ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2965
Cache-Control: max-age=122957
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 01:11:20 GMT
Etag: "63888270-1d7"
Expires: Sat, 03 Dec 2022 11:20:37 GMT
Last-Modified: Thu, 01 Dec 2022 10:31:12 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6445
Expires: Fri, 02 Dec 2022 02:58:45 GMT
Date: Fri, 02 Dec 2022 01:11:20 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 00:18:10 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3190
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2543
Expires: Fri, 02 Dec 2022 01:53:43 GMT
Date: Fri, 02 Dec 2022 01:11:20 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: PU/q0j41GzbqH02guvkhs2pn+2yflcXAVRuBl26TRhvDlxH8GvzauewNxYSg1f8QOOlide3fh+Q=
x-amz-request-id: WC8RD08FXQQYBZNZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 02 Dec 2022 00:45:52 GMT
age: 1528
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 01:11:20 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
128.199.143.157/
128.199.143.157200 OK 27 kB IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (28491), with CRLF, LF line terminators
Hash a11b8ce401ae05e99c587fcf91a4d089
5d7dd1e774f6039bb146c404f84f9ff9cafe0f29
e2c8d39dc9378447202e25b1aaef9d9763bc78af293ff2cfb2f6bc7293ac1bfa
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Link: <http://128.199.143.157/>; rel=shortlink
Vary: Accept-Encoding
Server: LiteSpeed
X-LiteSpeed-Cache: hit
Content-Encoding: gzip
Content-Length: 26767
Date: Fri, 02 Dec 2022 01:11:20 GMT
Connection: Keep-Alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 01:11:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 02 Dec 2022 01:08:57 GMT
cache-control: public,max-age=3600
age: 144
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
128.199.143.157/wp-content/themes/astra/assets/css/minified/main.min.css?ver=3.6.9
128.199.143.157200 OK 8.3 kB URL HTTP/1.1 128.199.143.157/wp-content/themes/astra/assets/css/minified/main.min.css?ver=3.6.9
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (40145)
Hash b86b2850ab7b39ae20ea004bfbe8f620
e692f73d64be30e57720228e8921b23da5c6863f
8220dd38398b9fba4baf834ffa42fa7429f22265c7bbe0d32e780d77936a6cee
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/astra/assets/css/minified/main.min.css?ver=3.6.9 HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:20 GMT
Etag: "a51f-6138fcda-feff0;gz"
Last-Modified: Wed, 08 Sep 2021 18:11:38 GMT
Content-Type: text/css
Content-Length: 8280
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 01:11:20 GMT
Server: LiteSpeed
Connection: Keep-Alive
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
142.250.74.74200 OK 2.0 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
IP 142.250.74.74:0
Hash 625e9b1a247e1af70cdb66408b8b0d89
378187cb9ca5910b5575d0984e85f03a1dc7761d
c8834a953a6cdd4cc375aabb2b47401f34b3e3fb63fdb0ecb22ec6368c721b59
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://128.199.143.157/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Dec 2022 01:11:21 GMT
date: Fri, 02 Dec 2022 01:11:21 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
128.199.143.157/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.6.9
128.199.143.157200 OK 3.8 kB URL HTTP/1.1 128.199.143.157/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.6.9
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (15427), with no line terminators
Hash 781103772e452b5aea40b1d6b8be8c00
7041f4ed694605a14cdcabc18a3c5a9dca86c1f8
a2e7b1d0b2e068e9e4c12ed50af6f516600041285a36ffd8eaa1b98ca1b7ae04
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.6.9 HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:21 GMT
Etag: "3c43-6138fcda-fefa4;gz"
Last-Modified: Wed, 08 Sep 2021 18:11:38 GMT
Content-Type: application/x-javascript
Content-Length: 3834
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 01:11:21 GMT
Server: LiteSpeed
Connection: Keep-Alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2973
Cache-Control: max-age=117901
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 01:11:21 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 09:56:22 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
128.199.143.157/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
128.199.143.157200 OK 4.0 kB URL HTTP/1.1 128.199.143.157/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (19233)
Hash ac7354abda04bfb9c71fb45a4f1a7428
074f24b46fb81a0a98fe838e86a1daf597885996
40c81608682b4b605ac2108ce28d4bad98a63ac4ae56abda7a2b1b757bb956d3
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:21 GMT
Etag: "4b4f-63714968-13c91e;gz"
Last-Modified: Sun, 13 Nov 2022 19:45:44 GMT
Content-Type: text/css
Content-Length: 3958
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 01:11:21 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-content/uploads/elementor/css/post-12.css?ver=1668368748
128.199.143.157200 OK 357 B URL HTTP/1.1 128.199.143.157/wp-content/uploads/elementor/css/post-12.css?ver=1668368748
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (1100), with no line terminators
Hash 1c20aff1ed9d762252d18458cf0e882e
9caf03ca5a230543f27469cc94de9c1b02fdad64
1dd4d9fc84b6ea530939f2071ec975b88bfbb7018589436c7edc4bca676bf202
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-12.css?ver=1668368748 HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:21 GMT
Etag: "44c-6371496c-fc47d;gz"
Last-Modified: Sun, 13 Nov 2022 19:45:48 GMT
Content-Type: text/css
Content-Length: 357
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 01:11:21 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.3.2
128.199.143.157200 OK 6.4 kB URL HTTP/1.1 128.199.143.157/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.3.2
