firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 04 Oct 2022 09:47:04 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: d7Cx30OyEGIt3OypBXgDsHAoNOQzdRaqDnShHy192MBgc5HjuKpXZQ==
Age: 1188
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9955bda9c9ef64bc5700a14af0bae25e
8de7b7469e905af0374bdfcc3006bbb844f13e94
1f611155394fac39439b8ec8217d8cd493d6b588d372d264e0d66c03129c50c6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F611155394FAC39439B8EC8217D8CD493D6B588D372D264E0D66C03129C50C6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6830
Expires: Tue, 04 Oct 2022 12:00:42 GMT
Date: Tue, 04 Oct 2022 10:06:52 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 04 Oct 2022 05:28:28 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: fgU_xWndVlzDEvdgyr7IzfW1roTeNxwcMFJhSLOK-SBFo_mQo0rXFA==
age: 16705
X-Firefox-Spdy: h2
alpsawnings.co.za/
129.232.138.161301 Moved Permanently 234 B IP 129.232.138.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 141bc1f3c043a23bf354f3dfbceb4c53
d55f95ad7470c5c828f4aa6bccb61769e686dacd
1baac050affd13a93dd7bd0b47239719e22336d29ca9fd81b337f77ee35205c4
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET / HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 04 Oct 2022 10:06:52 GMT
Server: Apache
Referrer-Policy: unsafe-url
Location: https://alpsawnings.co.za/
Content-Length: 234
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:06:52 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 04 Oct 2022 09:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Tue, 04 Oct 2022 10:27:25 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: kXI52JaKfGTFdq1P3WnrALWUGHux6XobH0qXAbEzQRJQ00im_7UKog==
Age: 2240
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7924613ad0fe1d0131c45d564d25b47e
50541f65d93fb1ef1ddad9ebf99b34a9a0f16181
cffff4f11e0df01f55d2df9afdb2552272d997164042ffbda6671d7d9233166b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CFFFF4F11E0DF01F55D2DF9AFDB2552272D997164042FFBDA6671D7D9233166B"
Last-Modified: Mon, 03 Oct 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21547
Expires: Tue, 04 Oct 2022 16:06:00 GMT
Date: Tue, 04 Oct 2022 10:06:53 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 16ebfb2aa621547ecf581e26fc828a7d
f78993331f6f5b8af6409a9ad2fc50b77070f68a
0f81fd1d6be9ccc04b74f0348aafe642c7b9ab7dffb7e8a679b5d67cc2e5fac3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5706
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:06:53 GMT
Last-Modified: Tue, 04 Oct 2022 08:31:47 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.162.217.251101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.162.217.251:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: AgyryjhuG37B8VbNXK8DZg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 4JYiFqZFDK7P4u2c3t1/T3NOQNo=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 900abf5ed99791e29bd6d7856ceb4c04
a193a68151924a80518e63ca052b914419bcda6f
bbe43f32330c1dd2a4dbadfbf71322336a576855f47fcf2cd82807d63ab90d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BBE43F32330C1DD2A4DBADFBF71322336A576855F47FCF2CD82807D63AB90D64"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14719
Expires: Tue, 04 Oct 2022 14:12:13 GMT
Date: Tue, 04 Oct 2022 10:06:54 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5ba23234dfb31276cc3bf9a347508595
a225d0a9ecf5d7f0032816c6f3d4a5ae1f3b27a3
33558bed4856ac3f2a7267965521b316ccd3ccc669877994c6c590e2d2a1b559
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:06:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9e40b2c69615f45f2bc898334ab3e343
6a569648ed10564e126d3bbf3f91352e6b3f6d4f
4f1d0982c58b9bbeaa266b99292baa1a00c9e39280f73d5a525722c851e15981
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:06:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-169297991-1
142.250.74.168200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-169297991-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (2039)
Hash 49950015006dbd22fe76829a53332b46
63a19cd7d1672916ff82d1279b367d70a133d303
37703c8d9376d6c1f43252ec8b85a4cc839f91201848cebd7fb63b448e7fb992
GET /gtag/js?id=UA-169297991-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alpsawnings.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 04 Oct 2022 10:06:54 GMT
expires: Tue, 04 Oct 2022 10:06:54 GMT
cache-control: private, max-age=900
last-modified: Tue, 04 Oct 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42367
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.getbutton.io/widget-send-button/js/init.js
95.216.228.15302 Moved Temporarily 145 B URL HTTP/1.1 static.getbutton.io/widget-send-button/js/init.js
IP 95.216.228.15:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 7938fc116951d02bc261f707297cf915
c7f2a9311468d25830f39a6e280e22cc871149ca
a7a0cbe25a887e612a079e22a6b8bee676d68530d19ddf883a19088768f6f464
GET /widget-send-button/js/init.js HTTP/1.1
Host: static.getbutton.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alpsawnings.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: nginx/1.16.0
Date: Tue, 04 Oct 2022 10:06:54 GMT
Content-Type: text/html
Content-Length: 145
Connection: keep-alive
Location: https://static.getbutton.io/widget/bundle.js
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5ba23234dfb31276cc3bf9a347508595
a225d0a9ecf5d7f0032816c6f3d4a5ae1f3b27a3
33558bed4856ac3f2a7267965521b316ccd3ccc669877994c6c590e2d2a1b559
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:06:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9e40b2c69615f45f2bc898334ab3e343
6a569648ed10564e126d3bbf3f91352e6b3f6d4f
4f1d0982c58b9bbeaa266b99292baa1a00c9e39280f73d5a525722c851e15981
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:06:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-142337072-1
142.250.74.168200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-142337072-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (2039)
Hash 78fe5ac33864d5574fa05cbbf2ec3c99
aeafc612a156b111aad4add4b5da1c17f057d16a
9b231c412e32aaf9834ba13d6497ba4b0cd48e3dabe36b76404902d189ac51c8
GET /gtag/js?id=UA-142337072-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alpsawnings.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 04 Oct 2022 10:06:54 GMT
expires: Tue, 04 Oct 2022 10:06:54 GMT
cache-control: private, max-age=900
last-modified: Tue, 04 Oct 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42364
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=AW-623014850&l=dataLayer&cx=c
142.250.74.168200 OK 47 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=AW-623014850&l=dataLayer&cx=c
IP 142.250.74.168:0
File type ASCII text, with very long lines (2039)
Hash e1c9c719832a0f21c16755f2017979d4
953844e3dd3c6ac5c9df077879e34f83bb7ebf89
561e8ffd74cae10235b7e716db0ed3a34a90e5e00beef94272aacb86600ca176
GET /gtag/js?id=AW-623014850&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alpsawnings.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 04 Oct 2022 10:06:54 GMT
expires: Tue, 04 Oct 2022 10:06:54 GMT
cache-control: private, max-age=900
last-modified: Tue, 04 Oct 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46844
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b45b15bb651cc185ea82d91a51f06b5a
44987727be72bb12b4e4fc4fac50145835512750
f0b61426de169cf2efde87ac98d5123ea785004ad05c05932a099b644b2fdf64
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:06:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?render=6Lcs2_EhAAAAAAhA3SWZT-JxFV8E3TqhrcU17A_Q
142.250.74.164200 OK 585 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6Lcs2_EhAAAAAAhA3SWZT-JxFV8E3TqhrcU17A_Q
IP 142.250.74.164:0
File type ASCII text, with very long lines (884), with no line terminators
Hash 6ab11b085b3bc04fb45a6f21358f75c3
788e86b9c9c41f3285802acfe6057e77f538bed9
69172549f442721869c12c3bbcc5300427131476e5705f07c85dd1af140e21dc
GET /recaptcha/api.js?render=6Lcs2_EhAAAAAAhA3SWZT-JxFV8E3TqhrcU17A_Q HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alpsawnings.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Tue, 04 Oct 2022 10:06:54 GMT
date: Tue, 04 Oct 2022 10:06:54 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 585
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 129fe858bf2aa7291fd2c6dd4cf9d226
e3e048b964b851ebbdcfb5bd80ebdbad13720cf6
addc7e4ddab73c8c7ee50f6d33fc1e4ff73b71cc014e481049a393c3b87b0924
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:06:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
alpsawnings.co.za/plugins/system/yt/includes/site/css/style.css
129.232.138.161200 OK 25 B URL HTTP/2 alpsawnings.co.za/plugins/system/yt/includes/site/css/style.css
IP 129.232.138.161:0
