r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 60e4edea7b5f4d19f3547a3bb2d5df57
3ee076bab4da3416c2c5808f730cb316c28baef7
763e2dadfdd286a51327cd2000ca335e30cd0b9b7267875d22ca33f7556ba200
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763E2DADFDD286A51327CD2000CA335E30CD0B9B7267875D22CA33F7556BA200"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3523
Expires: Sat, 01 Oct 2022 02:57:27 GMT
Date: Sat, 01 Oct 2022 01:58:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4a22d2eb50abe339ba0b974642de3650
af15bc424a715a3b8d77e4948a9e152a3ba87ede
dff04734315b51fc11069e2d21b5be37b03d28ad01986e1ae2c96afc6ba31859
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DFF04734315B51FC11069E2D21B5BE37B03D28AD01986E1AE2C96AFC6BA31859"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5032
Expires: Sat, 01 Oct 2022 03:22:36 GMT
Date: Sat, 01 Oct 2022 01:58:44 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: nqHyQF0Ik3fq25FkVWrj6uZvllNydcLBNaw7pjNYQnjpe3o3Nf4Ic/4z9b9Z/zxLrFahi4Wm4eA=
x-amz-request-id: DKG833881T5XV122
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 01 Oct 2022 01:51:41 GMT
age: 423
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
13.224.103.49200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 13.224.103.49:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 01 Oct 2022 01:16:16 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 cd66c5a89ae3376f15c155e3b52a758c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ZRH50-C1
X-Amz-Cf-Id: prOzAofkZUQAdjghliDkchMs3DJIiLzSOpnKmM0sBl1xFm9jWvBeQw==
Age: 2548
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 01 Oct 2022 01:58:44 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
13.224.103.49200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 13.224.103.49:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Sat, 01 Oct 2022 01:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Sat, 01 Oct 2022 02:16:30 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 3a17ea4b3f6bdbc694c3ec0645d21b5e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ZRH50-C1
X-Amz-Cf-Id: YFLlEu00N3CU-YB8dYXuK705y0VB0Ne1KwlMufHb_u4faqVQMcuHig==
Age: 1751
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d1be374a29f94481ff2c021e35f4eaa0
e05e92d94b5e434e9935e560fd8dc33bdc393aea
37a5132d2183f5c3bfaac5c89df691fea72cac4423110df88bdeb231f430deee
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4794
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 01 Oct 2022 01:58:44 GMT
Last-Modified: Sat, 01 Oct 2022 00:38:50 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.148.17.90101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.17.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: imywfEEsT8BvHFHorZtEDw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: dK6RNJ46d8itPAjC/pO2LBiI3Ds=
activa-ghana.com/pti/oooedlqrsu
160.153.133.143301 Moved Permanently 0 B URL HTTP/1.1 activa-ghana.com/pti/oooedlqrsu
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /pti/oooedlqrsu HTTP/1.1
Host: activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 01 Oct 2022 01:58:44 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
X-Cache-Enabled: True
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Set-Cookie: PHPSESSID=a011bff71c02a7ba16937efd9da4a8da; path=/
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://www.activa-ghana.com/pti/oooedlqrsu
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8d59ee7b197f347e30ac793231158927
3316937f84c08ad1857d2f663dca353e250815f0
c17a343ceb786a421f8c3abfffae350e12c92271a69fc88eb8e8bab568877d6b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C17A343CEB786A421F8C3ABFFFAE350E12C92271A69FC88EB8E8BAB568877D6B"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5763
Expires: Sat, 01 Oct 2022 03:34:49 GMT
Date: Sat, 01 Oct 2022 01:58:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8d59ee7b197f347e30ac793231158927
3316937f84c08ad1857d2f663dca353e250815f0
c17a343ceb786a421f8c3abfffae350e12c92271a69fc88eb8e8bab568877d6b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C17A343CEB786A421F8C3ABFFFAE350E12C92271A69FC88EB8E8BAB568877D6B"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5763
Expires: Sat, 01 Oct 2022 03:34:49 GMT
Date: Sat, 01 Oct 2022 01:58:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8d59ee7b197f347e30ac793231158927
3316937f84c08ad1857d2f663dca353e250815f0
c17a343ceb786a421f8c3abfffae350e12c92271a69fc88eb8e8bab568877d6b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C17A343CEB786A421F8C3ABFFFAE350E12C92271A69FC88EB8E8BAB568877D6B"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5763
Expires: Sat, 01 Oct 2022 03:34:49 GMT
Date: Sat, 01 Oct 2022 01:58:46 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fc1f2d3-102a-457c-976d-ff08402f9a36.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fc1f2d3-102a-457c-976d-ff08402f9a36.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f4878cd951c02ed598cfc59e2b3a891d
26ccf1e3eb47c0181bb64257f47c665456b3dbaa
2752e5f1778af5a30c256b5e8a0e7899223900e7a476f1f8cc4f333c214003f2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fc1f2d3-102a-457c-976d-ff08402f9a36.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8218
x-amzn-requestid: 82a170d7-6c01-4eb1-b252-72bdb9f1eba9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZM66fGYuoAMF3ew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63350b76-1aed2834729dc53f25759334;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 03:05:26 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: YQ3Yw9-d5WDzBP6l27jg4oQ146Z1XSdyNa20HaE02sESgG0-cFM4Eg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 03:49:49 GMT
age: 79737
etag: "26ccf1e3eb47c0181bb64257f47c665456b3dbaa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03e4f558-3c34-42eb-aa43-9896f0e6ce87.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03e4f558-3c34-42eb-aa43-9896f0e6ce87.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 574cd0b975349cc445e798136863c8a0
74c20bb0c312988822deb9d46b20e4642357fbd7
62d6448a8da1ed783761e1e966c3f03f2d9b4351e04e13e71e330e4cce465fc4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03e4f558-3c34-42eb-aa43-9896f0e6ce87.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8269
x-amzn-requestid: 2ff31dda-d215-42fb-a439-de67799ebeb1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y8dqPFvQIAMFxlA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e7641-2c2e3443499003525414587b;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 03:15:13 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: btbI_vFcRysDsOGN3zHGO3PEnzCG8XZyV7E65PB1bwBab86rJM79ZQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 22:16:06 GMT
age: 13360
etag: "74c20bb0c312988822deb9d46b20e4642357fbd7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 206fb65e75dbadf119512f71e0b78402
58ff0bf8ce7528b303d28bab01a80ad721705569
56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6315
