Report - baobabsports.com/

Report Overview

Submitted URL
baobabsports.com/
IP
192.185.129.121
ASN
#46606 UNIFIEDLAYER-AS-1
Submitted
2022-12-24 04:30:10
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
240

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6.5 kB	13 kB	142.250.74.131
yt3.ggpht.com	203	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	470 B	2.3 kB	142.250.74.161
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	1.5 kB	142.250.74.106
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.9 kB	105 kB	216.58.207.227
jnn-pa.googleapis.com	2640	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.3 kB	34 kB	216.58.207.202
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
baobabsports.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	18 kB	2.9 MB	192.185.129.121
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	341 B	797 B	93.184.220.29
i.ytimg.com	109	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	499 B	13 kB	216.58.211.22
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	54.149.149.164
googleads.g.doubleclick.net	42	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	879 B	142.250.74.66
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	402 B	15 kB	142.250.74.164
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	50 kB	34.120.237.76
www.youtube.com	90	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	781 B	66 kB	216.58.207.238
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.0 kB	8.0 kB	23.36.77.32
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-24	medium	baobabsports.com/	Malware
2022-12-24	medium	baobabsports.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1	Malware
2022-12-24	medium	baobabsports.com/wp-content/plugins/preloader-plus/assets/css/preloader-plus.min.css?ver=2.2.1	Malware
2022-12-24	medium	baobabsports.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0	Malware
2022-12-24	medium	baobabsports.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.9.1	Malware
2022-12-24	medium	baobabsports.com/wp-content/uploads/elementor/css/post-15.css?ver=1671784650	Malware
2022-12-24	medium	baobabsports.com/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13	Malware
2022-12-24	medium	baobabsports.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3	Malware
2022-12-24	medium	baobabsports.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3	Malware
2022-12-24	medium	baobabsports.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3	Malware
2022-12-24	medium	baobabsports.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	Malware
2022-12-24	medium	baobabsports.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	Malware
2022-12-24	medium	baobabsports.com/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.9.4	Malware
2022-12-24	medium	baobabsports.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.9.1	Malware
2022-12-24	medium	baobabsports.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.9.1	Malware
2022-12-24	medium	baobabsports.com/wp-includes/js/underscore.min.js?ver=1.13.4	Malware
2022-12-24	medium	baobabsports.com/wp-includes/js/wp-util.min.js?ver=6.1.1	Malware
2022-12-24	medium	baobabsports.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8	Malware
2022-12-24	medium	baobabsports.com/wp-content/uploads/2020/12/covid19-blue-circle-bg.svg	Malware
2022-12-24	medium	baobabsports.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2	Malware
2022-12-24	medium	baobabsports.com/wp-content/uploads/2020/12/covid19-cta-green-circle-bg.svg	Malware
2022-12-24	medium	baobabsports.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2	Malware
2022-12-24	medium	baobabsports.com/wp-content/uploads/2022/12/kid_football_330.webp	Malware
2022-12-24	medium	baobabsports.com/wp-content/plugins/elementor/assets/js/video.d86bfd0676264945e968.bundle.min.js	Malware
2022-12-24	medium	baobabsports.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js	Malware
2022-12-24	medium	baobabsports.com/wp-content/uploads/2020/12/light-up-jump-rope-b98f0d90-6f8d-4211-85c4-21d1b8f9de21.webp	Malware

mnemonic secure dns

Scan Date	Severity	Indicator	Alert
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed
2022-12-24	medium	baobabsports.com	Sinkholed

JavaScript (153)

	URL	Size	First Seen	Last Seen
	baobabsports.com/	70 B	2023-03-07	2024-04-26
Pretty URL baobabsports.com/ IP 192.185.129.121 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-04-26 01:04:48 Times Seen6539 Hash 4ff152a840e29705f2933718a2571bc3 6c7ed239bcd74ab7a0ea03b3dd4ab74ffceaff49 e426295764322c0b4d881b5da28c2591e9ff651fc07636da1e2979a62a2f349c Loading...

