Report - alpsawnings.co.za/

Report Overview

Submitted URL
alpsawnings.co.za/
IP
129.232.138.161
ASN
#37153 xneelo
Submitted
2022-10-04 10:07:03
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
162

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	787 B	162 kB	142.250.74.163
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.115
static.getbutton.io	31869	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	374 B	362 B	95.216.228.15
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	404 B	1.2 kB	142.250.74.164
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	975 B	40 kB	142.250.74.10
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	53 kB	216.58.207.195
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.7 kB	56 kB	34.120.237.76
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5.0 kB	10 kB	142.250.74.3
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	871 B	757 B	142.250.74.3
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.76.226
alpsawnings.co.za	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	31 kB	1.2 MB	129.232.138.161
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	35.162.217.251
googleads.g.doubleclick.net	42	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	888 B	2.0 kB	142.250.74.2
www.googleadservices.com	107	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	465 B	755 B	216.58.207.226
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.25
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	134 kB	142.250.74.168
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	362 B	21 kB	142.250.74.174

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-10-04	medium	alpsawnings.co.za/	Malware
2022-10-04	medium	alpsawnings.co.za/components/com_k2/css/k2.css?v2.7.0	Malware
2022-10-04	medium	alpsawnings.co.za/media/com_rsform/css/front.css?71e449bd434af327e401562a7f604f03	Malware
2022-10-04	medium	alpsawnings.co.za/media/com_rsform/css/frameworks/responsive/responsive.css?71e449bd434af327e401562a7f604f03	Malware
2022-10-04	medium	alpsawnings.co.za/plugins/system/yt/includes/admin/js/jquery-noconflict.js	Malware
2022-10-04	medium	alpsawnings.co.za/media/jui/js/jquery-noconflict.js?71e449bd434af327e401562a7f604f03	Malware
2022-10-04	medium	alpsawnings.co.za/components/com_sppagebuilder/assets/js/jquery.parallax-1.1.3.js	Malware
2022-10-04	medium	alpsawnings.co.za/templates/sj_plus/js/scrollReveal.js	Malware
2022-10-04	medium	alpsawnings.co.za/media/jui/js/jquery-migrate.min.js?71e449bd434af327e401562a7f604f03	Malware
2022-10-04	medium	alpsawnings.co.za/components/com_sppagebuilder/assets/js/jquery.magnific-popup.min.js	Malware
2022-10-04	medium	alpsawnings.co.za/media/plg_system_rsfprecaptchav3/js/script.js?71e449bd434af327e401562a7f604f03	Malware
2022-10-04	medium	alpsawnings.co.za/templates/sj_plus/js/yt-script.js	Malware
2022-10-04	medium	alpsawnings.co.za/templates/sj_plus/js/touchswipe.min.js	Malware
2022-10-04	medium	alpsawnings.co.za/components/com_sppagebuilder/assets/js/sppagebuilder.js	Malware
2022-10-04	medium	alpsawnings.co.za/media/system/js/keepalive.js?71e449bd434af327e401562a7f604f03	Malware
2022-10-04	medium	alpsawnings.co.za/templates/sj_plus/js/jquery.mmenu.min.all.js	Malware
2022-10-04	medium	alpsawnings.co.za/plugins/system/yt/includes/admin/js/jquery.min.js	Malware
2022-10-04	medium	alpsawnings.co.za/templates/sj_plus/asset/fonts/awesome/fontawesome-webfont.woff	Malware
2022-10-04	medium	alpsawnings.co.za/components/com_layer_slider/base/static/layerslider/js/layerslider.transitions.js?ver=6.6.053	Malware
2022-10-04	medium	alpsawnings.co.za/	Malware
2022-10-04	medium	alpsawnings.co.za/components/com_layer_slider/base/static/layerslider/js/layerslider.js?ver=6.6.053	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed
2022-10-04	medium	alpsawnings.co.za	Sinkholed

JavaScript (53)

	URL	Size	First Seen	Last Seen
	alpsawnings.co.za/media/jui/js/jquery-migrate.min.js?71e449bd434af327e401562a7f604f03	10 kB	2023-03-07	2024-04-23
Pretty URL alpsawnings.co.za/media/jui/js/jquery-migrate.min.js?71e449bd434af327e401562a7f604f03 IP 129.232.138.161 ASN #37153 xneelo Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-04-23 19:29:24 Times Seen37153 Hash 7121994eec5320fbe6586463bf9651c2 90532aff6d4121954254cdf04994d834f7ec169b 48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d Loading...

	alpsawnings.co.za/components/com_sppagebuilder/assets/js/sppagebuilder.js	36 kB	2023-03-08	2023-12-22
Pretty URL alpsawnings.co.za/components/com_sppagebuilder/assets/js/sppagebuilder.js IP 129.232.138.161 ASN #37153 xneelo Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:42:10 Last Seen2023-12-22 14:06:18 Times Seen3 Hash 206d731c3530c35c316a1293d0920591 92be3e7d5ff9f54430b86e32d103f9353dee6cc8 529429b653b12a30d87e6b95ff0910c6bc24c0e452f3210b0a8ee4b1bd6c3cd2 Loading...

	alpsawnings.co.za/	917 B	2023-03-08	2023-03-08
Pretty URL alpsawnings.co.za/ IP 129.232.138.161 ASN #37153 xneelo Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:42:10 Last Seen2023-03-08 05:42:10 Times Seen1 Hash 34173485760bcccc94f5439af6b788c2 631846b3c45cbcfbdee9eaa24973316bc58db6d7 5cc36037f76e76cd8b41294b22b9bb611ef63a78192b6334a9408268f4fab0a0 Loading...

	alpsawnings.co.za/	142 B	2023-03-08	2023-11-10
Pretty URL alpsawnings.co.za/ IP 129.232.138.161 ASN #37153 xneelo Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:42:10 Last Seen2023-11-10 11:51:21 Times Seen12 Hash 4e0769397c3832b53f23db53df0170f5 1d1a94e228d0570d4774d5b09408c8d82be13a99 3d4ab80db15ffa90d5bd1339ba010ab5f3dfcb20ed7493fb2363573f635ce41e Loading...

	alpsawnings.co.za/	294 B	2023-03-08	2023-03-08
Pretty URL alpsawnings.co.za/ IP 129.232.138.161 ASN #37153 xneelo Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:42:10 Last Seen2023-03-08 05:42:10 Times Seen1 Hash 85065a6917b54babe205f1b0d0e806c5 58a5723fc45e930886eaa1d72fadd2b8d14a2c82 4a69aefba793b492c82de7f834ef17ddf94a7cafe27949a32dc9f55affbc50d0 Loading...

	www.google.com/pagead/conversion_async.js	42 kB	2023-03-08	2023-03-10
Pretty URL www.google.com/pagead/conversion_async.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:10:58 Last Seen2023-03-10 12:05:33 Times Seen1 Hash 7ebf0fce2f7b7c5a547d76da320bd16f cf5575cac6328d1538893b09ddcc0e1d9ece0bd2 a355dc6fd53a94ca23cff781b3cf5f19d3851d899687b32bdfb4ecf6adb0ecb3 Loading...

	alpsawnings.co.za/	191 B	2023-03-08	2023-03-08
Pretty URL alpsawnings.co.za/ IP 129.232.138.161 ASN #37153 xneelo Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:42:10 Last Seen2023-03-08 05:42:10 Times Seen1 Hash b1bd8f01bf17113c25d8867b29b02955 c57ac731176729cd7e055fd7de6b037f3b943a0c c824d148591b271e66f05073a255478d035002ea7bde7bd1e653a946861d8d68 Loading...

	alpsawnings.co.za/media/k2/assets/js/k2.frontend.js?v2.7.0&sitepath=/	9.5 kB	2023-03-07	2024-03-20
Pretty URL alpsawnings.co.za/media/k2/assets/js/k2.frontend.js?v2.7.0&sitepath=/ IP 129.232.138.161 ASN #37153 xneelo Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:20 Last Seen2024-03-20 16:32:15 Times Seen103 Hash baf7a99ed58cbb63b86b10cae4baef18 0f9c0217e19acabd08f7d3126477a468480505c2 88bc95c6d8f377454b4aaa74d528050252282d610f207de1eb6051617206d928 Loading...

	alpsawnings.co.za/components/com_sppagebuilder/assets/js/jquery.magnific-popup.min.js	20 kB	2023-03-08	2023-06-14
Pretty URL alpsawnings.co.za/components/com_sppagebuilder/assets/js/jquery.magnific-popup.min.js IP 129.232.138.161 ASN #37153 xneelo Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:42:10 Last Seen2023-06-14 16:55:40 Times Seen5 Hash 0110ffbf70e39c86609a81c1a07927a7 213cd90cfe597e0dc84bb15e338e8e767d34aedf 103207ad6d1566cf7c0a3b0b639029e608a1f29b422ffce96cdebb039a6f8f70 Loading...

	alpsawnings.co.za/components/com_layer_slider/base/static/layerslider/js/layerslider.transitions.js?ver=6.6.053	22 kB	2023-03-08	2023-11-14
Pretty URL alpsawnings.co.za/components/com_layer_slider/base/static/layerslider/js/layerslider.transitions.js?ver=6.6.053 IP 129.232.138.161 ASN #37153 xneelo Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:42:10 Last Seen2023-11-14 11:05:24 Times Seen4 Hash 367f8d06ede5b9adb7b0079cc5a7cd93 108c617530cf4bbdd62a79c1714fcd0adfeef536 d40bba1b45e2fe8d2bf4218e4dffb78c62a10e5aa60b71594b9e4871bfc110cc Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6Lcs2_EhAAAAAAhA3SWZT-JxFV8E3TqhrcU17A_Q&co=aHR0cHM6Ly9hbHBzYXduaW5ncy5jby56YTo0NDM.&hl=en&v=a9s0j4pCVT6gaTEkLiFbtZPH&size=invisible&cb=ufrpuvfijge0	35 kB	2023-03-08	2023-03-08
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6Lcs2_EhAAAAAAhA3SWZT-JxFV8E3TqhrcU17A_Q&co=aHR0cHM6Ly9hbHBzYXduaW5ncy5jby56YTo0NDM.&hl=en&v=a9s0j4pCVT6gaTEkLiFbtZPH&size=invisible&cb=ufrpuvfijge0 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:42:10 Last Seen2023-03-08 05:42:10 Times Seen1 Hash 8342794a3a35c91aa0886b4f35a8db09 fc124c826374e368d00fcb09d43f865c48c5cc68 0f49b6a49d659347774dc4f1736715febe0014e378319089bfccff3ed8f30d1b Loading...

	alpsawnings.co.za/	109 B	2023-03-08	2023-03-08
Pretty URL alpsawnings.co.za/ IP 129.232.138.161 ASN #37153 xneelo Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:42:10 Last Seen2023-03-08 05:42:10 Times Seen1 Hash e0b274b75dd159b5ee994f6b10ca7923 2dae8d245ae1d503eac85a15508f1dc75e1cb0a5 237577dc05e7f9fab5dc390ac99e9d15cd2ff722a09bba41397bcc92365b2ef8 Loading...

	alpsawnings.co.za/	109 B	2023-03-08	2023-03-08
Pretty URL alpsawnings.co.za/ IP 129.232.138.161 ASN #37153 xneelo Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:42:10 Last Seen2023-03-08 05:42:10 Times Seen1 Hash 0b1640a71b62ab449b3051811e61f88c 8ce404026856d572f3ce522b1dd08bf6bc0258cc 3672e39a51fb66acd3b532ae890e5f0a6e13a2454ad73965657225b096d50271 Loading...

	unknown	0 B	2023-03-07	2024-04-23
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-23 19:38:37 Times Seen37024147 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	alpsawnings.co.za/templates/sj_plus/js/yt-script.js	7.6 kB	2023-03-08	2023-11-10
Pretty URL alpsawnings.co.za/templates/sj_plus/js/yt-script.js IP 129.232.138.161 ASN #37153 xneelo Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:42:10 Last Seen2023-11-10 11:51:21 Times Seen20 Hash 4ce6c4ca7b6ec7c6827ac82e0a74bcc8 756132e98741d310f50e25c8a69f4a87f5ff0ed6 fffee1f89087993a9e8965cbda4529ebc3e79b8aafd6a0953eafbb506f800287 Loading...

	alpsawnings.co.za/	391 B	2023-03-08	2023-12-01
Pretty URL alpsawnings.co.za/ IP 129.232.138.161 ASN #37153 xneelo Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:42:10 Last Seen2023-12-01 02:10:00 Times Seen35 Hash b55c563beb14fc44197e679cdcda996f a2a35f4cb22931417264f26ac76e2cff7be35600 8b7f15993264ffa20cd7e4a6b0a0f8226ad23485ffa8fa5630f28699ae0f3f00 Loading...

	www.gstatic.com/wcm/loader.js	3.0 kB	2023-03-07	2024-01-11
Pretty URL www.gstatic.com/wcm/loader.js IP 142.250.74.163 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:11 Last Seen2024-01-11 16:46:08 Times Seen3925 Hash e66aa914d8fee2fef76972626c4e3c95 f16f051bb480753b62e00f92cccb48d0d4864468 9f959aaad80347edc26ed8279c6a68c098efc76876ac2e2f8ccc54b118f197f4 Loading...