File type ASCII text, with CRLF line terminators
Hash 5410d52b46c0050788f43831e63bc557
472e149be3863917a676693c0eb1e1a7896d5b57
5ab60f5e6ef174bd46fb89a03fefe65ecd85a90ec28e0fa120abe4322eaef104
Analyzer Verdict Alert quad9 Sinkholed
GET /plugins/system/yt/includes/site/css/style.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 27 Oct 2015 10:49:36 GMT
etag: "19-52313d5733000"
accept-ranges: bytes
content-length: 25
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
content-type: text/css
X-Firefox-Spdy: h2
alpsawnings.co.za/media/k2/assets/css/k2.fonts.css?v2.7.0
129.232.138.161200 OK 2.8 kB URL HTTP/2 alpsawnings.co.za/media/k2/assets/css/k2.fonts.css?v2.7.0
IP 129.232.138.161:0
File type ASCII text, with very long lines (3266)
Hash 6b8a54041a1695037c68bb5363497762
103972ec360ccf80f3014b1a944425392ad36e32
d67bf71768060e97371e272125de110a858654532f37d141e5ee29109f5ade93
Analyzer Verdict Alert quad9 Sinkholed
GET /media/k2/assets/css/k2.fonts.css?v2.7.0 HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Mon, 04 Apr 2016 10:19:28 GMT
etag: "306a-52fa6104b4c00-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 2760
content-type: text/css
X-Firefox-Spdy: h2
alpsawnings.co.za/components/com_sppagebuilder/assets/css/font-awesome.min.css
129.232.138.161200 OK 7.0 kB URL HTTP/2 alpsawnings.co.za/components/com_sppagebuilder/assets/css/font-awesome.min.css
IP 129.232.138.161:0
File type ASCII text, with very long lines (30799)
Hash 9bdb9e513bb6dbcf656a9558110d63e1
6a5daf1047d64d7f33f39b3e610e7c18d6eba4be
eec1592a6849452ba3ccadce81336a0831735b1cf767ca2e5f1ce0610f2682da
Analyzer Verdict Alert quad9 Sinkholed
GET /components/com_sppagebuilder/assets/css/font-awesome.min.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Wed, 04 Apr 2018 12:23:56 GMT
etag: "78f1-56904e593af00-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 7042
content-type: text/css
X-Firefox-Spdy: h2
alpsawnings.co.za/components/com_k2/css/k2.css?v2.7.0
129.232.138.161200 OK 8.8 kB URL HTTP/2 alpsawnings.co.za/components/com_k2/css/k2.css?v2.7.0
IP 129.232.138.161:0
File type assembler source, ASCII text
Hash dcdd4adb4c751beb26fb5a4008a71150
0f9c43ac320e8d9a61fadfa02479a5a857e04889
35cc704dec3d699090ea48e4e4cea743e6d3d0925ba21db645fc3720258a2967
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /components/com_k2/css/k2.css?v2.7.0 HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Fri, 07 Jun 2019 08:58:10 GMT
etag: "c8af-58ab8079e8c80-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 8844
content-type: text/css
X-Firefox-Spdy: h2
alpsawnings.co.za/components/com_sppagebuilder/assets/css/animate.min.css
129.232.138.161200 OK 3.7 kB URL HTTP/2 alpsawnings.co.za/components/com_sppagebuilder/assets/css/animate.min.css
IP 129.232.138.161:0
File type ASCII text, with very long lines (53270)
Hash fc5f4c8c29d19d17a712063e18aa6afd
8a1d58f924ec5b62c734d96e0fdc80deb34b3cab
7a599f3de5a4014e16bb8ed054f9d56f2c89c7a9a1b58e47610cad7f92ca8620
Analyzer Verdict Alert quad9 Sinkholed
GET /components/com_sppagebuilder/assets/css/animate.min.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Wed, 04 Apr 2018 12:23:56 GMT
etag: "d0b7-56904e593af00-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 3706
content-type: text/css
X-Firefox-Spdy: h2
alpsawnings.co.za/components/com_sppagebuilder/assets/css/sppagecontainer.css
129.232.138.161200 OK 139 B URL HTTP/2 alpsawnings.co.za/components/com_sppagebuilder/assets/css/sppagecontainer.css
IP 129.232.138.161:0
File type ASCII text, with no line terminators
Hash 19280a9ea979812f146fbf81836b3944
70566f97288257b0408c5424f46c3a2c2de88335
db4326fc826eb1888f2f388521a0d0e485101df5e65df3ef84b63e4d60d30237
Analyzer Verdict Alert quad9 Sinkholed
GET /components/com_sppagebuilder/assets/css/sppagecontainer.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Wed, 04 Apr 2018 12:23:56 GMT
etag: "10c-56904e593af00-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 139
content-type: text/css
X-Firefox-Spdy: h2
alpsawnings.co.za/components/com_sppagebuilder/assets/css/magnific-popup.css
129.232.138.161200 OK 1.7 kB URL HTTP/2 alpsawnings.co.za/components/com_sppagebuilder/assets/css/magnific-popup.css
IP 129.232.138.161:0
File type ASCII text, with very long lines (5920), with no line terminators
Hash d41e5916de4914a09fee3d5b33ddf094
f844ef29e472695fd0d9784c171d70ee4f21194e
99bf0c6b6ce378b09c509f3a4f6a213c08459f226810e1d5f0c86b9c9654fcb5
Analyzer Verdict Alert quad9 Sinkholed
GET /components/com_sppagebuilder/assets/css/magnific-popup.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Wed, 04 Apr 2018 12:23:56 GMT
etag: "1720-56904e593af00-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1711
content-type: text/css
X-Firefox-Spdy: h2
alpsawnings.co.za/templates/system/css/system.css
129.232.138.161200 OK 421 B URL HTTP/2 alpsawnings.co.za/templates/system/css/system.css
IP 129.232.138.161:0
Hash a4158af24a9d1719f394ab0f43e99fc1
7aa1d3b6f72d2c872f68270eaeeaf184de6b0aba
3ac2632a0ab89052158e6af5f0ac9d84257e7d9ff87bf13c31c139e6b87ddec7
Analyzer Verdict Alert quad9 Sinkholed
GET /templates/system/css/system.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Sun, 14 Aug 2022 13:21:56 GMT
etag: "371-5e6336634a500-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 421
content-type: text/css
X-Firefox-Spdy: h2
alpsawnings.co.za/templates/system/css/general.css
129.232.138.161200 OK 880 B URL HTTP/2 alpsawnings.co.za/templates/system/css/general.css
IP 129.232.138.161:0
Hash e8ddb5102c1c7ec50fcc28f9e1cade3c
a85a3f9309eea32d964edc3d07a57437bd3cef3a
d602539e7cba8c33e40d76b0ca464690a7eca3b1b1a163dcdc031e07b13ca8b1
Analyzer Verdict Alert quad9 Sinkholed
GET /templates/system/css/general.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Sun, 14 Aug 2022 13:21:56 GMT
etag: "a9d-5e6336634a500-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 880
content-type: text/css
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13904
Expires: Tue, 04 Oct 2022 13:58:38 GMT
Date: Tue, 04 Oct 2022 10:06:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13904
Expires: Tue, 04 Oct 2022 13:58:38 GMT
Date: Tue, 04 Oct 2022 10:06:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13904
Expires: Tue, 04 Oct 2022 13:58:38 GMT
Date: Tue, 04 Oct 2022 10:06:54 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg
34.120.237.76200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6c6882c60d7ca6f918c77104e3ad1d52
20ef861be49c652a938e0145e4ca3a60159367e2
861f5870990fbd2939d151ae18384cf311e87067ca9a50818efe0c2d51b83088
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5504
x-amzn-requestid: 37405eb0-5c75-46a9-84c0-e8ed726995d8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpHvHPvoAMF3mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5564-77fd550b58af612525e74761;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Ovm2wuk28PygH4EZNEUoPchoHQggWCyXbYHOjMV1tZmfyDrL6PjPZA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:29:19 GMT
age: 41855
etag: "20ef861be49c652a938e0145e4ca3a60159367e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c459c91-b5cc-492c-9573-3101e5df6b51.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c459c91-b5cc-492c-9573-3101e5df6b51.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 34f2dfb2faff276db1d4a57739db2450
f5ce815082043a4efce28fc790ae7d8b3a8531f8
e02ea92f0be524ccfe26eee61a77e39a13d852d1ba3696f729e0f61812028667
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c459c91-b5cc-492c-9573-3101e5df6b51.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5083
x-amzn-requestid: ed99df03-5d15-4e09-9aea-bbf77a705323
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpI0HT0IAMFxvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b556b-422197147d76caac6e910664;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:35 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: pddStyEpwVdYKSAUVcpupnWVPw6ALoYCouHQzixF_vTgXdpVF60ElA==
via: 1.1 946b9edb2009c5508a0fbbd636f95014.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:10:59 GMT
age: 42955
etag: "f5ce815082043a4efce28fc790ae7d8b3a8531f8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f5624b4-8e2a-461e-a32a-38d6b5a3a8d2.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f5624b4-8e2a-461e-a32a-38d6b5a3a8d2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ae824db4a95391149198a4b6b8556c70
db07d58d8feff4ea01866d095e5264ee5c8e1ca3
19e96d204813247697e1858daf9e07d6c4cafd9ab1175a3bf39a7f07f6991521
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f5624b4-8e2a-461e-a32a-38d6b5a3a8d2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11101