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (56322)
Hash f6f0b04bbc0fb8d3647a855f39f8c940
d85765c7f2cbba997cfc4665f701a0ba5b42d0c6
d4f7583a53cbdc5ed18eb9c142b5d55f769ac747dd2753b92302e454922da88b
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.3.2 HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:21 GMT
Etag: "dc2d-6138fd4b-13b840;gz"
Last-Modified: Wed, 08 Sep 2021 18:13:31 GMT
Content-Type: text/css
Content-Length: 6413
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 01:11:21 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-content/uploads/elementor/css/global.css?ver=1668368748
128.199.143.157200 OK 3.2 kB URL HTTP/1.1 128.199.143.157/wp-content/uploads/elementor/css/global.css?ver=1668368748
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (11208)
Hash b1abee58bdac400920e3d84529643e40
f7006343d684fc473fcda24133fcc779a5b0c241
6d97fe4513129dad19a6d735d55b79c5962136470e6fa010e1099fd54c1686ae
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/elementor/css/global.css?ver=1668368748 HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:21 GMT
Etag: "aa8a-6371496c-fc4e8;gz"
Last-Modified: Sun, 13 Nov 2022 19:45:48 GMT
Content-Type: text/css
Content-Length: 3197
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 01:11:21 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-content/uploads/astra-addon/astra-addon-636cb1f1954387-03356847.css?ver=3.9.3
128.199.143.157200 OK 7.0 kB URL HTTP/1.1 128.199.143.157/wp-content/uploads/astra-addon/astra-addon-636cb1f1954387-03356847.css?ver=3.9.3
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (60154), with no line terminators
Hash 4668fcac50b5cef85df35d4381a62b92
8d9a3af54aad4a42ac0affdaabf54f5bb85d721a
0d6351367272d47872bd37d0a2b2559cb8615c638caf567b28c6b211155de45b
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/astra-addon/astra-addon-636cb1f1954387-03356847.css?ver=3.9.3 HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:21 GMT
Etag: "eafa-636cb1f1-fc4f6;gz"
Last-Modified: Thu, 10 Nov 2022 08:10:25 GMT
Content-Type: text/css
Content-Length: 6975
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 01:11:21 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-content/uploads/elementor/css/post-28.css?ver=1668368749
128.199.143.157200 OK 2.0 kB URL HTTP/1.1 128.199.143.157/wp-content/uploads/elementor/css/post-28.css?ver=1668368749
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (8446)
Hash 9876fb485283b1b74587b05d6ae17836
9d31ba480e21426c9ca9452242b638843b1b805a
fabbfe26146ed40a903a03d497490329f36e422945359d3ad67a273c822e9064
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-28.css?ver=1668368749 HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:21 GMT
Etag: "5f41-6371496d-fc4e9;gz"
Last-Modified: Sun, 13 Nov 2022 19:45:49 GMT
Content-Type: text/css
Content-Length: 2015
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 01:11:21 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1
128.199.143.157200 OK 14 kB URL HTTP/1.1 128.199.143.157/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (65497)
Hash 8aa5fd513fefa41b97b0e1b42d91808f
110952618196170295b17030f1b7482bac15909b
f3a23ac9bbd3eac18b6dd46b9893694b8b7283aaeff10c3428a2eedd2ed1840b
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1 HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:21 GMT
Etag: "19538-63714968-13c9f2;gz"
Last-Modified: Sun, 13 Nov 2022 19:45:44 GMT
Content-Type: text/css
Content-Length: 13576
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 01:11:21 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13
128.199.143.157200 OK 7.8 kB URL HTTP/1.1 128.199.143.157/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type Unicode text, UTF-8 text, with very long lines (1646)
Hash 572aea78f382e525fda96f769d9800c5
35398693aaa753f89dc5935130e927c61fbfd6e6
e16dff142803bf871380a64dcd6a2bb729500b1e13b04e042a78dbb2ef7f11e4
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13 HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:21 GMT
Etag: "127a4-63052fcc-13b429;gz"
Last-Modified: Tue, 23 Aug 2022 19:51:40 GMT
Content-Type: text/css
Content-Length: 7753
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 01:11:21 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-content/uploads/elementor/css/post-29.css?ver=1668368749
128.199.143.157200 OK 1.4 kB URL HTTP/1.1 128.199.143.157/wp-content/uploads/elementor/css/post-29.css?ver=1668368749
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (2173)
Hash 94d80e220dff70442e72470cfc31f458
3d54cb93fd776f1aac2171d7eba4a47daad8224e
18f19e3e7c482d52297ec1f12f362b3b20e0e97153da024e1b5169b389df9fd2
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-29.css?ver=1668368749 HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:21 GMT
Etag: "3a3d-6371496d-fc5b3;gz"
Last-Modified: Sun, 13 Nov 2022 19:45:49 GMT
Content-Type: text/css
Content-Length: 1438
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 01:11:21 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-content/uploads/elementor/css/post-30.css?ver=1668368749
128.199.143.157200 OK 316 B URL HTTP/1.1 128.199.143.157/wp-content/uploads/elementor/css/post-30.css?ver=1668368749
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (1286), with no line terminators
Hash 864d9bf6b048ed01ba79065426e58855
b122361c72019725f6730324e5458216b89789bd
4fc2a45da57efef1b5b896465464e0ce5ecb43fd016f58ea1f6d1f9badadfc0e
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-30.css?ver=1668368749 HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:21 GMT
Etag: "506-6371496d-fc90d;gz"
Last-Modified: Sun, 13 Nov 2022 19:45:49 GMT
Content-Type: text/css
Content-Length: 316
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 01:11:21 GMT
Server: LiteSpeed
