Overview

URL activa-ghana.com/pti/oooedlqrsu
IP160.153.133.143
ASNHost Europe GmbH
Location Netherlands
Report completed2022-10-01 01:58:55 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-10-01 2 activa-ghana.com/pti/oooedlqrsu Malware
2022-10-01 2 www.activa-ghana.com/pti/oooedlqrsu Malware
mnemonic secure dns  No alerts detected
Quad9 DNS
Scan Date Severity Indicator Comment
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed
2022-10-01 2 activa-ghana.com Sinkholed


Files

No files detected



Passive DNS (19)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-09-30 23:06:25 UTC 142.250.74.174
mnemonic passive DNS cdn.jsdelivr.net (1) 439 2012-09-30 00:15:09 UTC 2022-09-30 04:55:48 UTC 151.101.85.229
mnemonic passive DNS embed.tawk.to (6) 8650 2014-03-19 21:03:49 UTC 2022-09-30 09:32:26 UTC 104.22.24.131
mnemonic passive DNS r3.o.lencr.org (5) 344 2020-12-02 08:52:13 UTC 2022-09-30 04:55:29 UTC 23.36.76.226
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-27 20:08:30 UTC 2022-09-30 21:46:18 UTC 13.224.103.49
mnemonic passive DNS fonts.gstatic.com (3) 0 2014-08-29 13:43:22 UTC 2022-10-01 01:25:33 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS stats.g.doubleclick.net (1) 96 2013-06-02 22:47:44 UTC 2022-09-30 04:55:54 UTC 64.233.165.154
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-30 05:12:28 UTC 54.148.17.90
mnemonic passive DNS activa-ghana.com (1) 0 2015-07-09 04:00:37 UTC 2022-09-30 11:37:49 UTC 160.153.133.143 Unknown ranking
mnemonic passive DNS ocsp.pki.goog (4) 175 2017-06-14 07:23:31 UTC 2022-09-30 04:55:27 UTC 142.250.74.3
mnemonic passive DNS www.activa-ghana.com (38) 0 2015-07-09 04:00:37 UTC 2022-09-30 11:37:37 UTC 160.153.133.143 Unknown ranking
mnemonic passive DNS fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-09-30 16:59:18 UTC 142.250.74.10
mnemonic passive DNS www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-09-30 04:55:45 UTC 142.250.74.72
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-30 05:34:07 UTC 34.160.144.191
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-30 21:45:49 UTC 93.184.220.29
mnemonic passive DNS img-getpocket.cdn.mozilla.net (7) 1631 2017-09-01 03:40:57 UTC 2022-09-30 13:49:02 UTC 34.120.237.76
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-30 04:56:26 UTC 34.117.237.239
mnemonic passive DNS region1.google-analytics.com (1) 0 2022-03-17 11:26:33 UTC 2022-09-30 05:54:11 UTC 216.239.34.36 Domain (google-analytics.com) ranked at: 8401
mnemonic passive DNS vsa100.tawk.to (1) 0 2020-03-11 11:59:34 UTC 2022-09-30 19:23:59 UTC 172.67.38.66 Domain (tawk.to) ranked at: 6313


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 160.153.133.143

Date UQ / IDS / BL URL IP
2022-11-15 10:27:26 +0000
0 - 0 - 1 carlmullaneylondon.com/about/document/ 160.153.133.143
2022-10-20 09:18:57 +0000
0 - 0 - 37 activa-ghana.com/pti/setuiq 160.153.133.143
2022-10-20 09:18:22 +0000
0 - 0 - 38 activa-ghana.com/pti/oooedlqrsu 160.153.133.143
2022-10-19 00:20:32 +0000
0 - 0 - 39 activa-ghana.com/pti/ileeutnlvmei 160.153.133.143
2022-10-19 00:20:21 +0000
0 - 0 - 38 activa-ghana.com/pti/oooedlqrsu 160.153.133.143

Last 5 reports on ASN: Host Europe GmbH

Date UQ / IDS / BL URL IP
2022-12-08 02:21:46 +0000
9 - 0 - 7 milorconceptstore.be/wp-admin/network/89900/L (...) 160.153.244.113
2022-12-06 04:25:22 +0000
0 - 0 - 5 4mationdrilling.com/sys/GUzZhMXxPE.zip 160.153.129.31
2022-12-05 12:25:31 +0000
0 - 0 - 41 bharatexotic.com/bid/ashok-leyland-dost-rls-2 (...) 160.153.138.217
2022-12-03 02:40:18 +0000
0 - 0 - 2 bukidnonmockpolls.com/usps/verification/ 160.153.137.128
2022-12-02 07:27:31 +0000
0 - 0 - 0 learn-spark.info 160.153.138.177

Last 5 reports on domain: activa-ghana.com

Date UQ / IDS / BL URL IP
2022-11-10 23:59:56 +0000
0 - 0 - 3 activa-ghana.com/pti/setuiq 34.98.99.30
2022-10-31 07:07:12 +0000
0 - 0 - 2 activa-ghana.com/pti/setuiq 34.98.99.30
2022-10-31 07:06:57 +0000
0 - 0 - 2 activa-ghana.com/pti/ileeutnlvmei 34.98.99.30
2022-10-31 07:06:46 +0000
0 - 0 - 2 activa-ghana.com/pti/oooedlqrsu 34.98.99.30
2022-10-28 05:53:47 +0000
0 - 0 - 2 activa-ghana.com/pti/setuiq 34.98.99.30

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-10-20 09:18:57 +0000
0 - 0 - 37 activa-ghana.com/pti/setuiq 160.153.133.143
2022-10-20 09:18:22 +0000
0 - 0 - 38 activa-ghana.com/pti/oooedlqrsu 160.153.133.143
2022-10-19 00:20:32 +0000
0 - 0 - 39 activa-ghana.com/pti/ileeutnlvmei 160.153.133.143
2022-10-19 00:20:21 +0000
0 - 0 - 38 activa-ghana.com/pti/oooedlqrsu 160.153.133.143
2022-10-17 16:54:19 +0000
0 - 0 - 38 activa-ghana.com/pti/setuiq 160.153.133.143