	alpsawnings.co.za/	711 B	2023-03-08	2023-03-08
Pretty URL alpsawnings.co.za/ IP 129.232.138.161 ASN #37153 xneelo Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:42:10 Last Seen2023-03-08 05:42:10 Times Seen1 Hash be1df5c82d7f7c9a49108f05385ff013 6209edf9a76e90d108447b141185cb6556045d1d 08c05250d6ce6ea5cf46be0668c985ce1e27d33ba0808b462d5acdf4c7bf5e16 Loading...

	www.googletagmanager.com/gtag/js?id=UA-169297991-1	109 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtag/js?id=UA-169297991-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:42:10 Last Seen2023-03-08 05:42:10 Times Seen1 Hash 1cce844ee6535f5e96a1b2d4cc2a13dd f87a186eee30d16c1b8271979c0e7d3110c6c306 5d68b9b00fe00a5790c70493b4b6845356af4fd1eecf7fd9da274d7cab693235 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6Lcs2_EhAAAAAAhA3SWZT-JxFV8E3TqhrcU17A_Q&co=aHR0cHM6Ly9hbHBzYXduaW5ncy5jby56YTo0NDM.&hl=en&v=a9s0j4pCVT6gaTEkLiFbtZPH&size=invisible&cb=ufrpuvfijge0	69 B	2023-03-07	2024-04-23
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6Lcs2_EhAAAAAAhA3SWZT-JxFV8E3TqhrcU17A_Q&co=aHR0cHM6Ly9hbHBzYXduaW5ncy5jby56YTo0NDM.&hl=en&v=a9s0j4pCVT6gaTEkLiFbtZPH&size=invisible&cb=ufrpuvfijge0 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:05 Last Seen2024-04-23 19:07:13 Times Seen99264 Hash 45ecf7458f42da80ac248ad42d610372 a5b3edf8328769bc754e6e616a957ceed4fdadd7 75867e75b209895995014b43c3d711476e3437481e5fbec91a4da674302558bf Loading...

	alpsawnings.co.za/media/system/js/core.js?71e449bd434af327e401562a7f604f03	8.7 kB	2023-03-07	2024-04-22
Pretty URL alpsawnings.co.za/media/system/js/core.js?71e449bd434af327e401562a7f604f03 IP 129.232.138.161 ASN #37153 xneelo Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:54 Last Seen2024-04-22 01:26:17 Times Seen1363 Hash e01099c2824b8fc4a435611089253cf7 ac8338f1566be54e957c123c863a97ca8d6f3ada 98333312a99b4c67911a1c1d4bddda30653715ffa23ea460fe385fa1987b39ba Loading...

	alpsawnings.co.za/	96 B	2023-03-08	2023-12-01
Pretty URL alpsawnings.co.za/ IP 129.232.138.161 ASN #37153 xneelo Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:42:10 Last Seen2023-12-01 02:10:00 Times Seen17 Hash 9a4631e5a110e5f44e98a834ecf6e80f bf2c8159d924d4464d9c438a849267625da18735 a9ac1f3a2723d1df593d9f83f600c2e627b2abb8ba1826f6a830b791ef8d3f7f Loading...

	alpsawnings.co.za/plugins/system/offlajnparams/compat/greensock.js	112 kB	2023-03-07	2023-11-14
Pretty URL alpsawnings.co.za/plugins/system/offlajnparams/compat/greensock.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:16:16 Last Seen2023-11-14 11:05:26 Times Seen28 Hash b9555e50dce96087e1d75a55939acfaf 828d656e34a31856655984ea811880b072fa6d5d b328a99ae2639133ebbeaa82a4d880a25e4d1a75fb087ef2bf5d03f97b16ac39 Loading...

	alpsawnings.co.za/components/com_sppagebuilder/assets/js/jquery.parallax-1.1.3.js	892 B	2023-03-07	2024-04-12
Pretty URL alpsawnings.co.za/components/com_sppagebuilder/assets/js/jquery.parallax-1.1.3.js IP 129.232.138.161 ASN #37153 xneelo Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:59:25 Last Seen2024-04-12 06:21:12 Times Seen152 Hash 14214e60c753d87bd5da9c87449ee7a6 c418bd12800184b85a17e124fce019a6630b1d0e 8eb5d5e8b339da50d7c8290be7fa53db265d0b40d7decfb235dc2bebb8c5dca7 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-20
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-20 17:36:09 Times Seen1522 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	static.getbutton.io/widget-send-button/js/init.js	304 kB	2023-03-07	2024-03-24
Pretty URL static.getbutton.io/widget-send-button/js/init.js IP 95.216.228.15 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:52 Last Seen2024-03-24 19:48:11 Times Seen2 Hash 256d5c9273e57c3d339a66a903d39e22 047c4076f327f854a4501284c4386f0278cfe5ac 36b618a3a55b2787d7a41107ad3750c3cdcc8bd2f18cfd56a6f8cd268e90fcad Loading...

	alpsawnings.co.za/components/com_layer_slider/base/static/layerslider/js/layerslider.js?ver=6.6.053	119 kB	2023-03-08	2023-11-14
Pretty URL alpsawnings.co.za/components/com_layer_slider/base/static/layerslider/js/layerslider.js?ver=6.6.053 IP 129.232.138.161 ASN #37153 xneelo Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:42:10 Last Seen2023-11-14 11:05:25 Times Seen7 Hash a0fd958da8bcfdc9f3f692679910b6b1 3b87b31993c53d67cc407eddfc5afc75895dcde2 01a7e91534f70b051152acfa48e6d96800c8ab0153cd9cedb651e5a6725a60ba Loading...

	alpsawnings.co.za/media/plg_system_rsfprecaptchav3/js/script.js?71e449bd434af327e401562a7f604f03	581 B	2023-03-08	2024-01-03
Pretty URL alpsawnings.co.za/media/plg_system_rsfprecaptchav3/js/script.js?71e449bd434af327e401562a7f604f03 IP 129.232.138.161 ASN #37153 xneelo Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:42:10 Last Seen2024-01-03 02:07:21 Times Seen11 Hash 8d31a89a97871cca6087da79443e1cdd 03fd5991d92d06e94766f17b05e911635e73abea 6e301d12e207a7436b30a6616779026e3a5d5199fdb15b7e2e42cca869095b31 Loading...

	alpsawnings.co.za/media/system/js/keepalive.js?71e449bd434af327e401562a7f604f03	462 B	2023-03-07	2024-04-19
Pretty URL alpsawnings.co.za/media/system/js/keepalive.js?71e449bd434af327e401562a7f604f03 IP 129.232.138.161 ASN #37153 xneelo Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:08 Last Seen2024-04-19 08:50:37 Times Seen484 Hash 5952c62bfa0a4f4e03ece5051c5a6938 9ee799d9d1869a05981dc217a59769e04b28f407 1df72eb0c6f570ba6c078ebea6e42747f7e11f68bcccdb8c528f85ef39d46df0 Loading...

	www.googletagmanager.com/gtag/js?id=UA-142337072-1	109 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtag/js?id=UA-142337072-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:42:10 Last Seen2023-03-08 05:42:10 Times Seen1 Hash afc5b1cac1f54f4e80ff218ac9c04b2a a7abd689a4b98893a2300cc79ae828be1ced1217 289d7e57c465069983af5716142fdaead06ba636022e3228ae29f55b89205a41 Loading...

	alpsawnings.co.za/	165 B	2023-03-08	2023-06-06
Pretty URL alpsawnings.co.za/ IP 129.232.138.161 ASN #37153 xneelo Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:42:10 Last Seen2023-06-06 13:48:24 Times Seen9 Hash 2933e0c86bb7b21ab52a972a2e4b901d bb036eafdf338b984040e88f78e74e8ebedc55a0 805871e1424da0fb403c41d469375d9601a15f8e3fec9ebb2ebccefebd24491d Loading...

	www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js	399 kB	2023-03-08	2023-03-11
Pretty URL www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js IP 142.250.74.163 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:40:09 Last Seen2023-03-11 13:30:42 Times Seen1 Hash f35658481ed15bc5f9e381e5babb040b 6ac7505ec9c522b239aeefed9ff6c1ff4d7c98e5 bec7e5a49219ef10544321dbd44f27849644f20623c16f05baeeeaa73e3b9332 Loading...

	www.gstatic.com/call-tracking/call-tracking_7.js	56 kB	2023-03-07	2024-03-20
Pretty URL www.gstatic.com/call-tracking/call-tracking_7.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:11 Last Seen2024-03-20 22:15:31 Times Seen4629 Hash 8a8bf04aa59034f517341e59c31593cc 88d8249f054a46229b73bfcaed9ab347408de2bb ff2fde453aa6220144126828a284d4cc227479f1fe83beef3a6b6a4504c7e4df Loading...

	alpsawnings.co.za/templates/sj_plus/js/jquery.mmenu.min.all.js	25 kB	2023-03-08	2023-12-01
Pretty URL alpsawnings.co.za/templates/sj_plus/js/jquery.mmenu.min.all.js IP 129.232.138.161 ASN #37153 xneelo Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:42:10 Last Seen2023-12-01 02:10:00 Times Seen33 Hash 4a7f93801d610c3a5fff6f07e9fec409 c8c8023b2391831c317affd31d1deb105d46f565 ec619c61b9935cc02c9a2960e017d9f71963a487a951afc9edc9cee103fa317e Loading...

	alpsawnings.co.za/plugins/system/yt/includes/admin/js/jquery.min.js	96 kB	2023-03-07	2024-04-23
Pretty URL alpsawnings.co.za/plugins/system/yt/includes/admin/js/jquery.min.js IP 129.232.138.161 ASN #37153 xneelo Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:10 Last Seen2024-04-23 17:41:48 Times Seen18488 Hash 8fc25e27d42774aeae6edbc0a18b72aa b66ed708717bf0b4a005a4d0113af8843ef3b8ff b294e973896f8f874e90a8eb1a8908ac790980d034c4c4bdf0fc3d37b8abf682 Loading...

	www.google.com/recaptcha/api.js?render=6Lcs2_EhAAAAAAhA3SWZT-JxFV8E3TqhrcU17A_Q	884 B	2023-03-08	2023-03-08
Pretty URL www.google.com/recaptcha/api.js?render=6Lcs2_EhAAAAAAhA3SWZT-JxFV8E3TqhrcU17A_Q IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:42:10 Last Seen2023-03-08 05:42:10 Times Seen1 Hash 22ab2c1d86046d930e329e2558cce5ad bf8d4d02308d2c7e17d7cf6d090018a0cbbce1f9 10b67c0e5e704fc420fd31b020e07954e5a7e059fc68412dba51fcdbd50a7e20 Loading...

	alpsawnings.co.za/	155 B	2023-03-08	2023-03-08
Pretty URL alpsawnings.co.za/ IP 129.232.138.161 ASN #37153 xneelo Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:42:10 Last Seen2023-03-08 05:42:10 Times Seen1 Hash 71203515e093424193f6bb86e7ba7ddf 6dd5ac170cfdb7c33a39828982a64683eed1c5cc 1e825339ce386764b5442d63e8ee32a257fb6932979ea6fbed43d191bcb5bccc Loading...

	alpsawnings.co.za/	526 B	2023-03-08	2023-03-08
Pretty URL alpsawnings.co.za/ IP 129.232.138.161 ASN #37153 xneelo Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:42:10 Last Seen2023-03-08 05:42:10 Times Seen1 Hash 4d2e6d66ea9ec17eba6703de5df04b1e dfba43bd5167300447dcaa7dca733134d0616621 1ddc5cc60761630b8aea727e45e95fb57318f2b055872f6fe6b789a671dfe95e Loading...

	alpsawnings.co.za/	341 B	2023-03-08	2023-03-08
Pretty URL alpsawnings.co.za/ IP 129.232.138.161 ASN #37153 xneelo Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:42:10 Last Seen2023-03-08 05:42:10 Times Seen1 Hash de977aee7a34219a89245e8b125e280a 3eefe13def38569f31c0c7827657f3e3fcfd84c4 e2f243856a68659799929080df8bf8eb09d6863431272b534cb5851e0a36aedd Loading...

	www.googletagmanager.com/gtag/js?id=UA-142337072-1&l=dataLayer&cx=c	109 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtag/js?id=UA-142337072-1&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:42:10 Last Seen2023-03-08 05:42:10 Times Seen1 Hash 40db218979af0ca600bcf2557d52a8c3 45b2def27a4e0f2a9161974a43906d0e2d141236 037c49ef2cf274a7ac409ec2dd3b14c31487a3b2afe66e184cbca50c93cb1441 Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/623014850/?random=1664878015365&cv=9&fst=1664878015365&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa9s0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Falpsawnings.co.za%2F&tiba=Al%20Patio%20Solutions%20%26%20Awnings%20%7C%20Awnings%20%7C%20Drop%20Blinds%20%7C%20Carpot%20%26%20Patio%20Awnings%20%7C%20Fixed%20Patio%20Covers&auid=1707414294.1664878014&hn=www.google.com&async=1&rfmt=3&fmt=4	2.5 kB	2023-03-08	2023-03-08
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/623014850/?random=1664878015365&cv=9&fst=1664878015365&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa9s0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Falpsawnings.co.za%2F&tiba=Al%20Patio%20Solutions%20%26%20Awnings%20%7C%20Awnings%20%7C%20Drop%20Blinds%20%7C%20Carpot%20%26%20Patio%20Awnings%20%7C%20Fixed%20Patio%20Covers&auid=1707414294.1664878014&hn=www.google.com&async=1&rfmt=3&fmt=4 IP 142.250.74.2 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:42:10 Last Seen2023-03-08 05:42:10 Times Seen1 Hash ccc3fd23d36620fc612e8bda1a538ebe 3708055d0c2ef6cb8d70f27d12d4394301fa2aeb f8725dfda4852fde689f88e8d4a4afdefa2fb0b98b6ee575b5abc2f9a4a2816a Loading...