Connection: Keep-Alive
push.services.mozilla.com/
35.162.110.205101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.162.110.205:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: VBcunc+lrN9xpxlHgUOXsw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ikUpBa/JG/YjCTJggb9OAEUHHAI=
128.199.143.157/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
128.199.143.157200 OK 13 kB URL HTTP/1.1 128.199.143.157/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (57726)
Hash b8914a9a422b658a721edee22da4803f
dcb57be1523de06493b62bff04208dbb7eaf7b92
32cbd3295c9c436f50437a22d401fa3838a98c1dc03eddfc4552eda9e0a6bc6e
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:21 GMT
Etag: "e238-63714968-13c8d5;gz"
Last-Modified: Sun, 13 Nov 2022 19:45:44 GMT
Content-Type: text/css
Content-Length: 12581
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 01:11:21 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
128.199.143.157200 OK 309 B URL HTTP/1.1 128.199.143.157/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (483)
Hash 0ea43e394ddaae5fdb710dbbc8869e58
3b0c93adc80720236096201db5cc2751e703996d
85225fffa21a94bfd954393d7471069ab227b98fd8b51cb5ab4af5488168a34e
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:21 GMT
Etag: "29d-63714968-13c8d9;gz"
Last-Modified: Sun, 13 Nov 2022 19:45:44 GMT
Content-Type: text/css
Content-Length: 309
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 01:11:21 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
128.199.143.157200 OK 308 B URL HTTP/1.1 128.199.143.157/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (491)
Hash 851fd514d412b7e854365f20a4227c8a
08bf47072f70af1816450cc85a5efb3b8f9114d2
a9449e3cc7c003e5ed6b93bae7b0bba3e4f1713c52214f41d3591692a759b9d7
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:21 GMT
Etag: "2a5-63714968-13c8de;gz"
Last-Modified: Sun, 13 Nov 2022 19:45:44 GMT
Content-Type: text/css
Content-Length: 308
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 01:11:21 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
128.199.143.157200 OK 4.2 kB URL HTTP/1.1 128.199.143.157/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:21 GMT
Etag: "2bd8-5fb4e3fe-fced6;gz"
Last-Modified: Wed, 18 Nov 2020 09:06:06 GMT
Content-Type: application/x-javascript
Content-Length: 4169
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 01:11:21 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
128.199.143.157200 OK 5.0 kB URL HTTP/1.1 128.199.143.157/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (15660)
Hash 1b982d290af16dac5885f21a198aaa66
f847ca85d23c2f240938bbde0135f3de97925759
0b6e238cc0728a0bace390dfff472ff8bb5a5fd4714bcfcdac7c28621d67b8dc
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:21 GMT
Etag: "48b9-628d3bba-fcf76;gz"
Last-Modified: Tue, 24 May 2022 20:10:34 GMT
Content-Type: application/x-javascript
Content-Length: 5004
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 01:11:21 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
128.199.143.157200 OK 12 kB URL HTTP/1.1 128.199.143.157/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (47826)
Hash 981383d43a7adb38d6c2bf5286dcd065
e41871905868763178f7d8127e3dfb87909f108f
fceb208fc5a1581abc1926596d5f59fa41e7a7d72027b563303b445cdf7ed126
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:21 GMT
Etag: "172a9-6373ed3c-fcb20;gz"
Last-Modified: Tue, 15 Nov 2022 19:49:16 GMT
Content-Type: text/css
Content-Length: 12518
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 01:11:21 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-includes/css/classic-themes.min.css?ver=1
128.199.143.157200 OK 189 B URL HTTP/1.1 128.199.143.157/wp-includes/css/classic-themes.min.css?ver=1
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:21 GMT
Etag: "d9-636220c6-ff6fc;gz"
Last-Modified: Wed, 02 Nov 2022 07:48:22 GMT
Content-Type: text/css
Accept-Ranges: bytes
Date: Fri, 02 Dec 2022 01:11:21 GMT
Server: LiteSpeed
Content-Encoding: gzip
Vary: Accept-Encoding
Transfer-Encoding: chunked
Connection: Keep-Alive
128.199.143.157/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13
128.199.143.157200 OK 323 B URL HTTP/1.1 128.199.143.157/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
Hash b24c24b7da3ffeed6ae8ade102a4d317
c4445b3977ce704b927508108e100213eea67a3c
5421ad49b70f379553eaceec744d753e74d4b065966c08aa7c7dd949553ca9a8
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13 HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:21 GMT
Etag: "308-63052fcc-13b44e;gz"
Last-Modified: Tue, 23 Aug 2022 19:51:40 GMT
Content-Type: text/css
Content-Length: 323
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 01:11:21 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
128.199.143.157200 OK 31 kB URL HTTP/1.1 128.199.143.157/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (65447)
Hash 2eccf707201b564e5e0cc3637fe4fd79
13b3ab2c399a84808e8fd6a2c795a6a49f5090a4
fb2e62f5864ef969b2d586b0e589fc81d7689038cd54a90fbca4b463e0ca6261
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:21 GMT
Etag: "15e54-636220c6-fcede;gz"
Last-Modified: Wed, 02 Nov 2022 07:48:22 GMT
Content-Type: application/x-javascript
Content-Length: 31038
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 01:11:21 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-content/uploads/astra-addon/astra-addon-636cb1f19677c2-02851136.js?ver=3.9.3
128.199.143.157200 OK 7.1 kB URL HTTP/1.1 128.199.143.157/wp-content/uploads/astra-addon/astra-addon-636cb1f19677c2-02851136.js?ver=3.9.3
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (35638), with no line terminators
Hash f33c7cc578e12c676305e9e5dae26554
b947011f9f2dfadb2d3c84a7be6a093c3597fa11
17aba2670c14a510ca5913444c8da082e044597b85f259331b363b7d43bb8a28
