b1de2b7e5ec8cc
Sha256: 9e376ea39f3c2f526c87e96f5a2782e0fb176c42c9019b0557cda64c2a52f8c5
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:33 GMT
Server: Apache
Last-Modified: Thu, 07 Jul 2022 16:42:48 GMT
Accept-Ranges: bytes
Content-Length: 57912
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:33 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (57726)
Size:   57912
Md5:    eeb705d0bdccfd645d3bbd46dd1fbab3
Sha1:   066def290f42ed8c00860e573cc880bd46e9ced4
Sha256: d01a2ba2805c78957e15a2958135de0f3cb88e95159dd0f6c0a032bd76b1b0e9

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:33 GMT
Server: Apache
Last-Modified: Thu, 07 Jul 2022 16:42:48 GMT
Accept-Ranges: bytes
Content-Length: 669
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:33 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (483)
Size:   669
Md5:    9eb2d3c87feb6bb2ffa63b70532b1477
Sha1:   38f226335a05ab0e30497bc7419eb5e243a9e26c
Sha256: 37bab6cd583982e8eff58501a99d7c5c4d63664c1ca34f9e3b7cf526c5b73ae2

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.6.7 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:33 GMT
Server: Apache
Last-Modified: Thu, 07 Jul 2022 16:42:48 GMT
Accept-Ranges: bytes
Content-Length: 107922
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:33 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65497)
Size:   107922
Md5:    21012301e37602322d7d48c371b82ee9
Sha1:   19c42e89437be4f8fadfc33fea5a065117e173b3
Sha256: ecf785fe496796d2e4b026d58de7ea89a471d19255b06b3fefc5576db5a69dbc

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/jet-blog/assets/css/jet-blog.css?ver=2.3.0 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:33 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:25:28 GMT
Accept-Ranges: bytes
Content-Length: 117582
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:33 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   117582
Md5:    b95a8d55ffca57e4d77012cb78396490
Sha1:   a276beca2bb8f4244e90e68fda4b7fd045c77d66
Sha256: 98c2a058d4ffe5800b166b6982b6e13d369f5edf1cb43c46350edb0d52d0e067

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:33 GMT
Server: Apache
Last-Modified: Thu, 07 Jul 2022 16:42:48 GMT
Accept-Ranges: bytes
Content-Length: 677
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:33 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (491)
Size:   677
Md5:    3eef8c9e589a6fd58292e79bbac4ba5d
Sha1:   d3ebdb629b8d9c92380b14b1676b123398f0841b
Sha256: eea3d6ccda7f6503078cce9dc41176c1357af1c93a5b3625131ef7cf21c9d7c4

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:33 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:06:43 GMT
Accept-Ranges: bytes
Content-Length: 91802
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:33 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65447)
Size:   91802
Md5:    81e65728dafe873901505ff4137abb23
Sha1:   9f6d5806f4e5a48c7801e160de170873206144da
Sha256: 099ebf47f5ffb18fe9a1985a45d9b6e5137c978cebd2151747880e9c1ae08c32
                                        
                                            GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:33 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:06:40 GMT
Accept-Ranges: bytes
Content-Length: 8756
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:33 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (8756), with no line terminators
Size:   8756
Md5:    a4cbad6901b444a0ed2a49362c14409a
Sha1:   a5349d0b4422e232c470a4feb5319aa19f0a0c67
Sha256: d6310c0fb0f6f78d6a3b4cc29aa17eca3ca9727b00775b24b45a8a0cd2998429
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:33 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:06:43 GMT
Accept-Ranges: bytes
Content-Length: 13505
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:33 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (11126)
Size:   13505
Md5:    696abf6f00deeee2bdc601c3f8c548cc
Sha1:   f61f8e0002831d1ce518c5fa0fdf7847a8740a59
Sha256: 93fc6d3699b4fa210fa8d169e212b2ce5877d62a665db5d0c0aae7b1509a55b8

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:33 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:06:40 GMT
Accept-Ranges: bytes
Content-Length: 21423
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:33 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (21419), with no line terminators
Size:   21423
Md5:    88f95257a7e247a8fcc576dc29becabc
Sha1:   47f9da11b58cfd6edfd12b641fc4034c99602809
Sha256: 92b7bc9f221a594577d344fa436f9f886a360d8635ffcbe4f1bad1d1a699f36a