x-amzn-requestid: f98e84d9-1e66-4436-b793-219a777f2ba0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcqcvE8JoAMFQ2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5784-25bd2b234c1093de70074c92;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:43:32 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: becOxfqUowywFrxzDSeK7F1lFdDVTSHIF1TLC5k5aSlLPpsR6F8gjw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:08:47 GMT
age: 43087
etag: "db07d58d8feff4ea01866d095e5264ee5c8e1ca3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6779181f9c06975f2a662da743893939
585e7146fd24cdc2496b05baafea04091dc541e2
8e9a9f92fd89b7cdce77884ccd76b83ab82d28f125ebfc1cb0d371d4046b7985
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4858
x-amzn-requestid: fb21c414-2994-444a-a838-e643fd05b171
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTEfPoAMFfeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-593dd8043b0490e7301cac0d;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MiSh_FjAciKCaOakY2mM_EHBN1Z6GIDYIP8mwS4ikkrToQN3Ktsv2g==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:56:46 GMT
age: 43808
etag: "585e7146fd24cdc2496b05baafea04091dc541e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3178d2f-9a52-4d0e-a26b-5a90ef8578f2.jpeg
34.120.237.76200 OK 3.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3178d2f-9a52-4d0e-a26b-5a90ef8578f2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 488ec5b4267ccb1cdc4e6e08556f7f3b
42dd7ec0c606dbd3ccc0074f61d3b4b12f2e3c88
d9b05fe92962a58b9a8e8dbd4757969aa361be12018107ae649ffcdb8a0f8d84
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3178d2f-9a52-4d0e-a26b-5a90ef8578f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3430
x-amzn-requestid: 22a0e400-1567-4c9c-aca9-782f3f81a8ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZKLCrEn4IAMFZWw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6333f210-11fa888c78719c44160accf8;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 07:04:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 69u2trVvquFefzPFeOg_AuyzqQ6EBpY_ok9d9RXv71NE3TB_qELdtg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 16:24:09 GMT
age: 63765
etag: "42dd7ec0c606dbd3ccc0074f61d3b4b12f2e3c88"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0bec66cf-b911-4eb8-95d6-27e5f2afb6c7.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0bec66cf-b911-4eb8-95d6-27e5f2afb6c7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash de29d0d95d22e4e246a90feed644baf0
4ac6c5691df804078d5da54233cf4d8e7012f9ca
8e34ad07e098df14f7001d1ee538479de11afa4c255006cb6e8e2207c0e50a47
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0bec66cf-b911-4eb8-95d6-27e5f2afb6c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8308
x-amzn-requestid: 3348b2e8-915a-492b-8241-89c13a21232c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcqFlFyyoAMFz_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b56f0-2baf7ac2213c31fc384e8317;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:41:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Y1H21zphqs9mIGVYHojfc-nvW35BS3nq4hunM_JmyT9mC100bXlgWw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:55:46 GMT
age: 43868
etag: "4ac6c5691df804078d5da54233cf4d8e7012f9ca"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
alpsawnings.co.za/components/com_sppagebuilder/assets/css/sppagebuilder.css
129.232.138.161200 OK 15 kB URL HTTP/2 alpsawnings.co.za/components/com_sppagebuilder/assets/css/sppagebuilder.css
IP 129.232.138.161:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4a6b3efc47b64bd90c11d3f72e281e8a
2dba91d2ce310f0806500ffe78c38ed353ef33f9
978358228ea87b5dcaa955ab86b39a94f9d33d3ae9f17a9778d8ecfe9ad76f71
Analyzer Verdict Alert quad9 Sinkholed
GET /components/com_sppagebuilder/assets/css/sppagebuilder.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Wed, 04 Apr 2018 12:23:56 GMT
etag: "18c1d-56904e593af00-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 15196
content-type: text/css
X-Firefox-Spdy: h2
alpsawnings.co.za/templates/sj_plus/css/your_css.css
129.232.138.161200 OK 0 B URL HTTP/2 alpsawnings.co.za/templates/sj_plus/css/your_css.css
IP 129.232.138.161:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /templates/sj_plus/css/your_css.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Mon, 12 Sep 2022 10:16:32 GMT
etag: "0-5e878308fc000"
accept-ranges: bytes
content-length: 0
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
content-type: text/css
X-Firefox-Spdy: h2
alpsawnings.co.za/templates/sj_plus/asset/fonts/awesome/css/font-awesome.css
129.232.138.161200 OK 4.3 kB URL HTTP/2 alpsawnings.co.za/templates/sj_plus/asset/fonts/awesome/css/font-awesome.css
IP 129.232.138.161:0
File type troff or preprocessor input, ASCII text
Hash 19d78f5e25225dbe7ace94e1354571d3
1df9c9231ce211d100795c7a968b95a259ed655c
01eab2ba4d79257f5b37cc01c905ec0a6eab206f6958beec21f1f2abcee67d87
Analyzer Verdict Alert quad9 Sinkholed
GET /templates/sj_plus/asset/fonts/awesome/css/font-awesome.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 27 Oct 2015 10:49:36 GMT
etag: "544e-52313d5733000-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 4268
content-type: text/css
X-Firefox-Spdy: h2
alpsawnings.co.za/templates/sj_plus/css/template-blue.css
129.232.138.161200 OK 15 kB URL HTTP/2 alpsawnings.co.za/templates/sj_plus/css/template-blue.css
IP 129.232.138.161:0
File type Unicode text, UTF-8 text, with very long lines (530)
Hash 9a46a3729ce3b10af5d96cef5d7c6cc9
f98fb8611033088b7763a3fab686b2616eb80826
87ff18f4831f6bc953dc9908ca54dfe14795061e8c1545a193df7f3a23ffab68
Analyzer Verdict Alert quad9 Sinkholed
GET /templates/sj_plus/css/template-blue.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Mon, 12 Sep 2022 14:08:42 GMT
etag: "1adc9-5e87b6edaae80-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 14664
content-type: text/css
X-Firefox-Spdy: h2
alpsawnings.co.za/templates/sj_plus/css/pattern.css
129.232.138.161200 OK 548 B URL HTTP/2 alpsawnings.co.za/templates/sj_plus/css/pattern.css
IP 129.232.138.161:0
Hash cd92a5a6a277e5de381e74deb22f4411
5c0b22cf863d4146a22ab7ae2753c454253a413e
63198243beffd5df6f7ed53400039dbd8458481e04a1c354b0b7631c72c19535
Analyzer Verdict Alert quad9 Sinkholed
GET /templates/sj_plus/css/pattern.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 27 Oct 2015 10:49:36 GMT
etag: "ab6-52313d5733000-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 548
content-type: text/css
X-Firefox-Spdy: h2
alpsawnings.co.za/media/com_rsform/css/front.css?71e449bd434af327e401562a7f604f03
129.232.138.161200 OK 1.5 kB URL HTTP/2 alpsawnings.co.za/media/com_rsform/css/front.css?71e449bd434af327e401562a7f604f03
IP 129.232.138.161:0
Hash 7c91d85d23a9ccc677b9117985896c79
62b74eb5db403fb18e2916d674fc3b03a4b6baf4
71d55d7ed8a177a96b01261244cabacbf35b90391033537434c962e9cefd24e6
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /media/com_rsform/css/front.css?71e449bd434af327e401562a7f604f03 HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Mon, 12 Sep 2022 13:26:31 GMT
etag: "1ad9-5e87ad7feafc0-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1512
content-type: text/css
X-Firefox-Spdy: h2
alpsawnings.co.za/media/com_rsform/css/frameworks/responsive/responsive.css?71e449bd434af327e401562a7f604f03
129.232.138.161200 OK 3.0 kB URL HTTP/2 alpsawnings.co.za/media/com_rsform/css/frameworks/responsive/responsive.css?71e449bd434af327e401562a7f604f03
IP 129.232.138.161:0
Hash f2b917a0c7d8788707020a0e3b67daf3
229886994bc6a233920c70aa8c8a6f6e78f654d1
839667454ade228f44c6106f3cf9455fcf2ee1ec70965a495bb20dec163d3f65
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /media/com_rsform/css/frameworks/responsive/responsive.css?71e449bd434af327e401562a7f604f03 HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Mon, 12 Sep 2022 13:49:21 GMT
etag: "5a3e-5e87b29a73a40-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 3032
content-type: text/css
X-Firefox-Spdy: h2
alpsawnings.co.za/templates/sj_plus/css/responsive.css
129.232.138.161200 OK 3.7 kB URL HTTP/2 alpsawnings.co.za/templates/sj_plus/css/responsive.css
IP 129.232.138.161:0
Hash bd811867ef6089414210d33b8f13f08e
e8a2d34c8f8db5c935da32c60272f11832b76371
8b9e3d2ce377e52bcf106d3e30f2b92b9b2e90e63650322119633a732c7b1add
Analyzer Verdict Alert quad9 Sinkholed
GET /templates/sj_plus/css/responsive.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Fri, 27 Mar 2020 13:04:56 GMT
etag: "528a-5a1d5bf786e00-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 3729
content-type: text/css
X-Firefox-Spdy: h2
alpsawnings.co.za/templates/sj_plus/css/jquery.mmenu.all.css
129.232.138.161200 OK 5.0 kB URL HTTP/2 alpsawnings.co.za/templates/sj_plus/css/jquery.mmenu.all.css
IP 129.232.138.161:0