x-amzn-requestid: f0791b53-3c5f-4d94-954d-992a529ebb60
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZPnunF35oAMFYbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63361ff6-2adb303349153ced73ccecf6;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 22:45:10 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: F3fk5JnJ9ZFNPan-8DuLb4kuTiYKfniBar3qNlsuqd8a0saW3sEGvQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 04:35:22 GMT
age: 77004
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b0d9d19-67ea-434c-8233-4ac3ec9e78e7.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b0d9d19-67ea-434c-8233-4ac3ec9e78e7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 21e55a6ca7350ed834993a486e138de1
c09ee0f2be578f0067b2ed0237d565a04438147e
124ca8ae6e3f7c7bb28f0d47fa693753884261ed61896eccf7bc13f249fc8960
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b0d9d19-67ea-434c-8233-4ac3ec9e78e7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6959
x-amzn-requestid: eaf91f33-2fe3-4ed5-b89c-6199c2f17651
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZSxLCF6toAMFSDg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63376246-3b8c7f290ffda97b2d179433;Sampled=0
x-amzn-remapped-date: Fri, 30 Sep 2022 21:40:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: xr7RU7lL1QVYd5D1qQ_jqJQbefIVMeUQsJgxK4C-EvT0Hx0U37SNWQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 22:16:03 GMT
age: 13363
etag: "c09ee0f2be578f0067b2ed0237d565a04438147e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23b0da68-a440-4387-9d47-1617d8157f55.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23b0da68-a440-4387-9d47-1617d8157f55.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 26b855e3a55a0cfd23896413332a5c05
342e3be8998b548a7004c2a51c9910959b3747db
dfb620bbfa8adde25d578bc9baaa165324170b2f6bbcc2275f1a824267081ccb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23b0da68-a440-4387-9d47-1617d8157f55.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8324
x-amzn-requestid: af70bb88-e30c-49ab-b307-19ee8449d616
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZS2iEHsIoAMFjnA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63376ad9-732337760d4982a407053c1e;Sampled=0
x-amzn-remapped-date: Fri, 30 Sep 2022 22:16:57 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: I1NrjG7oeZTY1y95-p8V3vVQ9W7k2flj9rni795fZ_Ei8qYv3BxLPA==
via: 1.1 ece5d4a731ece5ff46c564ab2b946ede.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 22:16:58 GMT
age: 13308
etag: "342e3be8998b548a7004c2a51c9910959b3747db"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbd710cf-f324-404a-ae43-fbd1d0400520.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbd710cf-f324-404a-ae43-fbd1d0400520.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5cfb4bdf7685f1f17a62d43d85245baa
38b2cd106483aa3b46da02b040ca134c6257c988
81e03862f3c2e3e25dcdc563ee52cf38cb1440624c4e2bca08f3febbbdfe62ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbd710cf-f324-404a-ae43-fbd1d0400520.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6170
x-amzn-requestid: e94469ab-9e5f-4970-86b4-7b3f87360c78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZM65RFdgoAMFqEw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63350b6e-1756ce5f2cc902ab2f8775d2;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 03:05:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: cvFiiZF582krKa2avvGho4f1Dks0gYvUweBx2GOSgMkPb31CXfYDYA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 ddaf46a95abcfc80e8eae76235e2127c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 03:43:27 GMT
age: 80119
etag: "38b2cd106483aa3b46da02b040ca134c6257c988"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.activa-ghana.com/pti/oooedlqrsu
160.153.133.143404 Not Found 33 kB URL HTTP/1.1 www.activa-ghana.com/pti/oooedlqrsu
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (2501), with CRLF, LF line terminators
Hash 3bbb0c0dbbc93226e4b50a9097fd7937
1bdf7a9006cbd762bc0079bc70a712c1df1ab2e3
23f47da2344df846f0d505a2b432e610967a79cef8ecb9b794912bc56c74a796
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /pti/oooedlqrsu HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 404 Not Found
Date: Sat, 01 Oct 2022 01:58:45 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
X-Cache-Enabled: True
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://www.activa-ghana.com/wp-json/>; rel="https://api.w.org/"
Set-Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127; path=/
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Keep-Alive: timeout=5
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
fonts.googleapis.com/css?family=Droid+Sans%7CSource+Sans+Pro%3A300%2C400%2C600%26subset%3Dlatin%2Clatin-ext&ver=1.0.0
142.250.74.10200 OK 729 B URL HTTP/1.1 fonts.googleapis.com/css?family=Droid+Sans%7CSource+Sans+Pro%3A300%2C400%2C600%26subset%3Dlatin%2Clatin-ext&ver=1.0.0
IP 142.250.74.10:0
Hash f038b97478618ec6d912928cf8834331
6dc72a122f614ac25c0618de54c42a084fc0d018
4e25c428d4e6640862b816a00e613cc20563bf5e695f811c5041d08a6731d447
GET /css?family=Droid+Sans%7CSource+Sans+Pro%3A300%2C400%2C600%26subset%3Dlatin%2Clatin-ext&ver=1.0.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 01 Oct 2022 01:58:46 GMT
Date: Sat, 01 Oct 2022 01:58:46 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
www.activa-ghana.com/wp-content/plugins/wp-video-lightbox/css/prettyPhoto.css?ver=5.8.5
160.153.133.143200 OK 2.8 kB URL HTTP/1.1 www.activa-ghana.com/wp-content/plugins/wp-video-lightbox/css/prettyPhoto.css?ver=5.8.5
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
File type ASCII text, with very long lines (402)
Hash 3a1ff9de48099cfd3a536038539f3471
8b0c39c5002ae1ef271ff3852d08ff8e0ae0aa78
49b0cc1bafc014351334de23ce439af74635db3c2ea0cce4be2d62f5223c9bb1
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/wp-video-lightbox/css/prettyPhoto.css?ver=5.8.5 HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Last-Modified: Mon, 15 Nov 2021 10:33:57 GMT
ETag: "6c12ac-4dfa-5d0d158aafb96-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2808
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
www.activa-ghana.com/wp-content/plugins/wp-video-lightbox/wp-video-lightbox.css?ver=5.8.5
160.153.133.143200 OK 484 B URL HTTP/1.1 www.activa-ghana.com/wp-content/plugins/wp-video-lightbox/wp-video-lightbox.css?ver=5.8.5
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash 65752dcc0c6a10c19a1d45d6375bc370
0153d6b0b845ec1ee4cb31f546f30199204be24c
6ec2356de03f75da2e069031b31d47da896df9bbeed05b1f5030480d4b70960f
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/wp-video-lightbox/wp-video-lightbox.css?ver=5.8.5 HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 15 Nov 2021 10:33:58 GMT
ETag: "6c12fe-46a-5d0d158ae2fe7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 484
Keep-Alive: timeout=5
Content-Type: text/css
www.activa-ghana.com/wp-includes/css/dist/block-library/style.min.css?ver=5.8.5
160.153.133.143200 OK 10 kB URL HTTP/1.1 www.activa-ghana.com/wp-includes/css/dist/block-library/style.min.css?ver=5.8.5
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (33376)
Hash 2a3cc81919349cb551f504b077791457
1d9393824b33b80513dbb9b2c8db48b6719d5d46
13a8d762ef70a9a18c89c226c4671f986401ccb7dae1c20be18c3db1eabbb62c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.8.5 HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 01 Sep 2021 04:05:58 GMT
ETag: "6e1393-13abe-5cae72efad580-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 10523
Keep-Alive: timeout=5
Content-Type: text/css
www.activa-ghana.com/wp-content/themes/insurance-agency/style.css?ver=5.8.5
160.153.133.143200 OK 320 B URL HTTP/1.1 www.activa-ghana.com/wp-content/themes/insurance-agency/style.css?ver=5.8.5
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash 4b23e09f900722102fa6d83ce8a2725d
6283c907d4905357b8e09e9be53b076642286455
84085116bd5cce77f44f13ea0bece27c96015b5536fa782218f95eff69c990db
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/insurance-agency/style.css?ver=5.8.5 HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 08 Aug 2019 09:01:49 GMT
ETag: "661728-226-58f974ed57940-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 320
Keep-Alive: timeout=5
Content-Type: text/css
www.activa-ghana.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.2
160.153.133.143200 OK 972 B URL HTTP/1.1 www.activa-ghana.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.2
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
Hash 8bf268dfcca7cb20719b7ea14373ef4a
58bd839bbf0e8cc082f0a488b538b4ec71bebd2e
eece4a14939273c7af07bce8bab3a6cfc2c9de44c0eea82cc886abac13cb3870
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.2 HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 15 Nov 2021 11:00:33 GMT
ETag: "6c130f-aab-5d0d1b7c49f42-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 972
Keep-Alive: timeout=5
Content-Type: text/css
www.activa-ghana.com/wp-content/themes/insurance-agency-child/style.css?ver=5.8.5
160.153.133.143200 OK 394 B URL HTTP/1.1 www.activa-ghana.com/wp-content/themes/insurance-agency-child/style.css?ver=5.8.5
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash a734d68010863daf1d86b7767f7eccb7
d2be231f7827d280a6a6803ee7711b7abb75d52e
2c9da70f1a005d1a2d277ea0f97e9471e955698979062f9251e31b211f5e85e2
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/insurance-agency-child/style.css?ver=5.8.5 HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Last-Modified: Thu, 08 Aug 2019 09:03:27 GMT
ETag: "66174f-2c8-58f9754acd5c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 394
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
www.activa-ghana.com/wp-content/themes/insurance-agency/assets/css/bootstrap.css?ver=5.8.5
160.153.133.143200 OK 22 kB URL HTTP/1.1 www.activa-ghana.com/wp-content/themes/insurance-agency/assets/css/bootstrap.css?ver=5.8.5
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
File type ASCII text, with very long lines (540)
Hash 3ddfdbc568607eaa8d9ddb9ac1762339
fea2a9f9ed67f09ab62dfca0bb3815f7ac28d566
59ffe206814e63b026c249459c5f797d3fc184b577de06866692b2bcd1305b08
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/insurance-agency/assets/css/bootstrap.css?ver=5.8.5 HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Last-Modified: Thu, 08 Aug 2019 09:01:49 GMT
ETag: "66170e-23fc3-58f974ed57940-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 21492
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
www.activa-ghana.com/wp-content/themes/insurance-agency/assets/css/font-awesome.css?ver=5.8.5
160.153.133.143200 OK 6.5 kB URL HTTP/1.1 www.activa-ghana.com/wp-content/themes/insurance-agency/assets/css/font-awesome.css?ver=5.8.5
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
File type troff or preprocessor input, ASCII text, with very long lines (357), with CRLF line terminators
Hash 8408cc1d7d33a2a67e71c9b64a114717
d36ffbee701c3a5b8ca131584eb8e789fda15020
69c8764c971495722c9cbd3ef7c778d2471e5ddd55e6b36c9e6bc789ee73b231
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/insurance-agency/assets/css/font-awesome.css?ver=5.8.5 HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Last-Modified: Thu, 08 Aug 2019 09:01:49 GMT
ETag: "66170f-8616-58f974ed57940-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6458
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
www.activa-ghana.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8.1
160.153.133.143200 OK 9.6 kB URL HTTP/1.1 www.activa-ghana.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8.1
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (5178), with CRLF line terminators
Hash 720fc0a8dbcc1bd2c6bc2e2d8f1a1ea5
141d498396c9688411ebba4a9490116f09b04049
f2656c8581ad8ba6fd6bad6bcb19d57cba2015438df8e85ae6019de5b1751a62
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8.1 HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 08 Aug 2019 09:07:27 GMT
ETag: "6624ed-9b8c-58f9762faf1c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9562
Keep-Alive: timeout=5
Content-Type: text/css
www.activa-ghana.com/wp-content/themes/insurance-agency/style-default-blue.css?ver=5.8.5
160.153.133.143200 OK 41 kB URL HTTP/1.1 www.activa-ghana.com/wp-content/themes/insurance-agency/style-default-blue.css?ver=5.8.5
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
Hash a2af8085912e75289d20fb68db00e9ec
9c87f4566b18436f41d37540648bdfdecdd117c8
da8ecc6df57da632869495580ecdc6e8e8bbf09d26db0e7920c563bc421d4153
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/insurance-agency/style-default-blue.css?ver=5.8.5 HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Last-Modified: Fri, 16 Aug 2019 19:22:23 GMT
ETag: "6616dc-45326-59040e8e239c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 41046
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
www.activa-ghana.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
160.153.133.143200 OK 31 kB URL HTTP/1.1 www.activa-ghana.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
File type ASCII text, with very long lines (65447)
Hash 9640915738503451aa21181699feab5b
c053eaf36ef0da96619706b3abda326305063bd6
f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Last-Modified: Wed, 10 Mar 2021 15:07:24 GMT
ETag: "720e18-15db1-5bd3006388300-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 30908
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.activa-ghana.com/wp-content/plugins/rt-unyson-framework-customizations/extensions/builder/static/css/frontend-grid.css?ver=1.2.12
160.153.133.143200 OK 1.7 kB URL HTTP/1.1 www.activa-ghana.com/wp-content/plugins/rt-unyson-framework-customizations/extensions/builder/static/css/frontend-grid.css?ver=1.2.12
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
File type assembler source, ASCII text
Hash ebe0a0f3f702e3affea543328998126d
284e5818efd89c8591f5dcfd2b1b0aaf2eb8b895
00e374b5190cc76edea91685f0a7d34cd01078c1fe1bc631ad34059652f45cf7
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/rt-unyson-framework-customizations/extensions/builder/static/css/frontend-grid.css?ver=1.2.12 HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Last-Modified: Thu, 08 Aug 2019 09:07:27 GMT
ETag: "6618f6-2a61-58f9762faf1c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1714
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
www.activa-ghana.com/wp-content/plugins/unyson/framework/extensions/forms/static/css/frontend.css?ver=2.7.24
160.153.133.143200 OK 1.6 kB URL HTTP/1.1 www.activa-ghana.com/wp-content/plugins/unyson/framework/extensions/forms/static/css/frontend.css?ver=2.7.24
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
Hash acef1bf444f383baca8e9c1a1e24884c
d26c374c6fda73743bfcb87de69a8659ca8e71ff
26e26cdff2dc1adf7f10fd0dc0c2095a9ef57ea5da2932f037e09db5b48ec7b3
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/unyson/framework/extensions/forms/static/css/frontend.css?ver=2.7.24 HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Last-Modified: Mon, 15 Nov 2021 10:33:18 GMT
ETag: "6c06e9-2035-5d0d15651634f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1645
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
www.activa-ghana.com/wp-content/plugins/unyson/framework/extensions/breadcrumbs/static/css/style.css?ver=5.8.5
160.153.133.143200 OK 133 B URL HTTP/1.1 www.activa-ghana.com/wp-content/plugins/unyson/framework/extensions/breadcrumbs/static/css/style.css?ver=5.8.5
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
Hash 492ef8540c80e5f1c48b42cdbff52d1d
97a4c370a8ebaf7bab8233c51208ff9e1ca4fd55
de8511d2fb5df027ff3680a23353f69e275e4d95787e341235db68a955bb7e71
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/unyson/framework/extensions/breadcrumbs/static/css/style.css?ver=5.8.5 HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Last-Modified: Mon, 15 Nov 2021 10:33:19 GMT
ETag: "6c0a9a-87-5d0d15667315b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 133
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
www.activa-ghana.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
160.153.133.143200 OK 4.2 kB URL HTTP/1.1 www.activa-ghana.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Last-Modified: Wed, 18 Nov 2020 09:06:06 GMT
ETag: "720e0f-2bd8-5b45debe27b80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4169
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.activa-ghana.com/wp-content/plugins/wp-video-lightbox/js/jquery.prettyPhoto.js?ver=3.1.6
160.153.133.143200 OK 9.4 kB URL HTTP/1.1 www.activa-ghana.com/wp-content/plugins/wp-video-lightbox/js/jquery.prettyPhoto.js?ver=3.1.6
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
File type HTML document, ASCII text, with very long lines (613)
Hash fec655154ca2d46dfa8c1296ef7ce6c2
7a1eda002d2d7d4c9399302250273780f9e2c6b5
a1678128614b96a34372b9d25d04436b5bc3a3a0b552cfe91fe4783de18fdae7
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/wp-video-lightbox/js/jquery.prettyPhoto.js?ver=3.1.6 HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Last-Modified: Mon, 15 Nov 2021 10:33:58 GMT
ETag: "6c12f6-8c1d-5d0d158ac99a6-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9436
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.activa-ghana.com/wp-content/plugins/wp-video-lightbox/js/video-lightbox.js?ver=3.1.6
160.153.133.143200 OK 1.4 kB URL HTTP/1.1 www.activa-ghana.com/wp-content/plugins/wp-video-lightbox/js/video-lightbox.js?ver=3.1.6
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
File type HTML document, ASCII text, with very long lines (461)
Hash 8e4902d51be6c96ed3371eef64e9af22
59c1730e54fe30571b39ab2f220b417aa904c1e6
d60c2b5b3af590ad3433167a5e3fbd37ce321a197db80270e2036b1f2a89ffb9
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/wp-video-lightbox/js/video-lightbox.js?ver=3.1.6 HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Last-Modified: Mon, 15 Nov 2021 10:33:58 GMT
ETag: "6c12f8-1b0f-5d0d158acd056-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1416
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.activa-ghana.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8.1
160.153.133.143200 OK 18 kB URL HTTP/1.1 www.activa-ghana.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8.1
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
File type ASCII text, with very long lines (64614), with CRLF line terminators
Hash b300af7280cf82d31e7f0b75c128598c
66b506bb8254f08ffe57c2b1e42722b73464670f
feffecee338ad546654ada73f52882c96356f6882a3e59cb540878415d77db1d
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8.1 HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Last-Modified: Thu, 08 Aug 2019 09:07:27 GMT
ETag: "662516-fdb5-58f9762faf1c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 18090
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.activa-ghana.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.1
160.153.133.143200 OK 38 kB URL HTTP/1.1 www.activa-ghana.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.1
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
File type ASCII text, with very long lines (27287), with CRLF line terminators
Hash 33ad97fbd5f6d0ad97af5461cc857da3
a975057df83659e526059661a2dae1a5a4d23fe2
ba0476734001e6e0808e7882a24852cf298dacac37b2beaf2c17718d2032afb2
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.1 HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Last-Modified: Thu, 08 Aug 2019 09:07:27 GMT
ETag: "662513-1afe4-58f9762faf1c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 38337
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 2601db85aa6894ea41f37fc0c1f2594a
afc9de950cf648d720a78467582b26346b8d53bc
3211c5c61098100152ea682c86ec84f3a80229b8d709e5cbe0022caba7dc9e24
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Oct 2022 01:58:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.activa-ghana.com/wp-includes/js/wp-emoji-release.min.js?ver=5.8.5
160.153.133.143200 OK 4.9 kB URL HTTP/1.1 www.activa-ghana.com/wp-includes/js/wp-emoji-release.min.js?ver=5.8.5
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
File type ASCII text, with very long lines (15224)
Hash 3179794486ec4ca8f59329ccd67ae3e1
4b9c6e22ee7966479ef9844259f39f19d584f4a4
6e616b83910943042f683d5d21691f7e15aca8e2d8d154ff8f35bf09c612297a
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.8.5 HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Last-Modified: Tue, 08 Jun 2021 22:15:12 GMT
ETag: "6e18d5-4705-5c4487ddedc00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4930
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.activa-ghana.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
160.153.133.143200 OK 6.0 kB URL HTTP/1.1 www.activa-ghana.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (16323)
Hash 69c4e8dea18bf3114e7630d1debe1ae2
71f8fc1ebf286356133d170f98afed7341c8de68
371f5b10b62e31fb871e46eb0a39c2599515e616d9c4a7edb50864f0e6ee9799
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Last-Modified: Mon, 14 Jun 2021 23:18:11 GMT
ETag: "6e17f6-4056-5c4c2122a12c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6031
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.activa-ghana.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7
160.153.133.143200 OK 2.4 kB URL HTTP/1.1 www.activa-ghana.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
File type ASCII text, with very long lines (6406), with no line terminators
Hash 4c6ce817a39414c5576e8895eb070bb2
dbc722879211a9235a27e0a5388c5c3ee896f4e2
e6dc83fdbabca73596e0fe9f5fd65261a06bbb4b9f8998821bfe1634fa0b35e5
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7 HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
Last-Modified: Wed, 23 Jun 2021 00:06:13 GMT
ETag: "6e17ed-1906-5c563acace740-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2398
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.activa-ghana.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.2
160.153.133.143200 OK 3.8 kB URL HTTP/1.1 www.activa-ghana.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.2
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
File type HTML document, ASCII text, with very long lines (11862), with no line terminators
Hash b0f435d6d85c051ac88e7f6a9c74e54c
adaceb8d3aebbddaabc3682d15cee190001026c9
be851f49d88d7b1b7c276710608c0663600a36d968af0011ae68f7c766213abb
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.2 HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 01:58:47 GMT
Server: Apache
Last-Modified: Mon, 15 Nov 2021 11:00:33 GMT
ETag: "6c131f-2e56-5d0d1b7c6396b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3767
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.activa-ghana.com/wp-content/themes/insurance-agency/assets/js/bootstrap.js?ver=1.0.0
160.153.133.143200 OK 14 kB URL HTTP/1.1 www.activa-ghana.com/wp-content/themes/insurance-agency/assets/js/bootstrap.js?ver=1.0.0
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
Hash a6b2aee2f91e08782d9674caa73d51b2
87641f57c5cce7176b6e6ed38d97396d3693e0ad
dfae647cd2173c1acc3a07f2148961c1abb4cd3e1c5fb7d8a5d28c03c65c7abb
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/insurance-agency/assets/js/bootstrap.js?ver=1.0.0 HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 01:58:47 GMT
Server: Apache
Last-Modified: Thu, 08 Aug 2019 09:01:49 GMT
ETag: "66171b-104ac-58f974ed57940-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13639
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.googletagmanager.com/gtag/js?id=UA-194974216-1
142.250.74.72200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-194974216-1
IP 142.250.74.72:0
File type ASCII text, with very long lines (2039)
Hash 636a7207c9b0f90a26bdd9273dc1e0a5
97f72c8fe1d37a8ca5cba9430b1c91a4d2b35794
99c6fa71a63c40de8cf20b910bf88e8336febfbf640c031a4df454f610dd9aa9
GET /gtag/js?id=UA-194974216-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.activa-ghana.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 01 Oct 2022 01:58:47 GMT
expires: Sat, 01 Oct 2022 01:58:47 GMT
cache-control: private, max-age=900
last-modified: Sat, 01 Oct 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42377
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.activa-ghana.com/wp-content/themes/insurance-agency/assets/js/isotope.js?ver=1.0.0
160.153.133.143200 OK 11 kB URL HTTP/1.1 www.activa-ghana.com/wp-content/themes/insurance-agency/assets/js/isotope.js?ver=1.0.0
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
File type ASCII text, with very long lines (32031)
Hash fef57371312dd70ecef555f55f2d51a6
629e79209cbfff3b6c6cfa1a0c5906836686759f
3cbc60dcd3e667d1fceb937b77a477043d7e1fc2962d1e917ac0a3d20c30fd59
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/insurance-agency/assets/js/isotope.js?ver=1.0.0 HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 01:58:47 GMT
Server: Apache
Last-Modified: Thu, 08 Aug 2019 09:01:49 GMT
ETag: "66171a-9f8f-58f974ed57940-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11037
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.activa-ghana.com/wp-content/themes/insurance-agency/assets/js/flickity.js?ver=1.0.0
160.153.133.143200 OK 15 kB URL HTTP/1.1 www.activa-ghana.com/wp-content/themes/insurance-agency/assets/js/flickity.js?ver=1.0.0
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (32069)
Hash e2dcedbded2c4c6bafc57112bf04103d
3dbfa2e07cb22bdb5b61d109ec53f2803737ae4b
32ebb25091ed71c0ba23431efe54da3ebe711f1fb8b2015f84bbd9bf7e23e754
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/insurance-agency/assets/js/flickity.js?ver=1.0.0 HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 01:58:47 GMT
Server: Apache
Last-Modified: Thu, 08 Aug 2019 09:01:49 GMT
ETag: "66171c-e37c-58f974ed57940-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14962
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.activa-ghana.com/wp-content/themes/insurance-agency/assets/js/countto.js?ver=1.0.0
160.153.133.143200 OK 1.7 kB URL HTTP/1.1 www.activa-ghana.com/wp-content/themes/insurance-agency/assets/js/countto.js?ver=1.0.0
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
Hash d00c1481849a387b77450d5e4f8aea86
be7271aeebee5d03b32d15060f034e6f73c904b4
e45b8233525ad7a30dd207fdedf354536fc2cacb59d176260345b9e7dd388bfb
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/insurance-agency/assets/js/countto.js?ver=1.0.0 HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 01:58:47 GMT
Server: Apache
Last-Modified: Thu, 08 Aug 2019 09:01:49 GMT
ETag: "66171e-1238-58f974ed57940-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1708
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.activa-ghana.com/wp-content/themes/insurance-agency/assets/js/waypoints.js?ver=1.0.0
160.153.133.143200 OK 3.6 kB URL HTTP/1.1 www.activa-ghana.com/wp-content/themes/insurance-agency/assets/js/waypoints.js?ver=1.0.0
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
Hash 45b58e3dc44c04e85a910664d06e511c
555e30cd83376da80a8110802ee893db0303f102
8909a418ec10c7260e3ec58031817d64a2391d78058f1a011942976c3c965da8
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/insurance-agency/assets/js/waypoints.js?ver=1.0.0 HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 01:58:47 GMT
Server: Apache
Last-Modified: Thu, 08 Aug 2019 09:01:49 GMT
ETag: "661719-41de-58f974ed57940-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3609
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.activa-ghana.com/wp-content/themes/insurance-agency/assets/js/scripts.js?ver=1.0.0
160.153.133.143200 OK 1.2 kB URL HTTP/1.1 www.activa-ghana.com/wp-content/themes/insurance-agency/assets/js/scripts.js?ver=1.0.0
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash dfb97e2bf1a19784133bac25a94abafb
3c85f14231fd9213ab763f74be0a75dd18616ecd
1bd5ef754b2c6c52d0920fce1ed19cf37ad41f9cba2bed58f2bbf1c730c0da78
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/insurance-agency/assets/js/scripts.js?ver=1.0.0 HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 01:58:47 GMT
Server: Apache
Last-Modified: Thu, 08 Aug 2019 09:01:49 GMT
ETag: "66171d-d67-58f974ed57940-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1226
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.activa-ghana.com/wp-includes/js/wp-embed.min.js?ver=5.8.5
160.153.133.143200 OK 765 B URL HTTP/1.1 www.activa-ghana.com/wp-includes/js/wp-embed.min.js?ver=5.8.5
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
File type ASCII text, with very long lines (1391)
Hash fe875afb236ee8f0d50040fe58d848d4
e6b1b67093b429c95d5b9db07a7eba39e02cf0e5
328a6a072b91134f2802ae25e070f38ff156ceee2c6ec6a6253ae4b27af73b49
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/wp-embed.min.js?ver=5.8.5 HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 01:58:47 GMT
Server: Apache
Last-Modified: Wed, 06 Jan 2021 15:29:24 GMT
ETag: "6e18a5-592-5b83cfce57d00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 765
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 2601db85aa6894ea41f37fc0c1f2594a
afc9de950cf648d720a78467582b26346b8d53bc
3211c5c61098100152ea682c86ec84f3a80229b8d709e5cbe0022caba7dc9e24
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Oct 2022 01:58:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.activa-ghana.com/wp-content/themes/insurance-agency-child/assets/css/bootstrap.css?ver=5.8.5
160.153.133.143404 Not Found 47 kB URL HTTP/1.1 www.activa-ghana.com/wp-content/themes/insurance-agency-child/assets/css/bootstrap.css?ver=5.8.5
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2501), with CRLF, LF line terminators
Hash 03a83f534c3b3a8a6fc48a5351344968
2b460faa726a67ac2223f11f2fdae7c2bdb1f836
f36f80b470f1dbf496f2cc97b1a03ed0cb7ff623955c944daa187b5e82d84ed5
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/insurance-agency-child/assets/css/bootstrap.css?ver=5.8.5 HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 404 Not Found
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
X-Cache-Enabled: True
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Link: <http://www.activa-ghana.com/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.activa-ghana.com/wp-content/themes/insurance-agency-child/assets/css/font-awesome.css?ver=5.8.5
160.153.133.143404 Not Found 47 kB URL HTTP/1.1 www.activa-ghana.com/wp-content/themes/insurance-agency-child/assets/css/font-awesome.css?ver=5.8.5
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2501), with CRLF, LF line terminators
Hash 03a83f534c3b3a8a6fc48a5351344968
2b460faa726a67ac2223f11f2fdae7c2bdb1f836
f36f80b470f1dbf496f2cc97b1a03ed0cb7ff623955c944daa187b5e82d84ed5
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/insurance-agency-child/assets/css/font-awesome.css?ver=5.8.5 HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 404 Not Found
Date: Sat, 01 Oct 2022 01:58:46 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
X-Cache-Enabled: True
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Link: <http://www.activa-ghana.com/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.activa-ghana.com/wp-content/uploads/2019/08/logo-activa.png
160.153.133.143200 OK 125 kB URL HTTP/1.1 www.activa-ghana.com/wp-content/uploads/2019/08/logo-activa.png
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
File type PNG image data, 236 x 91, 8-bit/color RGBA, non-interlaced\012- data
Size 125 kB (124813 bytes)
Hash 2583961356ff9016f38e84ca7e29418d
682a7e3b7e8cae34918ffa03afe903716c084024
c99dcb47a3665ab732c561ca62ed692a6512c161e6057112e94bc2c36ed1fbd9
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2019/08/logo-activa.png HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 01:58:48 GMT
Server: Apache
Last-Modified: Thu, 08 Aug 2019 14:24:26 GMT
ETag: "6615c0-1e78d-58f9bd099da80"
Accept-Ranges: bytes
Content-Length: 124813
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
142.250.74.163200 OK 13 kB URL HTTP/1.1 fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 13036, version 1.0\012- data
Hash 0ad032b3d07aaf33b160ac4799dda40f
06b931e0d0bf37f5037d9e66d6feedfddd21c0ba
c124c88ca4fcb4336e97617647ef0d32441329371120c8eabaea0fea226560b0
GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.activa-ghana.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 13036
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 28 Sep 2022 21:58:38 GMT
Expires: Thu, 28 Sep 2023 21:58:38 GMT
Cache-Control: public, max-age=31536000
Age: 187210
Last-Modified: Wed, 27 Apr 2022 16:04:42 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2
142.250.74.163200 OK 13 kB URL HTTP/1.1 fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 13052, version 1.0\012- data
Hash 7cf79fbd1df848510d7352274efc2401
5540b5a26cc7dfe25294c4eabe011e2c6cd60143
bc9a16cd945457ad9463cdaed95129b01c589466978dfee3d019d9c604b2171a
GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.activa-ghana.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 13052
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 02:29:35 GMT
Expires: Fri, 29 Sep 2023 02:29:35 GMT
Cache-Control: public, max-age=31536000
Age: 170953
Last-Modified: Wed, 27 Apr 2022 16:09:03 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/droidsans/v18/SlGVmQWMvZQIdix7AFxXkHNSbQ.woff2
142.250.74.163200 OK 21 kB URL HTTP/1.1 fonts.gstatic.com/s/droidsans/v18/SlGVmQWMvZQIdix7AFxXkHNSbQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 21224, version 1.0\012- data
Hash 13bdfb843f942ccd9f485eb6c0bc1934
2bad44362ff7569f24f2a3df2521b27a97ec1297
7a291479495fbb281655d5e870c6d118dc6b7ed18e8c235aef5974c1e9de4e6c
GET /s/droidsans/v18/SlGVmQWMvZQIdix7AFxXkHNSbQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.activa-ghana.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 21224
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 29 Sep 2022 07:03:10 GMT
Expires: Fri, 29 Sep 2023 07:03:10 GMT
Cache-Control: public, max-age=31536000
Age: 154538
Last-Modified: Tue, 19 Apr 2022 18:04:18 GMT
Content-Type: font/woff2
www.activa-ghana.com/wp-content/themes/insurance-agency/assets/images/search.png
160.153.133.143200 OK 3.2 kB URL HTTP/1.1 www.activa-ghana.com/wp-content/themes/insurance-agency/assets/images/search.png
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
File type PNG image data, 28 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash 904b98fee8daf3398919eb4ecc28be52
578a857fc3d41977aad1817969dd60ab89ba3098
926e487b6b31fa2e0bd1e3549b8638628e4539d7e72085f9eed9eb6aa008dee6
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/insurance-agency/assets/images/search.png HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/wp-content/themes/insurance-agency/style-default-blue.css?ver=5.8.5
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 01:58:48 GMT
Server: Apache
Last-Modified: Thu, 08 Aug 2019 09:01:49 GMT
ETag: "6616f5-c4e-58f974ed57940"
Accept-Ranges: bytes
Content-Length: 3150
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
www.activa-ghana.com/wp-content/themes/insurance-agency/assets/css/fonts/fontawesome-webfont.woff2?v=4.4.0
160.153.133.143200 OK 64 kB URL HTTP/1.1 www.activa-ghana.com/wp-content/themes/insurance-agency/assets/css/fonts/fontawesome-webfont.woff2?v=4.4.0
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
File type Web Open Font Format (Version 2), TrueType, length 64464, version 4.262\012- data
Hash 4b5a84aaf1c9485e060c503a0ff8cadb
574ea2698c03ae9477db2ea3baf460ee32f1a7ea
3c4a1bb7ce3234407184f0d80cc4dec075e4ad616b44dcc5778e1cfb1bc24019
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/insurance-agency/assets/css/fonts/fontawesome-webfont.woff2?v=4.4.0 HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.activa-ghana.com/wp-content/themes/insurance-agency/assets/css/font-awesome.css?ver=5.8.5
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 01:58:48 GMT
Server: Apache
Last-Modified: Thu, 08 Aug 2019 09:01:49 GMT
ETag: "661712-fbd0-58f974ed57940"
Accept-Ranges: bytes
Content-Length: 64464
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: font/woff2
www.activa-ghana.com/wp-content/uploads/2019/08/globus.png
160.153.133.143200 OK 21 kB URL HTTP/1.1 www.activa-ghana.com/wp-content/uploads/2019/08/globus.png
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
File type PNG image data, 224 x 107, 8-bit/color RGBA, interlaced\012- data
Hash fb22049536a7a0f3841580bb54b5d078
1415214312692fbeb3d8a0831ac44630c58f29b3
40c7e58fe1d60942eb90b7278e10a776549830b0de871dcb1d6596aeaa47ab14
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2019/08/globus.png HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 01:58:48 GMT
Server: Apache
Last-Modified: Fri, 09 Aug 2019 20:28:31 GMT
ETag: "661585-513f-58fb5048179c0"
Accept-Ranges: bytes
Content-Length: 20799
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
www.activa-ghana.com/wp-content/uploads/2019/08/favicon.png
160.153.133.143200 OK 56 kB URL HTTP/1.1 www.activa-ghana.com/wp-content/uploads/2019/08/favicon.png
IP 160.153.133.143:0
ASN #21501 Host Europe GmbH
File type PNG image data, 39 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash 449d5e34cb16870fe7781489642df5e0
c7464636a692f317ad63654b0193e530f194c34c
2f555e0a9e9494de80764ac68c738b4db7ea58aa13984e9c5ec8ee6646e820de
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2019/08/favicon.png HTTP/1.1
Host: www.activa-ghana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.activa-ghana.com/pti/oooedlqrsu
Cookie: PHPSESSID=73cd4a4c6a87bbcc8e60e7269961a127
HTTP/1.1 200 OK
Date: Sat, 01 Oct 2022 01:58:48 GMT
Server: Apache
Last-Modified: Thu, 08 Aug 2019 14:23:44 GMT
ETag: "6615cd-da2a-58f9bce18fc00"
Accept-Ranges: bytes
Content-Length: 55850
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.activa-ghana.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Sat, 01 Oct 2022 00:41:09 GMT
expires: Sat, 01 Oct 2022 02:41:09 GMT
cache-control: public, max-age=7200
age: 4659
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7e9ce4f67540be7dc1efdf5cec1ea9d7
a34d70d3a259c0042b32053db9b84340fda551f3
30986769ce7f866e0f8e9c4733512ad9b83acb983663b0d9ef49bd0871e9cfb3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Oct 2022 01:58:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-194974216-1&cid=997996201.1664589525&jid=1402239172&gjid=1062553771&_gid=1795607262.1664589525&_u=YGBACUAABAAAAC~&z=215626325
64.233.165.154200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-194974216-1&cid=997996201.1664589525&jid=1402239172&gjid=1062553771&_gid=1795607262.1664589525&_u=YGBACUAABAAAAC~&z=215626325
IP 64.233.165.154:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-194974216-1&cid=997996201.1664589525&jid=1402239172&gjid=1062553771&_gid=1795607262.1664589525&_u=YGBACUAABAAAAC~&z=215626325 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://www.activa-ghana.com
Connection: keep-alive
Referer: http://www.activa-ghana.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://www.activa-ghana.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 01 Oct 2022 01:58:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7e9ce4f67540be7dc1efdf5cec1ea9d7
a34d70d3a259c0042b32053db9b84340fda551f3
30986769ce7f866e0f8e9c4733512ad9b83acb983663b0d9ef49bd0871e9cfb3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Oct 2022 01:58:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.google-analytics.com/g/collect?v=2&tid=G-1BCLNERMD4>m=2oe9s0&_p=1466251661&gdid=dZTNiMT&cid=997996201.1664589525&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664589525&sct=1&seg=0&dl=http%3A%2F%2Fwww.activa-ghana.com%2Fpti%2Foooedlqrsu&dt=Page%20not%20found%20-%20Activa%20International%20Insurance&en=page_view&_fv=1&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-1BCLNERMD4>m=2oe9s0&_p=1466251661&gdid=dZTNiMT&cid=997996201.1664589525&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664589525&sct=1&seg=0&dl=http%3A%2F%2Fwww.activa-ghana.com%2Fpti%2Foooedlqrsu&dt=Page%20not%20found%20-%20Activa%20International%20Insurance&en=page_view&_fv=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-1BCLNERMD4>m=2oe9s0&_p=1466251661&gdid=dZTNiMT&cid=997996201.1664589525&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664589525&sct=1&seg=0&dl=http%3A%2F%2Fwww.activa-ghana.com%2Fpti%2Foooedlqrsu&dt=Page%20not%20found%20-%20Activa%20International%20Insurance&en=page_view&_fv=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.activa-ghana.com
Connection: keep-alive
Referer: http://www.activa-ghana.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: http://www.activa-ghana.com
date: Sat, 01 Oct 2022 01:58:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js
151.101.85.229200 OK 54 kB URL HTTP/2 cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js
IP 151.101.85.229:0
File type ASCII text, with very long lines (32014)
Hash ea53ffc3c20542881a2735a62c0426d7
365e24ffd4a54e4c019a47c94204ad90a8538eb5
e4f801f6cd7462489966e441ff53795823a607656497f9d0ce8cbfc08f6c7448
GET /emojione/2.2.7/lib/js/emojione.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.activa-ghana.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
etag: W/"49dda-cp9vjKV4fYl0Ow7X6yf9dkBr+YU"
content-encoding: gzip
accept-ranges: bytes
date: Sat, 01 Oct 2022 01:58:49 GMT
age: 16735886
x-served-by: cache-fra19156-FRA, cache-bma1654-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 53889
X-Firefox-Spdy: h2
vsa100.tawk.to/s/?k=63379ed9470d1e7af190bc45&cver=0&pop=false&asver=49&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI1YjAxZGQyZTIyN2QzZDdlZGMyNTdkMWYiLCJ2aWQiOiIzZjdjMjQ0MGY4NTJjOGZlN2I3OGM4ZGNmNDIzNWI5ZjI2OTI0YWE2NDM4YjVjM2EwYjI3NmEyNWQ2OTA5MTRjIiwic2lkIjoiNjMzNzllZDk0NzBkMWU3YWYxOTBiYzQ1IiwiaWF0IjoxNjY0NTg5NTI5LCJleHAiOjE2NjQ1OTEzMjksImp0aSI6Ikg4d3hNdFpMOE9hTVNkVUtvYUw5YyJ9.7vt87Qi39ACtnZPBeCp0LzqJDNBs9Xn5tOk71GMA4-DFNJ79XL0L-ERs3facplBgBkQSElpyqb8PnolSMHTgMA&EIO=3&transport=websocket&__t=OEHH7Ez
