sirfrancismarketingltd.co.ke/doc
109.205.177.79301 Moved Permanently 31 kB URL User Request GET HTTP/1.1 sirfrancismarketingltd.co.ke/doc
IP 109.205.177.79:80
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (9721), with CRLF, LF line terminators
Hash a45635459c25926f3b67e98cd497441a
2b57304665838cf65b50f5e9d5bb51d707c97e53
4be7f11f46858e658496f9df54d5e4023df4998c4d0a93c8d2c53828b2dd2b66
Analyzer Verdict Alert fortinet Phishing
GET /doc HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
set-cookie: wccp_pro_functionality=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <https://sirfrancismarketingltd.co.ke/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding,Accept-Encoding
content-encoding: gzip
date: Mon, 29 May 2023 12:42:32 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
sirfrancismarketingltd.co.ke/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/css/main.css?ver=3.28
109.205.177.79200 OK 250 B URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/css/main.css?ver=3.28
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (623), with no line terminators
Hash 0e1264c97dac6c8618fd3694f9d54c77
e75e711269a9151f9340ecaa66d7f34c72f678ed
2474fd1b51fcf2633b7b7de80a78fc0dc3a42ebf57830c0b41ebb003ada72961
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/css/main.css?ver=3.28 HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000,public
expires: Tue, 28 May 2024 12:42:33 GMT
content-type: text/css; charset=UTF-8
last-modified: Fri, 26 May 2023 03:27:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 250
date: Mon, 29 May 2023 12:42:33 GMT
server: LiteSpeed
sirfrancismarketingltd.co.ke/wp-includes/css/dist/block-library/style.min.css?ver=6.2.2
109.205.177.79200 OK 12 kB URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-includes/css/dist/block-library/style.min.css?ver=6.2.2
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (48325)
Hash 47cdb0e81ea341ad27a1a0b0ba6b02d8
6195a67b0b7f7919f07309e2c8ce71f3d4729d03
aca566587618e75fa291a419c7c430be02e03fc72f6105658c1bc8e7d59a65e4
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.2.2 HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000,public
expires: Tue, 28 May 2024 12:42:33 GMT
content-type: text/css; charset=UTF-8
last-modified: Thu, 30 Mar 2023 11:13:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 11775
date: Mon, 29 May 2023 12:42:33 GMT
server: LiteSpeed
sirfrancismarketingltd.co.ke/wp-includes/css/classic-themes.min.css?ver=6.2.2
109.205.177.79200 OK 164 B URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-includes/css/classic-themes.min.css?ver=6.2.2
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
Hash 1a0804b1a9d09705657f91fe7cad4c5a
feeece6f0b3e0bcf090547c475329a2772f6b26b
dcd9f488bd62ba0ee403b07a97e40b9ffd63a0eff61091588c913b16d5153d48
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/classic-themes.min.css?ver=6.2.2 HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000,public
expires: Tue, 28 May 2024 12:42:33 GMT
content-type: text/css; charset=UTF-8
last-modified: Thu, 30 Mar 2023 11:13:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 164
date: Mon, 29 May 2023 12:42:33 GMT
server: LiteSpeed
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.2/css/all.min.css?ver=3.1.66
104.17.25.14200 OK 10 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.2/css/all.min.css?ver=3.1.66
IP 104.17.25.14:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (59158)
Hash c4af24ce595437830af0a401897698b2
06b7f92dd894a9edb0aeb9d040b489460ecff593
d1fb8d8337cd22568295b0ed998c85c58f0b4cd083af0b0db21cb0af80002f2d
GET /ajax/libs/font-awesome/5.15.2/css/all.min.css?ver=3.1.66 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 29 May 2023 12:42:33 GMT
content-type: text/css; charset=utf-8
content-length: 10472
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5fff7431-e7d0"
last-modified: Wed, 13 Jan 2021 22:29:05 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 333596
expires: Sat, 18 May 2024 12:42:33 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mXbEVTxB4z2BzdrnjI90fyZDJU8gwc3jmbat9OJ77eFP5lNt2JafCmq%2Bvv2CgmJRi%2Bs1O5j8ptL4YjgLkBh5mITTAHoPfVhZJjrEnl6zyyuCdjmTnjOFov5OGtLfMZaX%2F2IY23rC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7ceed1688da3fab8-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
sirfrancismarketingltd.co.ke/wp-content/plugins/redux-framework/redux-core/assets/css/extendify-utilities.css?ver=4.4.1
109.205.177.79200 OK 5.4 kB URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-content/plugins/redux-framework/redux-core/assets/css/extendify-utilities.css?ver=4.4.1
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
File type assembler source, ASCII text, with very long lines (53434)
Hash b49e6b83f7bd47e2b24fae34688e415c
dee9efa699fb909e42ff4f7faac548a830dba8ce
c89fbb7c3991d609883de7c21412f6b27f44b0d049c72e49011d9a0311ac2eba
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/redux-framework/redux-core/assets/css/extendify-utilities.css?ver=4.4.1 HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000,public
expires: Tue, 28 May 2024 12:42:33 GMT
content-type: text/css; charset=UTF-8
last-modified: Thu, 27 Apr 2023 18:07:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 5382
date: Mon, 29 May 2023 12:42:33 GMT
server: LiteSpeed
sirfrancismarketingltd.co.ke/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.6
109.205.177.79200 OK 878 B URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.6
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
Hash 0e4a098f3f6e3faede64db8b9da80ba2
65b9b3c849f3fbdd783ddbfb183616ff55c7ee53
ab21762c3f447aa08cbefd5ea3866165f925bd5058a9ae19e23721462de6fb60
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.6 HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000,public
expires: Tue, 28 May 2024 12:42:33 GMT
content-type: text/css; charset=UTF-8
last-modified: Tue, 25 Apr 2023 14:08:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 878
date: Mon, 29 May 2023 12:42:33 GMT
server: LiteSpeed
sirfrancismarketingltd.co.ke/wp-content/themes/myhome/style.min.css?ver=3.1.66
109.205.177.79200 OK 52 kB URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-content/themes/myhome/style.min.css?ver=3.1.66
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (43155), with CRLF line terminators
Hash c17fe17a042283ad89834b5d99387601
ed0ad4867d372459afdcc4272532e0fe582f8943
89f84471c9bff555dbdfaa62968df845fea95e28d2479b7e4b6260ad644d6ec1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/myhome/style.min.css?ver=3.1.66 HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000,public
expires: Tue, 28 May 2024 12:42:33 GMT
content-type: text/css; charset=UTF-8
last-modified: Wed, 26 Jan 2022 05:32:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 51760
date: Mon, 29 May 2023 12:42:33 GMT
server: LiteSpeed
sirfrancismarketingltd.co.ke/wp-content/plugins/sassy-social-share/public/css/sassy-social-share-public.css?ver=3.3.51
109.205.177.79200 OK 2.2 kB URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-content/plugins/sassy-social-share/public/css/sassy-social-share-public.css?ver=3.3.51
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (10066), with no line terminators
Hash a587f139f769419d022d22d4cfa93d91
8a33ca20fec87e30c8281ee57abf30708a2c9277
6c4ca119cf1bceba15e6b59d19c9a913dcfa12dd54b9ca0900890819adfae5e5
GET /wp-content/plugins/sassy-social-share/public/css/sassy-social-share-public.css?ver=3.3.51 HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000,public
expires: Tue, 28 May 2024 12:42:33 GMT
content-type: text/css; charset=UTF-8
last-modified: Sat, 15 Apr 2023 07:16:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 2244
date: Mon, 29 May 2023 12:42:33 GMT
server: LiteSpeed
sirfrancismarketingltd.co.ke/wp-content/plugins/wccp-pro/css-protect.css?wccp_ver_num=10&ver=10.9.2
109.205.177.79200 OK 394 B URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-content/plugins/wccp-pro/css-protect.css?wccp_ver_num=10&ver=10.9.2
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
File type ASCII text, with CRLF line terminators
Hash 3f33d82ba29e82aeb7abc8cb5abc13c5
1905878719e80c382415174e932fd712022831a3
cfcc5780f12f3d0708a379a4bc7f9b04102e135d16cd8b903e155d670f472095
GET /wp-content/plugins/wccp-pro/css-protect.css?wccp_ver_num=10&ver=10.9.2 HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000,public
expires: Tue, 28 May 2024 12:42:33 GMT
content-type: text/css; charset=UTF-8