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/astra-addon/astra-addon-636cb1f19677c2-02851136.js?ver=3.9.3 HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:21 GMT
Etag: "8b36-636cb1f1-fc4f7;gz"
Last-Modified: Thu, 10 Nov 2022 08:10:25 GMT
Content-Type: application/x-javascript
Content-Length: 7144
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 01:11:21 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13
128.199.143.157200 OK 3.8 kB URL HTTP/1.1 128.199.143.157/wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
Hash 7e9cb10477882c76823837702f06c746
09e049660f0906c47654c466ce103da146ecada2
16a93263a913d6b6a0d1e8c12bd877b4ed45485a87c615b65d23a01985d1284c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13 HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:22 GMT
Etag: "6aab-63052fcc-13b427;gz"
Last-Modified: Tue, 23 Aug 2022 19:51:40 GMT
Content-Type: application/x-javascript
Content-Length: 3812
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 01:11:22 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.3.2
128.199.143.157200 OK 2.4 kB URL HTTP/1.1 128.199.143.157/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.3.2
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (5419)
Hash fcb258f44fb78d8958540dbbd1a62068
81fced579c7b96aad223e42d19425afd15414c95
1401a92b523da50c29eaf9b721efa608c4ea38076f83eeeeb97258824f67409e
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.3.2 HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:22 GMT
Etag: "1556-6138fd4b-13b7c9;gz"
Last-Modified: Wed, 08 Sep 2021 18:13:31 GMT
Content-Type: application/x-javascript
Content-Length: 2441
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 01:11:22 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1
128.199.143.157200 OK 2.2 kB URL HTTP/1.1 128.199.143.157/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (4918)
Hash 5623a2e2bcaeb031c1a782030f1b14f9
c46b7389cb2839e47558c2d417d89169048b8031
cbe16e1c67c55ba8e9fc2363728b933f3ef2f1af411a1febbbe565e6363bfd5d
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1 HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:22 GMT
Etag: "135d-63714968-13c9a5;gz"
Last-Modified: Sun, 13 Nov 2022 19:45:44 GMT
Content-Type: application/x-javascript
Content-Length: 2194
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 01:11:22 GMT
Server: LiteSpeed
Connection: Keep-Alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 01:11:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://128.199.143.157
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:56 GMT
expires: Thu, 30 Nov 2023 19:33:56 GMT
cache-control: public, max-age=31536000
age: 106646
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 01:11:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic6CsQ.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic6CsQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 17032, version 1.0\012- data
Hash 05a47f9e469d408c629f931cd33ff8b2
823f21f7b1d456db889c3afea393f0d2b9581c38
6be97ca17228a69c406231d89c003194c3dfba7401eaa9fe9e9ed0ef1c18dc38
GET /s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic6CsQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://128.199.143.157
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17032
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 08:12:27 GMT
expires: Fri, 01 Dec 2023 08:12:27 GMT
cache-control: public, max-age=31536000
age: 61135
last-modified: Wed, 11 May 2022 19:24:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 01:11:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 01:11:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 01:11:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://128.199.143.157
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:34:15 GMT
expires: Thu, 30 Nov 2023 19:34:15 GMT
cache-control: public, max-age=31536000
age: 106627
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2
216.58.207.227200 OK 33 kB URL HTTP/2 fonts.gstatic.com/s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 32860, version 1.0\012- data
Hash d010a9f2d5c7a0374b3b84706a43d2ec
c1fe465db08785c3f115555d39db23838960cb66
9a3993918629dfd6a59c4563e9b4d464152b51d4113957ab8ebfbdcbcdc7f536
GET /s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://128.199.143.157
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 32860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 27 Nov 2022 01:48:55 GMT
expires: Mon, 27 Nov 2023 01:48:55 GMT
cache-control: public, max-age=31536000
age: 429747
last-modified: Mon, 11 Jul 2022 19:12:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 17368, version 1.0\012- data
Hash abe083d96b58eb02ada8b7c30d7b09f2
61447d66d13a8c8f4335696777a85c438c46f749
db0424fb67fb52e7e538490240cc7fb9c05aa076333a4968f3dee30b825dabf9
GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://128.199.143.157
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 07:01:24 GMT
expires: Wed, 29 Nov 2023 07:01:24 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 238198
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://128.199.143.157
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:54 GMT
expires: Thu, 30 Nov 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 106648
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
128.199.143.157/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1
128.199.143.157200 OK 11 kB URL HTTP/1.1 128.199.143.157/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type Unicode text, UTF-8 text, with very long lines (32907)
Hash 4f2c2b0cc864b92260ab41d1fff90cee
5f6129d9702238e7d79b7d7da92cb10992653009
d08bbbd0293475f28d8714787bbf9187dd2bf6bc44df2f90b792f83b4d411e86