Hash 38bb63b88462b1fd7366faf9711da164
983e6647325cb0f2f01bfb4ff3932079c62e4f8e
57066e3fe56d50b37acb996f533219b770e4843496a21ef7ae463b543d5d0cd4
Analyzer Verdict Alert quad9 Sinkholed
GET /templates/sj_plus/css/jquery.mmenu.all.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 27 Oct 2015 10:49:36 GMT
etag: "a252-52313d5733000-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 5025
content-type: text/css
X-Firefox-Spdy: h2
alpsawnings.co.za/plugins/system/yt/includes/admin/js/jquery-noconflict.js
129.232.138.161200 OK 21 B URL HTTP/2 alpsawnings.co.za/plugins/system/yt/includes/admin/js/jquery-noconflict.js
IP 129.232.138.161:0
Hash e2060c4e5e5955c824723b13a212d3ec
18420ce484978f8ba3d7371febf1638828bb7a67
5b6cf4e6eda02f7c90b60b3c32413c0851915f8f80a268a913b92929085132a6
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /plugins/system/yt/includes/admin/js/jquery-noconflict.js HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 27 Oct 2015 10:49:36 GMT
etag: "15-52313d5733000"
accept-ranges: bytes
content-length: 21
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
content-type: application/javascript
X-Firefox-Spdy: h2
alpsawnings.co.za/modules/mod_jux_megamenu/assets/css/style/blackwhite.css
129.232.138.161200 OK 825 B URL HTTP/2 alpsawnings.co.za/modules/mod_jux_megamenu/assets/css/style/blackwhite.css
IP 129.232.138.161:0
File type ASCII text, with very long lines (329), with CRLF line terminators
Hash 2182ffd856e47e43af7689545e11834b
a5af514f144d4abb22d54374181b6846cac2c765
9d9dae40f4da757d643d14716c87ad4cf9c420e8b8f1978bea0bea74c6fd62e2
Analyzer Verdict Alert quad9 Sinkholed
GET /modules/mod_jux_megamenu/assets/css/style/blackwhite.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Mon, 12 Sep 2022 11:44:16 GMT
etag: "11d1-5e8796a520400-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 825
content-type: text/css
X-Firefox-Spdy: h2
alpsawnings.co.za/modules/mod_jux_megamenu/assets/css/style.css
129.232.138.161200 OK 2.0 kB URL HTTP/2 alpsawnings.co.za/modules/mod_jux_megamenu/assets/css/style.css
IP 129.232.138.161:0
File type ASCII text, with very long lines (516)
Hash 3361b6858e35d690aa36908749754661
2f7304c68721ddc37291117e7e639d802feae411
e0a00ab297a7790e351cd3db91847ba4f8e674f2859939e1293534b6d7101b08
Analyzer Verdict Alert quad9 Sinkholed
GET /modules/mod_jux_megamenu/assets/css/style.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 28 May 2019 09:16:24 GMT
etag: "3727-589ef1e69ea00-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1956
content-type: text/css
X-Firefox-Spdy: h2
alpsawnings.co.za/modules/mod_jux_megamenu/assets/css/style_responsive.css
129.232.138.161200 OK 1.5 kB URL HTTP/2 alpsawnings.co.za/modules/mod_jux_megamenu/assets/css/style_responsive.css
IP 129.232.138.161:0
File type ASCII text, with CRLF line terminators
Hash 87308194a0642504efde729587e04da2
7c011516824a7c7442c96d5e8ce6ff2f6efe2f62
f889cbc53aa09a7994f25d229d37132bd61c275eeab7b5db5733b1467ed8968a
Analyzer Verdict Alert quad9 Sinkholed
GET /modules/mod_jux_megamenu/assets/css/style_responsive.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Mon, 20 Apr 2015 07:57:28 GMT
etag: "1dbd-5142348012a00-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1471
content-type: text/css
X-Firefox-Spdy: h2
alpsawnings.co.za/components/com_layer_slider/base/static/layerslider/css/layerslider.css?ver=6.6.053
129.232.138.161200 OK 3.8 kB URL HTTP/2 alpsawnings.co.za/components/com_layer_slider/base/static/layerslider/css/layerslider.css?ver=6.6.053
IP 129.232.138.161:0
File type ASCII text, with CRLF line terminators
Hash e9cbd07612de5a4ad48d95888d55a6a0
9e37a99564c9021f38c5747944b8a32510a46a05
c088d56b7ffdfac117177e4c7c5598fb98fa658e63391ef42b5032e266960213
Analyzer Verdict Alert quad9 Sinkholed
GET /components/com_layer_slider/base/static/layerslider/css/layerslider.css?ver=6.6.053 HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Fri, 12 Apr 2019 05:43:58 GMT
etag: "55fe-5864ec9fe2380-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 3765
content-type: text/css
X-Firefox-Spdy: h2
alpsawnings.co.za/templates/sj_plus/asset/bootstrap/css/bootstrap.min.css
129.232.138.161200 OK 18 kB URL HTTP/2 alpsawnings.co.za/templates/sj_plus/asset/bootstrap/css/bootstrap.min.css
IP 129.232.138.161:0
File type ASCII text, with very long lines (65371)
Hash 75ac9f3aa86995c028c4a700c3b04321
a061911d2cb6f7689ff24a22fcb6b971d16a5f82
742dc055d132ced6c07bc9491dd8dc5627a0d5e427f92728420bc8309d3c8306
Analyzer Verdict Alert quad9 Sinkholed
GET /templates/sj_plus/asset/bootstrap/css/bootstrap.min.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 27 Oct 2015 10:49:36 GMT
etag: "1abce-52313d5733000-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 18141
content-type: text/css
X-Firefox-Spdy: h2
alpsawnings.co.za/media/jui/js/jquery-noconflict.js?71e449bd434af327e401562a7f604f03
129.232.138.161200 OK 21 B URL HTTP/2 alpsawnings.co.za/media/jui/js/jquery-noconflict.js?71e449bd434af327e401562a7f604f03
IP 129.232.138.161:0
Hash e2060c4e5e5955c824723b13a212d3ec
18420ce484978f8ba3d7371febf1638828bb7a67
5b6cf4e6eda02f7c90b60b3c32413c0851915f8f80a268a913b92929085132a6
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /media/jui/js/jquery-noconflict.js?71e449bd434af327e401562a7f604f03 HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Sun, 14 Aug 2022 13:21:56 GMT
etag: "15-5e6336634a500"
accept-ranges: bytes
content-length: 21
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
content-type: application/javascript
X-Firefox-Spdy: h2
alpsawnings.co.za/components/com_sppagebuilder/assets/js/jquery.parallax-1.1.3.js
129.232.138.161200 OK 427 B URL HTTP/2 alpsawnings.co.za/components/com_sppagebuilder/assets/js/jquery.parallax-1.1.3.js
IP 129.232.138.161:0
File type ASCII text, with very long lines (892), with no line terminators
Hash 28121b07310145a81cc64d177ce3cf98
9b0e26cca6d8f2aa65dc48bd8b2d03a4f0b22484
792f1f5fe34b233e708d932dde671b5a6eb02b22e06e597446d699b33d085446
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /components/com_sppagebuilder/assets/js/jquery.parallax-1.1.3.js HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Wed, 04 Apr 2018 12:23:56 GMT
etag: "37c-56904e593af00-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 427
content-type: application/javascript
X-Firefox-Spdy: h2
alpsawnings.co.za/media/k2/assets/js/k2.frontend.js?v2.7.0&sitepath=/
129.232.138.161200 OK 2.6 kB URL HTTP/2 alpsawnings.co.za/media/k2/assets/js/k2.frontend.js?v2.7.0&sitepath=/
IP 129.232.138.161:0
Hash a5e4cbedc0ede8ebcb926aa05dd81bdc
881f27c3d90235ece925b5d25ef66d6e1d8d48ed
6d7b4b83323e566b99c4f24d802eaaa6673dcd4327aeaffdd84f724ccf85042a
Analyzer Verdict Alert quad9 Sinkholed
GET /media/k2/assets/js/k2.frontend.js?v2.7.0&sitepath=/ HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Mon, 04 Apr 2016 10:19:28 GMT
etag: "24f3-52fa6104b4c00-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 2627
content-type: application/javascript
X-Firefox-Spdy: h2
alpsawnings.co.za/templates/sj_plus/js/scrollReveal.js
129.232.138.161200 OK 3.2 kB URL HTTP/2 alpsawnings.co.za/templates/sj_plus/js/scrollReveal.js
IP 129.232.138.161:0
Hash cac8ca816a896cd9d2ff143f20f08530
25b9f280a52d253f9faa65f13caeb58d2432e51c
c4141e8342782b956656c2de02e98c3a32bddb84231beb4f7a80a9f58a2e7836
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /templates/sj_plus/js/scrollReveal.js HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 27 Oct 2015 10:49:38 GMT
etag: "2e58-52313d591b480-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 3201
content-type: application/javascript
X-Firefox-Spdy: h2
alpsawnings.co.za/media/system/js/core.js?71e449bd434af327e401562a7f604f03
129.232.138.161200 OK 3.4 kB URL HTTP/2 alpsawnings.co.za/media/system/js/core.js?71e449bd434af327e401562a7f604f03
IP 129.232.138.161:0
File type Unicode text, UTF-8 text, with very long lines (8729)
Hash 39739d83d7f81aaa594bc365c6b83d4f
0026374991c06bd447685e789cd79d4cb25c85c2
185a0f148816fa806e9950f0f8d74541b5974e9151f9c3b8563844b6b9fa7a15
Analyzer Verdict Alert quad9 Sinkholed
GET /media/system/js/core.js?71e449bd434af327e401562a7f604f03 HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Sun, 14 Aug 2022 13:21:56 GMT
etag: "221f-5e6336634a500-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 3363
content-type: application/javascript
X-Firefox-Spdy: h2
alpsawnings.co.za/media/jui/js/jquery-migrate.min.js?71e449bd434af327e401562a7f604f03
129.232.138.161200 OK 4.0 kB URL HTTP/2 alpsawnings.co.za/media/jui/js/jquery-migrate.min.js?71e449bd434af327e401562a7f604f03
IP 129.232.138.161:0
File type ASCII text, with very long lines (9959)