172.67.38.66101 Switching Protocols 0 B URL HTTP/1.1 vsa100.tawk.to/s/?k=63379ed9470d1e7af190bc45&cver=0&pop=false&asver=49&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI1YjAxZGQyZTIyN2QzZDdlZGMyNTdkMWYiLCJ2aWQiOiIzZjdjMjQ0MGY4NTJjOGZlN2I3OGM4ZGNmNDIzNWI5ZjI2OTI0YWE2NDM4YjVjM2EwYjI3NmEyNWQ2OTA5MTRjIiwic2lkIjoiNjMzNzllZDk0NzBkMWU3YWYxOTBiYzQ1IiwiaWF0IjoxNjY0NTg5NTI5LCJleHAiOjE2NjQ1OTEzMjksImp0aSI6Ikg4d3hNdFpMOE9hTVNkVUtvYUw5YyJ9.7vt87Qi39ACtnZPBeCp0LzqJDNBs9Xn5tOk71GMA4-DFNJ79XL0L-ERs3facplBgBkQSElpyqb8PnolSMHTgMA&EIO=3&transport=websocket&__t=OEHH7Ez
IP 172.67.38.66:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/?k=63379ed9470d1e7af190bc45&cver=0&pop=false&asver=49&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI1YjAxZGQyZTIyN2QzZDdlZGMyNTdkMWYiLCJ2aWQiOiIzZjdjMjQ0MGY4NTJjOGZlN2I3OGM4ZGNmNDIzNWI5ZjI2OTI0YWE2NDM4YjVjM2EwYjI3NmEyNWQ2OTA5MTRjIiwic2lkIjoiNjMzNzllZDk0NzBkMWU3YWYxOTBiYzQ1IiwiaWF0IjoxNjY0NTg5NTI5LCJleHAiOjE2NjQ1OTEzMjksImp0aSI6Ikg4d3hNdFpMOE9hTVNkVUtvYUw5YyJ9.7vt87Qi39ACtnZPBeCp0LzqJDNBs9Xn5tOk71GMA4-DFNJ79XL0L-ERs3facplBgBkQSElpyqb8PnolSMHTgMA&EIO=3&transport=websocket&__t=OEHH7Ez HTTP/1.1
Host: vsa100.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: http://www.activa-ghana.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: pVQKTQsFxc64z409ZbNVLg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Sat, 01 Oct 2022 01:58:49 GMT
Connection: upgrade
upgrade: websocket
sec-websocket-accept: o6Ai4yzrQ87Cc6uixDK6EwxmrRE=
sec-websocket-extensions: permessage-deflate
strict-transport-security: max-age=0; includeSubDomains; preload
CF-Cache-Status: DYNAMIC
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 7531986e79370b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb90508fe-e6b6-4ad0-9afc-67b46e4d0aa4.jpeg
34.120.237.76200 OK 21 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb90508fe-e6b6-4ad0-9afc-67b46e4d0aa4.jpeg
IP 34.120.237.76:0
Hash b86b98715ae971832f5d116942f37fe0
64dc02a917724c7132e04d599cbee4de0a3d815f
027dba69832e53c194df54df4561c62f6a376ef7d1ee924851cccf059885d0cd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb90508fe-e6b6-4ad0-9afc-67b46e4d0aa4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8734
x-amzn-requestid: abef68e4-c2c6-4551-babc-125c93c1506d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZSz0UECTIAMF3BA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63376681-5090c08a3349bb8715d3c579;Sampled=0
x-amzn-remapped-date: Fri, 30 Sep 2022 21:58:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: pAnOlf78Pu-hwBIKm002F4z1G8Q1pshDOPxwIQ81Yu6HzIT-0PJt1Q==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 22:22:17 GMT
age: 12996
etag: "7eea9aa04c5a72c417a580ca45341a0b5adc72cf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
embed.tawk.to/5b01dd2e227d3d7edc257d1f/default
104.22.24.131200 OK 0 B URL HTTP/2 embed.tawk.to/5b01dd2e227d3d7edc257d1f/default
IP 104.22.24.131:0
GET /5b01dd2e227d3d7edc257d1f/default HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.activa-ghana.com
Connection: keep-alive
Referer: http://www.activa-ghana.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 01 Oct 2022 01:58:48 GMT
content-type: application/x-javascript
access-control-allow-origin: *
cache-control: public, max-age=7200, s-maxage=3600
etag: W/"stable-v4-63258f417d7"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: REVALIDATED
x-content-type-options: nosniff
server: cloudflare
cf-ray: 753198675a13b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63258f417d7/js/twk-vendor.js
104.22.24.131200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63258f417d7/js/twk-vendor.js
IP 104.22.24.131:0
GET /_s/v4/app/63258f417d7/js/twk-vendor.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.activa-ghana.com
Connection: keep-alive
Referer: http://www.activa-ghana.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Oct 2022 01:58:48 GMT
content-type: application/javascript
age: 1126423
last-modified: Sat, 17 Sep 2022 09:12:03 GMT
etag: W/"7dcb496e4882926f93f2e73fa87062c0"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 753198686a7eb52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63258f417d7/js/twk-runtime.js
104.22.24.131200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63258f417d7/js/twk-runtime.js
IP 104.22.24.131:0
GET /_s/v4/app/63258f417d7/js/twk-runtime.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.activa-ghana.com
Connection: keep-alive
Referer: http://www.activa-ghana.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Oct 2022 01:58:48 GMT
content-type: application/javascript
last-modified: Sat, 17 Sep 2022 09:12:03 GMT
etag: W/"31ca85b2b61bb42db4e40c2e9429f7dc"
age: 1126423
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 753198687a82b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63258f417d7/js/twk-chunk-vendors.js
104.22.24.131200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63258f417d7/js/twk-chunk-vendors.js
IP 104.22.24.131:0
GET /_s/v4/app/63258f417d7/js/twk-chunk-vendors.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.activa-ghana.com
Connection: keep-alive
Referer: http://www.activa-ghana.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Oct 2022 01:58:48 GMT
content-type: application/javascript
age: 692995
last-modified: Sat, 17 Sep 2022 09:12:03 GMT
etag: W/"81c2642aac0b88b6b237d279f5f8ce67"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 753198686a7fb52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63258f417d7/js/twk-app.js
104.22.24.131200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63258f417d7/js/twk-app.js
IP 104.22.24.131:0
GET /_s/v4/app/63258f417d7/js/twk-app.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.activa-ghana.com
Connection: keep-alive
Referer: http://www.activa-ghana.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Oct 2022 01:58:48 GMT
content-type: application/javascript
last-modified: Sat, 17 Sep 2022 09:12:03 GMT
etag: W/"e736e189edb5d0d9d5b8e7f23dd9114a"
age: 1126423
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 753198687a87b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63258f417d7/js/twk-chunk-common.js
104.22.24.131200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63258f417d7/js/twk-chunk-common.js
IP 104.22.24.131:0
GET /_s/v4/app/63258f417d7/js/twk-chunk-common.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.activa-ghana.com
Connection: keep-alive
Referer: http://www.activa-ghana.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Oct 2022 01:58:48 GMT
content-type: application/javascript
age: 1126423
last-modified: Sat, 17 Sep 2022 09:12:03 GMT
etag: W/"c262969ff89da8a8b3994883a0f57085"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 753198687a83b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2