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1 HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:22 GMT
Etag: "80b3-63714968-13c9a9;gz"
Last-Modified: Sun, 13 Nov 2022 19:45:44 GMT
Content-Type: application/x-javascript
Content-Length: 10751
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 01:11:22 GMT
Server: LiteSpeed
Connection: Keep-Alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 01:11:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
128.199.143.157/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.3.2
128.199.143.157200 OK 16 kB URL HTTP/1.1 128.199.143.157/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.3.2
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type Unicode text, UTF-8 text, with very long lines (58848)
Hash 2e3191e804e342c5a554dfcc2f92061c
0f99f5e7edeba80fd0d9e91b8c580f8ee3db57cc
39a5526b49c6ef15b2d9a73925a966ed455122e4cc76c03f20969c84823b0255
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.3.2 HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:22 GMT
Etag: "e60d-6138fd4b-13b7f3;gz"
Last-Modified: Wed, 08 Sep 2021 18:13:31 GMT
Content-Type: application/x-javascript
Content-Length: 16185
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 01:11:22 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
128.199.143.157200 OK 3.0 kB URL HTTP/1.1 128.199.143.157/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (12198), with no line terminators
Hash cfea3c51880820f2962a7773fbc864f9
45aa7ddc9b0c4201097d0df36791ab346470b734
12296ac9ef200103f8eea198a2bcd92692119dacece39538499758a0349035fb
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:22 GMT
Etag: "2fa6-63714968-13c931;gz"
Last-Modified: Sun, 13 Nov 2022 19:45:44 GMT
Content-Type: application/x-javascript
Content-Length: 2993
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 01:11:22 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
128.199.143.157200 OK 7.1 kB URL HTTP/1.1 128.199.143.157/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 4e91f3bde34bcef7ac5a2e1553ec4b7e
398cc0b8fa5795ad41a1490b42b974621e5c3529
8ad8783c45440f481056ff5d7b9cad3e3d52bb043b9ec40260daa62feec0ea18
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:22 GMT
Etag: "53c0-636220c6-fceee;gz"
Last-Modified: Wed, 02 Nov 2022 07:48:22 GMT
Content-Type: application/x-javascript
Content-Length: 7098
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 01:11:22 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-content/uploads/2021/09/sbobet-online.jpg
128.199.143.157200 OK 23 kB URL HTTP/1.1 128.199.143.157/wp-content/uploads/2021/09/sbobet-online.jpg
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 190x175, components 3\012- data
Hash b18878dfcca965aa16c25b7044b4e059
d6e888d66a424322de22de3bda7bee7b103e8b85
c30f598b3bdaba83c3b24afa72d5004d14d23ebd2160079ad97c8a4cd6d7d511
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/09/sbobet-online.jpg HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:22 GMT
Etag: "59f5-613f3353-482e;;;"
Last-Modified: Mon, 13 Sep 2021 11:17:39 GMT
Content-Type: image/jpeg
Content-Length: 23029
Accept-Ranges: bytes
Date: Fri, 02 Dec 2022 01:11:22 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1
128.199.143.157200 OK 12 kB URL HTTP/1.1 128.199.143.157/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (40474)
Hash 63014fd1707111a7ef1f9ee87ff47dbe
0846223697bc786a8aa0056fbd760a86d2ceb6da
f11adc74234077eaff05872d60040550b244ddab1cccca9be04f41ff021cdee8
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1 HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:22 GMT
Etag: "9e41-63714968-13c9a4;gz"
Last-Modified: Sun, 13 Nov 2022 19:45:44 GMT
Content-Type: application/x-javascript
Content-Length: 12047
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 01:11:22 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.3.2
128.199.143.157200 OK 13 kB URL HTTP/1.1 128.199.143.157/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.3.2
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (52456)
Hash f015e344d104e714745da5e63ddbf2d9
a352f0cd598891112e9193fea51642b6ce80b2c1
c3219bd86504877dc82f672dbb3ddf24fa7de659479a438584be609a4bd65da1
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.3.2 HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:22 GMT
Etag: "cd13-6138fd4b-13b7f7;gz"
Last-Modified: Wed, 08 Sep 2021 18:13:31 GMT
Content-Type: application/x-javascript
Content-Length: 12985
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 01:11:22 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-content/uploads/2021/09/global-setting-icon.png
128.199.143.157200 OK 1.4 kB URL HTTP/1.1 128.199.143.157/wp-content/uploads/2021/09/global-setting-icon.png
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 15 x 15, 8-bit/color RGBA, non-interlaced\012- data
Hash a5a8e9c8804250c0b0c6064b0c7ee30d
4a0b3e189f6fe2c05bcdf9f22f87be1c563def8d
3c17c52d7818c2e36e2669d8833586f369b4b9ba8af2958e07735be363532478
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/09/global-setting-icon.png HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:22 GMT
Etag: "54c-613f3350-4723;;;"
Last-Modified: Mon, 13 Sep 2021 11:17:36 GMT
Content-Type: image/png
Content-Length: 1356
Accept-Ranges: bytes
Date: Fri, 02 Dec 2022 01:11:22 GMT
Server: LiteSpeed
Connection: Keep-Alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20872
Expires: Fri, 02 Dec 2022 06:59:14 GMT
Date: Fri, 02 Dec 2022 01:11:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20872
Expires: Fri, 02 Dec 2022 06:59:14 GMT
Date: Fri, 02 Dec 2022 01:11:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20872
Expires: Fri, 02 Dec 2022 06:59:14 GMT
Date: Fri, 02 Dec 2022 01:11:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20872
Expires: Fri, 02 Dec 2022 06:59:14 GMT