JavaScript

Executed Scripts (40)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (77)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "763E2DADFDD286A51327CD2000CA335E30CD0B9B7267875D22CA33F7556BA200"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3523
Expires: Sat, 01 Oct 2022 02:57:27 GMT
Date: Sat, 01 Oct 2022 01:58:44 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DFF04734315B51FC11069E2D21B5BE37B03D28AD01986E1AE2C96AFC6BA31859"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5032
Expires: Sat, 01 Oct 2022 03:22:36 GMT
Date: Sat, 01 Oct 2022 01:58:44 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: nqHyQF0Ik3fq25FkVWrj6uZvllNydcLBNaw7pjNYQnjpe3o3Nf4Ic/4z9b9Z/zxLrFahi4Wm4eA=
x-amz-request-id: DKG833881T5XV122
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 01 Oct 2022 01:51:41 GMT
age: 423
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         13.224.103.49
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 01 Oct 2022 01:16:16 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 cd66c5a89ae3376f15c155e3b52a758c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ZRH50-C1
X-Amz-Cf-Id: prOzAofkZUQAdjghliDkchMs3DJIiLzSOpnKmM0sBl1xFm9jWvBeQw==
Age: 2548


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sat, 01 Oct 2022 01:58:44 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         13.224.103.49
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Sat, 01 Oct 2022 01:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Sat, 01 Oct 2022 02:16:30 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 3a17ea4b3f6bdbc694c3ec0645d21b5e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ZRH50-C1
X-Amz-Cf-Id: YFLlEu00N3CU-YB8dYXuK705y0VB0Ne1KwlMufHb_u4faqVQMcuHig==
Age: 1751


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4794
Cache-Control: 'max-age=158059'
Date: Sat, 01 Oct 2022 01:58:44 GMT
Last-Modified: Sat, 01 Oct 2022 00:38:50 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: imywfEEsT8BvHFHorZtEDw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         54.148.17.90
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: dK6RNJ46d8itPAjC/pO2LBiI3Ds=

                                        
                                            GET /pti/oooedlqrsu HTTP/1.1 
Host: activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         160.153.133.143
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 01 Oct 2022 01:58:44 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
X-Cache-Enabled: True
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Set-Cookie: PHPSESSID=a011bff71c02a7ba16937efd9da4a8da; path=/
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://www.activa-ghana.com/pti/oooedlqrsu
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Malware
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C17A343CEB786A421F8C3ABFFFAE350E12C92271A69FC88EB8E8BAB568877D6B"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5763
Expires: Sat, 01 Oct 2022 03:34:49 GMT
Date: Sat, 01 Oct 2022 01:58:46 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C17A343CEB786A421F8C3ABFFFAE350E12C92271A69FC88EB8E8BAB568877D6B"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5763
Expires: Sat, 01 Oct 2022 03:34:49 GMT
Date: Sat, 01 Oct 2022 01:58:46 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C17A343CEB786A421F8C3ABFFFAE350E12C92271A69FC88EB8E8BAB568877D6B"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5763
Expires: Sat, 01 Oct 2022 03:34:49 GMT
Date: Sat, 01 Oct 2022 01:58:46 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fc1f2d3-102a-457c-976d-ff08402f9a36.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8218
x-amzn-requestid: 82a170d7-6c01-4eb1-b252-72bdb9f1eba9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZM66fGYuoAMF3ew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63350b76-1aed2834729dc53f25759334;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 03:05:26 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: YQ3Yw9-d5WDzBP6l27jg4oQ146Z1XSdyNa20HaE02sESgG0-cFM4Eg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 03:49:49 GMT
age: 79737
etag: "26ccf1e3eb47c0181bb64257f47c665456b3dbaa"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8218
Md5:    f4878cd951c02ed598cfc59e2b3a891d
Sha1:   26ccf1e3eb47c0181bb64257f47c665456b3dbaa
Sha256: 2752e5f1778af5a30c256b5e8a0e7899223900e7a476f1f8cc4f333c214003f2
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03e4f558-3c34-42eb-aa43-9896f0e6ce87.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8269
x-amzn-requestid: 2ff31dda-d215-42fb-a439-de67799ebeb1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y8dqPFvQIAMFxlA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e7641-2c2e3443499003525414587b;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 03:15:13 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: btbI_vFcRysDsOGN3zHGO3PEnzCG8XZyV7E65PB1bwBab86rJM79ZQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 22:16:06 GMT
age: 13360
etag: "74c20bb0c312988822deb9d46b20e4642357fbd7"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8269
Md5:    574cd0b975349cc445e798136863c8a0
Sha1:   74c20bb0c312988822deb9d46b20e4642357fbd7
Sha256: 62d6448a8da1ed783761e1e966c3f03f2d9b4351e04e13e71e330e4cce465fc4
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6315
x-amzn-requestid: f0791b53-3c5f-4d94-954d-992a529ebb60
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZPnunF35oAMFYbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63361ff6-2adb303349153ced73ccecf6;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 22:45:10 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: F3fk5JnJ9ZFNPan-8DuLb4kuTiYKfniBar3qNlsuqd8a0saW3sEGvQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 04:35:22 GMT
age: 77004
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6315
Md5:    206fb65e75dbadf119512f71e0b78402
Sha1:   58ff0bf8ce7528b303d28bab01a80ad721705569
Sha256: 56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b0d9d19-67ea-434c-8233-4ac3ec9e78e7.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6959
x-amzn-requestid: eaf91f33-2fe3-4ed5-b89c-6199c2f17651
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZSxLCF6toAMFSDg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63376246-3b8c7f290ffda97b2d179433;Sampled=0
x-amzn-remapped-date: Fri, 30 Sep 2022 21:40:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: xr7RU7lL1QVYd5D1qQ_jqJQbefIVMeUQsJgxK4C-EvT0Hx0U37SNWQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 22:16:03 GMT
age: 13363
etag: "c09ee0f2be578f0067b2ed0237d565a04438147e"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6959
Md5:    21e55a6ca7350ed834993a486e138de1
Sha1:   c09ee0f2be578f0067b2ed0237d565a04438147e
Sha256: 124ca8ae6e3f7c7bb28f0d47fa693753884261ed61896eccf7bc13f249fc8960
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23b0da68-a440-4387-9d47-1617d8157f55.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8324
x-amzn-requestid: af70bb88-e30c-49ab-b307-19ee8449d616
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZS2iEHsIoAMFjnA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63376ad9-732337760d4982a407053c1e;Sampled=0
x-amzn-remapped-date: Fri, 30 Sep 2022 22:16:57 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: I1NrjG7oeZTY1y95-p8V3vVQ9W7k2flj9rni795fZ_Ei8qYv3BxLPA==
via: 1.1 ece5d4a731ece5ff46c564ab2b946ede.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 22:16:58 GMT
age: 13308
etag: "342e3be8998b548a7004c2a51c9910959b3747db"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8324
Md5:    26b855e3a55a0cfd23896413332a5c05
Sha1:   342e3be8998b548a7004c2a51c9910959b3747db
Sha256: dfb620bbfa8adde25d578bc9baaa165324170b2f6bbcc2275f1a824267081ccb
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbd710cf-f324-404a-ae43-fbd1d0400520.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6170
x-amzn-requestid: e94469ab-9e5f-4970-86b4-7b3f87360c78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZM65RFdgoAMFqEw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63350b6e-1756ce5f2cc902ab2f8775d2;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 03:05:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: cvFiiZF582krKa2avvGho4f1Dks0gYvUweBx2GOSgMkPb31CXfYDYA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 ddaf46a95abcfc80e8eae76235e2127c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 03:43:27 GMT
age: 80119
etag: "38b2cd106483aa3b46da02b040ca134c6257c988"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6170
Md5:    5cfb4bdf7685f1f17a62d43d85245baa
Sha1:   38b2cd106483aa3b46da02b040ca134c6257c988
Sha256: 81e03862f3c2e3e25dcdc563ee52cf38cb1440624c4e2bca08f3febbbdfe62ab
                                        