	alpsawnings.co.za/	109 B	2023-03-08	2023-03-08
Pretty URL alpsawnings.co.za/ IP 129.232.138.161 ASN #37153 xneelo Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:42:10 Last Seen2023-03-08 05:42:10 Times Seen1 Hash c50295d33c340c45916c196bbcc08e7f 1e3ebd6fc231315a04916aeceed91c92c1c7d8dd 7987cf870b674c3d263d1947ab9f949030b0a50553fd32d3be6fc763ce54f8b0 Loading...

	alpsawnings.co.za/templates/sj_plus/js/scrollReveal.js	12 kB	2023-03-07	2024-02-24
Pretty URL alpsawnings.co.za/templates/sj_plus/js/scrollReveal.js IP 129.232.138.161 ASN #37153 xneelo Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:22 Last Seen2024-02-24 12:57:24 Times Seen25 Hash be44d4ecbfd37ae01e37ae26bdabffd3 3176035188e7e1047212c15125f579a80007ca34 a61cb0e50ccc189e12b99b3d74858bcb594ce20facbcedcc30ecb2c0749ea97e Loading...

	alpsawnings.co.za/	74 B	2023-03-08	2023-03-11
Pretty URL alpsawnings.co.za/ IP 129.232.138.161 ASN #37153 xneelo Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:42:10 Last Seen2023-03-11 08:38:31 Times Seen1 Hash 4df4aa4ffd472a372d5b6f1df8e2077c 675265381bf879de37516579832f93e99bf1765e 011e9a7c1480c654d137c88f2e58af76792224cb2a53e8a825e41faa5b89024d Loading...

	alpsawnings.co.za/plugins/system/yt/includes/admin/js/jquery-noconflict.js	21 B	2023-03-07	2024-04-22
Pretty URL alpsawnings.co.za/plugins/system/yt/includes/admin/js/jquery-noconflict.js IP 129.232.138.161 ASN #37153 xneelo Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:40 Last Seen2024-04-22 22:28:59 Times Seen4664 Hash e2060c4e5e5955c824723b13a212d3ec 18420ce484978f8ba3d7371febf1638828bb7a67 5b6cf4e6eda02f7c90b60b3c32413c0851915f8f80a268a913b92929085132a6 Loading...

	alpsawnings.co.za/	240 B	2023-03-08	2023-11-10
Pretty URL alpsawnings.co.za/ IP 129.232.138.161 ASN #37153 xneelo Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:42:10 Last Seen2023-11-10 11:51:20 Times Seen12 Hash 67a7b58103b545a08dcd0d01d148574c 459c3756e4fb92bbe77527e6f2fa9f468764a1bf 470f75dae186d14d7ae35486da383bdccbefcfb017e7fda9c0ff18ba3d820ee1 Loading...

		Size	First Seen	Last Seen
	#1 Eval - ecec58c0b4214c135778979ad05a71d6	188 kB	2023-03-08	2023-11-14
Pretty Observations First Seen2023-03-08 05:27:12 Last Seen2023-11-14 11:05:24 Times Seen4 Hash ecec58c0b4214c135778979ad05a71d6 f4b9cad63b621962d020278176467ab051f3b4b6 837c0da98b05e864472e0357dbc4ba0af8e057534edf753e57d4d3104f5e7fa5 Loading...

	#2 Eval - 7907b5883d7cde23973164e86f07ccc0	18 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 05:42:10 Last Seen2023-03-08 05:42:10 Times Seen1 Hash 7907b5883d7cde23973164e86f07ccc0 f46ac80a53abfac1c674205ede1b7a0adb4a5168 29f5d39ce1131d89d3529abaa114df489ac03f00b67b3db88f88db76f93113f5 Loading...

	#3 Eval - ce2f37889c95c02b5a921a78720467b8	64 B	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 04:29:18 Last Seen2023-03-08 12:41:28 Times Seen1 Hash ce2f37889c95c02b5a921a78720467b8 749a0a7ceb08f6f75cadc9d2eb27866057f9a939 87c99b9a88a42ee46bbe6ce447b600a1653142b3ebb7b9ed96bc786f7a99d488 Loading...

	#4 Eval - c41e0d6e726783d415d8f266abe91303	51 kB	2023-03-07	2024-04-01
Pretty Observations First Seen2023-03-07 01:42:08 Last Seen2024-04-01 19:29:00 Times Seen49 Hash c41e0d6e726783d415d8f266abe91303 116e8a406f54eb76317055e600c340d09f703abd 782c2f4102f3de91d579ae1baff74915ce4a453c7b8621bd3f2d05a8e3728a36 Loading...

	#5 Eval - 4e4735fd2b45e9f85f94ee7a077bdbfd	16 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 04:29:18 Last Seen2023-03-08 12:41:28 Times Seen1 Hash 4e4735fd2b45e9f85f94ee7a077bdbfd 3a98b06d3ac90c1b6a69968c82f112afb345d0cb 1bf232e3afa032afeeb821804dac4bdcfae32c16178d33975a668df67e9d0841 Loading...

	#6 Eval - 22a65f4cef52e208803b7c3bb11ebf4b	22 B	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 04:29:18 Last Seen2023-03-08 12:41:28 Times Seen1 Hash 22a65f4cef52e208803b7c3bb11ebf4b 9ca60f59d7efeb1b54ad6197611aeabada756f7c eb3a140c9b84b3b5c69ed2966cf442240e63fc12aaf1e79d0c35aec5b237d9d7 Loading...

	#7 Eval - c4d295cfa88a0805c2a3a15e5f191fbc	22 B	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 04:29:18 Last Seen2023-03-08 12:41:28 Times Seen1 Hash c4d295cfa88a0805c2a3a15e5f191fbc 00b3c5ea6b390072a5207ddc66f0f5bd8d8a35e6 ba41c5348d38a6ebd3399d0378ae76921f287d04f94ff5d93d6709e7f2a962b7 Loading...

HTTP Transactions (110)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.115

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 04 Oct 2022 09:47:04 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: d7Cx30OyEGIt3OypBXgDsHAoNOQzdRaqDnShHy192MBgc5HjuKpXZQ==
Age: 1188

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9955bda9c9ef64bc5700a14af0bae25e
8de7b7469e905af0374bdfcc3006bbb844f13e94
1f611155394fac39439b8ec8217d8cd493d6b588d372d264e0d66c03129c50c6

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F611155394FAC39439B8EC8217D8CD493D6B588D372D264E0D66C03129C50C6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6830
Expires: Tue, 04 Oct 2022 12:00:42 GMT
Date: Tue, 04 Oct 2022 10:06:52 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

143.204.55.25

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
143.204.55.25:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 04 Oct 2022 05:28:28 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: fgU_xWndVlzDEvdgyr7IzfW1roTeNxwcMFJhSLOK-SBFo_mQo0rXFA==
age: 16705
X-Firefox-Spdy: h2

alpsawnings.co.za/

129.232.138.161

301 Moved Permanently

234 B

URL HTTP/1.1
alpsawnings.co.za/
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
234 B (234 bytes)
Hash
141bc1f3c043a23bf354f3dfbceb4c53
d55f95ad7470c5c828f4aa6bccb61769e686dacd
1baac050affd13a93dd7bd0b47239719e22336d29ca9fd81b337f77ee35205c4

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Tue, 04 Oct 2022 10:06:52 GMT
Server: Apache
Referrer-Policy: unsafe-url
Location: https://alpsawnings.co.za/
Content-Length: 234
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:06:52 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.115

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 04 Oct 2022 09:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Tue, 04 Oct 2022 10:27:25 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: kXI52JaKfGTFdq1P3WnrALWUGHux6XobH0qXAbEzQRJQ00im_7UKog==
Age: 2240

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7924613ad0fe1d0131c45d564d25b47e
50541f65d93fb1ef1ddad9ebf99b34a9a0f16181
cffff4f11e0df01f55d2df9afdb2552272d997164042ffbda6671d7d9233166b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CFFFF4F11E0DF01F55D2DF9AFDB2552272D997164042FFBDA6671D7D9233166B"
Last-Modified: Mon, 03 Oct 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21547
Expires: Tue, 04 Oct 2022 16:06:00 GMT
Date: Tue, 04 Oct 2022 10:06:53 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
16ebfb2aa621547ecf581e26fc828a7d
f78993331f6f5b8af6409a9ad2fc50b77070f68a
0f81fd1d6be9ccc04b74f0348aafe642c7b9ab7dffb7e8a679b5d67cc2e5fac3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5706
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:06:53 GMT
Last-Modified: Tue, 04 Oct 2022 08:31:47 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

35.162.217.251

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.162.217.251:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: AgyryjhuG37B8VbNXK8DZg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 4JYiFqZFDK7P4u2c3t1/T3NOQNo=

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
900abf5ed99791e29bd6d7856ceb4c04
a193a68151924a80518e63ca052b914419bcda6f
bbe43f32330c1dd2a4dbadfbf71322336a576855f47fcf2cd82807d63ab90d64

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BBE43F32330C1DD2A4DBADFBF71322336A576855F47FCF2CD82807D63AB90D64"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14719
Expires: Tue, 04 Oct 2022 14:12:13 GMT
Date: Tue, 04 Oct 2022 10:06:54 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5ba23234dfb31276cc3bf9a347508595
a225d0a9ecf5d7f0032816c6f3d4a5ae1f3b27a3
33558bed4856ac3f2a7267965521b316ccd3ccc669877994c6c590e2d2a1b559

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:06:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
9e40b2c69615f45f2bc898334ab3e343
6a569648ed10564e126d3bbf3f91352e6b3f6d4f
4f1d0982c58b9bbeaa266b99292baa1a00c9e39280f73d5a525722c851e15981

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:06:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=UA-169297991-1

142.250.74.168

200 OK

42 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-169297991-1
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2039)
Size
42 kB (42367 bytes)
Hash
49950015006dbd22fe76829a53332b46
63a19cd7d1672916ff82d1279b367d70a133d303
37703c8d9376d6c1f43252ec8b85a4cc839f91201848cebd7fb63b448e7fb992

HTTP Headers

GET /gtag/js?id=UA-169297991-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alpsawnings.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 04 Oct 2022 10:06:54 GMT
expires: Tue, 04 Oct 2022 10:06:54 GMT
cache-control: private, max-age=900
last-modified: Tue, 04 Oct 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42367
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

static.getbutton.io/widget-send-button/js/init.js

95.216.228.15

302 Moved Temporarily

145 B

URL HTTP/1.1
static.getbutton.io/widget-send-button/js/init.js
IP
95.216.228.15:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
145 B (145 bytes)
Hash
7938fc116951d02bc261f707297cf915
c7f2a9311468d25830f39a6e280e22cc871149ca
a7a0cbe25a887e612a079e22a6b8bee676d68530d19ddf883a19088768f6f464

HTTP Headers

GET /widget-send-button/js/init.js HTTP/1.1
Host: static.getbutton.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alpsawnings.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Server: nginx/1.16.0
Date: Tue, 04 Oct 2022 10:06:54 GMT
Content-Type: text/html
Content-Length: 145
Connection: keep-alive
Location: https://static.getbutton.io/widget/bundle.js

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5ba23234dfb31276cc3bf9a347508595
a225d0a9ecf5d7f0032816c6f3d4a5ae1f3b27a3
33558bed4856ac3f2a7267965521b316ccd3ccc669877994c6c590e2d2a1b559

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:06:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
9e40b2c69615f45f2bc898334ab3e343
6a569648ed10564e126d3bbf3f91352e6b3f6d4f
4f1d0982c58b9bbeaa266b99292baa1a00c9e39280f73d5a525722c851e15981

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:06:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=UA-142337072-1

142.250.74.168

200 OK

42 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-142337072-1
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2039)
Size
42 kB (42364 bytes)
Hash
78fe5ac33864d5574fa05cbbf2ec3c99
aeafc612a156b111aad4add4b5da1c17f057d16a
9b231c412e32aaf9834ba13d6497ba4b0cd48e3dabe36b76404902d189ac51c8

HTTP Headers

GET /gtag/js?id=UA-142337072-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alpsawnings.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 04 Oct 2022 10:06:54 GMT
expires: Tue, 04 Oct 2022 10:06:54 GMT
cache-control: private, max-age=900
last-modified: Tue, 04 Oct 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42364
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=AW-623014850&l=dataLayer&cx=c

142.250.74.168

200 OK

47 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=AW-623014850&l=dataLayer&cx=c
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2039)
Size
47 kB (46844 bytes)
Hash
e1c9c719832a0f21c16755f2017979d4
953844e3dd3c6ac5c9df077879e34f83bb7ebf89
561e8ffd74cae10235b7e716db0ed3a34a90e5e00beef94272aacb86600ca176