Date: Fri, 02 Dec 2022 01:11:22 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
34.120.237.76200 OK 2.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Fw6nrporwF27NW0-vXpaolW79nDXLF2RyS-lqhhp1osHt7q98VpI3g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:34:47 GMT
age: 12995
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 07:15:42 GMT
age: 64540
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
128.199.143.157/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
128.199.143.157200 OK 13 kB URL HTTP/1.1 128.199.143.157/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type Web Open Font Format (Version 2), TrueType, length 13276, version 331.-31261\012- data
Hash f0f8230116992e521526097a28f54066
0447c6b10bbf73f97b23dcfd6e6a48510822cb6e
8afc6e5e842baab16010c2ce6fcf48ec4ded8e1579a37c1f1bc027e120d04951
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://128.199.143.157/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:22 GMT
Etag: "33dc-63714968-13c8b5;;;"
Last-Modified: Sun, 13 Nov 2022 19:45:44 GMT
Content-Type: font/woff2
Content-Length: 13276
Accept-Ranges: bytes
Date: Fri, 02 Dec 2022 01:11:22 GMT
Server: LiteSpeed
Connection: Keep-Alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5183c67-4568-43c8-a2e7-7b41f5ca064b.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5183c67-4568-43c8-a2e7-7b41f5ca064b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd8ad22c2eb1eb91c76970fa449f1bc4
0de97f3a4964038222bd751e043e413113e6db9d
668f805815aede3bc04f8564bd6aefd56029362bb0aa8a794673eb78ab2d4643
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5183c67-4568-43c8-a2e7-7b41f5ca064b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4834
x-amzn-requestid: 63a0b8b5-5cb3-4a1f-aa46-47c84abe726f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZQrjEeAIAMF3sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6386c7e3-0032799009f893ba79f314db;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 03:02:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 5jKfLFWhSvvsiO5WxWbizQhKZdCj1IKR4ijCCZKjUCtni5qQcK5-Zw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 04:13:23 GMT
age: 75479
etag: "0de97f3a4964038222bd751e043e413113e6db9d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1c80b8025242ddfcc816ec612456b99e
aa944d10fe4a44b790b01ef62edc0f85a6d558e3
a9f060bc15738a3fe257e0c81a29e4611a89c273bcbb2765ce856d4e854a5f1f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11402
x-amzn-requestid: 20c2c359-1e43-40c0-885d-1c90e76ea12b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGzJHu-IAMFbYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e7a-1d89722e767daa014b174a39;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: OJBnbjJB_kvPuJcePGnno3zI0CTWAzV-Osb2L1hPZZhlNYhFHWmLsA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:51:33 GMT
etag: "aa944d10fe4a44b790b01ef62edc0f85a6d558e3"
content-type: image/jpeg
age: 11989
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 156e9ea97b774cbd8361072e4041b6c8
fc71ae3cae92ed6011904bb2367f23bf4e69fab4
58d953c19ebbbdfc3965bbe3f52308d4702deaf4d0c029f4674bcb862da138af
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8863
x-amzn-requestid: 798d014b-0f9c-4787-a676-8f5e8fae3d11
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdG14HBNIAMFdWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851bf-7549feac6d476a8512676412;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cgj3fw3lpngosMNOK7cZUZO94T__4RTy_p7wa6rI62OOvhI5E9wMSw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 07:19:21 GMT
age: 64321
etag: "fc71ae3cae92ed6011904bb2367f23bf4e69fab4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F864be807-d5f6-42e3-bd58-f7641a256b9a.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F864be807-d5f6-42e3-bd58-f7641a256b9a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 379a4a1b95d3aa3c5a4f8e7f9abb030f
d45dceb3dc58a07197aa5077582b5b1cd2ff791a
1b92dec5bf90beffbcd9060052b8788f08645dd4ba34219f7ddb2d40bbd2d151
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F864be807-d5f6-42e3-bd58-f7641a256b9a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7732
x-amzn-requestid: 3781c2b7-082a-468a-a186-f7483494e749
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoEq3IAMFnKg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-679fe9f905e07abf4e6a812c;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: V4Z3TZtTDMjnyxZx7VdJrKtZ-PbZkWnsQ0-1eFDem4TVyRGvk0dc7A==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:47:56 GMT
age: 12206
etag: "d45dceb3dc58a07197aa5077582b5b1cd2ff791a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
128.199.143.157/wp-content/uploads/2021/09/sbobet-88-daftar.jpg
128.199.143.157200 OK 30 kB URL HTTP/1.1 128.199.143.157/wp-content/uploads/2021/09/sbobet-88-daftar.jpg
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 480x200, components 3\012- data
Hash 33361de32138de889279016311dae386
e4ad557f0417bb4a541ac448cf4ea2943a8368d1
9bcfe22b0f4190cf4c4f4218535fc05a0e7e577712ea54deb187c46e45638dda
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/09/sbobet-88-daftar.jpg HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:22 GMT
Etag: "7392-614b5819-48b0;;;"
Last-Modified: Wed, 22 Sep 2021 16:21:45 GMT
Content-Type: image/jpeg
Content-Length: 29586
Accept-Ranges: bytes
Date: Fri, 02 Dec 2022 01:11:22 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-content/uploads/2021/09/sbobet-judi-bola-online.jpg
128.199.143.157200 OK 12 kB URL HTTP/1.1 128.199.143.157/wp-content/uploads/2021/09/sbobet-judi-bola-online.jpg
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 390x175, components 3\012- data
Hash e83099e2074cd1d4e7f800b0a2817cfc
210f550b87efd9add6f778c80745ffeaedbbdd19