                                            GET /pti/oooedlqrsu HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         160.153.133.143
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 01 Oct 2022 01:58:45 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
X-Cache-Enabled: True
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://www.activa-ghana.com/wp-json/>; rel="https://api.w.org/"
Set-Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127; path=/
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Keep-Alive: timeout=5
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (2501), with CRLF, LF line terminators
Size:   32788
Md5:    3bbb0c0dbbc93226e4b50a9097fd7937
Sha1:   1bdf7a9006cbd762bc0079bc70a712c1df1ab2e3
Sha256: 23f47da2344df846f0d505a2b432e610967a79cef8ecb9b794912bc56c74a796

Alerts:
  Blocklists:
    - fortinet: Malware
    - quad9: Sinkholed
                                        
                                            GET /css?family=Droid+Sans%7CSource+Sans+Pro%3A300%2C400%2C600%26subset%3Dlatin%2Clatin-ext&ver=1.0.0 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/

                                         
                                         142.250.74.10
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 01 Oct 2022 01:58:46 GMT
Date: Sat, 01 Oct 2022 01:58:46 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  ASCII text
Size:   729
Md5:    f038b97478618ec6d912928cf8834331
Sha1:   6dc72a122f614ac25c0618de54c42a084fc0d018
Sha256: 4e25c428d4e6640862b816a00e613cc20563bf5e695f811c5041d08a6731d447
                                        
                                            GET /wp-content/plugins/wp-video-lightbox/css/prettyPhoto.css?ver=5.8.5 HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Last-Modified: Mon, 15 Nov 2021 10:33:57 GMT
ETag: "6c12ac-4dfa-5d0d158aafb96-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2808
Keep-Alive: timeout=5
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (402)
Size:   2808
Md5:    3a1ff9de48099cfd3a536038539f3471
Sha1:   8b0c39c5002ae1ef271ff3852d08ff8e0ae0aa78
Sha256: 49b0cc1bafc014351334de23ce439af74635db3c2ea0cce4be2d62f5223c9bb1

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/wp-video-lightbox/wp-video-lightbox.css?ver=5.8.5 HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 15 Nov 2021 10:33:58 GMT
ETag: "6c12fe-46a-5d0d158ae2fe7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 484
Keep-Alive: timeout=5


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   484
Md5:    65752dcc0c6a10c19a1d45d6375bc370
Sha1:   0153d6b0b845ec1ee4cb31f546f30199204be24c
Sha256: 6ec2356de03f75da2e069031b31d47da896df9bbeed05b1f5030480d4b70960f

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=5.8.5 HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 01 Sep 2021 04:05:58 GMT
ETag: "6e1393-13abe-5cae72efad580-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 10523
Keep-Alive: timeout=5


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (33376)
Size:   10523
Md5:    2a3cc81919349cb551f504b077791457
Sha1:   1d9393824b33b80513dbb9b2c8db48b6719d5d46
Sha256: 13a8d762ef70a9a18c89c226c4671f986401ccb7dae1c20be18c3db1eabbb62c

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/insurance-agency/style.css?ver=5.8.5 HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 08 Aug 2019 09:01:49 GMT
ETag: "661728-226-58f974ed57940-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 320
Keep-Alive: timeout=5


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   320
Md5:    4b23e09f900722102fa6d83ce8a2725d
Sha1:   6283c907d4905357b8e09e9be53b076642286455
Sha256: 84085116bd5cce77f44f13ea0bece27c96015b5536fa782218f95eff69c990db

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.2 HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 15 Nov 2021 11:00:33 GMT
ETag: "6c130f-aab-5d0d1b7c49f42-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 972
Keep-Alive: timeout=5