HTTP Headers

GET /gtag/js?id=AW-623014850&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alpsawnings.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 04 Oct 2022 10:06:54 GMT
expires: Tue, 04 Oct 2022 10:06:54 GMT
cache-control: private, max-age=900
last-modified: Tue, 04 Oct 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46844
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b45b15bb651cc185ea82d91a51f06b5a
44987727be72bb12b4e4fc4fac50145835512750
f0b61426de169cf2efde87ac98d5123ea785004ad05c05932a099b644b2fdf64

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:06:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/recaptcha/api.js?render=6Lcs2_EhAAAAAAhA3SWZT-JxFV8E3TqhrcU17A_Q

142.250.74.164

200 OK

585 B

URL HTTP/2
www.google.com/recaptcha/api.js?render=6Lcs2_EhAAAAAAhA3SWZT-JxFV8E3TqhrcU17A_Q
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (884), with no line terminators
Size
585 B (585 bytes)
Hash
6ab11b085b3bc04fb45a6f21358f75c3
788e86b9c9c41f3285802acfe6057e77f538bed9
69172549f442721869c12c3bbcc5300427131476e5705f07c85dd1af140e21dc

HTTP Headers

GET /recaptcha/api.js?render=6Lcs2_EhAAAAAAhA3SWZT-JxFV8E3TqhrcU17A_Q HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alpsawnings.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
expires: Tue, 04 Oct 2022 10:06:54 GMT
date: Tue, 04 Oct 2022 10:06:54 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 585
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
129fe858bf2aa7291fd2c6dd4cf9d226
e3e048b964b851ebbdcfb5bd80ebdbad13720cf6
addc7e4ddab73c8c7ee50f6d33fc1e4ff73b71cc014e481049a393c3b87b0924

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:06:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

alpsawnings.co.za/plugins/system/yt/includes/site/css/style.css

129.232.138.161

200 OK

25 B

URL HTTP/2
alpsawnings.co.za/plugins/system/yt/includes/site/css/style.css
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text, with CRLF line terminators
Size
25 B (25 bytes)
Hash
5410d52b46c0050788f43831e63bc557
472e149be3863917a676693c0eb1e1a7896d5b57
5ab60f5e6ef174bd46fb89a03fefe65ecd85a90ec28e0fa120abe4322eaef104

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /plugins/system/yt/includes/site/css/style.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 27 Oct 2015 10:49:36 GMT
etag: "19-52313d5733000"
accept-ranges: bytes
content-length: 25
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
content-type: text/css
X-Firefox-Spdy: h2

alpsawnings.co.za/media/k2/assets/css/k2.fonts.css?v2.7.0

129.232.138.161

200 OK

2.8 kB

URL HTTP/2
alpsawnings.co.za/media/k2/assets/css/k2.fonts.css?v2.7.0
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text, with very long lines (3266)
Size
2.8 kB (2760 bytes)
Hash
6b8a54041a1695037c68bb5363497762
103972ec360ccf80f3014b1a944425392ad36e32
d67bf71768060e97371e272125de110a858654532f37d141e5ee29109f5ade93

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /media/k2/assets/css/k2.fonts.css?v2.7.0 HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Mon, 04 Apr 2016 10:19:28 GMT
etag: "306a-52fa6104b4c00-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 2760
content-type: text/css
X-Firefox-Spdy: h2

alpsawnings.co.za/components/com_sppagebuilder/assets/css/font-awesome.min.css

129.232.138.161

200 OK

7.0 kB

URL HTTP/2
alpsawnings.co.za/components/com_sppagebuilder/assets/css/font-awesome.min.css
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text, with very long lines (30799)
Size
7.0 kB (7042 bytes)
Hash
9bdb9e513bb6dbcf656a9558110d63e1
6a5daf1047d64d7f33f39b3e610e7c18d6eba4be
eec1592a6849452ba3ccadce81336a0831735b1cf767ca2e5f1ce0610f2682da

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /components/com_sppagebuilder/assets/css/font-awesome.min.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Wed, 04 Apr 2018 12:23:56 GMT
etag: "78f1-56904e593af00-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 7042
content-type: text/css
X-Firefox-Spdy: h2

alpsawnings.co.za/components/com_k2/css/k2.css?v2.7.0

129.232.138.161

200 OK

8.8 kB

URL HTTP/2
alpsawnings.co.za/components/com_k2/css/k2.css?v2.7.0
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
assembler source, ASCII text
Size
8.8 kB (8844 bytes)
Hash
dcdd4adb4c751beb26fb5a4008a71150
0f9c43ac320e8d9a61fadfa02479a5a857e04889
35cc704dec3d699090ea48e4e4cea743e6d3d0925ba21db645fc3720258a2967

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /components/com_k2/css/k2.css?v2.7.0 HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Fri, 07 Jun 2019 08:58:10 GMT
etag: "c8af-58ab8079e8c80-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 8844
content-type: text/css
X-Firefox-Spdy: h2

alpsawnings.co.za/components/com_sppagebuilder/assets/css/animate.min.css

129.232.138.161

200 OK

3.7 kB

URL HTTP/2
alpsawnings.co.za/components/com_sppagebuilder/assets/css/animate.min.css
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text, with very long lines (53270)
Size
3.7 kB (3706 bytes)
Hash
fc5f4c8c29d19d17a712063e18aa6afd
8a1d58f924ec5b62c734d96e0fdc80deb34b3cab
7a599f3de5a4014e16bb8ed054f9d56f2c89c7a9a1b58e47610cad7f92ca8620

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /components/com_sppagebuilder/assets/css/animate.min.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Wed, 04 Apr 2018 12:23:56 GMT
etag: "d0b7-56904e593af00-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 3706
content-type: text/css
X-Firefox-Spdy: h2

alpsawnings.co.za/components/com_sppagebuilder/assets/css/sppagecontainer.css

129.232.138.161

200 OK

139 B

URL HTTP/2
alpsawnings.co.za/components/com_sppagebuilder/assets/css/sppagecontainer.css
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text, with no line terminators
Size
139 B (139 bytes)
Hash
19280a9ea979812f146fbf81836b3944
70566f97288257b0408c5424f46c3a2c2de88335
db4326fc826eb1888f2f388521a0d0e485101df5e65df3ef84b63e4d60d30237

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /components/com_sppagebuilder/assets/css/sppagecontainer.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Wed, 04 Apr 2018 12:23:56 GMT
etag: "10c-56904e593af00-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 139
content-type: text/css
X-Firefox-Spdy: h2

alpsawnings.co.za/components/com_sppagebuilder/assets/css/magnific-popup.css

129.232.138.161

200 OK

1.7 kB

URL HTTP/2
alpsawnings.co.za/components/com_sppagebuilder/assets/css/magnific-popup.css
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text, with very long lines (5920), with no line terminators
Size
1.7 kB (1711 bytes)
Hash
d41e5916de4914a09fee3d5b33ddf094
f844ef29e472695fd0d9784c171d70ee4f21194e
99bf0c6b6ce378b09c509f3a4f6a213c08459f226810e1d5f0c86b9c9654fcb5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /components/com_sppagebuilder/assets/css/magnific-popup.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Wed, 04 Apr 2018 12:23:56 GMT
etag: "1720-56904e593af00-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1711
content-type: text/css
X-Firefox-Spdy: h2

alpsawnings.co.za/templates/system/css/system.css

129.232.138.161

200 OK

421 B

URL HTTP/2
alpsawnings.co.za/templates/system/css/system.css
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text
Size
421 B (421 bytes)
Hash
a4158af24a9d1719f394ab0f43e99fc1
7aa1d3b6f72d2c872f68270eaeeaf184de6b0aba
3ac2632a0ab89052158e6af5f0ac9d84257e7d9ff87bf13c31c139e6b87ddec7

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /templates/system/css/system.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Sun, 14 Aug 2022 13:21:56 GMT
etag: "371-5e6336634a500-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 421
content-type: text/css
X-Firefox-Spdy: h2

alpsawnings.co.za/templates/system/css/general.css

129.232.138.161

200 OK

880 B

URL HTTP/2
alpsawnings.co.za/templates/system/css/general.css
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text
Size
880 B (880 bytes)
Hash
e8ddb5102c1c7ec50fcc28f9e1cade3c
a85a3f9309eea32d964edc3d07a57437bd3cef3a
d602539e7cba8c33e40d76b0ca464690a7eca3b1b1a163dcdc031e07b13ca8b1

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /templates/system/css/general.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Sun, 14 Aug 2022 13:21:56 GMT
etag: "a9d-5e6336634a500-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 880
content-type: text/css
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13904
Expires: Tue, 04 Oct 2022 13:58:38 GMT
Date: Tue, 04 Oct 2022 10:06:54 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13904
Expires: Tue, 04 Oct 2022 13:58:38 GMT
Date: Tue, 04 Oct 2022 10:06:54 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13904
Expires: Tue, 04 Oct 2022 13:58:38 GMT
Date: Tue, 04 Oct 2022 10:06:54 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg

34.120.237.76

200 OK

5.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.5 kB (5504 bytes)
Hash
6c6882c60d7ca6f918c77104e3ad1d52
20ef861be49c652a938e0145e4ca3a60159367e2
861f5870990fbd2939d151ae18384cf311e87067ca9a50818efe0c2d51b83088

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5504
x-amzn-requestid: 37405eb0-5c75-46a9-84c0-e8ed726995d8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpHvHPvoAMF3mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5564-77fd550b58af612525e74761;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Ovm2wuk28PygH4EZNEUoPchoHQggWCyXbYHOjMV1tZmfyDrL6PjPZA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:29:19 GMT
age: 41855
etag: "20ef861be49c652a938e0145e4ca3a60159367e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c459c91-b5cc-492c-9573-3101e5df6b51.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.1 kB (5083 bytes)
Hash
34f2dfb2faff276db1d4a57739db2450
f5ce815082043a4efce28fc790ae7d8b3a8531f8
e02ea92f0be524ccfe26eee61a77e39a13d852d1ba3696f729e0f61812028667

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c459c91-b5cc-492c-9573-3101e5df6b51.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5083
x-amzn-requestid: ed99df03-5d15-4e09-9aea-bbf77a705323
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpI0HT0IAMFxvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b556b-422197147d76caac6e910664;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:35 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: pddStyEpwVdYKSAUVcpupnWVPw6ALoYCouHQzixF_vTgXdpVF60ElA==
via: 1.1 946b9edb2009c5508a0fbbd636f95014.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:10:59 GMT
age: 42955
etag: "f5ce815082043a4efce28fc790ae7d8b3a8531f8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f5624b4-8e2a-461e-a32a-38d6b5a3a8d2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11101 bytes)
Hash
ae824db4a95391149198a4b6b8556c70
db07d58d8feff4ea01866d095e5264ee5c8e1ca3
19e96d204813247697e1858daf9e07d6c4cafd9ab1175a3bf39a7f07f6991521

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f5624b4-8e2a-461e-a32a-38d6b5a3a8d2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11101
x-amzn-requestid: f98e84d9-1e66-4436-b793-219a777f2ba0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcqcvE8JoAMFQ2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5784-25bd2b234c1093de70074c92;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:43:32 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: becOxfqUowywFrxzDSeK7F1lFdDVTSHIF1TLC5k5aSlLPpsR6F8gjw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:08:47 GMT
age: 43087
etag: "db07d58d8feff4ea01866d095e5264ee5c8e1ca3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.9 kB (4858 bytes)
Hash
6779181f9c06975f2a662da743893939
585e7146fd24cdc2496b05baafea04091dc541e2
8e9a9f92fd89b7cdce77884ccd76b83ab82d28f125ebfc1cb0d371d4046b7985

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4858
x-amzn-requestid: fb21c414-2994-444a-a838-e643fd05b171
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTEfPoAMFfeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-593dd8043b0490e7301cac0d;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MiSh_FjAciKCaOakY2mM_EHBN1Z6GIDYIP8mwS4ikkrToQN3Ktsv2g==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:56:46 GMT
age: 43808
etag: "585e7146fd24cdc2496b05baafea04091dc541e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3178d2f-9a52-4d0e-a26b-5a90ef8578f2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.4 kB (3430 bytes)
Hash
488ec5b4267ccb1cdc4e6e08556f7f3b
42dd7ec0c606dbd3ccc0074f61d3b4b12f2e3c88
d9b05fe92962a58b9a8e8dbd4757969aa361be12018107ae649ffcdb8a0f8d84

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3178d2f-9a52-4d0e-a26b-5a90ef8578f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3430
x-amzn-requestid: 22a0e400-1567-4c9c-aca9-782f3f81a8ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZKLCrEn4IAMFZWw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6333f210-11fa888c78719c44160accf8;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 07:04:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 69u2trVvquFefzPFeOg_AuyzqQ6EBpY_ok9d9RXv71NE3TB_qELdtg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 16:24:09 GMT
age: 63765
etag: "42dd7ec0c606dbd3ccc0074f61d3b4b12f2e3c88"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0bec66cf-b911-4eb8-95d6-27e5f2afb6c7.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.3 kB (8308 bytes)
Hash
de29d0d95d22e4e246a90feed644baf0
4ac6c5691df804078d5da54233cf4d8e7012f9ca
8e34ad07e098df14f7001d1ee538479de11afa4c255006cb6e8e2207c0e50a47