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:33 GMT
Server: Apache
Last-Modified: Thu, 07 Jul 2022 16:42:46 GMT
Accept-Ranges: bytes
Content-Length: 21821
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:33 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (21821), with no line terminators
Size:   21821
Md5:    3f97a68905d330bde2987f0e70052cb2
Sha1:   9c48e323c34652828c3b5bcf4251fc4edd8a7038
Sha256: 7abd36a2f651330420d86187c125331d679408d1be7b6cd93efa64e08eaf80c7

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/kava/assets/js/theme-script.js?ver=2.1.4 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:33 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:25:51 GMT
Accept-Ranges: bytes
Content-Length: 7627
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:33 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (2281)
Size:   7627
Md5:    61b68ba7c492778da19d97d67b625151
Sha1:   bd5b543e4c84bd92c522e2b1f3dfdfcd57645e96
Sha256: aabd0e08ab93ae09d93113556b8459c24c6b16119dc4f7c35859485744fd7428

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 11:31:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 11:31:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 11:31:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 11:31:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://harrowertubebending.com.au
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         216.58.207.227
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 12:29:22 GMT
expires: Fri, 24 Nov 2023 12:29:22 GMT
cache-control: public, max-age=31536000
age: 601331
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Size:   23040
Md5:    de69cf9e514df447d1b0bb16f49d2457
Sha1:   2ac78601179c3a63ba3f3f3081556b12ddcaf655
Sha256: c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
                                        
                                            GET /s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://harrowertubebending.com.au
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         216.58.207.227
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 17:11:14 GMT
expires: Wed, 29 Nov 2023 17:11:14 GMT
cache-control: public, max-age=31536000
age: 152419
last-modified: Tue, 26 Apr 2022 16:04:12 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23236, version 1.0\012- data
Size:   23236
Md5:    716309aab2bca045f9627f63ad79d0bf
Sha1:   38804233a29aaf975d557fe14e762c627bef76e0
Sha256: 115f6a626ca115d4ad5581b59275327e0e860b30330a52b0f785561332dd2429
                                        
                                            GET /s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://harrowertubebending.com.au
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         216.58.207.227
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22504
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 17:14:55 GMT
expires: Wed, 29 Nov 2023 17:14:55 GMT
cache-control: public, max-age=31536000
age: 152198
last-modified: Tue, 26 Apr 2022 16:04:16 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 22504, version 1.0\012- data
Size:   22504
Md5:    1c6c65523675abc6fcd78e804325bd77
Sha1:   898d9808304dc157f5dcb18ca169ec6e2b96b3d7
Sha256: 08664859baab5ed98f0bf818ed77e38464ff1826dc6406d5ecbd651409afbd92
                                        
                                            GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://harrowertubebending.com.au
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         216.58.207.227
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 17:11:08 GMT
expires: Wed, 29 Nov 2023 17:11:08 GMT
cache-control: public, max-age=31536000
age: 152425
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Size:   23580
Md5:    e1b3b5908c9cf23dfb2b9c52b9a023ab
Sha1:   fcd4136085f2a03481d9958cc6793a5ed98e714c
Sha256: 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
                                        
                                            GET /wp-includes/js/hoverIntent.min.js?ver=1.10.2 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:33 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:06:43 GMT
Accept-Ranges: bytes
Content-Length: 3780
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:33 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (3745)
Size:   3780
Md5:    fe5fecd21ed5e334e8be8ec4115c6824
Sha1:   9ff3fc2209c5c22fe4208b209bf199727fd574aa
Sha256: 73d79d6790e591cfc10f6efba4d6b8f96ae6cc84283a60da60285794ecd2b554

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 11:31:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.6.7 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:33 GMT
Server: Apache
Last-Modified: Thu, 07 Jul 2022 16:42:48 GMT
Accept-Ranges: bytes
Content-Length: 14487
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:33 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (14448)
Size:   14487
Md5:    f7a9fe2494d4fb5b559215de44f8932d
Sha1:   e6f2314d6d1300035cccb8a21d91109b1b98db37
Sha256: 133f35fbfc23c0d8cf814176860427bd6a02da9278de3de662da11d9602d8582
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:33 GMT
Server: Apache
Last-Modified: Thu, 07 Jul 2022 16:42:48 GMT
Accept-Ranges: bytes
Content-Length: 12198
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:33 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (12198), with no line terminators
Size:   12198
Md5:    3819c3569da71daec283a75483735f7e
Sha1:   ecd40a5cc6f0b76200c454ca880210dc301cfab8
Sha256: 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:33 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:06:43 GMT
Accept-Ranges: bytes
Content-Length: 22996
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:33 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (10470)
Size:   22996
Md5:    a977e28d4628ec6de2a690f6ce21cf1b
Sha1:   a06a125bfcac94b406add81e20210d2ed96ea6e5
Sha256: 613d9c80d461cddb53bbf25da9ff84740072c23671e4df76c13bd6d4ac19d2bd