--- Additional Info ---
Magic:  ASCII text
Size:   972
Md5:    8bf268dfcca7cb20719b7ea14373ef4a
Sha1:   58bd839bbf0e8cc082f0a488b538b4ec71bebd2e
Sha256: eece4a14939273c7af07bce8bab3a6cfc2c9de44c0eea82cc886abac13cb3870

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/insurance-agency-child/style.css?ver=5.8.5 HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Last-Modified: Thu, 08 Aug 2019 09:03:27 GMT
ETag: "66174f-2c8-58f9754acd5c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 394
Keep-Alive: timeout=5
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   394
Md5:    a734d68010863daf1d86b7767f7eccb7
Sha1:   d2be231f7827d280a6a6803ee7711b7abb75d52e
Sha256: 2c9da70f1a005d1a2d277ea0f97e9471e955698979062f9251e31b211f5e85e2

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/insurance-agency/assets/css/bootstrap.css?ver=5.8.5 HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Last-Modified: Thu, 08 Aug 2019 09:01:49 GMT
ETag: "66170e-23fc3-58f974ed57940-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 21492
Keep-Alive: timeout=5
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (540)
Size:   21492
Md5:    3ddfdbc568607eaa8d9ddb9ac1762339
Sha1:   fea2a9f9ed67f09ab62dfca0bb3815f7ac28d566
Sha256: 59ffe206814e63b026c249459c5f797d3fc184b577de06866692b2bcd1305b08

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/insurance-agency/assets/css/font-awesome.css?ver=5.8.5 HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Last-Modified: Thu, 08 Aug 2019 09:01:49 GMT
ETag: "66170f-8616-58f974ed57940-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6458
Keep-Alive: timeout=5
Connection: Keep-Alive


--- Additional Info ---
Magic:  troff or preprocessor input, ASCII text, with very long lines (357), with CRLF line terminators
Size:   6458
Md5:    8408cc1d7d33a2a67e71c9b64a114717
Sha1:   d36ffbee701c3a5b8ca131584eb8e789fda15020
Sha256: 69c8764c971495722c9cbd3ef7c778d2471e5ddd55e6b36c9e6bc789ee73b231

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8.1 HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 08 Aug 2019 09:07:27 GMT
ETag: "6624ed-9b8c-58f9762faf1c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9562
Keep-Alive: timeout=5


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (5178), with CRLF line terminators
Size:   9562
Md5:    720fc0a8dbcc1bd2c6bc2e2d8f1a1ea5
Sha1:   141d498396c9688411ebba4a9490116f09b04049
Sha256: f2656c8581ad8ba6fd6bad6bcb19d57cba2015438df8e85ae6019de5b1751a62

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/insurance-agency/style-default-blue.css?ver=5.8.5 HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Last-Modified: Fri, 16 Aug 2019 19:22:23 GMT
ETag: "6616dc-45326-59040e8e239c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 41046
Keep-Alive: timeout=5
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   41046
Md5:    a2af8085912e75289d20fb68db00e9ec
Sha1:   9c87f4566b18436f41d37540648bdfdecdd117c8
Sha256: da8ecc6df57da632869495580ecdc6e8e8bbf09d26db0e7920c563bc421d4153

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Last-Modified: Wed, 10 Mar 2021 15:07:24 GMT
ETag: "720e18-15db1-5bd3006388300-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 30908
Keep-Alive: timeout=5
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65447)
Size:   30908
Md5:    9640915738503451aa21181699feab5b
Sha1:   c053eaf36ef0da96619706b3abda326305063bd6
Sha256: f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/rt-unyson-framework-customizations/extensions/builder/static/css/frontend-grid.css?ver=1.2.12 HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Last-Modified: Thu, 08 Aug 2019 09:07:27 GMT
ETag: "6618f6-2a61-58f9762faf1c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1714
Keep-Alive: timeout=5
Connection: Keep-Alive


--- Additional Info ---
Magic:  assembler source, ASCII text
Size:   1714
Md5:    ebe0a0f3f702e3affea543328998126d
Sha1:   284e5818efd89c8591f5dcfd2b1b0aaf2eb8b895
Sha256: 00e374b5190cc76edea91685f0a7d34cd01078c1fe1bc631ad34059652f45cf7

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/unyson/framework/extensions/forms/static/css/frontend.css?ver=2.7.24 HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Last-Modified: Mon, 15 Nov 2021 10:33:18 GMT
ETag: "6c06e9-2035-5d0d15651634f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1645
Keep-Alive: timeout=5
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   1645
Md5:    acef1bf444f383baca8e9c1a1e24884c
Sha1:   d26c374c6fda73743bfcb87de69a8659ca8e71ff
Sha256: 26e26cdff2dc1adf7f10fd0dc0c2095a9ef57ea5da2932f037e09db5b48ec7b3

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/unyson/framework/extensions/breadcrumbs/static/css/style.css?ver=5.8.5 HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Last-Modified: Mon, 15 Nov 2021 10:33:19 GMT
ETag: "6c0a9a-87-5d0d15667315b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 133
Keep-Alive: timeout=5
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   133
Md5:    492ef8540c80e5f1c48b42cdbff52d1d
Sha1:   97a4c370a8ebaf7bab8233c51208ff9e1ca4fd55
Sha256: de8511d2fb5df027ff3680a23353f69e275e4d95787e341235db68a955bb7e71

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Last-Modified: Wed, 18 Nov 2020 09:06:06 GMT
ETag: "720e0f-2bd8-5b45debe27b80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4169
Keep-Alive: timeout=5
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (11126)
Size:   4169
Md5:    5629711d7fdd5b28441bac39b851299f
Sha1:   4e0bf2b7383097f7c352023a1b1b1b48a50356b6
Sha256: 44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/wp-video-lightbox/js/jquery.prettyPhoto.js?ver=3.1.6 HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Last-Modified: Mon, 15 Nov 2021 10:33:58 GMT
ETag: "6c12f6-8c1d-5d0d158ac99a6-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9436
Keep-Alive: timeout=5
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (613)
Size:   9436
Md5:    fec655154ca2d46dfa8c1296ef7ce6c2
Sha1:   7a1eda002d2d7d4c9399302250273780f9e2c6b5
Sha256: a1678128614b96a34372b9d25d04436b5bc3a3a0b552cfe91fe4783de18fdae7