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0bec66cf-b911-4eb8-95d6-27e5f2afb6c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8308
x-amzn-requestid: 3348b2e8-915a-492b-8241-89c13a21232c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcqFlFyyoAMFz_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b56f0-2baf7ac2213c31fc384e8317;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:41:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Y1H21zphqs9mIGVYHojfc-nvW35BS3nq4hunM_JmyT9mC100bXlgWw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:55:46 GMT
age: 43868
etag: "4ac6c5691df804078d5da54233cf4d8e7012f9ca"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

alpsawnings.co.za/components/com_sppagebuilder/assets/css/sppagebuilder.css

129.232.138.161

200 OK

15 kB

URL HTTP/2
alpsawnings.co.za/components/com_sppagebuilder/assets/css/sppagebuilder.css
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text, with very long lines (65536), with no line terminators
Size
15 kB (15196 bytes)
Hash
4a6b3efc47b64bd90c11d3f72e281e8a
2dba91d2ce310f0806500ffe78c38ed353ef33f9
978358228ea87b5dcaa955ab86b39a94f9d33d3ae9f17a9778d8ecfe9ad76f71

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /components/com_sppagebuilder/assets/css/sppagebuilder.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Wed, 04 Apr 2018 12:23:56 GMT
etag: "18c1d-56904e593af00-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 15196
content-type: text/css
X-Firefox-Spdy: h2

alpsawnings.co.za/templates/sj_plus/css/your_css.css

129.232.138.161

200 OK

0 B

URL HTTP/2
alpsawnings.co.za/templates/sj_plus/css/your_css.css
IP
129.232.138.161:0
ASN
#37153 xneelo

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /templates/sj_plus/css/your_css.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Mon, 12 Sep 2022 10:16:32 GMT
etag: "0-5e878308fc000"
accept-ranges: bytes
content-length: 0
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
content-type: text/css
X-Firefox-Spdy: h2

alpsawnings.co.za/templates/sj_plus/asset/fonts/awesome/css/font-awesome.css

129.232.138.161

200 OK

4.3 kB

URL HTTP/2
alpsawnings.co.za/templates/sj_plus/asset/fonts/awesome/css/font-awesome.css
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
troff or preprocessor input, ASCII text
Size
4.3 kB (4268 bytes)
Hash
19d78f5e25225dbe7ace94e1354571d3
1df9c9231ce211d100795c7a968b95a259ed655c
01eab2ba4d79257f5b37cc01c905ec0a6eab206f6958beec21f1f2abcee67d87

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /templates/sj_plus/asset/fonts/awesome/css/font-awesome.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 27 Oct 2015 10:49:36 GMT
etag: "544e-52313d5733000-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 4268
content-type: text/css
X-Firefox-Spdy: h2

alpsawnings.co.za/templates/sj_plus/css/template-blue.css

129.232.138.161

200 OK

15 kB

URL HTTP/2
alpsawnings.co.za/templates/sj_plus/css/template-blue.css
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
Unicode text, UTF-8 text, with very long lines (530)
Size
15 kB (14664 bytes)
Hash
9a46a3729ce3b10af5d96cef5d7c6cc9
f98fb8611033088b7763a3fab686b2616eb80826
87ff18f4831f6bc953dc9908ca54dfe14795061e8c1545a193df7f3a23ffab68

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /templates/sj_plus/css/template-blue.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Mon, 12 Sep 2022 14:08:42 GMT
etag: "1adc9-5e87b6edaae80-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 14664
content-type: text/css
X-Firefox-Spdy: h2

alpsawnings.co.za/templates/sj_plus/css/pattern.css

129.232.138.161

200 OK

548 B

URL HTTP/2
alpsawnings.co.za/templates/sj_plus/css/pattern.css
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text
Size
548 B (548 bytes)
Hash
cd92a5a6a277e5de381e74deb22f4411
5c0b22cf863d4146a22ab7ae2753c454253a413e
63198243beffd5df6f7ed53400039dbd8458481e04a1c354b0b7631c72c19535

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /templates/sj_plus/css/pattern.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 27 Oct 2015 10:49:36 GMT
etag: "ab6-52313d5733000-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 548
content-type: text/css
X-Firefox-Spdy: h2

alpsawnings.co.za/media/com_rsform/css/front.css?71e449bd434af327e401562a7f604f03

129.232.138.161

200 OK

1.5 kB

URL HTTP/2
alpsawnings.co.za/media/com_rsform/css/front.css?71e449bd434af327e401562a7f604f03
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text
Size
1.5 kB (1512 bytes)
Hash
7c91d85d23a9ccc677b9117985896c79
62b74eb5db403fb18e2916d674fc3b03a4b6baf4
71d55d7ed8a177a96b01261244cabacbf35b90391033537434c962e9cefd24e6

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /media/com_rsform/css/front.css?71e449bd434af327e401562a7f604f03 HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Mon, 12 Sep 2022 13:26:31 GMT
etag: "1ad9-5e87ad7feafc0-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1512
content-type: text/css
X-Firefox-Spdy: h2

alpsawnings.co.za/media/com_rsform/css/frameworks/responsive/responsive.css?71e449bd434af327e401562a7f604f03

129.232.138.161

200 OK

3.0 kB

URL HTTP/2
alpsawnings.co.za/media/com_rsform/css/frameworks/responsive/responsive.css?71e449bd434af327e401562a7f604f03
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text
Size
3.0 kB (3032 bytes)
Hash
f2b917a0c7d8788707020a0e3b67daf3
229886994bc6a233920c70aa8c8a6f6e78f654d1
839667454ade228f44c6106f3cf9455fcf2ee1ec70965a495bb20dec163d3f65

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /media/com_rsform/css/frameworks/responsive/responsive.css?71e449bd434af327e401562a7f604f03 HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Mon, 12 Sep 2022 13:49:21 GMT
etag: "5a3e-5e87b29a73a40-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 3032
content-type: text/css
X-Firefox-Spdy: h2

alpsawnings.co.za/templates/sj_plus/css/responsive.css

129.232.138.161

200 OK

3.7 kB

URL HTTP/2
alpsawnings.co.za/templates/sj_plus/css/responsive.css
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text
Size
3.7 kB (3729 bytes)
Hash
bd811867ef6089414210d33b8f13f08e
e8a2d34c8f8db5c935da32c60272f11832b76371
8b9e3d2ce377e52bcf106d3e30f2b92b9b2e90e63650322119633a732c7b1add

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /templates/sj_plus/css/responsive.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Fri, 27 Mar 2020 13:04:56 GMT
etag: "528a-5a1d5bf786e00-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 3729
content-type: text/css
X-Firefox-Spdy: h2

alpsawnings.co.za/templates/sj_plus/css/jquery.mmenu.all.css

129.232.138.161

200 OK

5.0 kB

URL HTTP/2
alpsawnings.co.za/templates/sj_plus/css/jquery.mmenu.all.css
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text
Size
5.0 kB (5025 bytes)
Hash
38bb63b88462b1fd7366faf9711da164
983e6647325cb0f2f01bfb4ff3932079c62e4f8e
57066e3fe56d50b37acb996f533219b770e4843496a21ef7ae463b543d5d0cd4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /templates/sj_plus/css/jquery.mmenu.all.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 27 Oct 2015 10:49:36 GMT
etag: "a252-52313d5733000-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 5025
content-type: text/css
X-Firefox-Spdy: h2

alpsawnings.co.za/plugins/system/yt/includes/admin/js/jquery-noconflict.js

129.232.138.161

200 OK

21 B

URL HTTP/2
alpsawnings.co.za/plugins/system/yt/includes/admin/js/jquery-noconflict.js
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text
Size
21 B (21 bytes)
Hash
e2060c4e5e5955c824723b13a212d3ec
18420ce484978f8ba3d7371febf1638828bb7a67
5b6cf4e6eda02f7c90b60b3c32413c0851915f8f80a268a913b92929085132a6

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /plugins/system/yt/includes/admin/js/jquery-noconflict.js HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 27 Oct 2015 10:49:36 GMT
etag: "15-52313d5733000"
accept-ranges: bytes
content-length: 21
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
content-type: application/javascript
X-Firefox-Spdy: h2

alpsawnings.co.za/modules/mod_jux_megamenu/assets/css/style/blackwhite.css

129.232.138.161

200 OK

825 B

URL HTTP/2
alpsawnings.co.za/modules/mod_jux_megamenu/assets/css/style/blackwhite.css
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text, with very long lines (329), with CRLF line terminators
Size
825 B (825 bytes)
Hash
2182ffd856e47e43af7689545e11834b
a5af514f144d4abb22d54374181b6846cac2c765
9d9dae40f4da757d643d14716c87ad4cf9c420e8b8f1978bea0bea74c6fd62e2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /modules/mod_jux_megamenu/assets/css/style/blackwhite.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Mon, 12 Sep 2022 11:44:16 GMT
etag: "11d1-5e8796a520400-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 825
content-type: text/css
X-Firefox-Spdy: h2

alpsawnings.co.za/modules/mod_jux_megamenu/assets/css/style.css

129.232.138.161

200 OK

2.0 kB

URL HTTP/2
alpsawnings.co.za/modules/mod_jux_megamenu/assets/css/style.css
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text, with very long lines (516)
Size
2.0 kB (1956 bytes)
Hash
3361b6858e35d690aa36908749754661
2f7304c68721ddc37291117e7e639d802feae411
e0a00ab297a7790e351cd3db91847ba4f8e674f2859939e1293534b6d7101b08

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /modules/mod_jux_megamenu/assets/css/style.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 28 May 2019 09:16:24 GMT
etag: "3727-589ef1e69ea00-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1956
content-type: text/css
X-Firefox-Spdy: h2

alpsawnings.co.za/modules/mod_jux_megamenu/assets/css/style_responsive.css

129.232.138.161

200 OK

1.5 kB

URL HTTP/2
alpsawnings.co.za/modules/mod_jux_megamenu/assets/css/style_responsive.css
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text, with CRLF line terminators
Size
1.5 kB (1471 bytes)
Hash
87308194a0642504efde729587e04da2
7c011516824a7c7442c96d5e8ce6ff2f6efe2f62
f889cbc53aa09a7994f25d229d37132bd61c275eeab7b5db5733b1467ed8968a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /modules/mod_jux_megamenu/assets/css/style_responsive.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Mon, 20 Apr 2015 07:57:28 GMT
etag: "1dbd-5142348012a00-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1471
content-type: text/css
X-Firefox-Spdy: h2

alpsawnings.co.za/components/com_layer_slider/base/static/layerslider/css/layerslider.css?ver=6.6.053

129.232.138.161

200 OK

3.8 kB

URL HTTP/2
alpsawnings.co.za/components/com_layer_slider/base/static/layerslider/css/layerslider.css?ver=6.6.053
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text, with CRLF line terminators
Size
3.8 kB (3765 bytes)
Hash
e9cbd07612de5a4ad48d95888d55a6a0
9e37a99564c9021f38c5747944b8a32510a46a05
c088d56b7ffdfac117177e4c7c5598fb98fa658e63391ef42b5032e266960213

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /components/com_layer_slider/base/static/layerslider/css/layerslider.css?ver=6.6.053 HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Fri, 12 Apr 2019 05:43:58 GMT
etag: "55fe-5864ec9fe2380-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 3765
content-type: text/css
X-Firefox-Spdy: h2

alpsawnings.co.za/templates/sj_plus/asset/bootstrap/css/bootstrap.min.css

129.232.138.161

200 OK

18 kB

URL HTTP/2
alpsawnings.co.za/templates/sj_plus/asset/bootstrap/css/bootstrap.min.css
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text, with very long lines (65371)
Size
18 kB (18141 bytes)
Hash
75ac9f3aa86995c028c4a700c3b04321
a061911d2cb6f7689ff24a22fcb6b971d16a5f82
742dc055d132ced6c07bc9491dd8dc5627a0d5e427f92728420bc8309d3c8306

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /templates/sj_plus/asset/bootstrap/css/bootstrap.min.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 27 Oct 2015 10:49:36 GMT
etag: "1abce-52313d5733000-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 18141
content-type: text/css
X-Firefox-Spdy: h2

alpsawnings.co.za/media/jui/js/jquery-noconflict.js?71e449bd434af327e401562a7f604f03

129.232.138.161

200 OK

21 B

URL HTTP/2
alpsawnings.co.za/media/jui/js/jquery-noconflict.js?71e449bd434af327e401562a7f604f03
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text
Size
21 B (21 bytes)
Hash
e2060c4e5e5955c824723b13a212d3ec
18420ce484978f8ba3d7371febf1638828bb7a67
5b6cf4e6eda02f7c90b60b3c32413c0851915f8f80a268a913b92929085132a6

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /media/jui/js/jquery-noconflict.js?71e449bd434af327e401562a7f604f03 HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Sun, 14 Aug 2022 13:21:56 GMT
etag: "15-5e6336634a500"
accept-ranges: bytes
content-length: 21
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
content-type: application/javascript
X-Firefox-Spdy: h2

alpsawnings.co.za/components/com_sppagebuilder/assets/js/jquery.parallax-1.1.3.js

