Overview

URLharrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2'
IP 162.215.212.72 (United States)
ASN#46606 UNIFIEDLAYER-AS-1
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-12-01 11:32:04 UTC
StatusLoading report..
IDS alerts0
Blocklist alert30
urlquery alerts No alerts detected
Tags None

Domain Summary (12)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
r3.o.lencr.org (4) 344 No data No data 23.36.76.226
ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-12-01 04:09:38 UTC 34.102.187.140
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-12-01 04:11:13 UTC 34.117.237.239
fonts.googleapis.com (2) 8877 2013-06-10 20:14:26 UTC 2022-12-01 04:19:36 UTC 142.250.74.106
harrowertubebending.com.au (47) 0 2020-05-02 17:31:59 UTC 2022-12-01 04:06:09 UTC 162.215.212.72 Unknown ranking
tubebendingaustralia.net (1) 0 2016-10-23 12:25:05 UTC 2022-11-29 03:44:21 UTC 162.215.212.72 Unknown ranking
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 54.149.203.40
ocsp.pki.goog (6) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.131
fonts.gstatic.com (4) 0 2014-09-09 00:40:21 UTC 2022-12-01 04:14:51 UTC 216.58.207.227 Domain (gstatic.com) ranked at: 540
img-getpocket.cdn.mozilla.net (6) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-12-01 2 harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plug (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/contact-form-7/includes/css/s (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-includes/css/dist/block-library/style.min.css (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/themes/resiston/style.css?ver=2.1.4 Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/jet-elements/assets/css/jet-e (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/css/jet-blo (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/themes/kava/inc/modules/blog-layouts/ (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/jet-tricks/assets/css/jet-tri (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awe (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awe (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/elementor/assets/css/frontend (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/jet-blog/assets/css/jet-blog. (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awe (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 Malware
2022-12-01 2 harrowertubebending.com.au/wp-includes/js/dist/vendor/wp-polyfill.min.js?ve (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/contact-form-7/includes/js/in (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/themes/kava/assets/js/theme-script.js (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/lib/jsti (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-includes/js/hoverIntent.min.js?ver=1.10.2 Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/elementor/assets/js/webpack.r (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/waypoint (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/elementor/assets/js/frontend. (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-bloc (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/jet-elements/assets/js/jet-el (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/jet-tricks/assets/js/lib/tipp (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awe (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/elementor/assets/js/text-edit (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awe (...) Malware
2022-12-01 2 harrowertubebending.com.au/wp-content/plugins/kava-extra/assets/fonts/nucle (...) Malware

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 162.215.212.72
Date UQ / IDS / BL URL IP
2022-12-01 11:32:58 +0000 0 - 0 - 30 harrowertubebending.com.au/http:/harrowertube (...) 162.215.212.72
2022-12-01 11:32:57 +0000 0 - 0 - 30 harrowertubebending.com.au/http:/harrowertube (...) 162.215.212.72
2022-12-01 11:32:56 +0000 0 - 0 - 30 harrowertubebending.com.au/http:/harrowertube (...) 162.215.212.72
2022-12-01 11:32:56 +0000 0 - 0 - 1 harrowertubebending.com.au/wp-content/plugins (...) 162.215.212.72
2022-12-01 11:32:46 +0000 0 - 0 - 30 harrowertubebending.com.au/http:/harrowertube (...) 162.215.212.72


Last 5 reports on ASN: UNIFIEDLAYER-AS-1
Date UQ / IDS / BL URL IP
2023-01-30 01:55:29 +0000 0 - 0 - 0 womensdesignerhats.com/ 162.241.194.206
2023-01-30 01:55:31 +0000 0 - 0 - 1 br784.teste.website/~milhas39/voarrserv.txt 50.116.87.140
2023-01-30 01:55:06 +0000 0 - 0 - 3 itfolkstechnology.com/wp-content/download/Fil (...) 216.172.173.226
2023-01-30 01:53:21 +0000 23 - 4 - 0 bdter.tk/ATO/anti 162.240.17.225
2023-01-30 01:36:37 +0000 0 - 0 - 2 the-silver-screen.com/sammy/glowrity.com/css/ (...) 162.144.3.63


Last 5 reports on domain: harrowertubebending.com.au
Date UQ / IDS / BL URL IP
2022-12-01 11:32:58 +0000 0 - 0 - 30 harrowertubebending.com.au/http:/harrowertube (...) 162.215.212.72
2022-12-01 11:32:57 +0000 0 - 0 - 30 harrowertubebending.com.au/http:/harrowertube (...) 162.215.212.72
2022-12-01 11:32:56 +0000 0 - 0 - 30 harrowertubebending.com.au/http:/harrowertube (...) 162.215.212.72
2022-12-01 11:32:56 +0000 0 - 0 - 1 harrowertubebending.com.au/wp-content/plugins (...) 162.215.212.72
2022-12-01 11:32:46 +0000 0 - 0 - 30 harrowertubebending.com.au/http:/harrowertube (...) 162.215.212.72