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/wp-video-lightbox/js/video-lightbox.js?ver=3.1.6 HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Last-Modified: Mon, 15 Nov 2021 10:33:58 GMT
ETag: "6c12f8-1b0f-5d0d158acd056-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1416
Keep-Alive: timeout=5
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (461)
Size:   1416
Md5:    8e4902d51be6c96ed3371eef64e9af22
Sha1:   59c1730e54fe30571b39ab2f220b417aa904c1e6
Sha256: d60c2b5b3af590ad3433167a5e3fbd37ce321a197db80270e2036b1f2a89ffb9

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8.1 HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Last-Modified: Thu, 08 Aug 2019 09:07:27 GMT
ETag: "662516-fdb5-58f9762faf1c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 18090
Keep-Alive: timeout=5
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (64614), with CRLF line terminators
Size:   18090
Md5:    b300af7280cf82d31e7f0b75c128598c
Sha1:   66b506bb8254f08ffe57c2b1e42722b73464670f
Sha256: feffecee338ad546654ada73f52882c96356f6882a3e59cb540878415d77db1d

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.1 HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Last-Modified: Thu, 08 Aug 2019 09:07:27 GMT
ETag: "662513-1afe4-58f9762faf1c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 38337
Keep-Alive: timeout=5
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (27287), with CRLF line terminators
Size:   38337
Md5:    33ad97fbd5f6d0ad97af5461cc857da3
Sha1:   a975057df83659e526059661a2dae1a5a4d23fe2
Sha256: ba0476734001e6e0808e7882a24852cf298dacac37b2beaf2c17718d2032afb2

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 01 Oct 2022 01:58:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=5.8.5 HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Last-Modified: Tue, 08 Jun 2021 22:15:12 GMT
ETag: "6e18d5-4705-5c4487ddedc00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4930
Keep-Alive: timeout=5
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (15224)
Size:   4930
Md5:    3179794486ec4ca8f59329ccd67ae3e1
Sha1:   4b9c6e22ee7966479ef9844259f39f19d584f4a4
Sha256: 6e616b83910943042f683d5d21691f7e15aca8e2d8d154ff8f35bf09c612297a

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Last-Modified: Mon, 14 Jun 2021 23:18:11 GMT
ETag: "6e17f6-4056-5c4c2122a12c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6031
Keep-Alive: timeout=5
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (16323)
Size:   6031
Md5:    69c4e8dea18bf3114e7630d1debe1ae2
Sha1:   71f8fc1ebf286356133d170f98afed7341c8de68
Sha256: 371f5b10b62e31fb871e46eb0a39c2599515e616d9c4a7edb50864f0e6ee9799

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7 HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Last-Modified: Wed, 23 Jun 2021 00:06:13 GMT
ETag: "6e17ed-1906-5c563acace740-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2398
Keep-Alive: timeout=5
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (6406), with no line terminators
Size:   2398
Md5:    4c6ce817a39414c5576e8895eb070bb2
Sha1:   dbc722879211a9235a27e0a5388c5c3ee896f4e2
Sha256: e6dc83fdbabca73596e0fe9f5fd65261a06bbb4b9f8998821bfe1634fa0b35e5

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.2 HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 01 Oct 2022 01:58:47 GMT
Server: Apache
Last-Modified: Mon, 15 Nov 2021 11:00:33 GMT
ETag: "6c131f-2e56-5d0d1b7c6396b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3767
Keep-Alive: timeout=5
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (11862), with no line terminators
Size:   3767
Md5:    b0f435d6d85c051ac88e7f6a9c74e54c
Sha1:   adaceb8d3aebbddaabc3682d15cee190001026c9
Sha256: be851f49d88d7b1b7c276710608c0663600a36d968af0011ae68f7c766213abb

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/insurance-agency/assets/js/bootstrap.js?ver=1.0.0 HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 01 Oct 2022 01:58:47 GMT
Server: Apache
Last-Modified: Thu, 08 Aug 2019 09:01:49 GMT
ETag: "66171b-104ac-58f974ed57940-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13639
Keep-Alive: timeout=5
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   13639
Md5:    a6b2aee2f91e08782d9674caa73d51b2
Sha1:   87641f57c5cce7176b6e6ed38d97396d3693e0ad
Sha256: dfae647cd2173c1acc3a07f2148961c1abb4cd3e1c5fb7d8a5d28c03c65c7abb

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /gtag/js?id=UA-194974216-1 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.activa-ghana.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 01 Oct 2022 01:58:47 GMT
expires: Sat, 01 Oct 2022 01:58:47 GMT
cache-control: private, max-age=900
last-modified: Sat, 01 Oct 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42377
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2039)
Size:   42377
Md5:    636a7207c9b0f90a26bdd9273dc1e0a5
Sha1:   97f72c8fe1d37a8ca5cba9430b1c91a4d2b35794
Sha256: 99c6fa71a63c40de8cf20b910bf88e8336febfbf640c031a4df454f610dd9aa9
                                        
                                            GET /wp-content/themes/insurance-agency/assets/js/isotope.js?ver=1.0.0 HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 01 Oct 2022 01:58:47 GMT
Server: Apache
Last-Modified: Thu, 08 Aug 2019 09:01:49 GMT
ETag: "66171a-9f8f-58f974ed57940-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11037
Keep-Alive: timeout=5
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (32031)
Size:   11037
Md5:    fef57371312dd70ecef555f55f2d51a6
Sha1:   629e79209cbfff3b6c6cfa1a0c5906836686759f
Sha256: 3cbc60dcd3e667d1fceb937b77a477043d7e1fc2962d1e917ac0a3d20c30fd59