129.232.138.161

200 OK

427 B

URL HTTP/2
alpsawnings.co.za/components/com_sppagebuilder/assets/js/jquery.parallax-1.1.3.js
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text, with very long lines (892), with no line terminators
Size
427 B (427 bytes)
Hash
28121b07310145a81cc64d177ce3cf98
9b0e26cca6d8f2aa65dc48bd8b2d03a4f0b22484
792f1f5fe34b233e708d932dde671b5a6eb02b22e06e597446d699b33d085446

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /components/com_sppagebuilder/assets/js/jquery.parallax-1.1.3.js HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Wed, 04 Apr 2018 12:23:56 GMT
etag: "37c-56904e593af00-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 427
content-type: application/javascript
X-Firefox-Spdy: h2

alpsawnings.co.za/media/k2/assets/js/k2.frontend.js?v2.7.0&sitepath=/

129.232.138.161

200 OK

2.6 kB

URL HTTP/2
alpsawnings.co.za/media/k2/assets/js/k2.frontend.js?v2.7.0&sitepath=/
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text
Size
2.6 kB (2627 bytes)
Hash
a5e4cbedc0ede8ebcb926aa05dd81bdc
881f27c3d90235ece925b5d25ef66d6e1d8d48ed
6d7b4b83323e566b99c4f24d802eaaa6673dcd4327aeaffdd84f724ccf85042a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /media/k2/assets/js/k2.frontend.js?v2.7.0&sitepath=/ HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Mon, 04 Apr 2016 10:19:28 GMT
etag: "24f3-52fa6104b4c00-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 2627
content-type: application/javascript
X-Firefox-Spdy: h2

alpsawnings.co.za/templates/sj_plus/js/scrollReveal.js

129.232.138.161

200 OK

3.2 kB

URL HTTP/2
alpsawnings.co.za/templates/sj_plus/js/scrollReveal.js
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
Unicode text, UTF-8 text
Size
3.2 kB (3201 bytes)
Hash
cac8ca816a896cd9d2ff143f20f08530
25b9f280a52d253f9faa65f13caeb58d2432e51c
c4141e8342782b956656c2de02e98c3a32bddb84231beb4f7a80a9f58a2e7836

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /templates/sj_plus/js/scrollReveal.js HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 27 Oct 2015 10:49:38 GMT
etag: "2e58-52313d591b480-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 3201
content-type: application/javascript
X-Firefox-Spdy: h2

alpsawnings.co.za/media/system/js/core.js?71e449bd434af327e401562a7f604f03

129.232.138.161

200 OK

3.4 kB

URL HTTP/2
alpsawnings.co.za/media/system/js/core.js?71e449bd434af327e401562a7f604f03
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
Unicode text, UTF-8 text, with very long lines (8729)
Size
3.4 kB (3363 bytes)
Hash
39739d83d7f81aaa594bc365c6b83d4f
0026374991c06bd447685e789cd79d4cb25c85c2
185a0f148816fa806e9950f0f8d74541b5974e9151f9c3b8563844b6b9fa7a15

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /media/system/js/core.js?71e449bd434af327e401562a7f604f03 HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Sun, 14 Aug 2022 13:21:56 GMT
etag: "221f-5e6336634a500-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 3363
content-type: application/javascript
X-Firefox-Spdy: h2

alpsawnings.co.za/media/jui/js/jquery-migrate.min.js?71e449bd434af327e401562a7f604f03

129.232.138.161

200 OK

4.0 kB

URL HTTP/2
alpsawnings.co.za/media/jui/js/jquery-migrate.min.js?71e449bd434af327e401562a7f604f03
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text, with very long lines (9959)
Size
4.0 kB (4014 bytes)
Hash
a6c81e2f02bd04160d2de88c4e8f3559
e3f3c91427d785820ca97dabe738f01faf041f36
b734d83af5da0eb627e04d3e62ce652b9eb7de19667a1b91da6b93f0ea5d7ffe

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /media/jui/js/jquery-migrate.min.js?71e449bd434af327e401562a7f604f03 HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Sun, 14 Aug 2022 13:21:56 GMT
etag: "2748-5e6336634a500-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 4014
content-type: application/javascript
X-Firefox-Spdy: h2

alpsawnings.co.za/components/com_sppagebuilder/assets/js/jquery.magnific-popup.min.js

129.232.138.161

200 OK

7.2 kB

URL HTTP/2
alpsawnings.co.za/components/com_sppagebuilder/assets/js/jquery.magnific-popup.min.js
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text, with very long lines (19998), with no line terminators
Size
7.2 kB (7204 bytes)
Hash
cb2d3de020f0cbb60c86801656fdee9c
7b059d1c393f0c16924a1197417a5ee68116450e
38766a496c1af74ce72490ac75c30793d5985d3933df55b335b343200d007770

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /components/com_sppagebuilder/assets/js/jquery.magnific-popup.min.js HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Wed, 04 Apr 2018 12:23:56 GMT
etag: "4e1e-56904e593af00-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 7204
content-type: application/javascript
X-Firefox-Spdy: h2

alpsawnings.co.za/media/plg_system_rsfprecaptchav3/js/script.js?71e449bd434af327e401562a7f604f03

129.232.138.161

200 OK

305 B

URL HTTP/2
alpsawnings.co.za/media/plg_system_rsfprecaptchav3/js/script.js?71e449bd434af327e401562a7f604f03
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text, with CRLF line terminators
Size
305 B (305 bytes)
Hash
6c46dd59b0c9fd62426dd461164cc3b6
f6d2a12011f03c77400f8094086a07e2653c91d0
ca9fafb0f2a86b53480e3af1759d3a886e1a0c880dd63099b82428ed140ef8a7

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /media/plg_system_rsfprecaptchav3/js/script.js?71e449bd434af327e401562a7f604f03 HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Mon, 12 Sep 2022 13:25:35 GMT
etag: "245-5e87ad4a831c0-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 305
content-type: application/javascript
X-Firefox-Spdy: h2

alpsawnings.co.za/templates/sj_plus/js/yt-script.js

129.232.138.161

200 OK

1.5 kB

URL HTTP/2
alpsawnings.co.za/templates/sj_plus/js/yt-script.js
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text, with CRLF line terminators
Size
1.5 kB (1456 bytes)
Hash
cd253e44163e2c7f84f11a3237ac3be1
9cc4bf61d0bf75fcf64a69bc60c7cc7a8e170010
cf377d2f04df357fbc1e3202e8fa432c5d4b280996c5df7cc34d8ec7085682ba

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /templates/sj_plus/js/yt-script.js HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 27 Oct 2015 10:49:38 GMT
etag: "1d88-52313d591b480-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1456
content-type: application/javascript
X-Firefox-Spdy: h2

alpsawnings.co.za/templates/sj_plus/js/touchswipe.min.js

129.232.138.161

200 OK

3.8 kB

URL HTTP/2
alpsawnings.co.za/templates/sj_plus/js/touchswipe.min.js
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text, with very long lines (10629), with CRLF line terminators
Size
3.8 kB (3820 bytes)
Hash
b23af358261691ae9c8948403bd8a0ec
dc4788380f13331b4afc36cca2dca8173c52fde3
9c8e3228ce4f5b03f662ccf2bbb7674662e085f6e20cc1bcc4d2d191a4deab06

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /templates/sj_plus/js/touchswipe.min.js HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 27 Oct 2015 10:49:38 GMT
etag: "2b35-52313d591b480-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 3820
content-type: application/javascript
X-Firefox-Spdy: h2

alpsawnings.co.za/components/com_sppagebuilder/assets/js/sppagebuilder.js

129.232.138.161

200 OK

10 kB

URL HTTP/2
alpsawnings.co.za/components/com_sppagebuilder/assets/js/sppagebuilder.js
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text, with very long lines (36099), with no line terminators
Size
10 kB (10455 bytes)
Hash
9a2c86685c6d69ddcaebf340c7f2173f
a7f4b4e378b87a75d80ca30d0e6a49009318cdaf
5d8c0398ce52fe7a69025b844d8f7503136509e781a62d7a676257d9965befad

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /components/com_sppagebuilder/assets/js/sppagebuilder.js HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Wed, 04 Apr 2018 12:23:56 GMT
etag: "8d03-56904e593af00-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 10455
content-type: application/javascript
X-Firefox-Spdy: h2

alpsawnings.co.za/media/system/js/keepalive.js?71e449bd434af327e401562a7f604f03

129.232.138.161

200 OK

306 B

URL HTTP/2
alpsawnings.co.za/media/system/js/keepalive.js?71e449bd434af327e401562a7f604f03
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text, with very long lines (461)
Size
306 B (306 bytes)
Hash
7c38920647aa197ba2edf27e46609d81
c7b76583a40b44919634866261dc4dfa7047c047
e1da2a24649323458694f8f4e929487f9953979906a7c1786a59e9f7c4196b56

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /media/system/js/keepalive.js?71e449bd434af327e401562a7f604f03 HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Sun, 14 Aug 2022 13:21:56 GMT
etag: "1ce-5e6336634a500-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 306
content-type: application/javascript
X-Firefox-Spdy: h2

alpsawnings.co.za/templates/sj_plus/css/contact6.css

129.232.138.161

200 OK

475 B

URL HTTP/2
alpsawnings.co.za/templates/sj_plus/css/contact6.css
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text, with CRLF line terminators
Size
475 B (475 bytes)
Hash
fe08480aca97e53fc369c7898b8f2eff
35f75ae4fcd1d2e64f27b55efd51230c6817f666
68d8e6c93c5b2837712c931126eb3afbea9f69e5734258a49f7fa1d362c13845

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /templates/sj_plus/css/contact6.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Mon, 26 Sep 2022 08:14:18 GMT
etag: "50b-5e9901d330a80-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 475
content-type: text/css
X-Firefox-Spdy: h2

alpsawnings.co.za/templates/sj_plus/css/header.css

129.232.138.161

200 OK

2.7 kB

URL HTTP/2
alpsawnings.co.za/templates/sj_plus/css/header.css
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text
Size
2.7 kB (2729 bytes)
Hash
407f0d344f6508a555c7219d16dca306
9eb278d97b239959ef0cf3b95290adeea2a47708
1527ea83c25a6895c58c2aaf8833b30a46eeed14d3ca349404406c84fc1651eb

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /templates/sj_plus/css/header.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 23 Feb 2021 13:16:50 GMT
etag: "2c69-5bc00bb2f1480-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 2729
content-type: text/css
X-Firefox-Spdy: h2

alpsawnings.co.za/templates/sj_plus/js/jquery.mmenu.min.all.js

129.232.138.161

200 OK

7.5 kB

URL HTTP/2
alpsawnings.co.za/templates/sj_plus/js/jquery.mmenu.min.all.js
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text, with very long lines (9099)
Size
7.5 kB (7494 bytes)
Hash
f00fb3e2443c50bafea29f7080d5ac82
7cbfcf10ffd729b7c4f276123a745e3fe6a01852
16c1aeac58c29075b90062b16f248af5a49dfbf5c510f6329ae536780a47259e

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /templates/sj_plus/js/jquery.mmenu.min.all.js HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 27 Oct 2015 10:49:38 GMT
etag: "61bc-52313d591b480-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 7494
content-type: application/javascript
X-Firefox-Spdy: h2

alpsawnings.co.za/plugins/system/yt/includes/admin/js/jquery.min.js

129.232.138.161

200 OK

33 kB

URL HTTP/2
alpsawnings.co.za/plugins/system/yt/includes/admin/js/jquery.min.js
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text, with very long lines (32341)
Size
33 kB (33369 bytes)
Hash
a455443006938869e740a38df8640ada
869bd24af8e61e2c6b23cf158853505d5fe7afc2
685bd4372d5eca42e9dae6db1678618e08d2ca201bc4e7525adabc20021338b5

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /plugins/system/yt/includes/admin/js/jquery.min.js HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 27 Oct 2015 10:49:36 GMT
etag: "1787d-52313d5733000-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 33369
content-type: application/javascript
X-Firefox-Spdy: h2

alpsawnings.co.za/media/com_rsform/js/script.js?71e449bd434af327e401562a7f604f03

129.232.138.161

200 OK

18 kB

URL HTTP/2
alpsawnings.co.za/media/com_rsform/js/script.js?71e449bd434af327e401562a7f604f03
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text, with very long lines (493), with CRLF line terminators
Size
18 kB (18070 bytes)
Hash
e258eb64c70d99675a403c83f7179727
8952ac924cfa023fa42836b7cd31d6039b063345
1700d0425d06f43f866f1aa3ce3a550a9b236aaf083ed9625106fbd71961384e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /media/com_rsform/js/script.js?71e449bd434af327e401562a7f604f03 HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Mon, 12 Sep 2022 13:25:23 GMT
etag: "135df-5e87ad3f116c0-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 18070
content-type: application/javascript
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Lato:100,300,regular,700,900%7COpen+Sans:300%7CIndie+Flower:regular%7COswald:300,regular,700%7CPoppins:300,regular,500,600,700&subset=latin%2Clatin-ext

142.250.74.10

200 OK

38 kB

URL HTTP/2
fonts.googleapis.com/css?family=Lato:100,300,regular,700,900%7COpen+Sans:300%7CIndie+Flower:regular%7COswald:300,regular,700%7CPoppins:300,regular,500,600,700&subset=latin%2Clatin-ext
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (32005), with CRLF, LF line terminators
Size
38 kB (38468 bytes)
Hash
7ba1df4ea4ca60beb62a8eb653b5b8c8
6f6f0ff7dd9395a874d92efca8bf31ca52a7e759
621e0ec1101493fd66e74d0ea0305c2957d438cd80880ae4e2facfe775cb3804