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2022-12-01 11:32:58 +0000 0 - 0 - 30 harrowertubebending.com.au/http:/harrowertube (...) 162.215.212.72
2022-12-01 11:32:56 +0000 0 - 0 - 30 harrowertubebending.com.au/http:/harrowertube (...) 162.215.212.72
2022-12-01 11:32:46 +0000 0 - 0 - 30 harrowertubebending.com.au/http:/harrowertube (...) 162.215.212.72
2022-12-01 11:32:38 +0000 0 - 0 - 30 harrowertubebending.com.au/http:/harrowertube (...) 162.215.212.72
2022-12-01 11:32:33 +0000 0 - 0 - 29 harrowertubebending.com.au/http:/harrowertube (...) 162.215.212.72

JavaScript

Executed Scripts (29)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (77)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4780
Expires: Thu, 01 Dec 2022 12:51:33 GMT
Date: Thu, 01 Dec 2022 11:31:53 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6591
Cache-Control: max-age=89357
Date: Thu, 01 Dec 2022 11:31:53 GMT
Etag: "638730f7-1d7"
Expires: Fri, 02 Dec 2022 12:21:10 GMT
Last-Modified: Wed, 30 Nov 2022 10:31:19 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7757
Expires: Thu, 01 Dec 2022 13:41:10 GMT
Date: Thu, 01 Dec 2022 11:31:53 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 01 Dec 2022 11:18:08 GMT
cache-control: public,max-age=3600
age: 825
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    30db107dcf4380cef05efea409c2e6a3
Sha1:   96e6a306fbc07299aba64e5c14e2bfca35872fa9
Sha256: b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: MXHphdZr1wZesIouifnn8sLCublQDuHaJU0vt79qro9J+mXN8G/pGN5sGeXrLt6XihRr0SSDV3M=
x-amz-request-id: XTXRBPFZ4F8BYQ13
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 10:46:14 GMT
age: 2739
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 01 Dec 2022 11:31:53 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 01 Dec 2022 11:08:56 GMT
cache-control: public,max-age=3600
age: 1378
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6592
Cache-Control: max-age=170687
Date: Thu, 01 Dec 2022 11:31:54 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 10:56:41 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /css?family=Lato%3A300%2C400%2C700%2C500%2C900&subset=latin&ver=6.0.3 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/

search
                                         142.250.74.106
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Thu, 01 Dec 2022 11:31:54 GMT
Date: Thu, 01 Dec 2022 11:31:54 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  ASCII text
Size:   402
Md5:    d8f5b9b9910d14271f5f044ecfb0e221
Sha1:   661576a41ec2ac73de9e21009cf43350efdbd2d3
Sha256: f7e5390dbc937dda86e4b922a08372e461f566d6da76f9b0e4d7c916b242c21f
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: OsUIF40v4LJvRERV7LiHcA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         54.149.203.40
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: P2jvLU1oXG9ONCFvCKsPQrS6diw=

                                        
                                            GET /http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         162.215.212.72
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 01 Dec 2022 11:31:53 GMT
Server: Apache
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://harrowertubebending.com.au/wp-json/>; rel="https://api.w.org/"
Set-Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851; path=/
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=100
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32851)
Size:   182625
Md5:    09b85479c7446b26d6e412c539bc2661
Sha1:   b9c7e42e6ada83a6bec442c9e6887e4002c716f0
Sha256: 16338b60450bfe92ce654977445fc6f3b498d9950504c1b780834631ee7fa6ba

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:54 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 07 Jul 2022 16:42:46 GMT
Accept-Ranges: bytes
Content-Length: 2731
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:54 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=100


--- Additional Info ---
Magic:  ASCII text
Size:   2731
Md5:    e6fae855021a88a0067fcc58121c594f
Sha1:   6299ac3987b5e81725781799dad361d19ac3b99d
Sha256: e50f9ccd2d6582a58ba1879fa578e60d25fea4c5eedc07deafd14482b2403181

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:54 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 13 Jul 2022 07:28:55 GMT
Accept-Ranges: bytes
Content-Length: 88932
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:54 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=100


--- Additional Info ---
Magic:  ASCII text, with very long lines (43771)
Size:   88932
Md5:    b7915926fe42d76e9c802353ab01dae4
Sha1:   3a8192a4312f25f53de25b100d62829c0f14d67c
Sha256: d7705700d24d5919255576642ad2c28bfc790390b7183a369038ff5c1e814d51

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:54 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 09 Jun 2022 12:06:43 GMT
Accept-Ranges: bytes
Content-Length: 20898
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:54 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=100


--- Additional Info ---
Magic:  ASCII text, with very long lines (15660)
Size:   20898
Md5:    68ec75d3ee6a3ad63a4f340cc7090af6
Sha1:   8f498472efd97fe5fa4926cd2a5077e8a73f6323
Sha256: ce8c955ce08680fc8586b9634101ea05e998e0591bd08b8fea21b89c2b69c959
                                        