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/insurance-agency/assets/js/flickity.js?ver=1.0.0 HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 01 Oct 2022 01:58:47 GMT
Server: Apache
Last-Modified: Thu, 08 Aug 2019 09:01:49 GMT
ETag: "66171c-e37c-58f974ed57940-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14962
Keep-Alive: timeout=5
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (32069)
Size:   14962
Md5:    e2dcedbded2c4c6bafc57112bf04103d
Sha1:   3dbfa2e07cb22bdb5b61d109ec53f2803737ae4b
Sha256: 32ebb25091ed71c0ba23431efe54da3ebe711f1fb8b2015f84bbd9bf7e23e754

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/insurance-agency/assets/js/countto.js?ver=1.0.0 HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 01 Oct 2022 01:58:47 GMT
Server: Apache
Last-Modified: Thu, 08 Aug 2019 09:01:49 GMT
ETag: "66171e-1238-58f974ed57940-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1708
Keep-Alive: timeout=5
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   1708
Md5:    d00c1481849a387b77450d5e4f8aea86
Sha1:   be7271aeebee5d03b32d15060f034e6f73c904b4
Sha256: e45b8233525ad7a30dd207fdedf354536fc2cacb59d176260345b9e7dd388bfb

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/insurance-agency/assets/js/waypoints.js?ver=1.0.0 HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 01 Oct 2022 01:58:47 GMT
Server: Apache
Last-Modified: Thu, 08 Aug 2019 09:01:49 GMT
ETag: "661719-41de-58f974ed57940-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3609
Keep-Alive: timeout=5
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   3609
Md5:    45b58e3dc44c04e85a910664d06e511c
Sha1:   555e30cd83376da80a8110802ee893db0303f102
Sha256: 8909a418ec10c7260e3ec58031817d64a2391d78058f1a011942976c3c965da8

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/insurance-agency/assets/js/scripts.js?ver=1.0.0 HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 01 Oct 2022 01:58:47 GMT
Server: Apache
Last-Modified: Thu, 08 Aug 2019 09:01:49 GMT
ETag: "66171d-d67-58f974ed57940-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1226
Keep-Alive: timeout=5
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1226
Md5:    dfb97e2bf1a19784133bac25a94abafb
Sha1:   3c85f14231fd9213ab763f74be0a75dd18616ecd
Sha256: 1bd5ef754b2c6c52d0920fce1ed19cf37ad41f9cba2bed58f2bbf1c730c0da78

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/wp-embed.min.js?ver=5.8.5 HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 01 Oct 2022 01:58:47 GMT
Server: Apache
Last-Modified: Wed, 06 Jan 2021 15:29:24 GMT
ETag: "6e18a5-592-5b83cfce57d00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 765
Keep-Alive: timeout=5
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1391)
Size:   765
Md5:    fe875afb236ee8f0d50040fe58d848d4
Sha1:   e6b1b67093b429c95d5b9db07a7eba39e02cf0e5
Sha256: 328a6a072b91134f2802ae25e070f38ff156ceee2c6ec6a6253ae4b27af73b49

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 01 Oct 2022 01:58:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/themes/insurance-agency-child/assets/css/bootstrap.css?ver=5.8.5 HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
X-Cache-Enabled: True
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Link: <http://www.activa-ghana.com/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2501), with CRLF, LF line terminators
Size:   47302
Md5:    03a83f534c3b3a8a6fc48a5351344968
Sha1:   2b460faa726a67ac2223f11f2fdae7c2bdb1f836
Sha256: f36f80b470f1dbf496f2cc97b1a03ed0cb7ff623955c944daa187b5e82d84ed5

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/insurance-agency-child/assets/css/font-awesome.css?ver=5.8.5 HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
X-Cache-Enabled: True
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Link: <http://www.activa-ghana.com/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2501), with CRLF, LF line terminators
Size:   47302
Md5:    03a83f534c3b3a8a6fc48a5351344968
Sha1:   2b460faa726a67ac2223f11f2fdae7c2bdb1f836
Sha256: f36f80b470f1dbf496f2cc97b1a03ed0cb7ff623955c944daa187b5e82d84ed5

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/2019/08/logo-activa.png HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 01 Oct 2022 01:58:48 GMT
Server: Apache
Last-Modified: Thu, 08 Aug 2019 14:24:26 GMT
ETag: "6615c0-1e78d-58f9bd099da80"
Accept-Ranges: bytes
Content-Length: 124813
Keep-Alive: timeout=5
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 236 x 91, 8-bit/color RGBA, non-interlaced\012- data
Size:   124813
Md5:    2583961356ff9016f38e84ca7e29418d
Sha1:   682a7e3b7e8cae34918ffa03afe903716c084024
Sha256: c99dcb47a3665ab732c561ca62ed692a6512c161e6057112e94bc2c36ed1fbd9

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.activa-ghana.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 13036
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 28 Sep 2022 21:58:38 GMT
Expires: Thu, 28 Sep 2023 21:58:38 GMT
Cache-Control: public, max-age=31536000
Age: 187210
Last-Modified: Wed, 27 Apr 2022 16:04:42 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 13036, version 1.0\012- data
Size:   13036
Md5:    0ad032b3d07aaf33b160ac4799dda40f
Sha1:   06b931e0d0bf37f5037d9e66d6feedfddd21c0ba
Sha256: c124c88ca4fcb4336e97617647ef0d32441329371120c8eabaea0fea226560b0
                                        
                                            GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.activa-ghana.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 13052
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 02:29:35 GMT
Expires: Fri, 29 Sep 2023 02:29:35 GMT
Cache-Control: public, max-age=31536000
Age: 170953
Last-Modified: Wed, 27 Apr 2022 16:09:03 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 13052, version 1.0\012- data
Size:   13052
Md5:    7cf79fbd1df848510d7352274efc2401
Sha1:   5540b5a26cc7dfe25294c4eabe011e2c6cd60143
Sha256: bc9a16cd945457ad9463cdaed95129b01c589466978dfee3d019d9c604b2171a
                                        