Hash a6c81e2f02bd04160d2de88c4e8f3559
e3f3c91427d785820ca97dabe738f01faf041f36
b734d83af5da0eb627e04d3e62ce652b9eb7de19667a1b91da6b93f0ea5d7ffe
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /media/jui/js/jquery-migrate.min.js?71e449bd434af327e401562a7f604f03 HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Sun, 14 Aug 2022 13:21:56 GMT
etag: "2748-5e6336634a500-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 4014
content-type: application/javascript
X-Firefox-Spdy: h2
alpsawnings.co.za/components/com_sppagebuilder/assets/js/jquery.magnific-popup.min.js
129.232.138.161200 OK 7.2 kB URL HTTP/2 alpsawnings.co.za/components/com_sppagebuilder/assets/js/jquery.magnific-popup.min.js
IP 129.232.138.161:0
File type ASCII text, with very long lines (19998), with no line terminators
Hash cb2d3de020f0cbb60c86801656fdee9c
7b059d1c393f0c16924a1197417a5ee68116450e
38766a496c1af74ce72490ac75c30793d5985d3933df55b335b343200d007770
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /components/com_sppagebuilder/assets/js/jquery.magnific-popup.min.js HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Wed, 04 Apr 2018 12:23:56 GMT
etag: "4e1e-56904e593af00-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 7204
content-type: application/javascript
X-Firefox-Spdy: h2
alpsawnings.co.za/media/plg_system_rsfprecaptchav3/js/script.js?71e449bd434af327e401562a7f604f03
129.232.138.161200 OK 305 B URL HTTP/2 alpsawnings.co.za/media/plg_system_rsfprecaptchav3/js/script.js?71e449bd434af327e401562a7f604f03
IP 129.232.138.161:0
File type ASCII text, with CRLF line terminators
Hash 6c46dd59b0c9fd62426dd461164cc3b6
f6d2a12011f03c77400f8094086a07e2653c91d0
ca9fafb0f2a86b53480e3af1759d3a886e1a0c880dd63099b82428ed140ef8a7
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /media/plg_system_rsfprecaptchav3/js/script.js?71e449bd434af327e401562a7f604f03 HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Mon, 12 Sep 2022 13:25:35 GMT
etag: "245-5e87ad4a831c0-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 305
content-type: application/javascript
X-Firefox-Spdy: h2
alpsawnings.co.za/templates/sj_plus/js/yt-script.js
129.232.138.161200 OK 1.5 kB URL HTTP/2 alpsawnings.co.za/templates/sj_plus/js/yt-script.js
IP 129.232.138.161:0
File type ASCII text, with CRLF line terminators
Hash cd253e44163e2c7f84f11a3237ac3be1
9cc4bf61d0bf75fcf64a69bc60c7cc7a8e170010
cf377d2f04df357fbc1e3202e8fa432c5d4b280996c5df7cc34d8ec7085682ba
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /templates/sj_plus/js/yt-script.js HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 27 Oct 2015 10:49:38 GMT
etag: "1d88-52313d591b480-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1456
content-type: application/javascript
X-Firefox-Spdy: h2
alpsawnings.co.za/templates/sj_plus/js/touchswipe.min.js
129.232.138.161200 OK 3.8 kB URL HTTP/2 alpsawnings.co.za/templates/sj_plus/js/touchswipe.min.js
IP 129.232.138.161:0
File type ASCII text, with very long lines (10629), with CRLF line terminators
Hash b23af358261691ae9c8948403bd8a0ec
dc4788380f13331b4afc36cca2dca8173c52fde3
9c8e3228ce4f5b03f662ccf2bbb7674662e085f6e20cc1bcc4d2d191a4deab06
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /templates/sj_plus/js/touchswipe.min.js HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 27 Oct 2015 10:49:38 GMT
etag: "2b35-52313d591b480-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 3820
content-type: application/javascript
X-Firefox-Spdy: h2
alpsawnings.co.za/components/com_sppagebuilder/assets/js/sppagebuilder.js
129.232.138.161200 OK 10 kB URL HTTP/2 alpsawnings.co.za/components/com_sppagebuilder/assets/js/sppagebuilder.js
IP 129.232.138.161:0
File type ASCII text, with very long lines (36099), with no line terminators
Hash 9a2c86685c6d69ddcaebf340c7f2173f
a7f4b4e378b87a75d80ca30d0e6a49009318cdaf
5d8c0398ce52fe7a69025b844d8f7503136509e781a62d7a676257d9965befad
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /components/com_sppagebuilder/assets/js/sppagebuilder.js HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Wed, 04 Apr 2018 12:23:56 GMT
etag: "8d03-56904e593af00-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 10455
content-type: application/javascript
X-Firefox-Spdy: h2
alpsawnings.co.za/media/system/js/keepalive.js?71e449bd434af327e401562a7f604f03
129.232.138.161200 OK 306 B URL HTTP/2 alpsawnings.co.za/media/system/js/keepalive.js?71e449bd434af327e401562a7f604f03
IP 129.232.138.161:0
File type ASCII text, with very long lines (461)
Hash 7c38920647aa197ba2edf27e46609d81
c7b76583a40b44919634866261dc4dfa7047c047
e1da2a24649323458694f8f4e929487f9953979906a7c1786a59e9f7c4196b56
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /media/system/js/keepalive.js?71e449bd434af327e401562a7f604f03 HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Sun, 14 Aug 2022 13:21:56 GMT
etag: "1ce-5e6336634a500-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 306
content-type: application/javascript
X-Firefox-Spdy: h2
alpsawnings.co.za/templates/sj_plus/css/contact6.css
129.232.138.161200 OK 475 B URL HTTP/2 alpsawnings.co.za/templates/sj_plus/css/contact6.css
IP 129.232.138.161:0
File type ASCII text, with CRLF line terminators
Hash fe08480aca97e53fc369c7898b8f2eff
35f75ae4fcd1d2e64f27b55efd51230c6817f666
68d8e6c93c5b2837712c931126eb3afbea9f69e5734258a49f7fa1d362c13845
Analyzer Verdict Alert quad9 Sinkholed
GET /templates/sj_plus/css/contact6.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Mon, 26 Sep 2022 08:14:18 GMT
etag: "50b-5e9901d330a80-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 475
content-type: text/css
X-Firefox-Spdy: h2
alpsawnings.co.za/templates/sj_plus/css/header.css
129.232.138.161200 OK 2.7 kB URL HTTP/2 alpsawnings.co.za/templates/sj_plus/css/header.css
IP 129.232.138.161:0
Hash 407f0d344f6508a555c7219d16dca306
9eb278d97b239959ef0cf3b95290adeea2a47708
1527ea83c25a6895c58c2aaf8833b30a46eeed14d3ca349404406c84fc1651eb
Analyzer Verdict Alert quad9 Sinkholed
GET /templates/sj_plus/css/header.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 23 Feb 2021 13:16:50 GMT
etag: "2c69-5bc00bb2f1480-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 2729
content-type: text/css
X-Firefox-Spdy: h2
alpsawnings.co.za/templates/sj_plus/js/jquery.mmenu.min.all.js
129.232.138.161200 OK 7.5 kB URL HTTP/2 alpsawnings.co.za/templates/sj_plus/js/jquery.mmenu.min.all.js
IP 129.232.138.161:0
File type ASCII text, with very long lines (9099)
Hash f00fb3e2443c50bafea29f7080d5ac82
7cbfcf10ffd729b7c4f276123a745e3fe6a01852
16c1aeac58c29075b90062b16f248af5a49dfbf5c510f6329ae536780a47259e
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /templates/sj_plus/js/jquery.mmenu.min.all.js HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 27 Oct 2015 10:49:38 GMT
etag: "61bc-52313d591b480-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 7494
content-type: application/javascript
X-Firefox-Spdy: h2
alpsawnings.co.za/plugins/system/yt/includes/admin/js/jquery.min.js
129.232.138.161200 OK 33 kB URL HTTP/2 alpsawnings.co.za/plugins/system/yt/includes/admin/js/jquery.min.js
IP 129.232.138.161:0
File type ASCII text, with very long lines (32341)
Hash a455443006938869e740a38df8640ada
869bd24af8e61e2c6b23cf158853505d5fe7afc2
685bd4372d5eca42e9dae6db1678618e08d2ca201bc4e7525adabc20021338b5
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /plugins/system/yt/includes/admin/js/jquery.min.js HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 27 Oct 2015 10:49:36 GMT
etag: "1787d-52313d5733000-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 33369
content-type: application/javascript
X-Firefox-Spdy: h2
alpsawnings.co.za/media/com_rsform/js/script.js?71e449bd434af327e401562a7f604f03
129.232.138.161200 OK 18 kB URL HTTP/2 alpsawnings.co.za/media/com_rsform/js/script.js?71e449bd434af327e401562a7f604f03
IP 129.232.138.161:0
File type ASCII text, with very long lines (493), with CRLF line terminators
Hash e258eb64c70d99675a403c83f7179727
8952ac924cfa023fa42836b7cd31d6039b063345
1700d0425d06f43f866f1aa3ce3a550a9b236aaf083ed9625106fbd71961384e
Analyzer Verdict Alert quad9 Sinkholed
GET /media/com_rsform/js/script.js?71e449bd434af327e401562a7f604f03 HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Mon, 12 Sep 2022 13:25:23 GMT
etag: "135df-5e87ad3f116c0-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 18070
content-type: application/javascript
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato:100,300,regular,700,900%7COpen+Sans:300%7CIndie+Flower:regular%7COswald:300,regular,700%7CPoppins:300,regular,500,600,700&subset=latin%2Clatin-ext