                                            GET /wp-content/themes/resiston/style.css?ver=2.1.4 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:54 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:17:37 GMT
Accept-Ranges: bytes
Content-Length: 2329
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:54 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   2329
Md5:    ef0fc05649be0aa8d2fa67ef97a395cb
Sha1:   10b26bda909cc980b4bc7f76ac26e639aeaf8476
Sha256: bf76749ca8a0efedf7ee6f51ca8ad8bbe56bf0bb286249565690653d20937db8

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:54 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 07 Jul 2022 16:42:48 GMT
Accept-Ranges: bytes
Content-Length: 30999
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:54 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=100


--- Additional Info ---
Magic:  ASCII text, with very long lines (30837)
Size:   30999
Md5:    008e0bb5ebfa7bc298a042f95944df25
Sha1:   93897ebc560b38a1d2bff43c22dd6a3b7ee90c0c
Sha256: c4047043368afb4baf1aed25d358a5c2a333842a3b436b58491ab36aeee65b9d
                                        
                                            GET /wp-content/themes/kava/style.css?ver=2.1.4 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:54 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 09 Jun 2022 12:25:51 GMT
Accept-Ranges: bytes
Content-Length: 27290
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:54 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=100


--- Additional Info ---
Magic:  ASCII text, with very long lines (698)
Size:   27290
Md5:    ec746b2bd5200f39afcf6980319e9817
Sha1:   9d07f011897643e7b372c46a6f4eb10009ae1966
Sha256: 4ff9d3868d95837b57fe139ebe0700e44ff8998c11a654f822998fa3fe8cc72a
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 11:31:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 11:31:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/jet-elements/assets/css/jet-elements-skin.css?ver=2.6.6 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:54 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:19:21 GMT
Accept-Ranges: bytes
Content-Length: 17676
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:54 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (17675)
Size:   17676
Md5:    415f0e06dc410ccd9ab9c9bab1e32aac
Sha1:   bcb97fc3783858044154fe6ab0a8afdc7c8a83fd
Sha256: fbfdff12840077769fe2cba43fd6d052bcaf9e0b284d7e78af95a90f8d6668a6

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:54 GMT
Server: Apache
Last-Modified: Thu, 07 Jul 2022 16:42:48 GMT
Accept-Ranges: bytes
Content-Length: 19128
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:54 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (19082)
Size:   19128
Md5:    50be31853049e4b4a10c277d5f95eb75
Sha1:   ac2dffc0c65ad6b209fedf2169d0c50eb4119a3e
Sha256: b651d87ef113cba0c8ec8a33bfdb694171effeba56b20be12e3c77fc15f6ae9f
                                        
                                            GET /wp-content/plugins/jet-blocks/assets/css/jet-blocks.css?ver=1.3.2 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:54 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:19:18 GMT
Accept-Ranges: bytes
Content-Length: 41373
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:54 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (41372)
Size:   41373
Md5:    0e989587d4648cce36df1bb243bd6475
Sha1:   6c99baa8f22b2960e2d38c97b577a998ba68e250
Sha256: 21e1fcdc26aed17a6b604eba06cd30b04f5033d3b9288225286ff2ee420f780a

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/kava/inc/modules/blog-layouts/assets/css/blog-layouts-module.css?ver=2.1.4 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:54 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:25:51 GMT
Accept-Ranges: bytes
Content-Length: 150297
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:54 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   150297
Md5:    6722ab5a177aeca4b8ff0a562bdece3b
Sha1:   75d3e031059be433c59545b0912ab31dc390095f
Sha256: 09452003e7cbac391a1504c9d3a7bc82f386897e829201d1745ff17799bc6090

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/jet-elements/assets/css/jet-elements.css?ver=2.6.6 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:54 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:19:21 GMT
Accept-Ranges: bytes
Content-Length: 232991
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:54 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   232991
Md5:    634d102985cc9a25656a9035788c7f66
Sha1:   bd37e0bf8851ce48a9c9a343d426ddeb88af7e24
Sha256: 41b6b7438bc8f7c422767ef964d215e1f57483991bb0704dd927d23685332f0c
                                        
                                            GET /wp-content/themes/kava/theme.css?ver=2.1.4 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:54 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:25:51 GMT
Accept-Ranges: bytes
Content-Length: 71938
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:54 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   71938
Md5:    6a09e9c2af2b3d03ebc7a1b055cac7cf
Sha1:   fd0c01f5a6096677cec3f73d76b8dae1a184fa01
Sha256: 57cc184151c94e026fa6782280d2375068081bb88bf550a17690f0e7c5a5a102
                                        
                                            GET /wp-content/uploads/2020/03/harrower-logo-200.png HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://harrowertubebending.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.215.212.72
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Fri, 17 Jun 2022 11:42:41 GMT
accept-ranges: bytes
content-length: 5130
cache-control: max-age=86400
expires: Fri, 02 Dec 2022 11:31:55 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
date: Thu, 01 Dec 2022 11:31:55 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 200 x 99, 8-bit/color RGBA, non-interlaced\012- data
Size:   5130
Md5:    334e544cb0105017ab5f33826680e6dc
Sha1:   01dc37037ed8a2589a3f6cf425b1de2b7e5ec8cc
Sha256: 9e376ea39f3c2f526c87e96f5a2782e0fb176c42c9019b0557cda64c2a52f8c5
                                        