HTTP Headers

GET /css?family=Lato:100,300,regular,700,900%7COpen+Sans:300%7CIndie+Flower:regular%7COswald:300,regular,700%7CPoppins:300,regular,500,600,700&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alpsawnings.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 04 Oct 2022 10:06:54 GMT
date: Tue, 04 Oct 2022 10:06:54 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

alpsawnings.co.za/images/Al-Patio-Solutions-and-Awnings.jpg

129.232.138.161

200 OK

24 kB

URL HTTP/2
alpsawnings.co.za/images/Al-Patio-Solutions-and-Awnings.jpg
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1772, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2835], baseline, precision 8, 350x189, components 3\012- data
Size
24 kB (23774 bytes)
Hash
6dc50e012b6c9444035b4423d9597e70
2cb0d0d8c025dd5b5e4cfabad8432a9bbca5ec78
be898693b588f66ce496f06179b7dbba0346c80b3999d5f4e75952ddd816faf0

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/Al-Patio-Solutions-and-Awnings.jpg HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Mon, 24 Jun 2019 10:27:42 GMT
etag: "5cde-58c0f431e2380"
accept-ranges: bytes
content-length: 23774
cache-control: max-age=2592000
expires: Thu, 03 Nov 2022 10:06:54 GMT
content-type: image/jpeg
X-Firefox-Spdy: h2

alpsawnings.co.za/images/alawnings-slide-03.jpg

129.232.138.161

200 OK

157 kB

URL HTTP/2
alpsawnings.co.za/images/alawnings-slide-03.jpg
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1400x620, components 3\012- data
Size
157 kB (156894 bytes)
Hash
0678344755f232dac2c1775f6be3170e
c485ccacfdc110915b91a1ade81424707f41ef44
b348bda085f7050137e4c5d94ad4fc0187fa1015771a2a33edf1e4a81119db53

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/alawnings-slide-03.jpg HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Fri, 07 Jun 2019 07:45:18 GMT
etag: "264de-58ab703071f80"
accept-ranges: bytes
content-length: 156894
cache-control: max-age=2592000
expires: Thu, 03 Nov 2022 10:06:54 GMT
content-type: image/jpeg
X-Firefox-Spdy: h2

alpsawnings.co.za/images/2019/05/28/alawnings_adjustablelouvres1b.jpg

129.232.138.161

200 OK

144 kB

URL HTTP/2
alpsawnings.co.za/images/2019/05/28/alawnings_adjustablelouvres1b.jpg
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 600x227, components 3\012- data
Size
144 kB (143506 bytes)
Hash
9db30fb2f48ba89d2c7fa6b721cad2a8
527f35236e8960c2ddc48bc266e5b77577cc0a3b
73d884d47bb55b4d4640f9ca0377fdc21106da18ebc09ada6d30c8099267c536

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/2019/05/28/alawnings_adjustablelouvres1b.jpg HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus; _gcl_au=1.1.1707414294.1664878014
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 28 May 2019 12:09:58 GMT
etag: "23092-589f18b22f180"
accept-ranges: bytes
content-length: 143506
cache-control: max-age=2592000
expires: Thu, 03 Nov 2022 10:06:54 GMT
content-type: image/jpeg
X-Firefox-Spdy: h2

alpsawnings.co.za/images/2019/05/28/alawnings_fixedibr1b.jpg

129.232.138.161

200 OK

94 kB

URL HTTP/2
alpsawnings.co.za/images/2019/05/28/alawnings_fixedibr1b.jpg
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 600x227, components 3\012- data
Size
94 kB (94410 bytes)
Hash
fd02578b3b601fdf0b4f8d58d283dbae
91ecc8bf2f6245a9f6eec3aef7aa386e1e9c3854
7e93137d9de2557d34812e325f2478d4878842dc2392ed9fd8065fd84e6d09eb

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/2019/05/28/alawnings_fixedibr1b.jpg HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus; _gcl_au=1.1.1707414294.1664878014
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 28 May 2019 12:07:30 GMT
etag: "170ca-589f18250a480"
accept-ranges: bytes
content-length: 94410
cache-control: max-age=2592000
expires: Thu, 03 Nov 2022 10:06:54 GMT
content-type: image/jpeg
X-Firefox-Spdy: h2

alpsawnings.co.za/images/2019/06/28/alu-ceilings-2.jpg

129.232.138.161

200 OK

24 kB

URL HTTP/2
alpsawnings.co.za/images/2019/06/28/alu-ceilings-2.jpg
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 600x227, components 3\012- data
Size
24 kB (24356 bytes)
Hash
7c12d97806072d8bd0678342d37eecea
c5c616c0faae14c9dc1cad1df2e6d3cfc96fc0cd
0baa92ba6af807d1e09a14271f2e1fca96b66b7219187c7fd01c7f51459093e2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/2019/06/28/alu-ceilings-2.jpg HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus; _gcl_au=1.1.1707414294.1664878014
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Fri, 28 Jun 2019 10:34:30 GMT
etag: "5f24-58c5fd2cd3980"
accept-ranges: bytes
content-length: 24356
cache-control: max-age=2592000
expires: Thu, 03 Nov 2022 10:06:54 GMT
content-type: image/jpeg
X-Firefox-Spdy: h2

alpsawnings.co.za/images/2019/06/07/alawnings-about-us.jpg

129.232.138.161

200 OK

79 kB

URL HTTP/2
alpsawnings.co.za/images/2019/06/07/alawnings-about-us.jpg
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 600x450, components 3\012- data
Size
79 kB (79178 bytes)
Hash
273ba5ca92de0edd9a8e819bb58867bb
81dd2e25e2d4a6447f5d0032104304b7faab89b8
c7a00a7d2e2218d7f535b2e56ce1fdaf11065c3c8bd224ce50b455e7caf1c892

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/2019/06/07/alawnings-about-us.jpg HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus; _gcl_au=1.1.1707414294.1664878014
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Fri, 07 Jun 2019 07:47:16 GMT
etag: "1354a-58ab70a0fa900"
accept-ranges: bytes
content-length: 79178
cache-control: max-age=2592000
expires: Thu, 03 Nov 2022 10:06:54 GMT
content-type: image/jpeg
X-Firefox-Spdy: h2

alpsawnings.co.za/media/system/css/system.css

129.232.138.161

200 OK

549 B

URL HTTP/2
alpsawnings.co.za/media/system/css/system.css
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text
Size
549 B (549 bytes)
Hash
176a33941588090dc3d59d7e96bfb099
57739e02540147916e61c3c459e8f7e0df5756c2
02f44706d20696ca4486c892b494fbea59f7c63d37b5e1a5901ecaa82beaa234

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /media/system/css/system.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/templates/system/css/system.css
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus; _gcl_au=1.1.1707414294.1664878014
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Sun, 14 Aug 2022 13:21:56 GMT
etag: "599-5e6336634a500-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 549
content-type: text/css
X-Firefox-Spdy: h2

alpsawnings.co.za/images/2019/06/28/adjustable-louvre.jpg

129.232.138.161

200 OK

38 kB

URL HTTP/2
alpsawnings.co.za/images/2019/06/28/adjustable-louvre.jpg
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 600x227, components 3\012- data
Size
38 kB (38411 bytes)
Hash
a48c5750316f88f9b36b6c3bb9f89f42
5d9abd5e0a80fc115f694853abe1327717888456
59f974b461fe6c7d555181e8f4f7d7da70af393bae5f948b5f899ac82b41f047

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/2019/06/28/adjustable-louvre.jpg HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus; _gcl_au=1.1.1707414294.1664878014
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Fri, 28 Jun 2019 11:16:50 GMT
etag: "960b-58c606a328c80"
accept-ranges: bytes
content-length: 38411
cache-control: max-age=2592000
expires: Thu, 03 Nov 2022 10:06:54 GMT
content-type: image/jpeg
X-Firefox-Spdy: h2

alpsawnings.co.za/images/2019/05/28/alawnings_funkypolycarbonate3.jpg

129.232.138.161

200 OK

64 kB

URL HTTP/2
alpsawnings.co.za/images/2019/05/28/alawnings_funkypolycarbonate3.jpg
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 600x227, components 3\012- data
Size
64 kB (64510 bytes)
Hash
5298313278f936779ffaf7cfbc2eb5dd
813cdc0629d84fcab91ce612a151d999d67889eb
e295b4460748c5c033fc9ed97c7851abb1ca19ecd7d3ea392d0462af9eaa1915

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/2019/05/28/alawnings_funkypolycarbonate3.jpg HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus; _gcl_au=1.1.1707414294.1664878014
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 28 May 2019 12:13:42 GMT
etag: "fbfe-589f1987ce980"
accept-ranges: bytes
content-length: 64510
cache-control: max-age=2592000
expires: Thu, 03 Nov 2022 10:06:54 GMT
content-type: image/jpeg
X-Firefox-Spdy: h2

alpsawnings.co.za/images/2019/05/28/alawnings_polycarbonate.jpg

129.232.138.161

200 OK

75 kB

URL HTTP/2
alpsawnings.co.za/images/2019/05/28/alawnings_polycarbonate.jpg
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 600x227, components 3\012- data
Size
75 kB (75428 bytes)
Hash
dab10064a75b0bcfe53a7839f9601e46
d1a5626dbaa920de0692c8ea1e6136dac71f8752
326e02f741143a0fdeb4b0763ad0e4af19f53e86753a028b4d5475a3f394ed90

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/2019/05/28/alawnings_polycarbonate.jpg HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus; _gcl_au=1.1.1707414294.1664878014
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 28 May 2019 12:11:42 GMT
etag: "126a4-589f19155db80"
accept-ranges: bytes
content-length: 75428
cache-control: max-age=2592000
expires: Thu, 03 Nov 2022 10:06:54 GMT
content-type: image/jpeg
X-Firefox-Spdy: h2

alpsawnings.co.za/images/2019/05/28/alawnings_canvaspatioshades1.jpg

129.232.138.161

200 OK

82 kB

URL HTTP/2
alpsawnings.co.za/images/2019/05/28/alawnings_canvaspatioshades1.jpg
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 600x227, components 3\012- data
Size
82 kB (81740 bytes)
Hash
a31131b23d53f5fb7cf2c7e07429f232
9f5cef03fb7c7bab6cf32346d676aff1b7ce0aa6
dd0e9c56d389447c1a303e9261fbcf80dc0d2bc4ab9ed5e9c2fdf08562bbe4f9

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/2019/05/28/alawnings_canvaspatioshades1.jpg HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus; _gcl_au=1.1.1707414294.1664878014
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 28 May 2019 12:02:04 GMT
etag: "13f4c-589f16ee24700"
accept-ranges: bytes
content-length: 81740
cache-control: max-age=2592000
expires: Thu, 03 Nov 2022 10:06:54 GMT
content-type: image/jpeg
X-Firefox-Spdy: h2

alpsawnings.co.za/images/2019/05/28/alawnings_dropblind1b.jpg

129.232.138.161

200 OK

118 kB

URL HTTP/2
alpsawnings.co.za/images/2019/05/28/alawnings_dropblind1b.jpg
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 600x227, components 3\012- data
Size
118 kB (117521 bytes)
Hash
cbc05c4dedb27ad416974500ad7948e7
a76262b621ec65441968a4da8973f5c745559815
1c21f41bdcc563c66b74b1b1065b63e2c0ba398b661c832ba23a9c39bb97f904

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/2019/05/28/alawnings_dropblind1b.jpg HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus; _gcl_au=1.1.1707414294.1664878014
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 28 May 2019 12:03:38 GMT
etag: "1cb11-589f1747c9a80"
accept-ranges: bytes
content-length: 117521
cache-control: max-age=2592000
expires: Thu, 03 Nov 2022 10:06:54 GMT
content-type: image/jpeg
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:06:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:06:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/librefranklin/v13/jizDREVItHgc8qDIbSTKq4XkRiUf2zc.woff2

216.58.207.195

200 OK

27 kB

URL HTTP/2
fonts.gstatic.com/s/librefranklin/v13/jizDREVItHgc8qDIbSTKq4XkRiUf2zc.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 27268, version 1.0\012- data
Size
27 kB (27268 bytes)
Hash
cd83836443d658985c464d7021aa3e83
83a2915021f30c4ed54752b02e0c999e3c56798c
0c5b68b3ae23054815d89c5a2230ad7edf2d4b68732b4463d6be74cacb974055

HTTP Headers

GET /s/librefranklin/v13/jizDREVItHgc8qDIbSTKq4XkRiUf2zc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://alpsawnings.co.za
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27268
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 20:02:26 GMT
expires: Tue, 03 Oct 2023 20:02:26 GMT
cache-control: public, max-age=31536000
age: 50669
last-modified: Mon, 11 Jul 2022 18:56:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2