	www.youtube.com/iframe_api	992 B	2023-03-10	2023-03-12
Pretty URL www.youtube.com/iframe_api IP 216.58.207.238 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 02:02:01 Last Seen2023-03-12 14:15:48 Times Seen1 Hash 4f9a3b462f22a733c7953b2d56e8c3e3 d336d31c9f31b7f01abb46628f74186151bf171d c4db351e7b79f5ed215ba61fae34b3eebc733da305e877826b17fc2de3c90cd8 Loading...

	www.youtube.com/s/player/21149d65/player_ias.vflset/en_US/embed.js	27 kB	2023-03-09	2023-03-18
Pretty URL www.youtube.com/s/player/21149d65/player_ias.vflset/en_US/embed.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 23:45:17 Last Seen2023-03-18 04:22:56 Times Seen1 Hash c8263d3ae5bd2d32335343afc8f4311e 2b1db7e3516883ce764d6d972bdbd992f1054207 b163003fc3dc866d9bd2facbf4d3ad0d33f3faa58cd5fb9737889c46f151a85b Loading...

	www.youtube.com/embed/kYmZNwt7QXs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=http%3A%2F%2Fbaobabsports.com&widgetid=1	25 B	2023-03-07	2023-11-29
Pretty URL www.youtube.com/embed/kYmZNwt7QXs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=http%3A%2F%2Fbaobabsports.com&widgetid=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:45:32 Last Seen2023-11-29 18:38:41 Times Seen578 Hash da8071d0e8ff38476bb59e8c33edc80b 0b5b3917a7773b75aac7eeccf12a11d6fe82404a 031dbcf7c15959e1fcc050bfee1266f55572d771de9782b1af486986530682f0 Loading...

	baobabsports.com/	77 B	2023-03-07	2024-02-22
Pretty URL baobabsports.com/ IP 192.185.129.121 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:22:04 Last Seen2024-02-22 15:55:51 Times Seen33 Hash 8f7d14f8db8b05b8afb3ce484338a774 9cc15296750ccfbcbc1e96e445a0fe87bbb36c72 00eac4b80914114a3fce3e318d4f172250bda8161b06d7676e8d085128a2c01b Loading...

	baobabsports.com/wp-content/plugins/preloader-plus//assets/js/preloader-plus.min.js?ver=2.2.1	1.2 kB	2023-03-07	2024-03-25
Pretty URL baobabsports.com/wp-content/plugins/preloader-plus//assets/js/preloader-plus.min.js?ver=2.2.1 IP 192.185.129.121 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:09 Last Seen2024-03-25 08:54:05 Times Seen192 Hash 81d6ff6ffd5f6a86c9956dd6e2e34639 1fb4cc15dcbb96665edd81ebfbda2b556f56e867 ea420d765b3a2def39c1b5ae6ec17b209cd156ab21fa8a8716159bb05ed655e7 Loading...

	baobabsports.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	12 kB	2023-03-07	2024-04-26
Pretty URL baobabsports.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP 192.185.129.121 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-26 01:24:47 Times Seen52781 Hash 3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0 Loading...

	baobabsports.com/	2.1 kB	2023-03-12	2023-03-12
Pretty URL baobabsports.com/ IP 192.185.129.121 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 06:11:02 Last Seen2023-03-12 06:11:02 Times Seen1 Hash 427e79015d2ef60be8465f8eb59d1674 44dd5d1c04a213757032bd3bd37beda2236a00f3 e7422c539188c236d416aae664d0dc1120de2a42a34a9e2ecf0c1f48deb6850f Loading...