                                            GET /wp-content/plugins/jet-tricks/assets/css/jet-tricks-frontend.css?ver=1.4.1 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:55 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:19:26 GMT
Accept-Ranges: bytes
Content-Length: 26811
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:55 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (26810)
Size:   26811
Md5:    89adfb44f4606706a1bf0c3e04e01fa1
Sha1:   ea422d246e92e9b22388097f125659a16dbb2619
Sha256: 82502320dcd4288fa372fbf229c477722ca2b5869d077d609b349464d7581192

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/uploads/2020/03/harrower-ico-400-300x148.png HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://harrowertubebending.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.215.212.72
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Fri, 17 Jun 2022 11:39:13 GMT
accept-ranges: bytes
content-length: 7088
cache-control: max-age=86400
expires: Fri, 02 Dec 2022 11:31:55 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
date: Thu, 01 Dec 2022 11:31:55 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 300 x 148, 8-bit gray+alpha, non-interlaced\012- data
Size:   7088
Md5:    5959011bd694c40307076bd3456f3262
Sha1:   0ab5bedad037196b4cf1e0819a947dbff81d9ad7
Sha256: d32e048f7e4131ebe95a967a41d8539cb7174d0803d2b8ffdf24ce995fc99e8c
                                        
                                            GET /wp-content/plugins/kava-extra/assets/fonts/nucleo-outline-icon-font/nucleo-outline.css?ver=1.0.0 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:55 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:19:17 GMT
Accept-Ranges: bytes
Content-Length: 137380
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:55 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   137380
Md5:    a97d8140a7627c9cdd59fee34b4d140f
Sha1:   46dac263070bae87b10d78e68f57ca2c6e5ec0b2
Sha256: 7adf941596cb83fc892f21ebf6cc076e85606cfe4b4648a089a326e8cfa8953a
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:55 GMT
Server: Apache
Last-Modified: Thu, 07 Jul 2022 16:42:48 GMT
Accept-Ranges: bytes
Content-Length: 57912
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:55 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (57726)
Size:   57912
Md5:    eeb705d0bdccfd645d3bbd46dd1fbab3
Sha1:   066def290f42ed8c00860e573cc880bd46e9ced4
Sha256: d01a2ba2805c78957e15a2958135de0f3cb88e95159dd0f6c0a032bd76b1b0e9

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:55 GMT
Server: Apache
Last-Modified: Thu, 07 Jul 2022 16:42:48 GMT
Accept-Ranges: bytes
Content-Length: 669
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:55 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (483)
Size:   669
Md5:    9eb2d3c87feb6bb2ffa63b70532b1477
Sha1:   38f226335a05ab0e30497bc7419eb5e243a9e26c
Sha256: 37bab6cd583982e8eff58501a99d7c5c4d63664c1ca34f9e3b7cf526c5b73ae2

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.6.7 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:55 GMT
Server: Apache
Last-Modified: Thu, 07 Jul 2022 16:42:48 GMT
Accept-Ranges: bytes
Content-Length: 107922
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:55 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65497)
Size:   107922
Md5:    21012301e37602322d7d48c371b82ee9
Sha1:   19c42e89437be4f8fadfc33fea5a065117e173b3
Sha256: ecf785fe496796d2e4b026d58de7ea89a471d19255b06b3fefc5576db5a69dbc

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/jet-blog/assets/css/jet-blog.css?ver=2.3.0 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:55 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:25:28 GMT
Accept-Ranges: bytes
Content-Length: 117582
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:55 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   117582
Md5:    b95a8d55ffca57e4d77012cb78396490
Sha1:   a276beca2bb8f4244e90e68fda4b7fd045c77d66
Sha256: 98c2a058d4ffe5800b166b6982b6e13d369f5edf1cb43c46350edb0d52d0e067

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 11:31:55 GMT
Server: Apache
Last-Modified: Thu, 07 Jul 2022 16:42:48 GMT
Accept-Ranges: bytes
Content-Length: 677
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:55 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (491)
Size:   677
Md5:    3eef8c9e589a6fd58292e79bbac4ba5d
Sha1:   d3ebdb629b8d9c92380b14b1676b123398f0841b
Sha256: eea3d6ccda7f6503078cce9dc41176c1357af1c93a5b3625131ef7cf21c9d7c4