142.250.74.10200 OK 38 kB URL HTTP/2 fonts.googleapis.com/css?family=Lato:100,300,regular,700,900%7COpen+Sans:300%7CIndie+Flower:regular%7COswald:300,regular,700%7CPoppins:300,regular,500,600,700&subset=latin%2Clatin-ext
IP 142.250.74.10:0
File type ASCII text, with very long lines (32005), with CRLF, LF line terminators
Hash 7ba1df4ea4ca60beb62a8eb653b5b8c8
6f6f0ff7dd9395a874d92efca8bf31ca52a7e759
621e0ec1101493fd66e74d0ea0305c2957d438cd80880ae4e2facfe775cb3804
GET /css?family=Lato:100,300,regular,700,900%7COpen+Sans:300%7CIndie+Flower:regular%7COswald:300,regular,700%7CPoppins:300,regular,500,600,700&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alpsawnings.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 04 Oct 2022 10:06:54 GMT
date: Tue, 04 Oct 2022 10:06:54 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
alpsawnings.co.za/images/Al-Patio-Solutions-and-Awnings.jpg
129.232.138.161200 OK 24 kB URL HTTP/2 alpsawnings.co.za/images/Al-Patio-Solutions-and-Awnings.jpg
IP 129.232.138.161:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1772, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2835], baseline, precision 8, 350x189, components 3\012- data
Hash 6dc50e012b6c9444035b4423d9597e70
2cb0d0d8c025dd5b5e4cfabad8432a9bbca5ec78
be898693b588f66ce496f06179b7dbba0346c80b3999d5f4e75952ddd816faf0
Analyzer Verdict Alert quad9 Sinkholed
GET /images/Al-Patio-Solutions-and-Awnings.jpg HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Mon, 24 Jun 2019 10:27:42 GMT
etag: "5cde-58c0f431e2380"
accept-ranges: bytes
content-length: 23774
cache-control: max-age=2592000
expires: Thu, 03 Nov 2022 10:06:54 GMT
content-type: image/jpeg
X-Firefox-Spdy: h2
alpsawnings.co.za/images/alawnings-slide-03.jpg
129.232.138.161200 OK 157 kB URL HTTP/2 alpsawnings.co.za/images/alawnings-slide-03.jpg
IP 129.232.138.161:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1400x620, components 3\012- data
Size 157 kB (156894 bytes)
Hash 0678344755f232dac2c1775f6be3170e
c485ccacfdc110915b91a1ade81424707f41ef44
b348bda085f7050137e4c5d94ad4fc0187fa1015771a2a33edf1e4a81119db53
Analyzer Verdict Alert quad9 Sinkholed
GET /images/alawnings-slide-03.jpg HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Fri, 07 Jun 2019 07:45:18 GMT
etag: "264de-58ab703071f80"
accept-ranges: bytes
content-length: 156894
cache-control: max-age=2592000
expires: Thu, 03 Nov 2022 10:06:54 GMT
content-type: image/jpeg
X-Firefox-Spdy: h2
alpsawnings.co.za/images/2019/05/28/alawnings_adjustablelouvres1b.jpg
129.232.138.161200 OK 144 kB URL HTTP/2 alpsawnings.co.za/images/2019/05/28/alawnings_adjustablelouvres1b.jpg
IP 129.232.138.161:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 600x227, components 3\012- data
Size 144 kB (143506 bytes)
Hash 9db30fb2f48ba89d2c7fa6b721cad2a8
527f35236e8960c2ddc48bc266e5b77577cc0a3b
73d884d47bb55b4d4640f9ca0377fdc21106da18ebc09ada6d30c8099267c536
Analyzer Verdict Alert quad9 Sinkholed
GET /images/2019/05/28/alawnings_adjustablelouvres1b.jpg HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus; _gcl_au=1.1.1707414294.1664878014
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 28 May 2019 12:09:58 GMT
etag: "23092-589f18b22f180"
accept-ranges: bytes
content-length: 143506
cache-control: max-age=2592000
expires: Thu, 03 Nov 2022 10:06:54 GMT
content-type: image/jpeg
X-Firefox-Spdy: h2
alpsawnings.co.za/images/2019/05/28/alawnings_fixedibr1b.jpg
129.232.138.161200 OK 94 kB URL HTTP/2 alpsawnings.co.za/images/2019/05/28/alawnings_fixedibr1b.jpg
IP 129.232.138.161:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 600x227, components 3\012- data
Hash fd02578b3b601fdf0b4f8d58d283dbae
91ecc8bf2f6245a9f6eec3aef7aa386e1e9c3854
7e93137d9de2557d34812e325f2478d4878842dc2392ed9fd8065fd84e6d09eb
Analyzer Verdict Alert quad9 Sinkholed
GET /images/2019/05/28/alawnings_fixedibr1b.jpg HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus; _gcl_au=1.1.1707414294.1664878014
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 28 May 2019 12:07:30 GMT
etag: "170ca-589f18250a480"
accept-ranges: bytes
content-length: 94410
cache-control: max-age=2592000
expires: Thu, 03 Nov 2022 10:06:54 GMT
content-type: image/jpeg
X-Firefox-Spdy: h2
alpsawnings.co.za/images/2019/06/28/alu-ceilings-2.jpg
129.232.138.161200 OK 24 kB URL HTTP/2 alpsawnings.co.za/images/2019/06/28/alu-ceilings-2.jpg
IP 129.232.138.161:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 600x227, components 3\012- data
Hash 7c12d97806072d8bd0678342d37eecea
c5c616c0faae14c9dc1cad1df2e6d3cfc96fc0cd
0baa92ba6af807d1e09a14271f2e1fca96b66b7219187c7fd01c7f51459093e2
Analyzer Verdict Alert quad9 Sinkholed
GET /images/2019/06/28/alu-ceilings-2.jpg HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus; _gcl_au=1.1.1707414294.1664878014
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Fri, 28 Jun 2019 10:34:30 GMT
etag: "5f24-58c5fd2cd3980"
accept-ranges: bytes
content-length: 24356
cache-control: max-age=2592000
expires: Thu, 03 Nov 2022 10:06:54 GMT
content-type: image/jpeg
X-Firefox-Spdy: h2
alpsawnings.co.za/images/2019/06/07/alawnings-about-us.jpg
129.232.138.161200 OK 79 kB URL HTTP/2 alpsawnings.co.za/images/2019/06/07/alawnings-about-us.jpg
IP 129.232.138.161:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 600x450, components 3\012- data
Hash 273ba5ca92de0edd9a8e819bb58867bb
81dd2e25e2d4a6447f5d0032104304b7faab89b8
c7a00a7d2e2218d7f535b2e56ce1fdaf11065c3c8bd224ce50b455e7caf1c892
Analyzer Verdict Alert quad9 Sinkholed
GET /images/2019/06/07/alawnings-about-us.jpg HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus; _gcl_au=1.1.1707414294.1664878014
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Fri, 07 Jun 2019 07:47:16 GMT
etag: "1354a-58ab70a0fa900"
accept-ranges: bytes
content-length: 79178
cache-control: max-age=2592000
expires: Thu, 03 Nov 2022 10:06:54 GMT
content-type: image/jpeg
X-Firefox-Spdy: h2
alpsawnings.co.za/media/system/css/system.css
129.232.138.161200 OK 549 B URL HTTP/2 alpsawnings.co.za/media/system/css/system.css
IP 129.232.138.161:0
Hash 176a33941588090dc3d59d7e96bfb099
57739e02540147916e61c3c459e8f7e0df5756c2
02f44706d20696ca4486c892b494fbea59f7c63d37b5e1a5901ecaa82beaa234
Analyzer Verdict Alert quad9 Sinkholed
GET /media/system/css/system.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/templates/system/css/system.css
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus; _gcl_au=1.1.1707414294.1664878014
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Sun, 14 Aug 2022 13:21:56 GMT
etag: "599-5e6336634a500-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 549
content-type: text/css
X-Firefox-Spdy: h2
alpsawnings.co.za/images/2019/06/28/adjustable-louvre.jpg
129.232.138.161200 OK 38 kB URL HTTP/2 alpsawnings.co.za/images/2019/06/28/adjustable-louvre.jpg
IP 129.232.138.161:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 600x227, components 3\012- data
Hash a48c5750316f88f9b36b6c3bb9f89f42
5d9abd5e0a80fc115f694853abe1327717888456
59f974b461fe6c7d555181e8f4f7d7da70af393bae5f948b5f899ac82b41f047
Analyzer Verdict Alert quad9 Sinkholed
GET /images/2019/06/28/adjustable-louvre.jpg HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus; _gcl_au=1.1.1707414294.1664878014
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Fri, 28 Jun 2019 11:16:50 GMT
etag: "960b-58c606a328c80"
accept-ranges: bytes
content-length: 38411
cache-control: max-age=2592000
expires: Thu, 03 Nov 2022 10:06:54 GMT
content-type: image/jpeg
X-Firefox-Spdy: h2
alpsawnings.co.za/images/2019/05/28/alawnings_funkypolycarbonate3.jpg
129.232.138.161200 OK 64 kB URL HTTP/2 alpsawnings.co.za/images/2019/05/28/alawnings_funkypolycarbonate3.jpg
IP 129.232.138.161:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 600x227, components 3\012- data
Hash 5298313278f936779ffaf7cfbc2eb5dd
813cdc0629d84fcab91ce612a151d999d67889eb
e295b4460748c5c033fc9ed97c7851abb1ca19ecd7d3ea392d0462af9eaa1915
Analyzer Verdict Alert quad9 Sinkholed
GET /images/2019/05/28/alawnings_funkypolycarbonate3.jpg HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus; _gcl_au=1.1.1707414294.1664878014
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 28 May 2019 12:13:42 GMT
etag: "fbfe-589f1987ce980"
accept-ranges: bytes
content-length: 64510
cache-control: max-age=2592000
expires: Thu, 03 Nov 2022 10:06:54 GMT
content-type: image/jpeg
X-Firefox-Spdy: h2
alpsawnings.co.za/images/2019/05/28/alawnings_polycarbonate.jpg
129.232.138.161200 OK 75 kB URL HTTP/2 alpsawnings.co.za/images/2019/05/28/alawnings_polycarbonate.jpg
IP 129.232.138.161:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 600x227, components 3\012- data
Hash dab10064a75b0bcfe53a7839f9601e46
d1a5626dbaa920de0692c8ea1e6136dac71f8752