0f83654abe8447873e2bde0d4b6bd2987a281df8ccddde82eb60009588028222
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/09/sbobet-judi-bola-online.jpg HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:22 GMT
Etag: "2e57-613f3353-476e;;;"
Last-Modified: Mon, 13 Sep 2021 11:17:39 GMT
Content-Type: image/jpeg
Content-Length: 11863
Accept-Ranges: bytes
Date: Fri, 02 Dec 2022 01:11:22 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
128.199.143.157200 OK 78 kB URL HTTP/1.1 128.199.143.157/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Hash e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://128.199.143.157/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:22 GMT
Etag: "13174-63714968-13c8bb;;;"
Last-Modified: Sun, 13 Nov 2022 19:45:44 GMT
Content-Type: font/woff2
Content-Length: 78196
Accept-Ranges: bytes
Date: Fri, 02 Dec 2022 01:11:22 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-content/uploads/2021/09/sbobet.jpg
128.199.143.157200 OK 16 kB URL HTTP/1.1 128.199.143.157/wp-content/uploads/2021/09/sbobet.jpg
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 390x175, components 3\012- data
Hash c21633edac89caf5e7158cf6a9203dfb
100178395121447c1494eb2efcaaff0fb0eb7385
eaedf3ba2288e4385cd512806fd8c7db4ea187a74a613aa8a42e30a4bbf6947c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/09/sbobet.jpg HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:22 GMT
Etag: "3ceb-613f3352-476c;;;"
Last-Modified: Mon, 13 Sep 2021 11:17:38 GMT
Content-Type: image/jpeg
Content-Length: 15595
Accept-Ranges: bytes
Date: Fri, 02 Dec 2022 01:11:22 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-content/uploads/2021/09/sbobet-asia.jpg
128.199.143.157200 OK 11 kB URL HTTP/1.1 128.199.143.157/wp-content/uploads/2021/09/sbobet-asia.jpg
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 190x175, components 3\012- data
Hash 3e0fc864457b27c2618140001efecb9d
20ed0f9db416397f9518efb352d90e52bfbace4e
ac469eec3e70ce127baae04be2175c7ca08b1e216b79e41773f39625b2fb8d1f
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/09/sbobet-asia.jpg HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:22 GMT
Etag: "2bf1-613f3354-4842;;;"
Last-Modified: Mon, 13 Sep 2021 11:17:40 GMT
Content-Type: image/jpeg
Content-Length: 11249
Accept-Ranges: bytes
Date: Fri, 02 Dec 2022 01:11:22 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
128.199.143.157200 OK 3.4 kB URL HTTP/1.1 128.199.143.157/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (10544)
Hash 88f71137b2a89a53df46cdb4deeb4e3d
426e12f0e8712db20afd2c54e77e1384074f3181
591a8b7a859de8af878c56e1ec72384596285f768387e9958f0a0afe53d89428
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:22 GMT
Etag: "29ba-63714968-13c90f;gz"
Last-Modified: Sun, 13 Nov 2022 19:45:44 GMT
Content-Type: application/x-javascript
Content-Length: 3446
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 01:11:22 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-content/plugins/elementor/assets/js/lightbox.2d166d71ba2a6a9e66fd.bundle.min.js
128.199.143.157200 OK 9.5 kB URL HTTP/1.1 128.199.143.157/wp-content/plugins/elementor/assets/js/lightbox.2d166d71ba2a6a9e66fd.bundle.min.js
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (28962)
Hash d81ec90fd1f1301176a50ea5068d227d
d61019e68ab32c71138849309a59238480e269d1
b5b85e04e61fab366b1c7b456ad8d365140d1d9de01d671b1ae80595336929e0
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/lightbox.2d166d71ba2a6a9e66fd.bundle.min.js HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:22 GMT
Etag: "7149-63714968-13c971;gz"
Last-Modified: Sun, 13 Nov 2022 19:45:44 GMT
Content-Type: application/x-javascript
Content-Length: 9508
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 01:11:22 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-content/uploads/2021/09/sbobet-online-1.jpg
128.199.143.157200 OK 70 kB URL HTTP/1.1 128.199.143.157/wp-content/uploads/2021/09/sbobet-online-1.jpg
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 800x300, components 3\012- data
Hash 65a49e63d7ada79f721e012f9a4a11eb
02a69de08c813e701aa2b940ab48ce5f864d90be
3fa2561a9272b2dfd941ec4ad3f33afa96fd1a781207b62ffbf44404fb3e13ce
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/09/sbobet-online-1.jpg HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:22 GMT
Etag: "110c9-613f3357-4892;;;"
Last-Modified: Mon, 13 Sep 2021 11:17:43 GMT
Content-Type: image/jpeg
Content-Length: 69833
Accept-Ranges: bytes
Date: Fri, 02 Dec 2022 01:11:22 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-content/uploads/2021/09/sbokno.jpg
128.199.143.157200 OK 39 kB URL HTTP/1.1 128.199.143.157/wp-content/uploads/2021/09/sbokno.jpg
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x300, components 3\012- data
Hash 5157c0f20f83ea9bd9c5f5bc57d18d99
335d09f9957799990557d523eba5ab7f8352a81d
d28318dac7a9b8eed572407ab0f21726354300b5d50bb988998be67ca4308f57
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/09/sbokno.jpg HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:22 GMT
Etag: "976b-613f3353-4832;;;"
Last-Modified: Mon, 13 Sep 2021 11:17:39 GMT
Content-Type: image/jpeg
Content-Length: 38763
Accept-Ranges: bytes
Date: Fri, 02 Dec 2022 01:11:22 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
128.199.143.157200 OK 665 B URL HTTP/1.1 128.199.143.157/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (1320)
Hash f6e5800fbefdfd2188aca18e26fcabed
92b909bdf374afa6c2f8197b8f4304e34eddf5d2
5fcbd890543feb3307726a409daf340c95976fef2fdeec93d4452bcc30983509
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:23 GMT
Etag: "54f-63714968-13c980;gz"
Last-Modified: Sun, 13 Nov 2022 19:45:44 GMT
Content-Type: application/x-javascript
Content-Length: 665