                                            GET /s/droidsans/v18/SlGVmQWMvZQIdix7AFxXkHNSbQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.activa-ghana.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 21224
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 07:03:10 GMT
Expires: Fri, 29 Sep 2023 07:03:10 GMT
Cache-Control: public, max-age=31536000
Age: 154538
Last-Modified: Tue, 19 Apr 2022 18:04:18 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 21224, version 1.0\012- data
Size:   21224
Md5:    13bdfb843f942ccd9f485eb6c0bc1934
Sha1:   2bad44362ff7569f24f2a3df2521b27a97ec1297
Sha256: 7a291479495fbb281655d5e870c6d118dc6b7ed18e8c235aef5974c1e9de4e6c
                                        
                                            GET /wp-content/themes/insurance-agency/assets/images/search.png HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/wp-content/themes/insurance-agency/style-default-blue.css?ver=5.8.5
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 01 Oct 2022 01:58:48 GMT
Server: Apache
Last-Modified: Thu, 08 Aug 2019 09:01:49 GMT
ETag: "6616f5-c4e-58f974ed57940"
Accept-Ranges: bytes
Content-Length: 3150
Keep-Alive: timeout=5
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 28 x 35, 8-bit/color RGBA, non-interlaced\012- data
Size:   3150
Md5:    904b98fee8daf3398919eb4ecc28be52
Sha1:   578a857fc3d41977aad1817969dd60ab89ba3098
Sha256: 926e487b6b31fa2e0bd1e3549b8638628e4539d7e72085f9eed9eb6aa008dee6

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/insurance-agency/assets/css/fonts/fontawesome-webfont.woff2?v=4.4.0 HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.activa-ghana.com/wp-content/themes/insurance-agency/assets/css/font-awesome.css?ver=5.8.5
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Date: Sat, 01 Oct 2022 01:58:48 GMT
Server: Apache
Last-Modified: Thu, 08 Aug 2019 09:01:49 GMT
ETag: "661712-fbd0-58f974ed57940"
Accept-Ranges: bytes
Content-Length: 64464
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 64464, version 4.262\012- data
Size:   64464
Md5:    4b5a84aaf1c9485e060c503a0ff8cadb
Sha1:   574ea2698c03ae9477db2ea3baf460ee32f1a7ea
Sha256: 3c4a1bb7ce3234407184f0d80cc4dec075e4ad616b44dcc5778e1cfb1bc24019

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/2019/08/globus.png HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 01 Oct 2022 01:58:48 GMT
Server: Apache
Last-Modified: Fri, 09 Aug 2019 20:28:31 GMT
ETag: "661585-513f-58fb5048179c0"
Accept-Ranges: bytes
Content-Length: 20799
Keep-Alive: timeout=5
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 224 x 107, 8-bit/color RGBA, interlaced\012- data
Size:   20799
Md5:    fb22049536a7a0f3841580bb54b5d078
Sha1:   1415214312692fbeb3d8a0831ac44630c58f29b3
Sha256: 40c7e58fe1d60942eb90b7278e10a776549830b0de871dcb1d6596aeaa47ab14

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/2019/08/favicon.png HTTP/1.1 
Host: www.activa-ghana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127

                                         
                                         160.153.133.143
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 01 Oct 2022 01:58:48 GMT
Server: Apache
Last-Modified: Thu, 08 Aug 2019 14:23:44 GMT
ETag: "6615cd-da2a-58f9bce18fc00"
Accept-Ranges: bytes
Content-Length: 55850
Keep-Alive: timeout=5
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 39 x 44, 8-bit/color RGBA, non-interlaced\012- data
Size:   55850
Md5:    449d5e34cb16870fe7781489642df5e0
Sha1:   c7464636a692f317ad63654b0193e530f194c34c
Sha256: 2f555e0a9e9494de80764ac68c738b4db7ea58aa13984e9c5ec8ee6646e820de

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.activa-ghana.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Sat, 01 Oct 2022 00:41:09 GMT
expires: Sat, 01 Oct 2022 02:41:09 GMT
cache-control: public, max-age=7200
age: 4659
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   19826
Md5:    cae538dcce82598fbe43c0bf443e62dd
Sha1:   cc68ac6be9c5e0087a0000e5735b83270ace30f5
Sha256: 954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 01 Oct 2022 01:58:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-194974216-1&cid=997996201.1664589525&jid=1402239172&gjid=1062553771&_gid=1795607262.1664589525&_u=YGBACUAABAAAAC~&z=215626325 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://www.activa-ghana.com
Connection: keep-alive
Referer: http://www.activa-ghana.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         64.233.165.154
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: http://www.activa-ghana.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 01 Oct 2022 01:58:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  very short file (no magic)
Size:   1
Md5:    c4ca4238a0b923820dcc509a6f75849b
Sha1:   356a192b7913b04c54574d18c28d46e6395428ab
Sha256: 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 01 Oct 2022 01:58:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /g/collect?v=2&tid=G-1BCLNERMD4&gtm=2oe9s0&_p=1466251661&gdid=dZTNiMT&cid=997996201.1664589525&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664589525&sct=1&seg=0&dl=http%3A%2F%2Fwww.activa-ghana.com%2Fpti%2Foooedlqrsu&dt=Page%20not%20found%20-%20Activa%20International%20Insurance&en=page_view&_fv=1&_ss=1&_ee=1 HTTP/1.1 
Host: region1.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.activa-ghana.com
Connection: keep-alive
Referer: http://www.activa-ghana.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                         
                                         216.239.34.36
HTTP/2 204 No Content
content-type: text/plain
                                        
access-control-allow-origin: http://www.activa-ghana.com
date: Sat, 01 Oct 2022 01:58:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /emojione/2.2.7/lib/js/emojione.min.js HTTP/1.1 
Host: cdn.jsdelivr.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.activa-ghana.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.229
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
etag: W/"49dda-cp9vjKV4fYl0Ow7X6yf9dkBr+YU"
content-encoding: gzip
accept-ranges: bytes
date: Sat, 01 Oct 2022 01:58:49 GMT
age: 16735886
x-served-by: cache-fra19156-FRA, cache-bma1654-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 53889
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32014)
Size:   53889
Md5:    ea53ffc3c20542881a2735a62c0426d7
Sha1:   365e24ffd4a54e4c019a47c94204ad90a8538eb5
Sha256: e4f801f6cd7462489966e441ff53795823a607656497f9d0ce8cbfc08f6c7448
                                        