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:55 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:06:43 GMT
Accept-Ranges: bytes
Content-Length: 91802
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:55 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65447)
Size:   91802
Md5:    81e65728dafe873901505ff4137abb23
Sha1:   9f6d5806f4e5a48c7801e160de170873206144da
Sha256: 099ebf47f5ffb18fe9a1985a45d9b6e5137c978cebd2151747880e9c1ae08c32
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:55 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:06:43 GMT
Accept-Ranges: bytes
Content-Length: 13505
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:55 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (11126)
Size:   13505
Md5:    696abf6f00deeee2bdc601c3f8c548cc
Sha1:   f61f8e0002831d1ce518c5fa0fdf7847a8740a59
Sha256: 93fc6d3699b4fa210fa8d169e212b2ce5877d62a665db5d0c0aae7b1509a55b8

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:55 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:06:40 GMT
Accept-Ranges: bytes
Content-Length: 8756
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:55 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (8756), with no line terminators
Size:   8756
Md5:    a4cbad6901b444a0ed2a49362c14409a
Sha1:   a5349d0b4422e232c470a4feb5319aa19f0a0c67
Sha256: d6310c0fb0f6f78d6a3b4cc29aa17eca3ca9727b00775b24b45a8a0cd2998429
                                        
                                            GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:55 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:06:40 GMT
Accept-Ranges: bytes
Content-Length: 21423
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:55 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (21419), with no line terminators
Size:   21423
Md5:    88f95257a7e247a8fcc576dc29becabc
Sha1:   47f9da11b58cfd6edfd12b641fc4034c99602809
Sha256: 92b7bc9f221a594577d344fa436f9f886a360d8635ffcbe4f1bad1d1a699f36a

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:55 GMT
Server: Apache
Last-Modified: Thu, 07 Jul 2022 16:42:46 GMT
Accept-Ranges: bytes
Content-Length: 21821
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:55 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (21821), with no line terminators
Size:   21821
Md5:    3f97a68905d330bde2987f0e70052cb2
Sha1:   9c48e323c34652828c3b5bcf4251fc4edd8a7038
Sha256: 7abd36a2f651330420d86187c125331d679408d1be7b6cd93efa64e08eaf80c7

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 11:31:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 11:31:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 11:31:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://harrowertubebending.com.au
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         216.58.207.227
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 17:11:14 GMT
expires: Wed, 29 Nov 2023 17:11:14 GMT
cache-control: public, max-age=31536000
age: 152441
last-modified: Tue, 26 Apr 2022 16:04:12 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23236, version 1.0\012- data
Size:   23236
Md5:    716309aab2bca045f9627f63ad79d0bf
Sha1:   38804233a29aaf975d557fe14e762c627bef76e0
Sha256: 115f6a626ca115d4ad5581b59275327e0e860b30330a52b0f785561332dd2429
                                        
                                            GET /wp-content/themes/kava/assets/js/theme-script.js?ver=2.1.4 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:55 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:25:51 GMT
Accept-Ranges: bytes
Content-Length: 7627
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:55 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (2281)
Size:   7627
Md5:    61b68ba7c492778da19d97d67b625151
Sha1:   bd5b543e4c84bd92c522e2b1f3dfdfcd57645e96
Sha256: aabd0e08ab93ae09d93113556b8459c24c6b16119dc4f7c35859485744fd7428

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://harrowertubebending.com.au
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         216.58.207.227
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 12:29:22 GMT
expires: Fri, 24 Nov 2023 12:29:22 GMT
cache-control: public, max-age=31536000
age: 601353
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Size:   23040
Md5:    de69cf9e514df447d1b0bb16f49d2457
Sha1:   2ac78601179c3a63ba3f3f3081556b12ddcaf655
Sha256: c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
                                        
                                            GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://harrowertubebending.com.au
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         216.58.207.227
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 17:11:08 GMT
expires: Wed, 29 Nov 2023 17:11:08 GMT
cache-control: public, max-age=31536000
age: 152447
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Size:   23580
Md5:    e1b3b5908c9cf23dfb2b9c52b9a023ab
Sha1:   fcd4136085f2a03481d9958cc6793a5ed98e714c
Sha256: 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
                                        
                                            GET /s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://harrowertubebending.com.au
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         216.58.207.227
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22504
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 17:14:55 GMT
expires: Wed, 29 Nov 2023 17:14:55 GMT
cache-control: public, max-age=31536000
age: 152220
last-modified: Tue, 26 Apr 2022 16:04:16 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 22504, version 1.0\012- data
Size:   22504
Md5:    1c6c65523675abc6fcd78e804325bd77
Sha1:   898d9808304dc157f5dcb18ca169ec6e2b96b3d7
Sha256: 08664859baab5ed98f0bf818ed77e38464ff1826dc6406d5ecbd651409afbd92
                                        
                                            GET /wp-content/plugins/jet-blocks/assets/js/lib/jsticky/jquery.jsticky.min.js?ver=1.1.0 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:55 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:19:18 GMT
Accept-Ranges: bytes
Content-Length: 3563
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:55 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (3563), with no line terminators
Size:   3563
Md5:    ff861208867d4e9e0b482ea99a2ba49d
Sha1:   d9f619c1aecd3baf2f37d7780f845b0af9c51ddd
Sha256: 425f3247def17f69ca20e9aa3f4625983c81fa1c89888286684a4fc37df4a569