216.58.207.195

200 OK

7.9 kB

URL HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://alpsawnings.co.za
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 04:06:12 GMT
expires: Sun, 01 Oct 2023 04:06:12 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
age: 280843
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:06:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

alpsawnings.co.za/templates/sj_plus/asset/fonts/awesome/fontawesome-webfont.woff

129.232.138.161

200 OK

44 kB

URL HTTP/2
alpsawnings.co.za/templates/sj_plus/asset/fonts/awesome/fontawesome-webfont.woff
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
Web Open Font Format, TrueType, length 44432, version 1.0\012- data
Size
44 kB (44432 bytes)
Hash
3293616ec0c605c7c2db25829a0a509e
04c3bf56d87a0828935bd6b4aee859995f321693
0fd28fece9ebd606b8b071460ebd3fc2ed7bc7a66ef91c8834f11dfacab4a849

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /templates/sj_plus/asset/fonts/awesome/fontawesome-webfont.woff HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://alpsawnings.co.za/templates/sj_plus/asset/fonts/awesome/css/font-awesome.css
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus; _gcl_au=1.1.1707414294.1664878014
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:55 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 27 Oct 2015 10:49:36 GMT
etag: "ad90-52313d5733000"
accept-ranges: bytes
content-length: 44432
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:55 GMT
content-type: font/woff
X-Firefox-Spdy: h2

alpsawnings.co.za/components/com_layer_slider/base/static/layerslider/skins/v6/skin.css

129.232.138.161

200 OK

1.1 kB

URL HTTP/2
alpsawnings.co.za/components/com_layer_slider/base/static/layerslider/skins/v6/skin.css
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
ASCII text, with CRLF line terminators
Size
1.1 kB (1053 bytes)
Hash
ff3231d9ce23caf406f680cb26768f34
5a52b4d2d6c90b4a336130bfb83b554230f732e1
3ef941318cf58f235b80d5c51d7a09234f315a40102fdbfe95eaf5fd9b445317

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /components/com_layer_slider/base/static/layerslider/skins/v6/skin.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus; _gcl_au=1.1.1707414294.1664878014
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:55 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Fri, 12 Apr 2019 05:43:58 GMT
etag: "175f-5864ec9fe2380-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:55 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1053
content-type: text/css
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alpsawnings.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Tue, 04 Oct 2022 08:41:09 GMT
expires: Tue, 04 Oct 2022 10:41:09 GMT
cache-control: public, max-age=7200
age: 5146
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.gstatic.com/wcm/loader.js

142.250.74.163

200 OK

1.3 kB

URL HTTP/2
www.gstatic.com/wcm/loader.js
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1123)
Size
1.3 kB (1339 bytes)
Hash
22300d54ba7faf32360c95915053014c
ea83f097bd99413f9d8fcb08d0312ba7ba1be99f
2c4c9c9d6af1ad12556ab11c8021eb5c254025ce04500bc885b69984dd562ce5

HTTP Headers

GET /wcm/loader.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alpsawnings.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1339
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Oct 2022 10:01:06 GMT
expires: Tue, 04 Oct 2022 11:01:06 GMT
cache-control: public, max-age=3600
age: 349
last-modified: Mon, 15 Mar 2021 16:45:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js

142.250.74.163

200 OK

159 kB

URL HTTP/2
www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (711)
Size
159 kB (158844 bytes)
Hash
b4ed95d4318e3b78b936c9c0f1ffa96e
b53c9376b1459afb07fb4b5c2e8d8dad776d3a02
3c21880cb7be6bec40f9d40c23ad39c9758999cf950cec07b86c83b21fde175f

HTTP Headers

GET /recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://alpsawnings.co.za
Connection: keep-alive
Referer: https://alpsawnings.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158844
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 01:05:31 GMT
expires: Sun, 01 Oct 2023 01:05:31 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 26 Sep 2022 04:02:34 GMT
content-type: text/javascript
age: 291684
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
53e0e5a2455fedae0d6308f91d41e445
237c2856f8a89ae3673ea909164557d65268c463
ddba9b3842f879168185b6607551069b312c44de4ec015ca4b43ad154d190bc8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:06:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

googleads.g.doubleclick.net/pagead/viewthroughconversion/623014850/?random=1664878015365&cv=9&fst=1664878015365&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa9s0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Falpsawnings.co.za%2F&tiba=Al%20Patio%20Solutions%20%26%20Awnings%20%7C%20Awnings%20%7C%20Drop%20Blinds%20%7C%20Carpot%20%26%20Patio%20Awnings%20%7C%20Fixed%20Patio%20Covers&auid=1707414294.1664878014&hn=www.google.com&async=1&rfmt=3&fmt=4

142.250.74.2

200 OK

1.1 kB

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/623014850/?random=1664878015365&cv=9&fst=1664878015365&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa9s0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Falpsawnings.co.za%2F&tiba=Al%20Patio%20Solutions%20%26%20Awnings%20%7C%20Awnings%20%7C%20Drop%20Blinds%20%7C%20Carpot%20%26%20Patio%20Awnings%20%7C%20Fixed%20Patio%20Covers&auid=1707414294.1664878014&hn=www.google.com&async=1&rfmt=3&fmt=4
IP
142.250.74.2:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2490), with no line terminators
Size
1.1 kB (1084 bytes)
Hash
3cb4f1cc031495ed22f8525346a5763d
4836ac95613c36979b2ed87544681ef088fcdbfa
bc6042c5792cc23b2341bb368f5aad19d0df382d52c7012092e9e881a70f9523

HTTP Headers

GET /pagead/viewthroughconversion/623014850/?random=1664878015365&cv=9&fst=1664878015365&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa9s0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Falpsawnings.co.za%2F&tiba=Al%20Patio%20Solutions%20%26%20Awnings%20%7C%20Awnings%20%7C%20Drop%20Blinds%20%7C%20Carpot%20%26%20Patio%20Awnings%20%7C%20Fixed%20Patio%20Covers&auid=1707414294.1664878014&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alpsawnings.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 04 Oct 2022 10:06:55 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1084
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 04-Oct-2022 10:21:55 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
53e0e5a2455fedae0d6308f91d41e445
237c2856f8a89ae3673ea909164557d65268c463
ddba9b3842f879168185b6607551069b312c44de4ec015ca4b43ad154d190bc8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:06:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e13df37c7a0102aa69d97512e4f3bad4
2c3019bef2f4bc34b3f3dc212b30d4fad04f8b37
cfbc8bfd83a8eb63bf5d189e398e1373222f1d1bde223fba70e3c7b560c708aa

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:06:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c2f53a68cf2490044db9c8a8b4ad0083
edcbbb89af1923bed4adfab5da5151af29ba5bcc
c58ae0008416eb3fbebf730eb018dbf378754dbc3cf2e631f003c3bf83d39fd9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:06:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.no/pagead/1p-user-list/623014850/?random=1664878015365&cv=9&fst=1664877600000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa9s0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Falpsawnings.co.za%2F&tiba=Al%20Patio%20Solutions%20%26%20Awnings%20%7C%20Awnings%20%7C%20Drop%20Blinds%20%7C%20Carpot%20%26%20Patio%20Awnings%20%7C%20Fixed%20Patio%20Covers&async=1&fmt=3&is_vtc=1&random=339320754&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y

142.250.74.3

200 OK

42 B

URL HTTP/2
www.google.no/pagead/1p-user-list/623014850/?random=1664878015365&cv=9&fst=1664877600000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa9s0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Falpsawnings.co.za%2F&tiba=Al%20Patio%20Solutions%20%26%20Awnings%20%7C%20Awnings%20%7C%20Drop%20Blinds%20%7C%20Carpot%20%26%20Patio%20Awnings%20%7C%20Fixed%20Patio%20Covers&async=1&fmt=3&is_vtc=1&random=339320754&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-user-list/623014850/?random=1664878015365&cv=9&fst=1664877600000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa9s0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Falpsawnings.co.za%2F&tiba=Al%20Patio%20Solutions%20%26%20Awnings%20%7C%20Awnings%20%7C%20Drop%20Blinds%20%7C%20Carpot%20%26%20Patio%20Awnings%20%7C%20Fixed%20Patio%20Covers&async=1&fmt=3&is_vtc=1&random=339320754&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alpsawnings.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 04 Oct 2022 10:06:56 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.googleadservices.com/pagead/conversion/623014850/wcm?cc=ZZ&dn=0826013472&cl=UcJjCN2UkNQBEMLniakC&ct_eid=2

216.58.207.226

302 Found

0 B

URL HTTP/2
www.googleadservices.com/pagead/conversion/623014850/wcm?cc=ZZ&dn=0826013472&cl=UcJjCN2UkNQBEMLniakC&ct_eid=2
IP
216.58.207.226:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pagead/conversion/623014850/wcm?cc=ZZ&dn=0826013472&cl=UcJjCN2UkNQBEMLniakC&ct_eid=2 HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://alpsawnings.co.za
Connection: keep-alive
Referer: https://alpsawnings.co.za/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://www.google.no/pagead/attribution/wcm?cc=ZZ&dn=0826013472&cl=UcJjCN2UkNQBEMLniakC
access-control-allow-origin: https://alpsawnings.co.za
access-control-allow-credentials: true
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Tue, 04 Oct 2022 10:06:56 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e13df37c7a0102aa69d97512e4f3bad4
2c3019bef2f4bc34b3f3dc212b30d4fad04f8b37
cfbc8bfd83a8eb63bf5d189e398e1373222f1d1bde223fba70e3c7b560c708aa

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:06:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c8ba09e28963a711c7b2ce6c91a3a3a3
7cc64a4bf1691002ed65627d8f5bccd7d742721e
e029fc044883da7fbfd828a7c98822fa3bc814ff7e75abf7a7bcbaa64cb395ba

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:06:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.195

200 OK

15 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 12:31:58 GMT
expires: Sun, 01 Oct 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 250498
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

alpsawnings.co.za/images/alawning-sa-logo.jpg

129.232.138.161

404 Not Found

19 kB

URL HTTP/2
alpsawnings.co.za/images/alawning-sa-logo.jpg
IP
129.232.138.161:0
ASN
#37153 xneelo

File type
data
Size
19 kB (18777 bytes)
Hash
70931f9a0a12cbd9c7f7aa9e8bed0700
308a2588abf079f56bebc418c5628ebd75f8159d
21a0b494e25a43e758f4130db58fa96c400098e4f6bfee900a716b1fd4120f59

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/alawning-sa-logo.jpg HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus; _gcl_au=1.1.1707414294.1664878014
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
date: Tue, 04 Oct 2022 10:06:55 GMT
server: Apache
x-logged-in: False
cache-control: no-cache
pragma: no-cache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
content-type: text/html; charset=UTF-8
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9917 bytes)
Hash
d8c08f8066cc732de8befd6ccd629a95
22aab05208a01ae5def4d63dc145085630f57bcb
f8a560a0563518d992d0bd2655d2b5c406435a18e874ca00b51374d2ff901770

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 9917
x-amzn-requestid: 2dff93d9-795d-4885-9b82-610b0d235a82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTGEnIAMF1zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-117afa703663ada75627792c;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: p5nOqBojKO6S-c_DxIu8B3p-NK0pzRHkz0DOPeyv7PQt9h0x1jdtoQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:55:54 GMT
age: 43867
etag: "22aab05208a01ae5def4d63dc145085630f57bcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Libre+Franklin:400,500,600,700|Merriweather:400,700,900&display=swap

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Libre+Franklin:400,500,600,700|Merriweather:400,700,900&display=swap
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Libre+Franklin:400,500,600,700|Merriweather:400,700,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alpsawnings.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 04 Oct 2022 10:06:54 GMT
date: Tue, 04 Oct 2022 10:06:54 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

alpsawnings.co.za/components/com_layer_slider/base/static/layerslider/js/layerslider.transitions.js?ver=6.6.053

129.232.138.161

200 OK

0 B

URL HTTP/2
alpsawnings.co.za/components/com_layer_slider/base/static/layerslider/js/layerslider.transitions.js?ver=6.6.053
IP
129.232.138.161:0
ASN
#37153 xneelo

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /components/com_layer_slider/base/static/layerslider/js/layerslider.transitions.js?ver=6.6.053 HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Fri, 12 Apr 2019 05:43:58 GMT
etag: "5622-5864ec9fe2380-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 3458
content-type: application/javascript
X-Firefox-Spdy: h2

alpsawnings.co.za/

129.232.138.161

200 OK

0 B

URL HTTP/2
alpsawnings.co.za/
IP
129.232.138.161:0
ASN
#37153 xneelo

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:53 GMT
server: Apache
set-cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; path=/; secure; HttpOnly
sj_plus_tpl=sj_plus; expires=Sun, 24-Sep-2023 10:06:54 GMT; Max-Age=30672000; path=/
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
content-type: text/html; charset=UTF-8
X-Firefox-Spdy: h2

alpsawnings.co.za/components/com_layer_slider/base/static/layerslider/js/layerslider.js?ver=6.6.053

129.232.138.161

200 OK

0 B

URL HTTP/2
alpsawnings.co.za/components/com_layer_slider/base/static/layerslider/js/layerslider.js?ver=6.6.053
IP
129.232.138.161:0
ASN
#37153 xneelo

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /components/com_layer_slider/base/static/layerslider/js/layerslider.js?ver=6.6.053 HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Fri, 12 Apr 2019 05:43:58 GMT
etag: "1d0fa-5864ec9fe2380-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 44279
content-type: application/javascript
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (53)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations