| | 196.41.123.188 | 301 Moved Permanently | 0 B |
URL User Request GET HTTP/1.1IP196.41.123.188:443
CertificateIssuercPanel, Inc. Subjectnewburycafe.co.za FingerprintE3:5B:FD:93:0D:87:D9:C7:47:84:44:DE:F2:31:80:38:18:7B:52:16 ValidityTue, 23 Apr 2024 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: newburycafe.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Wed, 08 May 2024 04:03:27 GMT
Server: Apache
X-UA-Compatible: IE=edge
X-Redirect-By: WordPress
Location: https://www.newburycafe.co.za/
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
|
|
| | 196.41.123.188 | 503 Service Unavailable | 4.5 kB |
URL User Request GET HTTP/1.1IP196.41.123.188:443
CertificateIssuercPanel, Inc. Subjectnewburycafe.co.za FingerprintE3:5B:FD:93:0D:87:D9:C7:47:84:44:DE:F2:31:80:38:18:7B:52:16 ValidityTue, 23 Apr 2024 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1816), with CRLF, LF line terminators Hashc679f438876c71bef4c85d77a53ce8f6 5033a4611a9683f9b9993aa290014fd89bca4faf 78fa294c6478241168ef093d58cad2b80e86cad7f763aa920e0d1528c3eaff5e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: www.newburycafe.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 503 Service Unavailable
Date: Wed, 08 May 2024 04:03:28 GMT
Server: Apache
X-UA-Compatible: IE=edge
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Retry-After: 3600
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
|
|
| | 196.41.123.188 | 503 Service Unavailable | 4.5 kB |
URL User Request GET HTTP/1.1IP196.41.123.188:443
CertificateIssuercPanel, Inc. Subjectnewburycafe.co.za FingerprintE3:5B:FD:93:0D:87:D9:C7:47:84:44:DE:F2:31:80:38:18:7B:52:16 ValidityTue, 23 Apr 2024 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1816), with CRLF, LF line terminators Hash0fe9f15b44001898045a7f250bb20114 0d3851b7575c55eb8bf189d74db916dc8225c53a deed3d4d7222c2262ac94eb620c6a38f0a114fc8fa8106645216be1529b22a96
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: www.newburycafe.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 503 Service Unavailable
Date: Wed, 08 May 2024 04:03:29 GMT
Server: Apache
X-UA-Compatible: IE=edge
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Retry-After: 3600
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
|
|
| www.googletagmanager.com/gtag/js?id=UA-132906120-1 | 142.250.74.168 | 200 OK | 75 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=UA-132906120-1 IP142.250.74.168:443
Requested byhttp://www.newburycafe.co.za/ CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (4179) Hash25b87e296bdc9ffd3118790237be0a33 928c964dbfb5a8c5a95fe72d9bdef19ed7f09b6a ac8911e257322a3a0264559c85aeb3a9849999b2cfdf84799abee8c726161eec
GET /gtag/js?id=UA-132906120-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.newburycafe.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 08 May 2024 04:03:30 GMT
expires: Wed, 08 May 2024 04:03:30 GMT
cache-control: private, max-age=900
last-modified: Wed, 08 May 2024 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 74754
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.newburycafe.co.za/wp-content/plugins/wp-maintenance-mode/assets/js/scripts.min.js?ver=2.6.5 | 196.41.123.188 | 200 OK | 1.6 kB |
URL GET HTTP/1.1www.newburycafe.co.za/wp-content/plugins/wp-maintenance-mode/assets/js/scripts.min.js?ver=2.6.5 IP196.41.123.188:80
Requested byhttp://www.newburycafe.co.za/
File typeJavaScript source, ASCII text, with very long lines (1605), with no line terminators Hashdfa641ad7912f204eb15457181784469 a28d972b6ee3f98c1ac2ad001937f238ce93687a 468f92187c7345baac080e149ac0b840ab0d4f441f4a2dd60c8adb2763211d12
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/wp-maintenance-mode/assets/js/scripts.min.js?ver=2.6.5 HTTP/1.1
Host: www.newburycafe.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.newburycafe.co.za/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 04:03:30 GMT
Server: Apache
Last-Modified: Wed, 08 Mar 2023 20:40:45 GMT
Accept-Ranges: bytes
Content-Length: 1605
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.newburycafe.co.za/wp-content/plugins/wp-maintenance-mode/assets/js/jquery.fitvids.min.js | 196.41.123.188 | 200 OK | 1.8 kB |
URL GET HTTP/1.1www.newburycafe.co.za/wp-content/plugins/wp-maintenance-mode/assets/js/jquery.fitvids.min.js IP196.41.123.188:80
Requested byhttp://www.newburycafe.co.za/
File typeJavaScript source, ASCII text, with very long lines (1767), with no line terminators Hash882a4f6998e5d6878f6f53f15008e525 2f73282313194a5ea50186b3d94842b47f941274 233cb2b905dec5df68df039e52e26980f674880fee51a8f6b7f75486760f1f3e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/wp-maintenance-mode/assets/js/jquery.fitvids.min.js HTTP/1.1
Host: www.newburycafe.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.newburycafe.co.za/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 04:03:30 GMT
Server: Apache
Last-Modified: Wed, 08 Mar 2023 20:40:45 GMT
Accept-Ranges: bytes
Content-Length: 1767
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.newburycafe.co.za/wp-content/plugins/wp-maintenance-mode/assets/css/style.min.css?ver=2.6.5 | 196.41.123.188 | 200 OK | 9.7 kB |
URL GET HTTP/1.1www.newburycafe.co.za/wp-content/plugins/wp-maintenance-mode/assets/css/style.min.css?ver=2.6.5 IP196.41.123.188:80
Requested byhttp://www.newburycafe.co.za/
File typeASCII text, with very long lines (9664), with no line terminators Hashbb49c3bc6c8b5a6e55d0c00a109991fd a7335f126495c993a6464a7220b0fa83e31114e6 382d80223a5d69eeee5101b1b9f8582f991ffbb019bd3c9edf1d29c167eabf2f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/wp-maintenance-mode/assets/css/style.min.css?ver=2.6.5 HTTP/1.1
Host: www.newburycafe.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.newburycafe.co.za/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 04:03:30 GMT
Server: Apache
Last-Modified: Wed, 08 Mar 2023 20:40:45 GMT
Accept-Ranges: bytes
Content-Length: 9664
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.googletagmanager.com/gtag/js?id=G-DPC0HWRVQH&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 90 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-DPC0HWRVQH&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttp://www.newburycafe.co.za/ CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (5955) Hash3674a9ec7a8849dd4b3d5fd0d9b74cb5 ecd9dc355d8bf6cc842140d27e0bcab68e991eb8 4ad32f64ea57cfa6aca4e6283a3a58ebeed07b55034794bb9bae396356edf1b7
GET /gtag/js?id=G-DPC0HWRVQH&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.newburycafe.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 08 May 2024 04:03:30 GMT
expires: Wed, 08 May 2024 04:03:30 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 89883
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.newburycafe.co.za/wp-content/uploads/2019/03/newbury-cafe-logo-splashpage.jpg | 196.41.123.188 | 200 OK | 10 kB |
URL GET HTTP/1.1www.newburycafe.co.za/wp-content/uploads/2019/03/newbury-cafe-logo-splashpage.jpg IP196.41.123.188:80
Requested byhttp://www.newburycafe.co.za/
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 182x181, components 3 Hash58e81fa234abb7220da0ab5df9c068e1 064d75f953326a625c9cb411ccb415f2008ad198 6a37e4e3ea93300a199cb9f8975b5d1f5bf38142c493394d20652f0e3f727690
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2019/03/newbury-cafe-logo-splashpage.jpg HTTP/1.1
Host: www.newburycafe.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.newburycafe.co.za/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 04:03:30 GMT
Server: Apache
Last-Modified: Sat, 09 Mar 2019 13:09:58 GMT
Accept-Ranges: bytes
Content-Length: 10389
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| www.newburycafe.co.za/wp-content/plugins/wp-maintenance-mode/assets/images/icn_sprite.png | 196.41.123.188 | 200 OK | 8.1 kB |
URL GET HTTP/1.1www.newburycafe.co.za/wp-content/plugins/wp-maintenance-mode/assets/images/icn_sprite.png IP196.41.123.188:80
Requested byhttp://www.newburycafe.co.za/
File typePNG image data, 727 x 21, 8-bit/color RGBA, non-interlaced Hash96502df2701c48d53ed4fe8918dfffe4 792e42b2173664771ec2d4e1ef9e8ab8dd13d1b9 b5d6462ef85f026b15b28451dc050f53112a9bf65b57dd446eefa8769c098fa8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/wp-maintenance-mode/assets/images/icn_sprite.png HTTP/1.1
Host: www.newburycafe.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.newburycafe.co.za/wp-content/plugins/wp-maintenance-mode/assets/css/style.min.css?ver=2.6.5
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 04:03:30 GMT
Server: Apache
Last-Modified: Wed, 08 Mar 2023 20:40:45 GMT
Accept-Ranges: bytes
Content-Length: 8106
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
|
|
| www.newburycafe.co.za/wp-includes/js/jquery/jquery.min.js | 196.41.123.188 | 200 OK | 90 kB |
URL GET HTTP/1.1www.newburycafe.co.za/wp-includes/js/jquery/jquery.min.js IP196.41.123.188:80
Requested byhttp://www.newburycafe.co.za/
File typeJavaScript source, ASCII text, with very long lines (65447) Hash17738318d61d394f1de8890d589afaec f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3 cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: www.newburycafe.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.newburycafe.co.za/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 04:03:30 GMT
Server: Apache
Last-Modified: Wed, 08 Mar 2023 20:42:49 GMT
Accept-Ranges: bytes
Content-Length: 89684
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.newburycafe.co.za/favicon.ico | 196.41.123.188 | 503 Service Unavailable | 4.5 kB |
URL GET HTTP/1.1www.newburycafe.co.za/favicon.ico IP196.41.123.188:80
Requested byhttp://www.newburycafe.co.za/
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1816), with CRLF, LF line terminators Hash0fe9f15b44001898045a7f250bb20114 0d3851b7575c55eb8bf189d74db916dc8225c53a deed3d4d7222c2262ac94eb620c6a38f0a114fc8fa8106645216be1529b22a96
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: www.newburycafe.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.newburycafe.co.za/
Cookie: _ga_DPC0HWRVQH=GS1.1.1715141010.1.0.1715141010.0.0.0; _ga=GA1.1.840397800.1715141011
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 503 Service Unavailable
Date: Wed, 08 May 2024 04:03:31 GMT
Server: Apache
X-UA-Compatible: IE=edge
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Retry-After: 3600
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
|
|
| www.newburycafe.co.za/wp-content/uploads/2019/03/nb-splash-page-bg.jpg | 196.41.123.188 | 200 OK | 448 kB |
URL GET HTTP/1.1www.newburycafe.co.za/wp-content/uploads/2019/03/nb-splash-page-bg.jpg IP196.41.123.188:80
Requested byhttp://www.newburycafe.co.za/
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1920x1280, components 3 Size448 kB (448141 bytes) Hasha84c4b20d4434e33ced1311800008f4e 0dcde5a81d012a685f300d722e650288d6b68622 b2345dbb2374c75daf0b6129733d48a16cbafc90a77063cd1bdcb4d20654af46
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2019/03/nb-splash-page-bg.jpg HTTP/1.1
Host: www.newburycafe.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.newburycafe.co.za/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 04:03:30 GMT
Server: Apache
Last-Modified: Sat, 09 Mar 2019 13:07:00 GMT
Accept-Ranges: bytes
Content-Length: 448141
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
|
|