326e02f741143a0fdeb4b0763ad0e4af19f53e86753a028b4d5475a3f394ed90
Analyzer Verdict Alert quad9 Sinkholed
GET /images/2019/05/28/alawnings_polycarbonate.jpg HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus; _gcl_au=1.1.1707414294.1664878014
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 28 May 2019 12:11:42 GMT
etag: "126a4-589f19155db80"
accept-ranges: bytes
content-length: 75428
cache-control: max-age=2592000
expires: Thu, 03 Nov 2022 10:06:54 GMT
content-type: image/jpeg
X-Firefox-Spdy: h2
alpsawnings.co.za/images/2019/05/28/alawnings_canvaspatioshades1.jpg
129.232.138.161200 OK 82 kB URL HTTP/2 alpsawnings.co.za/images/2019/05/28/alawnings_canvaspatioshades1.jpg
IP 129.232.138.161:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 600x227, components 3\012- data
Hash a31131b23d53f5fb7cf2c7e07429f232
9f5cef03fb7c7bab6cf32346d676aff1b7ce0aa6
dd0e9c56d389447c1a303e9261fbcf80dc0d2bc4ab9ed5e9c2fdf08562bbe4f9
Analyzer Verdict Alert quad9 Sinkholed
GET /images/2019/05/28/alawnings_canvaspatioshades1.jpg HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus; _gcl_au=1.1.1707414294.1664878014
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 28 May 2019 12:02:04 GMT
etag: "13f4c-589f16ee24700"
accept-ranges: bytes
content-length: 81740
cache-control: max-age=2592000
expires: Thu, 03 Nov 2022 10:06:54 GMT
content-type: image/jpeg
X-Firefox-Spdy: h2
alpsawnings.co.za/images/2019/05/28/alawnings_dropblind1b.jpg
129.232.138.161200 OK 118 kB URL HTTP/2 alpsawnings.co.za/images/2019/05/28/alawnings_dropblind1b.jpg
IP 129.232.138.161:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 600x227, components 3\012- data
Size 118 kB (117521 bytes)
Hash cbc05c4dedb27ad416974500ad7948e7
a76262b621ec65441968a4da8973f5c745559815
1c21f41bdcc563c66b74b1b1065b63e2c0ba398b661c832ba23a9c39bb97f904
Analyzer Verdict Alert quad9 Sinkholed
GET /images/2019/05/28/alawnings_dropblind1b.jpg HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus; _gcl_au=1.1.1707414294.1664878014
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 28 May 2019 12:03:38 GMT
etag: "1cb11-589f1747c9a80"
accept-ranges: bytes
content-length: 117521
cache-control: max-age=2592000
expires: Thu, 03 Nov 2022 10:06:54 GMT
content-type: image/jpeg
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:06:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:06:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/librefranklin/v13/jizDREVItHgc8qDIbSTKq4XkRiUf2zc.woff2
216.58.207.195200 OK 27 kB URL HTTP/2 fonts.gstatic.com/s/librefranklin/v13/jizDREVItHgc8qDIbSTKq4XkRiUf2zc.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 27268, version 1.0\012- data
Hash cd83836443d658985c464d7021aa3e83
83a2915021f30c4ed54752b02e0c999e3c56798c
0c5b68b3ae23054815d89c5a2230ad7edf2d4b68732b4463d6be74cacb974055
GET /s/librefranklin/v13/jizDREVItHgc8qDIbSTKq4XkRiUf2zc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://alpsawnings.co.za
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27268
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 20:02:26 GMT
expires: Tue, 03 Oct 2023 20:02:26 GMT
cache-control: public, max-age=31536000
age: 50669
last-modified: Mon, 11 Jul 2022 18:56:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
216.58.207.195200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://alpsawnings.co.za
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 04:06:12 GMT
expires: Sun, 01 Oct 2023 04:06:12 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
age: 280843
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:06:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
alpsawnings.co.za/templates/sj_plus/asset/fonts/awesome/fontawesome-webfont.woff
129.232.138.161200 OK 44 kB URL HTTP/2 alpsawnings.co.za/templates/sj_plus/asset/fonts/awesome/fontawesome-webfont.woff
IP 129.232.138.161:0
File type Web Open Font Format, TrueType, length 44432, version 1.0\012- data
Hash 3293616ec0c605c7c2db25829a0a509e
04c3bf56d87a0828935bd6b4aee859995f321693
0fd28fece9ebd606b8b071460ebd3fc2ed7bc7a66ef91c8834f11dfacab4a849
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /templates/sj_plus/asset/fonts/awesome/fontawesome-webfont.woff HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://alpsawnings.co.za/templates/sj_plus/asset/fonts/awesome/css/font-awesome.css
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus; _gcl_au=1.1.1707414294.1664878014
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:55 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Tue, 27 Oct 2015 10:49:36 GMT
etag: "ad90-52313d5733000"
accept-ranges: bytes
content-length: 44432
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:55 GMT
content-type: font/woff
X-Firefox-Spdy: h2
alpsawnings.co.za/components/com_layer_slider/base/static/layerslider/skins/v6/skin.css
129.232.138.161200 OK 1.1 kB URL HTTP/2 alpsawnings.co.za/components/com_layer_slider/base/static/layerslider/skins/v6/skin.css
IP 129.232.138.161:0
File type ASCII text, with CRLF line terminators
Hash ff3231d9ce23caf406f680cb26768f34
5a52b4d2d6c90b4a336130bfb83b554230f732e1
3ef941318cf58f235b80d5c51d7a09234f315a40102fdbfe95eaf5fd9b445317
Analyzer Verdict Alert quad9 Sinkholed
GET /components/com_layer_slider/base/static/layerslider/skins/v6/skin.css HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus; _gcl_au=1.1.1707414294.1664878014
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:55 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Fri, 12 Apr 2019 05:43:58 GMT
etag: "175f-5864ec9fe2380-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:55 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1053
content-type: text/css
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alpsawnings.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Tue, 04 Oct 2022 08:41:09 GMT
expires: Tue, 04 Oct 2022 10:41:09 GMT
cache-control: public, max-age=7200
age: 5146
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/wcm/loader.js
142.250.74.163200 OK 1.3 kB URL HTTP/2 www.gstatic.com/wcm/loader.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (1123)
Hash 22300d54ba7faf32360c95915053014c
ea83f097bd99413f9d8fcb08d0312ba7ba1be99f
2c4c9c9d6af1ad12556ab11c8021eb5c254025ce04500bc885b69984dd562ce5
GET /wcm/loader.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alpsawnings.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1339
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Oct 2022 10:01:06 GMT
expires: Tue, 04 Oct 2022 11:01:06 GMT
cache-control: public, max-age=3600
age: 349
last-modified: Mon, 15 Mar 2021 16:45:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js
142.250.74.163200 OK 159 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (711)
Size 159 kB (158844 bytes)
Hash b4ed95d4318e3b78b936c9c0f1ffa96e
b53c9376b1459afb07fb4b5c2e8d8dad776d3a02
3c21880cb7be6bec40f9d40c23ad39c9758999cf950cec07b86c83b21fde175f
GET /recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://alpsawnings.co.za
Connection: keep-alive
Referer: https://alpsawnings.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158844
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 01:05:31 GMT
expires: Sun, 01 Oct 2023 01:05:31 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 26 Sep 2022 04:02:34 GMT
content-type: text/javascript
age: 291684
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 53e0e5a2455fedae0d6308f91d41e445
237c2856f8a89ae3673ea909164557d65268c463
ddba9b3842f879168185b6607551069b312c44de4ec015ca4b43ad154d190bc8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:06:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/623014850/?random=1664878015365&cv=9&fst=1664878015365&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9s0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Falpsawnings.co.za%2F&tiba=Al%20Patio%20Solutions%20%26%20Awnings%20%7C%20Awnings%20%7C%20Drop%20Blinds%20%7C%20Carpot%20%26%20Patio%20Awnings%20%7C%20Fixed%20Patio%20Covers&auid=1707414294.1664878014&hn=www.google.com&async=1&rfmt=3&fmt=4
142.250.74.2200 OK 1.1 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/623014850/?random=1664878015365&cv=9&fst=1664878015365&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9s0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Falpsawnings.co.za%2F&tiba=Al%20Patio%20Solutions%20%26%20Awnings%20%7C%20Awnings%20%7C%20Drop%20Blinds%20%7C%20Carpot%20%26%20Patio%20Awnings%20%7C%20Fixed%20Patio%20Covers&auid=1707414294.1664878014&hn=www.google.com&async=1&rfmt=3&fmt=4
IP 142.250.74.2:0
File type ASCII text, with very long lines (2490), with no line terminators
Hash 3cb4f1cc031495ed22f8525346a5763d