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 01:11:23 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.1
128.199.143.157200 OK 1.1 kB URL HTTP/1.1 128.199.143.157/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.1
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (2620), with no line terminators
Hash 366a9c35bbef9fea7021f6b1b56cf8d0
18feab78c61c6e8261db364d6681a9633041e837
b1108a264198109bc4e692e30e2dc7c148625fa9a3dce15477fc7618669c7a6f
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.1 HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:23 GMT
Etag: "a3c-63714968-13c8f8;gz"
Last-Modified: Sun, 13 Nov 2022 19:45:44 GMT
Content-Type: application/x-javascript
Content-Length: 1139
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 01:11:23 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-content/uploads/2021/09/cropped-logo-sbobet.png
128.199.143.157200 OK 29 kB URL HTTP/1.1 128.199.143.157/wp-content/uploads/2021/09/cropped-logo-sbobet.png
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 397 x 105, 8-bit/color RGBA, non-interlaced\012- data
Hash 9a674fe7773ef5b6a21e8e2eee2910c0
14297230585be3904cdc3aefac8a0e05828f2ccc
03de4807133b190609588e4b88ffcce9936ddbd0a686194c182be3c8e3371b09
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/09/cropped-logo-sbobet.png HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:23 GMT
Etag: "70cb-613f336a-fd2b9;;;"
Last-Modified: Mon, 13 Sep 2021 11:18:02 GMT
Content-Type: image/png
Content-Length: 28875
Accept-Ranges: bytes
Date: Fri, 02 Dec 2022 01:11:23 GMT
Server: LiteSpeed
Connection: Keep-Alive
128.199.143.157/wp-content/uploads/2021/09/livechat.png
128.199.143.157200 OK 17 kB URL HTTP/1.1 128.199.143.157/wp-content/uploads/2021/09/livechat.png
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 180 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 28254d9739cfd38e790cfd64615de3c6
1bb83cce73b1dae3438a4e4bfc7f9b6830198714
51bbdaf4370d2cb8c53ef3a718e6eee40cb40aff14034311f0fe8b3ae3bc3761
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/09/livechat.png HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:23 GMT
Etag: "42d8-6138ff2b-97c;;;"
Last-Modified: Wed, 08 Sep 2021 18:21:31 GMT
Content-Type: image/png
Content-Length: 17112
Accept-Ranges: bytes
Date: Fri, 02 Dec 2022 01:11:23 GMT
Server: LiteSpeed
Connection: Keep-Alive
www.google-analytics.com/analytics.js
142.250.74.14200 OK 20 kB URL HTTP/1.1 www.google-analytics.com/analytics.js
IP 142.250.74.14:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 20039
Date: Fri, 02 Dec 2022 00:13:26 GMT
Expires: Fri, 02 Dec 2022 02:13:26 GMT
Cache-Control: public, max-age=7200
Age: 3477
Last-Modified: Tue, 27 Sep 2022 22:01:05 GMT
Content-Type: text/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 188c50963e7939b1f26a31dbcb8c8200
859416e6148ea6618584e53604efcf072bb989cc
3a313cd3c1693a886bfbf6ffc6fbac78f87e6ded2b9a7749553444ada65ce36e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 01:11:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/j/collect?v=1&_v=j98&a=1111403537&t=pageview&_s=1&dl=http%3A%2F%2F128.199.143.157%2F&ul=en-us&de=UTF-8&dt=Sbobet88%20%3A%20Situs%20Judi%20Bola%20Online%20Terbaik%20%7C%20Judi%20Bola88%20Terpercaya%20%7C%20Situs%20Sbobet%20Resmi&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=2007383135&gjid=1017889009&cid=1057119347.1669943482&tid=UA-208283456-7&_gid=992833326.1669943482&_r=1&_slc=1&z=1913290205
142.250.74.14200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=1111403537&t=pageview&_s=1&dl=http%3A%2F%2F128.199.143.157%2F&ul=en-us&de=UTF-8&dt=Sbobet88%20%3A%20Situs%20Judi%20Bola%20Online%20Terbaik%20%7C%20Judi%20Bola88%20Terpercaya%20%7C%20Situs%20Sbobet%20Resmi&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=2007383135&gjid=1017889009&cid=1057119347.1669943482&tid=UA-208283456-7&_gid=992833326.1669943482&_r=1&_slc=1&z=1913290205
IP 142.250.74.14:0
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j98&a=1111403537&t=pageview&_s=1&dl=http%3A%2F%2F128.199.143.157%2F&ul=en-us&de=UTF-8&dt=Sbobet88%20%3A%20Situs%20Judi%20Bola%20Online%20Terbaik%20%7C%20Judi%20Bola88%20Terpercaya%20%7C%20Situs%20Sbobet%20Resmi&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=2007383135&gjid=1017889009&cid=1057119347.1669943482&tid=UA-208283456-7&_gid=992833326.1669943482&_r=1&_slc=1&z=1913290205 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://128.199.143.157
Connection: keep-alive
Referer: http://128.199.143.157/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://128.199.143.157
date: Fri, 02 Dec 2022 01:11:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 188c50963e7939b1f26a31dbcb8c8200
859416e6148ea6618584e53604efcf072bb989cc
3a313cd3c1693a886bfbf6ffc6fbac78f87e6ded2b9a7749553444ada65ce36e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 01:11:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
128.199.143.157/wp-content/uploads/2021/09/favicon.png
128.199.143.157200 OK 996 B URL HTTP/1.1 128.199.143.157/wp-content/uploads/2021/09/favicon.png
IP 128.199.143.157:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 03a6e4c6d610b69eb1fe5f0a82542c82
3b0cbc4449afdd7a414e7d3e25857a715c5f9b8a
e4c533277ce4235b5e25304f7ec7e35d25020379d4be630629901df56414bcf6
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/09/favicon.png HTTP/1.1
Host: 128.199.143.157
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://128.199.143.157/
HTTP/1.1 200 OK
Cache-Control: public, max-age=604800
Expires: Fri, 09 Dec 2022 01:11:23 GMT
Etag: "3e4-613f334f-144f;;;"
Last-Modified: Mon, 13 Sep 2021 11:17:35 GMT
Content-Type: image/png
Content-Length: 996
Accept-Ranges: bytes
Date: Fri, 02 Dec 2022 01:11:23 GMT
Server: LiteSpeed
Connection: Keep-Alive