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.6.7 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:33 GMT
Server: Apache
Last-Modified: Thu, 07 Jul 2022 16:42:48 GMT
Accept-Ranges: bytes
Content-Length: 37959
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:33 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (37920)
Size:   37959
Md5:    6f35d3750be3979cdba82cf143093f9b
Sha1:   5d19dc6041e5c24b5ef205e28f9f607bfa9a03aa
Sha256: e0f0d6d71e313ae3ee40517ae4df4806d42aacf7720c5c0220506c247796c4f7

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:33 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:19:18 GMT
Accept-Ranges: bytes
Content-Length: 17985
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:33 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (17985), with no line terminators
Size:   17985
Md5:    93d8cc081d5d8c9299b9367c5a7b432e
Sha1:   6213c44d05dfb87e61140e9ae73e89500ee4303b
Sha256: aea17d1ca3a28440793507f6be0607ac3e57ec73db5b42a31f734f10fe2d17f3

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/jet-elements/assets/js/jet-elements.min.js?ver=2.6.6 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:33 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:19:21 GMT
Accept-Ranges: bytes
Content-Length: 74544
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:33 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   74544
Md5:    da0ad4c4f4e29281afdee170f1ddbe17
Sha1:   80327f826d69478f9b02f13bf545c0df123c6cee
Sha256: 178ba66d448e283e40d345c520852fdceb0d0a6a19031c50923705915512026f

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/jet-tricks/assets/js/lib/tippy/popperjs.js?ver=2.5.2 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:33 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:19:26 GMT
Accept-Ranges: bytes
Content-Length: 20835
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:33 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (20787)
Size:   20835
Md5:    8a601c9010c4fb8cd7d74143fec96033
Sha1:   47cd88bf8bff11223c80316f02a556fd0d77301d
Sha256: c743c61ce188cebe5c28315cb12727a353df541e4d87abf9a3b53613e21d587a

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/jet-tricks/assets/js/jet-tricks-frontend.js?ver=1.4.1 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:34 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:19:26 GMT
Accept-Ranges: bytes
Content-Length: 28455
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:34 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (2281)
Size:   28455
Md5:    b8f6655ede2fc7dac864410d09b808c5
Sha1:   a514b43efac209c3be79b84b54455ee5e0466f11
Sha256: f083488f57697e99e7df46d6e884c6502f1eb56d8b65ef3dcc96db66c76f289e
                                        
                                            GET /wp-content/plugins/jet-blog/assets/js/jet-blog.min.js?ver=2.3.0 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:34 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:25:28 GMT
Accept-Ranges: bytes
Content-Length: 13818
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:34 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (13818), with no line terminators
Size:   13818
Md5:    a3bb605489d9125a77a655b309740e85
Sha1:   4bc54f3f70a54a6cbab26f8cfe5e784b4e6011de
Sha256: 048a8a51c60f8e67ed4f8b75ac6ba160ef6a65e18821e528a53de2334d938314
                                        
                                            GET /wp-content/plugins/jet-blocks/assets/js/lib/jsticky/jquery.jsticky.min.js?ver=1.1.0 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:33 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:19:18 GMT
Accept-Ranges: bytes
Content-Length: 3563
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:33 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (3563), with no line terminators
Size:   3563
Md5:    ff861208867d4e9e0b482ea99a2ba49d
Sha1:   d9f619c1aecd3baf2f37d7780f845b0af9c51ddd
Sha256: 425f3247def17f69ca20e9aa3f4625983c81fa1c89888286684a4fc37df4a569

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.6.7 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:33 GMT
Server: Apache
Last-Modified: Thu, 07 Jul 2022 16:42:48 GMT
Accept-Ranges: bytes
Content-Length: 4957
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:33 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (4918)
Size:   4957
Md5:    0981243ad04e7bfb26ef9d4b6070f08e
Sha1:   e89726f738b980c5dcd7cd805011e217e46c2a8c
Sha256: e31e1cfb470365c46c451ae94f3a5f9bac9df96a0f403f044f851228a5bf1667