4836ac95613c36979b2ed87544681ef088fcdbfa
bc6042c5792cc23b2341bb368f5aad19d0df382d52c7012092e9e881a70f9523
GET /pagead/viewthroughconversion/623014850/?random=1664878015365&cv=9&fst=1664878015365&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9s0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Falpsawnings.co.za%2F&tiba=Al%20Patio%20Solutions%20%26%20Awnings%20%7C%20Awnings%20%7C%20Drop%20Blinds%20%7C%20Carpot%20%26%20Patio%20Awnings%20%7C%20Fixed%20Patio%20Covers&auid=1707414294.1664878014&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alpsawnings.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 04 Oct 2022 10:06:55 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1084
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 04-Oct-2022 10:21:55 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 53e0e5a2455fedae0d6308f91d41e445
237c2856f8a89ae3673ea909164557d65268c463
ddba9b3842f879168185b6607551069b312c44de4ec015ca4b43ad154d190bc8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:06:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e13df37c7a0102aa69d97512e4f3bad4
2c3019bef2f4bc34b3f3dc212b30d4fad04f8b37
cfbc8bfd83a8eb63bf5d189e398e1373222f1d1bde223fba70e3c7b560c708aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:06:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c2f53a68cf2490044db9c8a8b4ad0083
edcbbb89af1923bed4adfab5da5151af29ba5bcc
c58ae0008416eb3fbebf730eb018dbf378754dbc3cf2e631f003c3bf83d39fd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:06:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/623014850/?random=1664878015365&cv=9&fst=1664877600000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9s0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Falpsawnings.co.za%2F&tiba=Al%20Patio%20Solutions%20%26%20Awnings%20%7C%20Awnings%20%7C%20Drop%20Blinds%20%7C%20Carpot%20%26%20Patio%20Awnings%20%7C%20Fixed%20Patio%20Covers&async=1&fmt=3&is_vtc=1&random=339320754&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/623014850/?random=1664878015365&cv=9&fst=1664877600000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9s0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Falpsawnings.co.za%2F&tiba=Al%20Patio%20Solutions%20%26%20Awnings%20%7C%20Awnings%20%7C%20Drop%20Blinds%20%7C%20Carpot%20%26%20Patio%20Awnings%20%7C%20Fixed%20Patio%20Covers&async=1&fmt=3&is_vtc=1&random=339320754&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/623014850/?random=1664878015365&cv=9&fst=1664877600000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9s0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Falpsawnings.co.za%2F&tiba=Al%20Patio%20Solutions%20%26%20Awnings%20%7C%20Awnings%20%7C%20Drop%20Blinds%20%7C%20Carpot%20%26%20Patio%20Awnings%20%7C%20Fixed%20Patio%20Covers&async=1&fmt=3&is_vtc=1&random=339320754&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alpsawnings.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 04 Oct 2022 10:06:56 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googleadservices.com/pagead/conversion/623014850/wcm?cc=ZZ&dn=0826013472&cl=UcJjCN2UkNQBEMLniakC&ct_eid=2
216.58.207.226302 Found 0 B URL HTTP/2 www.googleadservices.com/pagead/conversion/623014850/wcm?cc=ZZ&dn=0826013472&cl=UcJjCN2UkNQBEMLniakC&ct_eid=2
IP 216.58.207.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/conversion/623014850/wcm?cc=ZZ&dn=0826013472&cl=UcJjCN2UkNQBEMLniakC&ct_eid=2 HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://alpsawnings.co.za
Connection: keep-alive
Referer: https://alpsawnings.co.za/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://www.google.no/pagead/attribution/wcm?cc=ZZ&dn=0826013472&cl=UcJjCN2UkNQBEMLniakC
access-control-allow-origin: https://alpsawnings.co.za
access-control-allow-credentials: true
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Tue, 04 Oct 2022 10:06:56 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e13df37c7a0102aa69d97512e4f3bad4
2c3019bef2f4bc34b3f3dc212b30d4fad04f8b37
cfbc8bfd83a8eb63bf5d189e398e1373222f1d1bde223fba70e3c7b560c708aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:06:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c8ba09e28963a711c7b2ce6c91a3a3a3
7cc64a4bf1691002ed65627d8f5bccd7d742721e
e029fc044883da7fbfd828a7c98822fa3bc814ff7e75abf7a7bcbaa64cb395ba
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:06:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 12:31:58 GMT
expires: Sun, 01 Oct 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 250498
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
alpsawnings.co.za/images/alawning-sa-logo.jpg
129.232.138.161404 Not Found 19 kB URL HTTP/2 alpsawnings.co.za/images/alawning-sa-logo.jpg
IP 129.232.138.161:0
Hash 70931f9a0a12cbd9c7f7aa9e8bed0700
308a2588abf079f56bebc418c5628ebd75f8159d
21a0b494e25a43e758f4130db58fa96c400098e4f6bfee900a716b1fd4120f59
Analyzer Verdict Alert quad9 Sinkholed
GET /images/alawning-sa-logo.jpg HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus; _gcl_au=1.1.1707414294.1664878014
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Tue, 04 Oct 2022 10:06:55 GMT
server: Apache
x-logged-in: False
cache-control: no-cache
pragma: no-cache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
content-type: text/html; charset=UTF-8
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d8c08f8066cc732de8befd6ccd629a95
22aab05208a01ae5def4d63dc145085630f57bcb
f8a560a0563518d992d0bd2655d2b5c406435a18e874ca00b51374d2ff901770
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9917
x-amzn-requestid: 2dff93d9-795d-4885-9b82-610b0d235a82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTGEnIAMF1zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-117afa703663ada75627792c;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: p5nOqBojKO6S-c_DxIu8B3p-NK0pzRHkz0DOPeyv7PQt9h0x1jdtoQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:55:54 GMT
age: 43867
etag: "22aab05208a01ae5def4d63dc145085630f57bcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Libre+Franklin:400,500,600,700|Merriweather:400,700,900&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Libre+Franklin:400,500,600,700|Merriweather:400,700,900&display=swap
IP 142.250.74.10:0
GET /css?family=Libre+Franklin:400,500,600,700|Merriweather:400,700,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alpsawnings.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 04 Oct 2022 10:06:54 GMT
date: Tue, 04 Oct 2022 10:06:54 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
alpsawnings.co.za/components/com_layer_slider/base/static/layerslider/js/layerslider.transitions.js?ver=6.6.053
129.232.138.161200 OK 0 B URL HTTP/2 alpsawnings.co.za/components/com_layer_slider/base/static/layerslider/js/layerslider.transitions.js?ver=6.6.053
IP 129.232.138.161:0
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /components/com_layer_slider/base/static/layerslider/js/layerslider.transitions.js?ver=6.6.053 HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Fri, 12 Apr 2019 05:43:58 GMT
etag: "5622-5864ec9fe2380-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 3458
content-type: application/javascript
X-Firefox-Spdy: h2
alpsawnings.co.za/
129.232.138.161200 OK 0 B IP 129.232.138.161:0
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET / HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:53 GMT
server: Apache
set-cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; path=/; secure; HttpOnly
sj_plus_tpl=sj_plus; expires=Sun, 24-Sep-2023 10:06:54 GMT; Max-Age=30672000; path=/
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
content-type: text/html; charset=UTF-8
X-Firefox-Spdy: h2
alpsawnings.co.za/components/com_layer_slider/base/static/layerslider/js/layerslider.js?ver=6.6.053
129.232.138.161200 OK 0 B URL HTTP/2 alpsawnings.co.za/components/com_layer_slider/base/static/layerslider/js/layerslider.js?ver=6.6.053
IP 129.232.138.161:0
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /components/com_layer_slider/base/static/layerslider/js/layerslider.js?ver=6.6.053 HTTP/1.1
Host: alpsawnings.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alpsawnings.co.za/
Connection: keep-alive
Cookie: b59d0fb6142edab805a278d009a4aab7=a113fc4543583b766ac499dc8c260268; sj_plus_tpl=sj_plus
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 10:06:54 GMT
server: Apache
strict-transport-security: max-age=31536000
referrer-policy: unsafe-url
last-modified: Fri, 12 Apr 2019 05:43:58 GMT
etag: "1d0fa-5864ec9fe2380-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 11 Oct 2022 10:06:54 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 44279
content-type: application/javascript
X-Firefox-Spdy: h2