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/hoverIntent.min.js?ver=1.10.2 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:55 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:06:43 GMT
Accept-Ranges: bytes
Content-Length: 3780
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:55 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (3745)
Size:   3780
Md5:    fe5fecd21ed5e334e8be8ec4115c6824
Sha1:   9ff3fc2209c5c22fe4208b209bf199727fd574aa
Sha256: 73d79d6790e591cfc10f6efba4d6b8f96ae6cc84283a60da60285794ecd2b554

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.6.7 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:55 GMT
Server: Apache
Last-Modified: Thu, 07 Jul 2022 16:42:48 GMT
Accept-Ranges: bytes
Content-Length: 4957
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:55 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (4918)
Size:   4957
Md5:    0981243ad04e7bfb26ef9d4b6070f08e
Sha1:   e89726f738b980c5dcd7cd805011e217e46c2a8c
Sha256: e31e1cfb470365c46c451ae94f3a5f9bac9df96a0f403f044f851228a5bf1667

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 11:31:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.6.7 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:55 GMT
Server: Apache
Last-Modified: Thu, 07 Jul 2022 16:42:48 GMT
Accept-Ranges: bytes
Content-Length: 14487
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:55 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (14448)
Size:   14487
Md5:    f7a9fe2494d4fb5b559215de44f8932d
Sha1:   e6f2314d6d1300035cccb8a21d91109b1b98db37
Sha256: 133f35fbfc23c0d8cf814176860427bd6a02da9278de3de662da11d9602d8582
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:55 GMT
Server: Apache
Last-Modified: Thu, 07 Jul 2022 16:42:48 GMT
Accept-Ranges: bytes
Content-Length: 12198
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:55 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (12198), with no line terminators
Size:   12198
Md5:    3819c3569da71daec283a75483735f7e
Sha1:   ecd40a5cc6f0b76200c454ca880210dc301cfab8
Sha256: 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:55 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:06:43 GMT
Accept-Ranges: bytes
Content-Length: 22996
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:55 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (10470)
Size:   22996
Md5:    a977e28d4628ec6de2a690f6ce21cf1b
Sha1:   a06a125bfcac94b406add81e20210d2ed96ea6e5
Sha256: 613d9c80d461cddb53bbf25da9ff84740072c23671e4df76c13bd6d4ac19d2bd

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7244
Expires: Thu, 01 Dec 2022 13:32:39 GMT
Date: Thu, 01 Dec 2022 11:31:55 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7244
Expires: Thu, 01 Dec 2022 13:32:39 GMT
Date: Thu, 01 Dec 2022 11:31:55 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CJiSRzIK7-rQE81gaP2We0LhgKX1YmuJKEGYEqW34Bm1KMx6NB8yhQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 04:29:19 GMT
age: 25356
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4803
Md5:    cc0a257323f882caff067adb86d906e4
Sha1:   cedf2f21be7cd366bd46055b62b5513db3011dfc
Sha256: c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8740
x-amzn-requestid: 4823cf63-98eb-40d3-bb8b-e09cd2262f36
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7SqHjYIAMF8xw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830c10-316b213c33ce9bc2355c0900;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:04:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tK4wl-g5kcUhVFE3iZGILhZhZSsaMzQD9JTBHj1JXV95yXs_e3gMGw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 13:21:34 GMT
age: 79821
etag: "2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8740
Md5:    26d6dffbf400da4803a2e76e2a8ef2f8
Sha1:   2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8
Sha256: 04c6e31623fe48cbe83dc91635bfa47b337590f18919995b08d5bde27e929e03
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 16038
x-amzn-requestid: 9d34c42b-ba0c-498f-8f99-d4ab527ffa89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbzMdHXNIAMFgaw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cbe9-376846f31dc9b995797cbd18;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:32:25 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: DngCuOTO9fQAwWe_ip6EtBcgruigZN6Bl1_v5BHM2dsWlhqCXCL3gg==
via: 1.1 efcf7b9d0f917f9ebf314db03e52d9b6.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:45:33 GMT
age: 49582
etag: "5cf9a7a784952e1bb0cbe499104f1774b1269d08"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   16038
Md5:    ffd12f9c423ffc627d9e3b3145944fe4
Sha1:   5cf9a7a784952e1bb0cbe499104f1774b1269d08
Sha256: a25f1b752d9af599aefd73073c105853130f1759905269de3d582d2eb35fe167
                                        
                                            GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.6.7 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:55 GMT
Server: Apache
Last-Modified: Thu, 07 Jul 2022 16:42:48 GMT
Accept-Ranges: bytes
Content-Length: 37959
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:55 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (37920)
Size:   37959
Md5:    6f35d3750be3979cdba82cf143093f9b
Sha1:   5d19dc6041e5c24b5ef205e28f9f607bfa9a03aa
Sha256: e0f0d6d71e313ae3ee40517ae4df4806d42aacf7720c5c0220506c247796c4f7