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/jet-tricks/assets/js/lib/tippy/tippy-bundle.js?ver=6.3.1 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:34 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:19:26 GMT
Accept-Ranges: bytes
Content-Length: 80258
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:34 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (1407)
Size:   80258
Md5:    827f09193b347e958a90b0b12b111d7f
Sha1:   ba0c53906faf7ddc44d1fc164fc447f6d1a5433d
Sha256: f1b235e58e646130778e0a4657eccefc4fbc0559529927f6e1a6c082733dcc00
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Date: Thu, 01 Dec 2022 11:31:34 GMT
Server: Apache
Last-Modified: Thu, 07 Jul 2022 16:42:48 GMT
Accept-Ranges: bytes
Content-Length: 78196
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:34 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Size:   78196
Md5:    e8a427e15cc502bef99cfd722b37ea98
Sha1:   a9922842a120a7f1eaced667480c5e185a106d69
Sha256: d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Date: Thu, 01 Dec 2022 11:31:34 GMT
Server: Apache
Last-Modified: Thu, 07 Jul 2022 16:42:48 GMT
Accept-Ranges: bytes
Content-Length: 13276
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:34 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 13276, version 331.-31261\012- data
Size:   13276
Md5:    f0f8230116992e521526097a28f54066
Sha1:   0447c6b10bbf73f97b23dcfd6e6a48510822cb6e
Sha256: 8afc6e5e842baab16010c2ce6fcf48ec4ded8e1579a37c1f1bc027e120d04951

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3%27
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:34 GMT
Server: Apache
Last-Modified: Thu, 07 Jul 2022 16:42:48 GMT
Accept-Ranges: bytes
Content-Length: 1359
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:34 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1320)
Size:   1359
Md5:    76074a08fd420db4ef93c929df914bb1
Sha1:   8921f1a99d74000a1c16020fbfe59e1241f3bed5
Sha256: becb1689ce3b273ee217029babc33ff91c90f592bd0cc0ccf1c0a9e7389cfaa2

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/kava-extra/assets/fonts/nucleo-outline-icon-font/fonts/nucleo-outline.woff2 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://harrowertubebending.com.au/wp-content/plugins/kava-extra/assets/fonts/nucleo-outline-icon-font/nucleo-outline.css?ver=1.0.0
Cookie: PHPSESSID=959cc39bda8882d44e3926243e42993f

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Date: Thu, 01 Dec 2022 11:31:34 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:19:17 GMT
Accept-Ranges: bytes
Content-Length: 178396
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:34 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 178396, version 1.0\012- data
Size:   178396
Md5:    ca1c5affe491d9fbbe575bd49b18c750
Sha1:   ad112d005f2aacdfa51fcf95504128659a9df31c
Sha256: e9b0b32e777acd9ca1cd87748da0bd7e1c3751237f5f63657080f817934eb1f0

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/uploads/2022/06/cropped-harrower-ico-750-32x32.png HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://harrowertubebending.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.215.212.72
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Fri, 17 Jun 2022 08:52:07 GMT
accept-ranges: bytes
content-length: 1051
cache-control: max-age=86400
expires: Fri, 02 Dec 2022 11:31:35 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
date: Thu, 01 Dec 2022 11:31:35 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 32 x 32, 8-bit gray+alpha, non-interlaced\012- data
Size:   1051
Md5:    f96818ff3b1b1ea599e38710227f9ccb
Sha1:   c0f280bbf4862620c7e5bd7977d94449e88823ab
Sha256: c41aa513c08edf3c2b08d3c6cfbf76af9f5c2e82531329828f092c58d27bcee2
                                        
                                            GET /wp-content/uploads/2022/06/cropped-harrower-ico-750-192x192.png HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://harrowertubebending.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.215.212.72
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Fri, 17 Jun 2022 08:52:07 GMT
accept-ranges: bytes
content-length: 6398
cache-control: max-age=86400
expires: Fri, 02 Dec 2022 11:31:35 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
date: Thu, 01 Dec 2022 11:31:35 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 192 x 192, 8-bit gray+alpha, non-interlaced\012- data
Size:   6398
Md5:    0c015591c93cccabae2e540057cd0753
Sha1:   e1bcebd129dfdad97825d56372628b1c5e6ed288
Sha256: d0bdb15d5c135655b51fd32f27ce71acb260c96699c989355962de61dead2432
                                        
                                            GET /2022/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css HTTP/1.1 
Host: tubebendingaustralia.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://harrowertubebending.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.215.212.72
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
pragma: no-cache
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://harrowertubebending.com.au/wp-json/>; rel="https://api.w.org/"
set-cookie: PHPSESSID=741e830de96f338c48630bd6703a0537; path=/
x-endurance-cache-level: 2
x-nginx-cache: WordPress
date: Thu, 01 Dec 2022 11:31:33 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---