last-modified: Wed, 28 Dec 2022 11:09:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 394
date: Mon, 29 May 2023 12:42:33 GMT
server: LiteSpeed
sirfrancismarketingltd.co.ke/wp-content/plugins/wccp-pro/css/print-protection.css?wccp_ver_num=10&ver=6.2.2
109.205.177.79200 OK 119 B URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-content/plugins/wccp-pro/css/print-protection.css?wccp_ver_num=10&ver=6.2.2
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
Hash f6240557ccb74c0e13d3705c9cfc67ae
71b7c3916900f348c3e3e2c34e9c8511a47cdc28
33ff5b5000ec8cae9a1005c322b67890698343553df0e6fd87fd7b4a31734363
GET /wp-content/plugins/wccp-pro/css/print-protection.css?wccp_ver_num=10&ver=6.2.2 HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000,public
expires: Tue, 28 May 2024 12:42:33 GMT
content-type: text/css; charset=UTF-8
last-modified: Wed, 28 Dec 2022 11:09:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 119
date: Mon, 29 May 2023 12:42:33 GMT
server: LiteSpeed
sirfrancismarketingltd.co.ke/wp-content/plugins/add-to-any/addtoany.min.css?ver=1.16
109.205.177.79200 OK 402 B URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-content/plugins/add-to-any/addtoany.min.css?ver=1.16
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (1519), with no line terminators
Hash 73e46bbd8244a60086283f5fe275d682
b477443fbe8763c8f111877029b7aee9039ef64d
f93483f0aaf24aea4b5534bb8647d22cd9dfcb4d08d2fd1008787bdfb8a6cc47
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/add-to-any/addtoany.min.css?ver=1.16 HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000,public
expires: Tue, 28 May 2024 12:42:33 GMT
content-type: text/css; charset=UTF-8
last-modified: Thu, 30 Mar 2023 11:14:31 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 402
date: Mon, 29 May 2023 12:42:33 GMT
server: LiteSpeed
sirfrancismarketingltd.co.ke/wp-content/plugins/mega_main_menu/src/css/cache.skin.css?ver=1680464544
109.205.177.79200 OK 11 kB URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-content/plugins/mega_main_menu/src/css/cache.skin.css?ver=1680464544
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (483), with CR line terminators
Hash 894b4f78750ea6ef3ce3f5e2fb8d6902
2ed43fdba7c2063cffdb9925fb8afdd693fe2bec
4af0254cc49110e0b1265a3f2afc4497ee645ed31ac620d354a5dc695a139545
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/mega_main_menu/src/css/cache.skin.css?ver=1680464544 HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000,public
expires: Tue, 28 May 2024 12:42:33 GMT
content-type: text/css; charset=UTF-8
last-modified: Sun, 02 Apr 2023 19:42:31 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 10950
date: Mon, 29 May 2023 12:42:33 GMT
server: LiteSpeed
sirfrancismarketingltd.co.ke/wp-content/plugins/myhome-idx-broker/assets/css/main.css?ver=2.1.23
109.205.177.79200 OK 21 kB URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-content/plugins/myhome-idx-broker/assets/css/main.css?ver=2.1.23
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (585), with CRLF line terminators
Hash 4328df4035187758da776ea27fb499ce
27d6890c3973c4ba7b1615330a46dc17a5d90e21
f860efa60887abddf1a99882d542a040ddd1942e6b4b1fee654f58a6d29a2ee4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/myhome-idx-broker/assets/css/main.css?ver=2.1.23 HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000,public
expires: Tue, 28 May 2024 12:42:33 GMT
content-type: text/css; charset=UTF-8
last-modified: Wed, 15 Mar 2023 08:28:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 20558
date: Mon, 29 May 2023 12:42:33 GMT
server: LiteSpeed
sirfrancismarketingltd.co.ke/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=3.19.14
109.205.177.79200 OK 4.5 kB URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=3.19.14
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (27639), with no line terminators
Hash 36ea4805809e6b690c2f5126a0808297
4531470deab3efd0b8499f29a323a1b45f0efced
4354449ab7a164ef5486d12020f3bc403b8ff104a8da73e9f9332106b86b061c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=3.19.14 HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000,public
expires: Tue, 28 May 2024 12:42:33 GMT
content-type: text/css; charset=UTF-8
last-modified: Tue, 25 Aug 2020 14:47:31 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 4453
date: Mon, 29 May 2023 12:42:33 GMT
server: LiteSpeed
sirfrancismarketingltd.co.ke/wp-includes/js/jquery/jquery.min.js?ver=3.6.4
109.205.177.79200 OK 30 kB URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-includes/js/jquery/jquery.min.js?ver=3.6.4
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (65447)
Hash 0e850a69bc7fd0acc2e92ce6eee87959
8be6d9e7f7a61ccf0b8eac8a8144d770b608a19c
afacce23cb4feaaaef37997f8439819d8f827df4951f3ff02704c9f16fb7f53a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.4 HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000,public
expires: Tue, 28 May 2024 12:42:33 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Thu, 30 Mar 2023 11:13:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 30376
date: Mon, 29 May 2023 12:42:33 GMT
server: LiteSpeed
sirfrancismarketingltd.co.ke/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0
109.205.177.79200 OK 4.6 kB URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (13326)
Hash 5cfa2b481de6e87c2190a0e3538515d8
0fccf3c8ab2c10b4dcc7970e64ce997ab1622f68
9810aee7e6d57d8cceaa96322b88e6df46710194689ae12b284149148cabc2f3
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0 HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000,public
expires: Tue, 28 May 2024 12:42:33 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Thu, 30 Mar 2023 11:13:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 4603
date: Mon, 29 May 2023 12:42:33 GMT
server: LiteSpeed
sirfrancismarketingltd.co.ke/wp-content/themes/myhome/assets/js/myhome-map.min.js?ver=3.1.66
109.205.177.79200 OK 7.8 kB URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-content/themes/myhome/assets/js/myhome-map.min.js?ver=3.1.66
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (28122), with no line terminators
Hash cbb0acf7b295c2ce2b30a05e7dbafc9d
75e77776d3d788da87e8dca469a73ac8e774c420
38c12a5facac20df56107b1e1f2e5febbab89ecb90476998509d1d20b84a6a92
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/myhome/assets/js/myhome-map.min.js?ver=3.1.66 HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000,public
expires: Tue, 28 May 2024 12:42:33 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Wed, 26 Jan 2022 05:32:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 7779
date: Mon, 29 May 2023 12:42:33 GMT
server: LiteSpeed
sirfrancismarketingltd.co.ke/wp-content/uploads/redux/custom-fonts/fonts.css?ver=1685364153
109.205.177.79200 OK 0 B URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-content/uploads/redux/custom-fonts/fonts.css?ver=1685364153
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/redux/custom-fonts/fonts.css?ver=1685364153 HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000,public
expires: Tue, 28 May 2024 12:42:33 GMT
content-type: text/css; charset=UTF-8
last-modified: Fri, 20 Jan 2023 01:46:27 GMT
accept-ranges: bytes
content-length: 0
date: Mon, 29 May 2023 12:42:33 GMT
server: LiteSpeed
vary: Accept-Encoding
sirfrancismarketingltd.co.ke/wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1
109.205.177.79200 OK 129 B URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 5ef26b5e47e6951f43ecf2b1fc645222
081afb52577f6f3bb044fdea6d34a632c3cce7e8
50679e0e3933c945348a2db0cc128bb14b57a60a74fabf8cae13acc14efbb2e1
GET /wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1 HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000,public
expires: Tue, 28 May 2024 12:42:33 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Thu, 30 Mar 2023 11:14:31 GMT
accept-ranges: bytes
content-length: 129
date: Mon, 29 May 2023 12:42:33 GMT
server: LiteSpeed
vary: Accept-Encoding
sirfrancismarketingltd.co.ke/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.6.10
109.205.177.79200 OK 12 kB URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.6.10
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash 26612f0758857e9fd3992bb65d0a2ca4
6b4d95025d2be0b1ad1f93d0ff9fb1963d4e2522
d5b6e53c9833f0ab023135c4e3631a86d714c4b580b26c2ea979973ebb521a2c
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.6.10 HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000,public
expires: Tue, 28 May 2024 12:42:33 GMT
content-type: text/css; charset=UTF-8
last-modified: Wed, 15 Mar 2023 08:28:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 12037
date: Mon, 29 May 2023 12:42:33 GMT
server: LiteSpeed
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 4195d3f97e59fc4f34d523d0195d8d0b
244cd9dd441c530c8e03405819eb759e95f25cb0
1fc6101023c68883ddf2cb7eb133e96a3e3cf96d7657223e38621f9fc9a7653d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 12:42:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 4195d3f97e59fc4f34d523d0195d8d0b
244cd9dd441c530c8e03405819eb759e95f25cb0
1fc6101023c68883ddf2cb7eb133e96a3e3cf96d7657223e38621f9fc9a7653d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 12:42:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 11ddcad6f0fc074c4f1b86c66ced6d86
cdd65841fec92aca297dfc5c17dee8c8b525fd1f
64cf10b6657bc2be18416ea274885a23d1dfaab08a13f87f113e19c9aeaf4fd8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 12:42:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sirfrancismarketingltd.co.ke/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.28
109.205.177.79200 OK 2.2 kB URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.28
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (7194), with no line terminators
Hash cf4ccbf3bb2ce36100c99edb058f6f4c
6741cfea61a7b995b3638b5bb59e3a809883e311
3650505bcdc0bf7865ef59099868f380ddc1a1ffe71644dec9d18fcd1d2e48e0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.28 HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000,public
expires: Tue, 28 May 2024 12:42:33 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Fri, 26 May 2023 03:27:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 2208
date: Mon, 29 May 2023 12:42:33 GMT
server: LiteSpeed
sirfrancismarketingltd.co.ke/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.6.10
109.205.177.79200 OK 103 kB URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.6.10
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (64288)
Size 103 kB (103328 bytes)
Hash a87994cbb23540dfac48d11b3477be20
cb1470b2144cdb3e55e6ff833cdc159a910bcaca
5d5160f0403d6432edd16aa185c6298855e3f68aa8f6a338d3eeb03c8e869cdc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.6.10 HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000,public
expires: Tue, 28 May 2024 12:42:33 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Wed, 15 Mar 2023 08:28:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 103328
date: Mon, 29 May 2023 12:42:33 GMT
server: LiteSpeed
sirfrancismarketingltd.co.ke/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.6
109.205.177.79200 OK 2.9 kB URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.6
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (10241), with no line terminators
Hash 7be65ac27024c7b5686f9d7c49690799
241ada4a86443adc5623d1a3a8018a96d9de6d5a
52db930f81d97113dde679cac624cb5435b56d4ac486e91a0b6692d2cb615a84
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.6 HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000,public
expires: Tue, 28 May 2024 12:42:33 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 25 Apr 2023 14:08:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 2894
date: Mon, 29 May 2023 12:42:33 GMT
server: LiteSpeed
sirfrancismarketingltd.co.ke/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.6
109.205.177.79200 OK 3.9 kB URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.6
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (12943), with no line terminators
Hash 5bc2b1fa970f9cecb3c30c0c92c98271
7c6bb87aaa24714b7b3b3c86dd932736a80270a9
1060091178cbd6c843b802f516f230f1a3a1e85f1afbd6ef84d80e5430ba457e
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.6 HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000,public
expires: Tue, 28 May 2024 12:42:33 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 25 Apr 2023 14:08:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 3918
date: Mon, 29 May 2023 12:42:33 GMT
server: LiteSpeed
sirfrancismarketingltd.co.ke/wp-content/themes/myhome/assets/js/lazysizes.min.js?ver=3.1.66
109.205.177.79200 OK 9.1 kB URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-content/themes/myhome/assets/js/lazysizes.min.js?ver=3.1.66
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (11620), with CRLF line terminators
Hash e5fedb6ba2ba347d8a02a77127aed8f4
e6e1e695b119006f791d6986679212107b7c0294
e57db424d20393546b8f7cb3232e2104bca58330795cb89419f89991b5a0c5ce
GET /wp-content/themes/myhome/assets/js/lazysizes.min.js?ver=3.1.66 HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000,public
expires: Tue, 28 May 2024 12:42:33 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Wed, 26 Jan 2022 05:32:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 9086
date: Mon, 29 May 2023 12:42:33 GMT
server: LiteSpeed
sirfrancismarketingltd.co.ke/wp-content/themes/myhome/assets/js/myhome.min.js?ver=3.1.66
109.205.177.79200 OK 175 kB URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-content/themes/myhome/assets/js/myhome.min.js?ver=3.1.66
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (31977), with CRLF line terminators
Size 175 kB (175084 bytes)
Hash c4cbfb19eef288ff0b4dd9c8d81691f9
cca816f34cbdae1b21c90e7766844f1d608efe27
09088f1af22a27d7ce3c9b7746ed3ee00b5a4c54dc9426d2c83ed930408f4f92
GET /wp-content/themes/myhome/assets/js/myhome.min.js?ver=3.1.66 HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000,public
expires: Tue, 28 May 2024 12:42:33 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Wed, 26 Jan 2022 05:32:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 175084
date: Mon, 29 May 2023 12:42:33 GMT
server: LiteSpeed
sirfrancismarketingltd.co.ke/wp-content/plugins/wccp-pro/js/admin_bar_ajax.js?ver=6.2.2
109.205.177.79200 OK 590 B URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-content/plugins/wccp-pro/js/admin_bar_ajax.js?ver=6.2.2
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
File type ASCII text, with CRLF line terminators
Hash 223ae298e7a490c8f41d27b3916d526b
9507b681b110ccb6ca7a727f1f8b6a4732c38a10
cbca952e9391c48241397e56cec28aeff684802e83640d388223180e3b781350
GET /wp-content/plugins/wccp-pro/js/admin_bar_ajax.js?ver=6.2.2 HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000,public
expires: Tue, 28 May 2024 12:42:33 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Wed, 28 Dec 2022 11:09:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 590
date: Mon, 29 May 2023 12:42:33 GMT
server: LiteSpeed
sirfrancismarketingltd.co.ke/wp-content/plugins/mega_main_menu/src/js/frontend.js?ver=6.2.2
109.205.177.79200 OK 2.3 kB URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-content/plugins/mega_main_menu/src/js/frontend.js?ver=6.2.2
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
File type ASCII text, with CRLF line terminators
Hash bc5e25d10abc8bf0e42f224d6b8161cd
fdc56cf05b8d4abdf3587813f4b02420bef247d0
11aad7b3ff9fd201971bb3786ca70f85eabc64cd18d422ecb5e89cba7122cfb2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/mega_main_menu/src/js/frontend.js?ver=6.2.2 HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000,public
expires: Tue, 28 May 2024 12:42:33 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Sat, 08 Oct 2016 10:45:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 2295
date: Mon, 29 May 2023 12:42:33 GMT
server: LiteSpeed
sirfrancismarketingltd.co.ke/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2
109.205.177.79200 OK 2.3 kB URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (8171), with no line terminators
Hash dda652db133fddb9b80a05c6d1b5c540
60c8514c57a5db2980c4b046b0dd479bd427357b
c1a9a3e223bad631dff12d33b5499eb145cb08d8621c20d9d73870e78d97afe4
GET /wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000,public
expires: Tue, 28 May 2024 12:42:33 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Thu, 30 Mar 2023 11:13:15 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 2320
date: Mon, 29 May 2023 12:42:33 GMT
server: LiteSpeed
sirfrancismarketingltd.co.ke/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11
109.205.177.79200 OK 2.4 kB URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (6607), with no line terminators
Hash 9a4f28a615173df36cb84be2b345816e
f709263841708d9e40268f24a0072ff4fe811b35
6974bfd8fa06b7831f05cb4b25860c851a5ad3f02a6699ebe688987dd7a6ebe6
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11 HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000,public
expires: Tue, 28 May 2024 12:42:33 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Thu, 30 Mar 2023 11:13:15 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 2398
date: Mon, 29 May 2023 12:42:33 GMT
server: LiteSpeed
sirfrancismarketingltd.co.ke/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
109.205.177.79200 OK 6.3 kB URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Hash e495a4709e3eae31c67f8263f25d2d39
d43ba6a092e4823a71f3bff75d5ed279a481636b
1c1fef6e6b4f9832603850b9b6562e74d9a6a3700ba836efe88facc577121e8b
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000,public
expires: Tue, 28 May 2024 12:42:33 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Sun, 06 Nov 2022 16:27:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 6335
date: Mon, 29 May 2023 12:42:33 GMT
server: LiteSpeed
sirfrancismarketingltd.co.ke/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.7.6
109.205.177.79200 OK 439 B URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.7.6
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (999), with no line terminators
Hash 6a0e8318d42803736d2fafcc12238026
c955314a7e0a9a9871329b0f042c8f0b5df49a78
2648a1333fa24d383fd73a6beaac17156ae78f4267ff7407ad60e05a788df44c
GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.7.6 HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000,public
expires: Tue, 28 May 2024 12:42:33 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 25 Apr 2023 14:08:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 439
date: Mon, 29 May 2023 12:42:33 GMT
server: LiteSpeed
sirfrancismarketingltd.co.ke/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.6.10
109.205.177.79200 OK 60 kB URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.6.10
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (45047), with CRLF line terminators
Hash 7722baa787dec6f4e3831067d4cea8f8
ace1624f275bc847a9b0b6d11df6284515a6c63f
52984e532d02a87a060764ff400626a1b81cc316284a8ba1feab5d94697119a0
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.6.10 HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000,public
expires: Tue, 28 May 2024 12:42:33 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Wed, 15 Mar 2023 08:28:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 59951
date: Mon, 29 May 2023 12:42:33 GMT
server: LiteSpeed
www.google.com/recaptcha/api.js?render=6LeuHjAiAAAAAM5OZHqtqC-D4neotUdaIVbSXqJY&ver=3.0
142.250.74.132200 OK 586 B URL GET HTTP/2 www.google.com/recaptcha/api.js?render=6LeuHjAiAAAAAM5OZHqtqC-D4neotUdaIVbSXqJY&ver=3.0
IP 142.250.74.132:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint48:E3:15:66:FC:EA:15:BF:D2:34:C1:DD:60:D4:23:A3:63:57:89:8D
ValidityMon, 08 May 2023 08:25:18 GMT - Mon, 31 Jul 2023 08:25:17 GMT
File type ASCII text, with very long lines (884), with no line terminators
Hash 45442e4818c945f5625c5525f674f8f4
76a93cbef8bf5dbccee90a5df80377f93016d8c2
3bef58ee8ece419b3dfaf317b76333bbca4c3eaf3812fe1bca3319bd6cf0bfd7
GET /recaptcha/api.js?render=6LeuHjAiAAAAAM5OZHqtqC-D4neotUdaIVbSXqJY&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
expires: Mon, 29 May 2023 12:42:33 GMT
date: Mon, 29 May 2023 12:42:33 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 586
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/js?key=AIzaSyBL0y43MFgqeB8roHZKV9T7_n8WCKVwgoY&libraries=places&callback=mapLoaded
142.250.74.106200 OK 72 kB URL GET HTTP/2 maps.googleapis.com/maps/api/js?key=AIzaSyBL0y43MFgqeB8roHZKV9T7_n8WCKVwgoY&libraries=places&callback=mapLoaded
IP 142.250.74.106:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type ASCII text, with very long lines (3085)
Hash e86b809c1b3f53768411175f655d7f2c
78d623b9dc29e299818b51f7bfd1f566689e972c
f90506cdae21823f9c2c3ee37e38c36c5a89c2dcab5ec41152901126a9cab1a2
GET /maps/api/js?key=AIzaSyBL0y43MFgqeB8roHZKV9T7_n8WCKVwgoY&libraries=places&callback=mapLoaded HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
timing-allow-origin: *
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=1800
vary: Accept-Language, Origin, X-Origin, Referer
content-encoding: gzip
date: Mon, 29 May 2023 12:42:33 GMT
server: scaffolding on HTTPServer2
content-length: 71744
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sirfrancismarketingltd.co.ke/wp-content/uploads/2020/08/transparent.png
109.205.177.79200 OK 262 kB URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-content/uploads/2020/08/transparent.png
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
File type PNG image data, 1636 x 543, 8-bit/color RGBA, non-interlaced\012- data
Size 262 kB (262114 bytes)
Hash 37934674e8823fff7f0a9cb444a933a9
eaa648d0bd1d39807c34ed2fc7501952f6377d2f
f4ff8272237c91ee829ccb0706124bd4aed3c61420be1702b33cb916d6a92de5
GET /wp-content/uploads/2020/08/transparent.png HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=10368000,public
expires: Tue, 26 Sep 2023 12:42:33 GMT
content-type: image/png
last-modified: Wed, 26 Aug 2020 11:17:54 GMT
accept-ranges: bytes
content-length: 262114
date: Mon, 29 May 2023 12:42:33 GMT
server: LiteSpeed
vary: Accept-Encoding
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash dfd5ad02f4f42dfda06a983cde156afc
22aa6b74534fcf3dea8b9baf4578d94e7d668e18
885fcb0b62d31ffaccbc95a3ff7a2478fe67a28f62917c980555911e11717d36
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 12:42:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 4195d3f97e59fc4f34d523d0195d8d0b
244cd9dd441c530c8e03405819eb759e95f25cb0
1fc6101023c68883ddf2cb7eb133e96a3e3cf96d7657223e38621f9fc9a7653d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 12:42:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 4195d3f97e59fc4f34d523d0195d8d0b
244cd9dd441c530c8e03405819eb759e95f25cb0
1fc6101023c68883ddf2cb7eb133e96a3e3cf96d7657223e38621f9fc9a7653d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 12:42:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sirfrancismarketingltd.co.ke/wp-content/uploads/2020/08/Alternative-Sir-Francis-Logo-jpeg-files-02.png
109.205.177.79200 OK 11 kB URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-content/uploads/2020/08/Alternative-Sir-Francis-Logo-jpeg-files-02.png
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
File type PNG image data, 150 x 57, 8-bit/color RGBA, non-interlaced\012- data
Hash a3900ccc393cbd1eeaa224795c95ecf0
64533f2acfb51d350e1b44e8d6d41f98f92508ac
ac740752733567e40de01e9ea7c887712cbafd520b1e7c28d8565520d3974f80
GET /wp-content/uploads/2020/08/Alternative-Sir-Francis-Logo-jpeg-files-02.png HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=10368000,public
expires: Tue, 26 Sep 2023 12:42:33 GMT
content-type: image/png
last-modified: Thu, 27 Aug 2020 11:57:43 GMT
accept-ranges: bytes
content-length: 10641
date: Mon, 29 May 2023 12:42:33 GMT
server: LiteSpeed
vary: Accept-Encoding
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.2/webfonts/fa-brands-400.woff2
104.17.25.14200 OK 78 kB URL GET HTTP/3 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.2/webfonts/fa-brands-400.woff2
IP 104.17.25.14:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 78472, version 331.-31327\012- data
Hash 0c9f225e8f69c622f681cf1ed973cc3d
9e355abda14ee62a7987b2ba7e2e887d33337e25
529d0a7b3944929222155bca3272ba1a87acc2faa09b2ed26a713872b7ff8794
GET /ajax/libs/font-awesome/5.15.2/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sirfrancismarketingltd.co.ke
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 29 May 2023 12:42:34 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 78472
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5fff7432-13288"
last-modified: Wed, 13 Jan 2021 22:29:06 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 573080
expires: Sat, 18 May 2024 12:42:34 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FjzLLmkpwzftlYYAxP8lovQBWm7Kvtc5uAyrArhPU0DEJXqrr1yEOQAQxFYeFspa2H8%2BRGMaFVYMxaME3mtEc1KhbohvQYVAhLz1BkRQAjkdapy15pdtcAHlwhyEKPuwTA2NTcYc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7ceed16c2c76b4ff-OSL
alt-svc: h3=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash e75b43e8a7beaf5ded692008749eb5b0
5f96a142b29fc6ca88b33a9cb5c2c5b4b95b8635
a100d74db29961c793a7254e52dd854c8f85761876369b45073d911be95bab3a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 12:42:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash e75b43e8a7beaf5ded692008749eb5b0
5f96a142b29fc6ca88b33a9cb5c2c5b4b95b8635
a100d74db29961c793a7254e52dd854c8f85761876369b45073d911be95bab3a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 12:42:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash bf41763493034cf0721a38e55b1b3ddc
286ada2e9811dec033e7c630fa0c33a036771ae1
8bb566767ad110bd2452aca59b4190694cce97ab9601de46067d8643efaad86d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 12:42:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.addtoany.com/menu/modules/core.26680508.js
172.67.39.148200 OK 26 kB URL GET HTTP/3 static.addtoany.com/menu/modules/core.26680508.js
IP 172.67.39.148:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint20:A5:DB:83:09:73:10:48:06:97:65:2A:D9:27:B7:67:2D:7E:9D:6C
ValidityThu, 04 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4ddbe13185968a307e265ee10588d974
d943845db5f4b564f6eafd4048e76b9dee329f80
73cfb0ed71e314a835831530e27ba1fde5609b224781f7dbc2dd3eb9a08603cd
GET /menu/modules/core.26680508.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sirfrancismarketingltd.co.ke
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 29 May 2023 12:42:34 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000, immutable
cf-bgj: minify
access-control-allow-origin: *
etag: W/"11452-5f1f2ae24215b"
last-modified: Wed, 11 Jan 2023 01:11:29 GMT
vary: Accept-Encoding
via: e3s
x-content-type-options: nosniff
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7ceed16b09c60b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash e75b43e8a7beaf5ded692008749eb5b0
5f96a142b29fc6ca88b33a9cb5c2c5b4b95b8635
a100d74db29961c793a7254e52dd854c8f85761876369b45073d911be95bab3a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 12:42:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2
216.58.207.227200 OK 24 kB URL GET HTTP/2 fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2
IP 216.58.207.227:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sirfrancismarketingltd.co.ke
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 May 2023 04:04:41 GMT
expires: Fri, 24 May 2024 04:04:41 GMT
cache-control: public, max-age=31536000
age: 376673
last-modified: Tue, 02 May 2023 15:17:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/play/v17/6aez4K2oVqwIvtU2Hw.woff2
216.58.207.227200 OK 17 kB URL GET HTTP/2 fonts.gstatic.com/s/play/v17/6aez4K2oVqwIvtU2Hw.woff2
IP 216.58.207.227:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 17164, version 1.0\012- data
Hash c76806d1f447336b530232d9a7ecaa10
72f3c5f813c34a85df23c05a79e5125cd6096260
6cdceb438e41ee07d58b7214785e14651205d8cc4b158a9a3ab988515f66c1cc
GET /s/play/v17/6aez4K2oVqwIvtU2Hw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sirfrancismarketingltd.co.ke
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17164
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 27 May 2023 10:02:08 GMT
expires: Sun, 26 May 2024 10:02:08 GMT
cache-control: public, max-age=31536000
age: 182426
last-modified: Wed, 27 Apr 2022 16:06:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/play/v17/6ae84K2oVqwItm4TCpAy2g.woff2
216.58.207.227200 OK 17 kB URL GET HTTP/2 fonts.gstatic.com/s/play/v17/6ae84K2oVqwItm4TCpAy2g.woff2
IP 216.58.207.227:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 17216, version 1.0\012- data
Hash 136a643fb4e5f2ff8e2ee7bf990dc36b
049d9ab9dea3429bde3c5a1a401666ab766c4689
669ad8e27574eb5e9fcf9af7c0e103081d7e5be1ac28cd7c3d110591a8dfab88
GET /s/play/v17/6ae84K2oVqwItm4TCpAy2g.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sirfrancismarketingltd.co.ke
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17216
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 18:56:01 GMT
expires: Wed, 22 May 2024 18:56:01 GMT
cache-control: public, max-age=31536000
age: 495993
last-modified: Wed, 27 Apr 2022 15:54:34 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v24/S6u8w4BMUTPHjxsAXC-q.woff2
216.58.207.227200 OK 24 kB URL GET HTTP/2 fonts.gstatic.com/s/lato/v24/S6u8w4BMUTPHjxsAXC-q.woff2
IP 216.58.207.227:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 24408, version 1.0\012- data
Hash efee2d080d7bebdd2e0aeb2e030813a0
f8d38f9f9584e48c2e469877ebd94232265585f1
bca1d88ada544d9c80872d4da27133fab6d347361fa26e932b47ec9559088fd0
GET /s/lato/v24/S6u8w4BMUTPHjxsAXC-q.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sirfrancismarketingltd.co.ke
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24408
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 17:46:54 GMT
expires: Wed, 22 May 2024 17:46:54 GMT
cache-control: public, max-age=31536000
age: 500140
last-modified: Tue, 02 May 2023 15:14:26 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-WHZ2MDJ
142.250.74.168200 OK 42 kB URL GET HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-WHZ2MDJ
IP 142.250.74.168:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintEB:A2:AF:B3:20:F1:B1:77:23:0B:85:D2:B1:16:33:A7:97:49:EE:51
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
File type ASCII text, with very long lines (2271)
Hash 9b6e59fc17a9d5c33a57e9fe414ecb35
aa621ebb4fea6cd9d54491736110d6943b127c0a
32701a064eb8961a5852bf45e8a09641607df43ea635297c3081bce17fb2cf8d
GET /gtm.js?id=GTM-WHZ2MDJ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 29 May 2023 12:42:34 GMT
expires: Mon, 29 May 2023 12:42:34 GMT
cache-control: private, max-age=900
last-modified: Mon, 29 May 2023 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41943
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
chimpstatic.com/mcjs-connected/js/users/8772cf4ac0c5bb3320381a3d1/4682eea1c7dc2f501f843782d.js
96.6.17.210403 Forbidden 243 B URL GET HTTP/1.1 chimpstatic.com/mcjs-connected/js/users/8772cf4ac0c5bb3320381a3d1/4682eea1c7dc2f501f843782d.js
IP 96.6.17.210:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuerDigiCert Inc
Subjectwildcardsan.us15.list-manage.com
FingerprintBC:30:B2:9F:2F:A4:DF:B4:9F:C1:CC:A8:FD:DB:40:44:24:C3:79:6E
ValidityTue, 15 Nov 2022 00:00:00 GMT - Wed, 15 Nov 2023 23:59:59 GMT
File type XML 1.0 document text\012- XML document, ASCII text
Hash 7a56416a609c2291e4b04e1a088da509
4e57f87441602018e1cd8df05aae505c0f7c31e8
309c5bdcfd98d7b58727afc796353a127e8eef9e0aa43e5923336e3d00e5cdd3
GET /mcjs-connected/js/users/8772cf4ac0c5bb3320381a3d1/4682eea1c7dc2f501f843782d.js HTTP/1.1
Host: chimpstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
x-amz-request-id: Q8XXT6VVN4KZTR8V
x-amz-id-2: r7egcneHLhS5BxktnQDcVGb46Q+BGTgguNuWE/zz7UDSUELE/DKgjfNIlyNwVrRDV3qtjpmOH9c=
Content-Type: application/xml
Server: AmazonS3
Content-Length: 243
X-EdgeConnect-MidMile-RTT: 6
X-EdgeConnect-Origin-MEX-Latency: 104
Cache-Control: max-age=1798
Expires: Mon, 29 May 2023 13:12:32 GMT
Date: Mon, 29 May 2023 12:42:34 GMT
Connection: keep-alive
Set-Cookie: ak_bmsc=88C239A9423D26E00006E399047092EA~000000000000000000000000000000~YAAQpk8kF4ouuyGIAQAAJSCIZxNDQHdtm31Dwk9wpuhyLfJtuI9/zwe+828YX+wvubpqychk6PXQ5LR4wIsum2Io+OS2a8DhVt1bFn4EGtdxq8dAqS2kgjP96ZNLZdr9+vkVU7Y287xsmSg48HVg+sdVjMG+UluZ7aAKpNsnu/cyNknScGa9roQdliNQOLUiPHceCOfPfZAIx/1wrxn/TQWQ51TBlub4M4von52QthSUaN16quJQRRN/VbPmG3n0Optu5KgOt3TJfiftthsBQd/NiRvZQZwZAtasEZbLzui0KlUkeHojytsMrqGKY4+cVwYcWsMPdlCx8xcTm0I21QqG88KxTTqqxx/7evbnn1HUDQ9DUmU+NNx/sQXoGl0PEg==; Domain=.chimpstatic.com; Path=/; Expires=Mon, 29 May 2023 14:42:34 GMT; Max-Age=7200; SameSite=None; Secure; HttpOnly
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash e75b43e8a7beaf5ded692008749eb5b0
5f96a142b29fc6ca88b33a9cb5c2c5b4b95b8635
a100d74db29961c793a7254e52dd854c8f85761876369b45073d911be95bab3a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 12:42:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash bf41763493034cf0721a38e55b1b3ddc
286ada2e9811dec033e7c630fa0c33a036771ae1
8bb566767ad110bd2452aca59b4190694cce97ab9601de46067d8643efaad86d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 12:42:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
demo1.myhometheme.net/wp-content/themes/myhome/assets/fonts/Flaticon.woff
45.63.22.65200 OK 20 kB URL GET HTTP/2 demo1.myhometheme.net/wp-content/themes/myhome/assets/fonts/Flaticon.woff
IP 45.63.22.65:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuerLet's Encrypt
Subjectdemo1.myhometheme.net
Fingerprint75:5A:C5:39:F3:EA:B3:04:26:DD:D3:69:35:4C:7A:25:42:08:90:78
ValidityTue, 16 May 2023 04:28:11 GMT - Mon, 14 Aug 2023 04:28:10 GMT
File type Web Open Font Format, TrueType, length 19820, version 0.0\012- data
Hash dd53a735ff059e03067a6313904490cf
920c3b8f3b2e7e892b4c56f591daed1a672455dc
94829f5a546db80d1a75b17513d193302a7fcd4afffea7c39b74cdd4ed77623f
GET /wp-content/themes/myhome/assets/fonts/Flaticon.woff HTTP/1.1
Host: demo1.myhometheme.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sirfrancismarketingltd.co.ke
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
etag: "4d6c-630c8712-17d55f7;;;"
last-modified: Mon, 29 Aug 2022 09:29:54 GMT
content-type: application/font-woff
content-length: 19820
accept-ranges: bytes
date: Mon, 29 May 2023 12:42:34 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2
static.addtoany.com/menu/page.js
172.67.39.148200 OK 1.5 kB URL GET HTTP/2 static.addtoany.com/menu/page.js
IP 172.67.39.148:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint20:A5:DB:83:09:73:10:48:06:97:65:2A:D9:27:B7:67:2D:7E:9D:6C
ValidityThu, 04 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (3076), with no line terminators
Hash ce36bcabfd02e6132ece55637827631b
7513229734b52ac8f7ef86273b7fd263249a691b
2c5cc47eb8499efe3f4353bc50b38690756e78da21b0e158e14293b39c5ef812
GET /menu/page.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 29 May 2023 12:42:33 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=172800
cf-bgj: minify
access-control-allow-origin: *
age: 38351
etag: W/"c04-5f1f2ae2e431b"
last-modified: Wed, 11 Jan 2023 01:11:30 GMT
vary: Accept-Encoding
via: e1s
x-content-type-options: nosniff
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7ceed168e972b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
stats.callnowbutton.com/api/collect
188.166.200.165200 OK 529 B URL POST HTTP/2 stats.callnowbutton.com/api/collect
IP 188.166.200.165:443
ASN #14061 DIGITALOCEAN-ASN
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuerLet's Encrypt
Subjectstats.callnowbutton.com
FingerprintD0:B5:79:AA:DB:D0:5C:E2:36:00:36:A6:33:1F:C3:2B:5F:8E:98:54
ValidityFri, 26 May 2023 16:00:20 GMT - Thu, 24 Aug 2023 16:00:19 GMT
File type ASCII text, with very long lines (529), with no line terminators
Hash 3dc380740b72e3202d9a11fb2c1d1dae
7feb75ed78c339016e7190bbba95bf970053dd32
4907d640698f54e5f6338837c648ea9a4341708cf64ff11c53ef4b5dace4135e
POST /api/collect HTTP/1.1
Host: stats.callnowbutton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sirfrancismarketingltd.co.ke/
Content-Type: application/json
Content-Length: 145
Origin: https://sirfrancismarketingltd.co.ke
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
content-security-policy: default-src 'self'; img-src *; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; connect-src 'self' api.umami.is; frame-ancestors 'self';
content-type: text/plain
date: Mon, 29 May 2023 12:42:34 GMT
etag: "3zopu9y6fqep"
vary: Accept-Encoding
x-dns-prefetch-control: on
x-frame-options: SAMEORIGIN
content-length: 529
X-Firefox-Spdy: h2
sirfrancismarketingltd.co.ke/wp-content/uploads/2020/08/cropped-Official-Sir-Francis-Logo-01-192x192.jpg
109.205.177.79200 OK 8.5 kB URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-content/uploads/2020/08/cropped-Official-Sir-Francis-Logo-01-192x192.jpg
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 192x192, components 3\012- data
Hash 8e83475ed1b9c0a8c293ca1e50f8bac2
00810551a137e1f22f5437b45506ee97f81e92ce
d1d20db8abdeb85bef9269f2f606e3f0b0df117c00ca2e7daa9acf8ed598c555
GET /wp-content/uploads/2020/08/cropped-Official-Sir-Francis-Logo-01-192x192.jpg HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=10368000,public
expires: Tue, 26 Sep 2023 12:42:34 GMT
content-type: image/jpeg
last-modified: Thu, 27 Aug 2020 04:31:47 GMT
accept-ranges: bytes
content-length: 8487
date: Mon, 29 May 2023 12:42:34 GMT
server: LiteSpeed
vary: Accept-Encoding
static.addtoany.com/menu/sm.24.html
172.67.39.148 1.5 kB URL static.addtoany.com/menu/sm.24.html
IP 172.67.39.148:0
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint20:A5:DB:83:09:73:10:48:06:97:65:2A:D9:27:B7:67:2D:7E:9D:6C
ValidityThu, 04 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (677), with no line terminators
Hash 44159485d6e6221dda54af2df7cc7fd1
bc1d911a820c00010002e7632e91f1cd6d3f8706
5a4192e762a449dfd6e63bee835e0941627223c9159e8219acdd01881a1ac175
GET /menu/sm.24.html HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 29 May 2023 12:42:34 GMT
content-type: text/html; charset=utf-8
last-modified: Fri, 18 Nov 2022 00:47:55 GMT
etag: W/"2a5-5edb40e6d10d8"
cache-control: max-age=315360000, immutable
vary: Accept-Encoding
via: e2s
cf-cache-status: HIT
age: 1613147
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ceed16c7e45b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
142.250.74.99200 OK 166 kB URL GET HTTP/2 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
IP 142.250.74.99:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type ASCII text, with very long lines (660)
Size 166 kB (166449 bytes)
Hash 95a32a4d8f8be968bc15d6ab9b9491d1
fbfbcb40c8d8997096cd2ea3d8cfc3dee1981015
a41096fbcf982d79bf075bf2378c9c0c2e8ada5bdc94bd7cc794454135ccf981
GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sirfrancismarketingltd.co.ke
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166449
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 28 May 2023 15:22:11 GMT
expires: Mon, 27 May 2024 15:22:11 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 76823
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
142.250.74.106200 OK 23 B URL GET HTTP/3 maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP 142.250.74.106:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type JSON data\012- , ASCII text
Hash 8a80554c91d9fca8acb82f023de02f11
5f36b2ea290645ee34d943220a14b54ee5ea5be5
ca3d163bab055381827226140568f3bef7eaac187cebd76878e0b63e9e442356
GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sirfrancismarketingltd.co.ke
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Mon, 29 May 2023 12:42:34 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://sirfrancismarketingltd.co.ke
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/recaptcha/api2/anchor?ar=1&k=6LeuHjAiAAAAAM5OZHqtqC-D4neotUdaIVbSXqJY&co=aHR0cHM6Ly9zaXJmcmFuY2lzbWFya2V0aW5nbHRkLmNvLmtlOjQ0Mw..&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=pw1f9fexpewb
142.250.74.132200 OK 28 kB URL GET HTTP/3 www.google.com/recaptcha/api2/anchor?ar=1&k=6LeuHjAiAAAAAM5OZHqtqC-D4neotUdaIVbSXqJY&co=aHR0cHM6Ly9zaXJmcmFuY2lzbWFya2V0aW5nbHRkLmNvLmtlOjQ0Mw..&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=pw1f9fexpewb
IP 142.250.74.132:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:BA:19:A5:81:25:05:32:72:13:A7:18:CF:67:8C:D6:6F:13:B3:EF
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (42713)
Hash e0ef368d5be072fcd726e71572fcf155
7676316320336f196e687202baaebec2f4701b0a
1090549960034e48f39b74d97ab3d874c75ee23c4a41d853544f50976c63017b
GET /recaptcha/api2/anchor?ar=1&k=6LeuHjAiAAAAAM5OZHqtqC-D4neotUdaIVbSXqJY&co=aHR0cHM6Ly9zaXJmcmFuY2lzbWFya2V0aW5nbHRkLmNvLmtlOjQ0Mw..&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=pw1f9fexpewb HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 29 May 2023 12:42:35 GMT
content-security-policy: script-src 'nonce-hXgcOGoxeCds90E6bQ9NNA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 27882
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css
142.250.74.99200 OK 25 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css
IP 142.250.74.99:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeuHjAiAAAAAM5OZHqtqC-D4neotUdaIVbSXqJY&co=aHR0cHM6Ly9zaXJmcmFuY2lzbWFya2V0aW5nbHRkLmNvLmtlOjQ0Mw..&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=pw1f9fexpewb
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type ASCII text, with very long lines (56403), with no line terminators
Hash 83f90c5a4c20afb44429fa346fbadc10
7c278ec721d3880fbafaadeba9ee80bdf294b014
952833e41ba7a4b64c31a2d7b07dde81bf5bbacf5cbb967821cfe459d0c4a0d8
GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24605
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 May 2023 02:58:56 GMT
expires: Tue, 28 May 2024 02:58:56 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/css
vary: Accept-Encoding
age: 35019
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
142.250.74.99200 OK 166 kB URL GET HTTP/2 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
IP 142.250.74.99:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type ASCII text, with very long lines (660)
Size 166 kB (166449 bytes)
Hash 95a32a4d8f8be968bc15d6ab9b9491d1
fbfbcb40c8d8997096cd2ea3d8cfc3dee1981015
a41096fbcf982d79bf075bf2378c9c0c2e8ada5bdc94bd7cc794454135ccf981
GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166449
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 28 May 2023 15:22:11 GMT
expires: Mon, 27 May 2024 15:22:11 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 76824
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeuHjAiAAAAAM5OZHqtqC-D4neotUdaIVbSXqJY&co=aHR0cHM6Ly9zaXJmcmFuY2lzbWFya2V0aW5nbHRkLmNvLmtlOjQ0Mw..&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=pw1f9fexpewb
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 17:31:32 GMT
expires: Wed, 22 May 2024 17:31:32 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 501063
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeuHjAiAAAAAM5OZHqtqC-D4neotUdaIVbSXqJY&co=aHR0cHM6Ly9zaXJmcmFuY2lzbWFya2V0aW5nbHRkLmNvLmtlOjQ0Mw..&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=pw1f9fexpewb
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 21:40:21 GMT
expires: Wed, 22 May 2024 21:40:21 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 486134
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/recaptcha/api2/webworker.js?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9
142.250.74.132200 OK 112 B URL GET HTTP/3 www.google.com/recaptcha/api2/webworker.js?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9
IP 142.250.74.132:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeuHjAiAAAAAM5OZHqtqC-D4neotUdaIVbSXqJY&co=aHR0cHM6Ly9zaXJmcmFuY2lzbWFya2V0aW5nbHRkLmNvLmtlOjQ0Mw..&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=pw1f9fexpewb
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:BA:19:A5:81:25:05:32:72:13:A7:18:CF:67:8C:D6:6F:13:B3:EF
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
File type ASCII text, with no line terminators
Hash ffdfcf8fae84f7684f006bf5af012c06
b31182bbb1c60a114919bf05e698805b61f76aba
1bf768716a75b7620d341f775d10d79ee73a3a47f6609a24ca25dd88e4aeda95
GET /recaptcha/api2/webworker.js?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeuHjAiAAAAAM5OZHqtqC-D4neotUdaIVbSXqJY&co=aHR0cHM6Ly9zaXJmcmFuY2lzbWFya2V0aW5nbHRkLmNvLmtlOjQ0Mw..&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=pw1f9fexpewb
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
expires: Mon, 29 May 2023 12:42:35 GMT
date: Mon, 29 May 2023 12:42:35 GMT
cache-control: private, max-age=300
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/javascript; charset=UTF-8
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 112
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/api2/logo_48.png
142.250.74.99200 OK 2.2 kB URL GET HTTP/3 www.gstatic.com/recaptcha/api2/logo_48.png
IP 142.250.74.99:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeuHjAiAAAAAM5OZHqtqC-D4neotUdaIVbSXqJY&co=aHR0cHM6Ly9zaXJmcmFuY2lzbWFya2V0aW5nbHRkLmNvLmtlOjQ0Mw..&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=pw1f9fexpewb
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 27 May 2023 13:53:32 GMT
expires: Sat, 03 Jun 2023 13:53:32 GMT
cache-control: public, max-age=604800
age: 168543
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
142.250.74.99200 OK 166 kB URL GET HTTP/2 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
IP 142.250.74.99:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type ASCII text, with very long lines (660)
Size 166 kB (166449 bytes)
Hash 95a32a4d8f8be968bc15d6ab9b9491d1
fbfbcb40c8d8997096cd2ea3d8cfc3dee1981015
a41096fbcf982d79bf075bf2378c9c0c2e8ada5bdc94bd7cc794454135ccf981
GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166449
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 28 May 2023 15:22:11 GMT
expires: Mon, 27 May 2024 15:22:11 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 76824
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/recaptcha/api2/reload?k=6LeuHjAiAAAAAM5OZHqtqC-D4neotUdaIVbSXqJY
142.250.74.132200 OK 19 kB URL POST HTTP/3 www.google.com/recaptcha/api2/reload?k=6LeuHjAiAAAAAM5OZHqtqC-D4neotUdaIVbSXqJY
IP 142.250.74.132:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeuHjAiAAAAAM5OZHqtqC-D4neotUdaIVbSXqJY&co=aHR0cHM6Ly9zaXJmcmFuY2lzbWFya2V0aW5nbHRkLmNvLmtlOjQ0Mw..&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=pw1f9fexpewb
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:BA:19:A5:81:25:05:32:72:13:A7:18:CF:67:8C:D6:6F:13:B3:EF
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
File type ASCII text, with very long lines (33630)
Hash d62f9dd8fdcc4a740c41d84246559fb1
55a0bd6a2ba302a99aa501bf46ae9bbd9f1b4dc9
de33caddc6cd498cd8e5e445ff77e77386968b8e9f2a9a10b6c23c533b12781e
POST /recaptcha/api2/reload?k=6LeuHjAiAAAAAM5OZHqtqC-D4neotUdaIVbSXqJY HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-protobuffer
Content-Length: 6441
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeuHjAiAAAAAM5OZHqtqC-D4neotUdaIVbSXqJY&co=aHR0cHM6Ly9zaXJmcmFuY2lzbWFya2V0aW5nbHRkLmNvLmtlOjQ0Mw..&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=pw1f9fexpewb
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=utf-8
content-encoding: gzip
date: Mon, 29 May 2023 12:42:36 GMT
expires: Mon, 29 May 2023 12:42:36 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 19338
server: GSE
set-cookie: _GRECAPTCHA=09ALyjir-j2cVvZ2CcV7JH083iVpAOXZY7yaOz5S_xSCA875IUxTzpmnEkdLTEQozQEncsKOCUC10T8XoHbNQQHe4;Path=/recaptcha;Expires=Sat, 25-Nov-2023 12:42:36 GMT;Secure;HttpOnly;Priority=HIGH;SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
sirfrancismarketingltd.co.ke/doc
109.205.177.79301 Moved Permanently 92 kB URL User Request GET HTTP/1.1 sirfrancismarketingltd.co.ke/doc
IP 109.205.177.79:80
File type gzip compressed data, from Unix\012- data
Hash 2d3931ffcc7fed19ae0b7654b2f74484
273399c970b455b9a124dbbaa4e64d49f2c801f2
f0458a6f185f4d490a6102271689ff08e07bc36dafd0851f243b4d15a3c57c1b
Analyzer Verdict Alert fortinet Phishing
GET /doc HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
set-cookie: wccp_pro_functionality=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; secure
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <https://sirfrancismarketingltd.co.ke/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding,Accept-Encoding
content-encoding: gzip
date: Mon, 29 May 2023 12:42:33 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
maps.googleapis.com/maps-api-v3/api/js/53/4a/util.js
142.250.74.106200 OK 52 kB URL GET HTTP/3 maps.googleapis.com/maps-api-v3/api/js/53/4a/util.js
IP 142.250.74.106:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type ASCII text, with very long lines (564)
Hash f8a9f4d12c02e4bec71bff879aa8e1b0
30397fd3d0745662737193df9b597ef1e682e86f
9ac9b56e350c6cec6bd73800bd07fdf4e46aa642511106914ab520a05bb0d68f
GET /maps-api-v3/api/js/53/4a/util.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 52070
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 22:45:58 GMT
expires: Wed, 22 May 2024 22:45:58 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 May 2023 21:42:33 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 482201
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
static.callnowbutton.com/js/client.js
188.114.97.1200 OK 304 kB URL GET HTTP/3 static.callnowbutton.com/js/client.js
IP 188.114.97.1:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuerGoogle Trust Services LLC
Subjectcallnowbutton.com
Fingerprint15:CF:6A:B0:9E:84:B2:0E:30:D5:E0:71:14:3B:B6:0E:0F:B5:9B:80
ValidityWed, 24 May 2023 08:20:40 GMT - Tue, 22 Aug 2023 08:20:39 GMT
Size 304 kB (303525 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/client.js HTTP/1.1
Host: static.callnowbutton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 29 May 2023 12:42:34 GMT
content-type: text/javascript; charset=utf-8
cache-control: max-age=432000
etag: W/"ac3f778c79f4eff3cbff43f8fdc94152480a6c879b263d096971e2630b96af75"
last-modified: Wed, 05 Apr 2023 13:35:27 GMT
strict-transport-security: max-age=31556926
x-served-by: cache-yyz4551-YYZ
x-cache: MISS
x-cache-hits: 0
x-timer: S1680701732.540108,VS0,VE170
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 907
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bRk0ZFRz2NNl59lrVyKn4uTFsJ1g7L2x1e%2B0lUTBt2IBvb0hCkzJMtoReJwZvAEoob61TgjWIGwadMab0szpuHJaz77ywVHd01Rj5IQZ0LCgbNPx4LWrDegD24NM380CFUF2cftYnhTi%2B5U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ceed16c3dd60b4d-OSL
content-encoding: br
static.callnowbutton.com/font/cnb.woff
188.114.97.1200 OK 18 kB URL GET HTTP/3 static.callnowbutton.com/font/cnb.woff
IP 188.114.97.1:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuerGoogle Trust Services LLC
Subjectcallnowbutton.com
Fingerprint15:CF:6A:B0:9E:84:B2:0E:30:D5:E0:71:14:3B:B6:0E:0F:B5:9B:80
ValidityWed, 24 May 2023 08:20:40 GMT - Tue, 22 Aug 2023 08:20:39 GMT
File type Web Open Font Format, TrueType, length 18276, version 1.0\012- data
Hash b8229d55126a844981045d83b4553f12
fef1111518c4b50c8033bf9471e0863bc182ea1b
bffa5f76fb2e05b2b14c79af972c6fe9abcdb9c33511c22e6f19cf5ace29866e
GET /font/cnb.woff HTTP/1.1
Host: static.callnowbutton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sirfrancismarketingltd.co.ke
DNT: 1
Connection: keep-alive
Referer: https://static.callnowbutton.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 29 May 2023 12:42:34 GMT
content-type: font/woff
access-control-allow-origin: *
cache-control: max-age=432000
etag: W/"b6196c034f0e44b7383c452b6d51278e0246464bd246b6910c015eebac3d821d"
last-modified: Wed, 05 Apr 2023 13:35:27 GMT
strict-transport-security: max-age=31556926
x-served-by: cache-mxp6953-MXP
x-cache: HIT
x-cache-hits: 394
x-timer: S1685362483.953111,VS0,VE0
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Yg0WuGz4PBFlIiFukpEjTzkeALVdcLg3BM8ndzxRuh3mj1lSTPTVipFeyGP0CGqohi3a%2BbkVGf3pxMrUZFcEbVX2afGF2iMFn%2FzIbPIPhwHpu8v%2B4XQcUXMBUltLlBWJRrNwtWtj30xQ92A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ceed16e88400b4d-OSL
static.callnowbutton.com/css/main.css
188.114.97.1200 OK 60 kB URL GET HTTP/3 static.callnowbutton.com/css/main.css
IP 188.114.97.1:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuerGoogle Trust Services LLC
Subjectcallnowbutton.com
Fingerprint15:CF:6A:B0:9E:84:B2:0E:30:D5:E0:71:14:3B:B6:0E:0F:B5:9B:80
ValidityWed, 24 May 2023 08:20:40 GMT - Tue, 22 Aug 2023 08:20:39 GMT
File type ASCII text, with very long lines (59710), with no line terminators
Hash 32a7c871ed7650944d48cd818e7ce671
378b207f291eca4f82ea96afd95b2dbae25f19b3
8b998b105eb89457395220696a52984dfdc96d60cd14ca246ce138b5b0707774
GET /css/main.css HTTP/1.1
Host: static.callnowbutton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 29 May 2023 12:42:34 GMT
content-type: text/css; charset=utf-8
cache-control: max-age=432000
etag: W/"4bc8393fcfa337d8b91a3491dd445730cec8cc9a89dfaa2114d4c54788bbd998"
last-modified: Wed, 05 Apr 2023 13:35:27 GMT
strict-transport-security: max-age=31556926
x-served-by: cache-jnb7025-JNB
x-cache: MISS
x-cache-hits: 0
x-timer: S1680701733.513961,VS0,VE372
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 241
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YudlDAzuNg%2BIkG3q2nUwFuR2qmDlN3LnhC%2F%2FwOgxgBdC9yEEJ1ey4GObMmTwNZ38f4nXGKH6nztXazr5E5QJi6LOW0G0A5FB08nlEUlsbASqAYpEG9qG7WeSj3TNAhwUfN0ILg4%2FfbXk6IY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ceed16e2fd90b4d-OSL
content-encoding: br
user.callnowbutton.com/domain_968dd338_1a54_43fe_aab5_a2069713c26a.js?dbver=1680499274
188.114.97.1200 OK 2.1 kB URL GET HTTP/2 user.callnowbutton.com/domain_968dd338_1a54_43fe_aab5_a2069713c26a.js?dbver=1680499274
IP 188.114.97.1:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuerGoogle Trust Services LLC
Subjectcallnowbutton.com
Fingerprint15:CF:6A:B0:9E:84:B2:0E:30:D5:E0:71:14:3B:B6:0E:0F:B5:9B:80
ValidityWed, 24 May 2023 08:20:40 GMT - Tue, 22 Aug 2023 08:20:39 GMT
File type ASCII text, with very long lines (2312), with no line terminators
Hash 62705e2e6f744b56d13e5865f33369d6
1a49ae19f1aebf56dacd43dea1df7de243771500
75bb245bf8c092b3a28441405611a64ae9e348d33a67a3881b7f9b7db5365f6b
GET /domain_968dd338_1a54_43fe_aab5_a2069713c26a.js?dbver=1680499274 HTTP/1.1
Host: user.callnowbutton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 29 May 2023 12:42:34 GMT
content-type: text/javascript
x-guploader-uploadid: ADPycdslfy629vJ9k_6hCFuHH5emlZYx8Sy83QTsdG4Tj8I2Imjnxg5rKeuCCMWEumPAolXoGzNJEUPEGAhpRaEL6p--K1bZ5jLt
cache-control: public, max-age=432000
expires: Mon, 29 May 2023 12:42:48 GMT
last-modified: Mon, 03 Apr 2023 05:21:15 GMT
etag: W/"ab61bfc40f3c58ea420d077e62fab88d"
x-goog-generation: 1680499275563968
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 2089
x-goog-meta-cache.max-age: 15
x-goog-hash: crc32c=hDHAhg==, md5=q2G/xA88WOpCDQd+Yvq4jQ==
x-goog-storage-class: STANDARD
alt-svc: h3=":443"; ma=86400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GZE976agnC3pwnjjvdML0mFeWguYYRF4%2BXDqyoWFUSL%2BdrLdO24AYPbKRgLG519Tb3d%2BVpDgBMF1ItJBw7nqhDYxV4qBgPhqC%2BGkiaDIWw%2F9ywWrOLw2FLiRPE2dVshv8Uoq2gIOyci8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ceed168ea6db511-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.addtoany.com/menu/sm.24.html
172.67.39.148200 OK 677 B URL GET HTTP/3 static.addtoany.com/menu/sm.24.html
IP 172.67.39.148:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint20:A5:DB:83:09:73:10:48:06:97:65:2A:D9:27:B7:67:2D:7E:9D:6C
ValidityThu, 04 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (700), with no line terminators
Hash cfd119cf6bef57fab6c6d11a41f5551a
479462a99e186c36e68e3fc8f12dd795c65d4366
8460305d50a708748c228ecefae928f9392d4e451b89106021434c989eef106b
GET /menu/sm.24.html HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 29 May 2023 12:42:34 GMT
content-type: text/html; charset=utf-8
last-modified: Fri, 18 Nov 2022 00:47:55 GMT
etag: W/"2a5-5edb40e6d10d8"
cache-control: max-age=315360000, immutable
vary: Accept-Encoding
via: e2s
cf-cache-status: HIT
age: 1613147
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ceed16c7e45b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
maps.googleapis.com/maps-api-v3/api/js/53/4a/common.js
142.250.74.106200 OK 278 kB URL GET HTTP/3 maps.googleapis.com/maps-api-v3/api/js/53/4a/common.js
IP 142.250.74.106:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type ASCII text, with very long lines (581)
Size 278 kB (278538 bytes)
Hash b09a8ab5c7dafd8e773ca97d53d9df25
79070a46bcf07b0c568e7684e4eeeaa47b592167
74e19ada8ea88405e74c6fead009c59d74e57c0d3c5eeeb8e3e596081b96a224
GET /maps-api-v3/api/js/53/4a/common.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 61530
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 22:45:58 GMT
expires: Wed, 22 May 2024 22:45:58 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 May 2023 21:42:33 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 482201
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
sirfrancismarketingltd.co.ke/wp-content/uploads/2020/08/cropped-Official-Sir-Francis-Logo-01-32x32.jpg
109.205.177.79200 OK 1.1 kB URL GET HTTP/3 sirfrancismarketingltd.co.ke/wp-content/uploads/2020/08/cropped-Official-Sir-Francis-Logo-01-32x32.jpg
IP 109.205.177.79:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuercPanel, Inc.
Subjectsirfrancismarketingltd.co.ke
Fingerprint37:72:DF:68:A3:28:48:F9:24:FD:68:59:DA:A7:3A:6E:92:2F:34:7F
ValiditySun, 26 Mar 2023 00:00:00 GMT - Sat, 24 Jun 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 32x32, components 3\012- data
Hash 3520c5b154f7f60c42e062e2d0f2691f
1e32f3ce1efd38180e0d041c79afc03f68b0b0e2
7d845b42e5ac082ecd0597685e921c8d89da8b35178df8e59dd2e5042acdddf6
GET /wp-content/uploads/2020/08/cropped-Official-Sir-Francis-Logo-01-32x32.jpg HTTP/1.1
Host: sirfrancismarketingltd.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/doc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
cache-control: public, max-age=10368000,public
expires: Tue, 26 Sep 2023 12:42:34 GMT
content-type: image/jpeg
last-modified: Thu, 27 Aug 2020 04:31:47 GMT
accept-ranges: bytes
content-length: 1147
date: Mon, 29 May 2023 12:42:34 GMT
server: LiteSpeed
vary: Accept-Encoding
fonts.googleapis.com/css?family=Lato:400,400italic,700%7CPlay:400,700&subset=latin-ext&display=block&ver=1680464544
142.250.74.106200 OK 6.3 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Lato:400,400italic,700%7CPlay:400,700&subset=latin-ext&display=block&ver=1680464544
IP 142.250.74.106:443
Requested by https://sirfrancismarketingltd.co.ke/doc
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type ASCII text, with very long lines (6434), with no line terminators
Hash 7e2cac7e7d5a9bc775bb61b7207401ef
a72ef0dc232650f93dda772365d29378f644f61e
54e8db240b26108101820f9f2d2d96ccf0978b8480b2acd49bd91343b3463da4
GET /css?family=Lato:400,400italic,700%7CPlay:400,700&subset=latin-ext&display=block&ver=1680464544 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sirfrancismarketingltd.co.ke/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 29 May 2023 12:42:33 GMT
date: Mon, 29 May 2023 12:42:33 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2