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12898
x-amzn-requestid: 9b594c3c-6b8c-4589-8fcb-b3d7518b46f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cQZBNFxToAMF_9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63833ba1-767f510d72eef86d0cc892df;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 10:27:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gsn5uUFEzDZDOMPTvW9UQxtccvRfJKUM4eJ8U99jvUGzNIKkF9SzeA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:49:20 GMT
age: 49355
etag: "84241ddddbbfd7de30118307fb1a62800d0a4cb3"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12898
Md5:    820cf89fcab8380adff42982c9fb11ed
Sha1:   84241ddddbbfd7de30118307fb1a62800d0a4cb3
Sha256: 0d051495f06ac84de934283b40cbfee7a042d32153a73486dd7c017430e882d8
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc2c1d47-fc4a-4f23-a6f7-5ac8f3a68490.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12035
x-amzn-requestid: eef7d417-c6ca-4e3f-ac00-1425f3d5c4a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb0TSGHDIAMF_jA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cdae-467c79a805dfb5622687f628;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:39:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: haFJ2LZecbT4HRbkvcaZxR4SAIx5cGxNyghKiDOJVX6xDkPwzc2wNQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:45:34 GMT
age: 49581
etag: "cd016e6c0bf5c6eef06e933c9a5257ff4fca9bc1"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12035
Md5:    acffcb88ce68b2d70c9c046a7b5a4aa8
Sha1:   cd016e6c0bf5c6eef06e933c9a5257ff4fca9bc1
Sha256: 692d782ac1d812de6dadbcfe46034b6b5d8bbd586e56beedd96dc4d65445dd4c
                                        
                                            GET /wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:55 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:19:18 GMT
Accept-Ranges: bytes
Content-Length: 17985
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:55 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (17985), with no line terminators
Size:   17985
Md5:    93d8cc081d5d8c9299b9367c5a7b432e
Sha1:   6213c44d05dfb87e61140e9ae73e89500ee4303b
Sha256: aea17d1ca3a28440793507f6be0607ac3e57ec73db5b42a31f734f10fe2d17f3

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/jet-elements/assets/js/jet-elements.min.js?ver=2.6.6 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:55 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:19:21 GMT
Accept-Ranges: bytes
Content-Length: 74544
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:55 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   74544
Md5:    da0ad4c4f4e29281afdee170f1ddbe17
Sha1:   80327f826d69478f9b02f13bf545c0df123c6cee
Sha256: 178ba66d448e283e40d345c520852fdceb0d0a6a19031c50923705915512026f

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9674
x-amzn-requestid: 7e7d0183-9667-462a-8d44-d125998c1ae3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgEoHVAoAMFvAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a1d-280ba97e3fe1bf7244cbde35;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qftF-GQkcjKTs30KMGCTDymw2SVSXeAYKGNWUnaMfvIb8HjtfHUx8A==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:44:47 GMT
age: 49628
etag: "53650399f9a986ba54addd668b4557109d12003b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9674
Md5:    5508d05a290b663fd89ead9b58f2efd8
Sha1:   53650399f9a986ba54addd668b4557109d12003b
Sha256: 65704a961410fdd318c491fedf002c8e9b184cd34b76fe1b67026d42ce21be3f
                                        
                                            GET /wp-content/plugins/jet-tricks/assets/js/lib/tippy/popperjs.js?ver=2.5.2 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:55 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:19:26 GMT
Accept-Ranges: bytes
Content-Length: 20835
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:55 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (20787)
Size:   20835
Md5:    8a601c9010c4fb8cd7d74143fec96033
Sha1:   47cd88bf8bff11223c80316f02a556fd0d77301d
Sha256: c743c61ce188cebe5c28315cb12727a353df541e4d87abf9a3b53613e21d587a

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/jet-tricks/assets/js/lib/tippy/tippy-bundle.js?ver=6.3.1 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:55 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:19:26 GMT
Accept-Ranges: bytes
Content-Length: 80258
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:55 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (1407)
Size:   80258
Md5:    827f09193b347e958a90b0b12b111d7f
Sha1:   ba0c53906faf7ddc44d1fc164fc447f6d1a5433d
Sha256: f1b235e58e646130778e0a4657eccefc4fbc0559529927f6e1a6c082733dcc00
                                        
                                            GET /wp-content/plugins/jet-tricks/assets/js/jet-tricks-frontend.js?ver=1.4.1 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:55 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:19:26 GMT
Accept-Ranges: bytes
Content-Length: 28455
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:55 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (2281)
Size:   28455
Md5:    b8f6655ede2fc7dac864410d09b808c5
Sha1:   a514b43efac209c3be79b84b54455ee5e0466f11
Sha256: f083488f57697e99e7df46d6e884c6502f1eb56d8b65ef3dcc96db66c76f289e
                                        