                                            GET /s/?k=63379ed9470d1e7af190bc45&cver=0&pop=false&asver=49&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI1YjAxZGQyZTIyN2QzZDdlZGMyNTdkMWYiLCJ2aWQiOiIzZjdjMjQ0MGY4NTJjOGZlN2I3OGM4ZGNmNDIzNWI5ZjI2OTI0YWE2NDM4YjVjM2EwYjI3NmEyNWQ2OTA5MTRjIiwic2lkIjoiNjMzNzllZDk0NzBkMWU3YWYxOTBiYzQ1IiwiaWF0IjoxNjY0NTg5NTI5LCJleHAiOjE2NjQ1OTEzMjksImp0aSI6Ikg4d3hNdFpMOE9hTVNkVUtvYUw5YyJ9.7vt87Qi39ACtnZPBeCp0LzqJDNBs9Xn5tOk71GMA4-DFNJ79XL0L-ERs3facplBgBkQSElpyqb8PnolSMHTgMA&EIO=3&transport=websocket&__t=OEHH7Ez HTTP/1.1 
Host: vsa100.tawk.to
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: http://www.activa-ghana.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: pVQKTQsFxc64z409ZbNVLg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         172.67.38.66
HTTP/1.1 101 Switching Protocols
                                        
Date: Sat, 01 Oct 2022 01:58:49 GMT
Connection: upgrade
upgrade: websocket
sec-websocket-accept: o6Ai4yzrQ87Cc6uixDK6EwxmrRE=
sec-websocket-extensions: permessage-deflate
strict-transport-security: max-age=0; includeSubDomains; preload
CF-Cache-Status: DYNAMIC
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 7531986e79370b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb90508fe-e6b6-4ad0-9afc-67b46e4d0aa4.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8734
x-amzn-requestid: abef68e4-c2c6-4551-babc-125c93c1506d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZSz0UECTIAMF3BA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63376681-5090c08a3349bb8715d3c579;Sampled=0
x-amzn-remapped-date: Fri, 30 Sep 2022 21:58:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: pAnOlf78Pu-hwBIKm002F4z1G8Q1pshDOPxwIQ81Yu6HzIT-0PJt1Q==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 22:22:17 GMT
age: 12996
etag: "7eea9aa04c5a72c417a580ca45341a0b5adc72cf"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   21044
Md5:    b86b98715ae971832f5d116942f37fe0
Sha1:   64dc02a917724c7132e04d599cbee4de0a3d815f
Sha256: 027dba69832e53c194df54df4561c62f6a376ef7d1ee924851cccf059885d0cd
                                        
                                            GET /5b01dd2e227d3d7edc257d1f/default HTTP/1.1 
Host: embed.tawk.to
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.activa-ghana.com
Connection: keep-alive
Referer: http://www.activa-ghana.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.22.24.131
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Sat, 01 Oct 2022 01:58:48 GMT
access-control-allow-origin: *
cache-control: public, max-age=7200, s-maxage=3600
etag: W/"stable-v4-63258f417d7"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: REVALIDATED
x-content-type-options: nosniff
server: cloudflare
cf-ray: 753198675a13b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_s/v4/app/63258f417d7/js/twk-vendor.js HTTP/1.1 
Host: embed.tawk.to
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.activa-ghana.com
Connection: keep-alive
Referer: http://www.activa-ghana.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.22.24.131
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sat, 01 Oct 2022 01:58:48 GMT
age: 1126423
last-modified: Sat, 17 Sep 2022 09:12:03 GMT
etag: W/"7dcb496e4882926f93f2e73fa87062c0"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 753198686a7eb52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_s/v4/app/63258f417d7/js/twk-runtime.js HTTP/1.1 
Host: embed.tawk.to
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.activa-ghana.com
Connection: keep-alive
Referer: http://www.activa-ghana.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.22.24.131
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sat, 01 Oct 2022 01:58:48 GMT
last-modified: Sat, 17 Sep 2022 09:12:03 GMT
etag: W/"31ca85b2b61bb42db4e40c2e9429f7dc"
age: 1126423
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 753198687a82b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_s/v4/app/63258f417d7/js/twk-chunk-vendors.js HTTP/1.1 
Host: embed.tawk.to
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.activa-ghana.com
Connection: keep-alive
Referer: http://www.activa-ghana.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.22.24.131
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sat, 01 Oct 2022 01:58:48 GMT
age: 692995
last-modified: Sat, 17 Sep 2022 09:12:03 GMT
etag: W/"81c2642aac0b88b6b237d279f5f8ce67"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 753198686a7fb52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_s/v4/app/63258f417d7/js/twk-app.js HTTP/1.1 
Host: embed.tawk.to
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.activa-ghana.com
Connection: keep-alive
Referer: http://www.activa-ghana.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.22.24.131
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sat, 01 Oct 2022 01:58:48 GMT
last-modified: Sat, 17 Sep 2022 09:12:03 GMT
etag: W/"e736e189edb5d0d9d5b8e7f23dd9114a"
age: 1126423
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 753198687a87b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_s/v4/app/63258f417d7/js/twk-chunk-common.js HTTP/1.1 
Host: embed.tawk.to
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.activa-ghana.com
Connection: keep-alive
Referer: http://www.activa-ghana.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.22.24.131
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sat, 01 Oct 2022 01:58:48 GMT
age: 1126423
last-modified: Sat, 17 Sep 2022 09:12:03 GMT
etag: W/"c262969ff89da8a8b3994883a0f57085"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 753198687a83b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---