                                            GET /wp-content/plugins/jet-blog/assets/js/jet-blog.min.js?ver=2.3.0 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:56 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:25:28 GMT
Accept-Ranges: bytes
Content-Length: 13818
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:56 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (13818), with no line terminators
Size:   13818
Md5:    a3bb605489d9125a77a655b309740e85
Sha1:   4bc54f3f70a54a6cbab26f8cfe5e784b4e6011de
Sha256: 048a8a51c60f8e67ed4f8b75ac6ba160ef6a65e18821e528a53de2334d938314
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Date: Thu, 01 Dec 2022 11:31:56 GMT
Server: Apache
Last-Modified: Thu, 07 Jul 2022 16:42:48 GMT
Accept-Ranges: bytes
Content-Length: 13276
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:56 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 13276, version 331.-31261\012- data
Size:   13276
Md5:    f0f8230116992e521526097a28f54066
Sha1:   0447c6b10bbf73f97b23dcfd6e6a48510822cb6e
Sha256: 8afc6e5e842baab16010c2ce6fcf48ec4ded8e1579a37c1f1bc027e120d04951

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://harrowertubebending.com.au/http:/harrowertubebending.com.au/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.3.2%27
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 11:31:56 GMT
Server: Apache
Last-Modified: Thu, 07 Jul 2022 16:42:48 GMT
Accept-Ranges: bytes
Content-Length: 1359
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:56 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1320)
Size:   1359
Md5:    76074a08fd420db4ef93c929df914bb1
Sha1:   8921f1a99d74000a1c16020fbfe59e1241f3bed5
Sha256: becb1689ce3b273ee217029babc33ff91c90f592bd0cc0ccf1c0a9e7389cfaa2

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://harrowertubebending.com.au/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Date: Thu, 01 Dec 2022 11:31:56 GMT
Server: Apache
Last-Modified: Thu, 07 Jul 2022 16:42:48 GMT
Accept-Ranges: bytes
Content-Length: 78196
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:56 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Size:   78196
Md5:    e8a427e15cc502bef99cfd722b37ea98
Sha1:   a9922842a120a7f1eaced667480c5e185a106d69
Sha256: d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/kava-extra/assets/fonts/nucleo-outline-icon-font/fonts/nucleo-outline.woff2 HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://harrowertubebending.com.au/wp-content/plugins/kava-extra/assets/fonts/nucleo-outline-icon-font/nucleo-outline.css?ver=1.0.0
Cookie: PHPSESSID=e6f42a7304e28194fe61739a48a61851

search
                                         162.215.212.72
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Date: Thu, 01 Dec 2022 11:31:56 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 12:19:17 GMT
Accept-Ranges: bytes
Content-Length: 178396
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 11:31:56 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 178396, version 1.0\012- data
Size:   178396
Md5:    ca1c5affe491d9fbbe575bd49b18c750
Sha1:   ad112d005f2aacdfa51fcf95504128659a9df31c
Sha256: e9b0b32e777acd9ca1cd87748da0bd7e1c3751237f5f63657080f817934eb1f0

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/uploads/2022/06/cropped-harrower-ico-750-32x32.png HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://harrowertubebending.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.215.212.72
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Fri, 17 Jun 2022 08:52:07 GMT
accept-ranges: bytes
content-length: 1051
cache-control: max-age=86400
expires: Fri, 02 Dec 2022 11:31:56 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
date: Thu, 01 Dec 2022 11:31:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 32 x 32, 8-bit gray+alpha, non-interlaced\012- data
Size:   1051
Md5:    f96818ff3b1b1ea599e38710227f9ccb
Sha1:   c0f280bbf4862620c7e5bd7977d94449e88823ab
Sha256: c41aa513c08edf3c2b08d3c6cfbf76af9f5c2e82531329828f092c58d27bcee2
                                        
                                            GET /wp-content/uploads/2022/06/cropped-harrower-ico-750-192x192.png HTTP/1.1 
Host: harrowertubebending.com.au
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://harrowertubebending.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.215.212.72
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Fri, 17 Jun 2022 08:52:07 GMT
accept-ranges: bytes
content-length: 6398
cache-control: max-age=86400
expires: Fri, 02 Dec 2022 11:31:56 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
date: Thu, 01 Dec 2022 11:31:56 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 192 x 192, 8-bit gray+alpha, non-interlaced\012- data
Size:   6398
Md5:    0c015591c93cccabae2e540057cd0753
Sha1:   e1bcebd129dfdad97825d56372628b1c5e6ed288
Sha256: d0bdb15d5c135655b51fd32f27ce71acb260c96699c989355962de61dead2432
                                        
                                            GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CLato%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://harrowertubebending.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.106
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 11:31:54 GMT
date: Thu, 01 Dec 2022 11:31:54 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /2022/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css HTTP/1.1 
Host: tubebendingaustralia.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://harrowertubebending.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         162.215.212.72
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
pragma: no-cache
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://harrowertubebending.com.au/wp-json/>; rel="https://api.w.org/"
set-cookie: PHPSESSID=e766a935714d123f6859445aaa18cf5b; path=/
x-endurance-cache-level: 2
x-nginx-cache: WordPress
date: Thu, 01 Dec 2022 11:31:55 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---