	www.youtube.com/embed/kYmZNwt7QXs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=http%3A%2F%2Fbaobabsports.com&widgetid=1	60 kB	2023-03-12	2023-03-12
Pretty URL www.youtube.com/embed/kYmZNwt7QXs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=http%3A%2F%2Fbaobabsports.com&widgetid=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 06:11:02 Last Seen2023-03-12 06:11:02 Times Seen1 Hash de4c1c73531bd5ce3b53faf4245061ff c901448c100b02ba408ce2c48a248cb662673344 b3a26a3971df85c94360286c56590717f7391c23e5dc754d7db57cdbfee2ecf8 Loading...

	baobabsports.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8	754 B	2023-03-07	2024-04-25
Pretty URL baobabsports.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8 IP 192.185.129.121 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-04-25 13:07:05 Times Seen2671 Hash afb55c29bdbcfc262d9fa56743572cad d4b6cb9df2b1b5477cd968fb05cf5faa1d13d6bf c30dab20b677f2b13f42a4a04385a3c6d380fa023a4a1c32f45f2996e152bfba Loading...

	baobabsports.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js	1.4 kB	2023-03-09	2024-04-14
Pretty URL baobabsports.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js IP 192.185.129.121 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 09:33:17 Last Seen2024-04-14 17:47:59 Times Seen113 Hash ead581d6a424ad7712d84d00e5126d45 fe44e81d8da4363729f77ec455522d2b859455ca f7263aa6a03929c40f075b9c56e9582faa93f5a862541a68d3d5e8111aa9fc86 Loading...

	www.youtube.com/s/player/21149d65/fetch-polyfill.vflset/fetch-polyfill.js	9.6 kB	2023-03-07	2024-01-08
Pretty URL www.youtube.com/s/player/21149d65/fetch-polyfill.vflset/fetch-polyfill.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:14 Last Seen2024-01-08 01:35:01 Times Seen16862 Hash 99c2f70a68b9105e6de1d8aaecda635f 1c58a7f05d5d8579f6f1a6f73a9919e941c67dd8 498b3f2a0357fbd50a80eb18b23ab4b461b791d640e5560b799f08ed960748a9 Loading...

	www.youtube.com/embed/kYmZNwt7QXs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=http%3A%2F%2Fbaobabsports.com&widgetid=1	134 B	2023-03-07	2024-04-26
Pretty URL www.youtube.com/embed/kYmZNwt7QXs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=http%3A%2F%2Fbaobabsports.com&widgetid=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:14 Last Seen2024-04-26 02:59:34 Times Seen34251 Hash e18eb9d0972d240f1a5456179bb6523b 65255f106adcff2907a98e295a8e7a38fe2884c4 3d68db2b85d5a2915743399f09dc438963f0c50f68b02df05d47a372661603e8 Loading...

	www.youtube.com/s/player/21149d65/www-embed-player.vflset/www-embed-player.js	346 kB	2023-03-10	2023-03-12
Pretty URL www.youtube.com/s/player/21149d65/www-embed-player.vflset/www-embed-player.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 01:20:30 Last Seen2023-03-12 14:21:42 Times Seen1 Hash 17e6c5c8d62d357219e201b04752e2f5 deabfa296b98d7d3a9eac592662a835b5bd559b3 49df9116f57b85bfe106cfc8d6356ccaa0ffb99177b05906a7ed90dc15ecbd5f Loading...

	www.youtube.com/embed/kYmZNwt7QXs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=http%3A%2F%2Fbaobabsports.com&widgetid=1	37 kB	2023-03-08	2023-03-13
Pretty URL www.youtube.com/embed/kYmZNwt7QXs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=http%3A%2F%2Fbaobabsports.com&widgetid=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:02 Times Seen1 Hash 6ac0aebaeaedeaf63ae013c1ce269347 19fa754c62c0f694708a766437e29883901309ac fe65bfd909ac7e21df1d0ceec09263795de5beb2504bb6c286a62a64b89edbd4 Loading...

	baobabsports.com/	2.1 kB	2023-03-12	2023-03-12
Pretty URL baobabsports.com/ IP 192.185.129.121 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 06:11:03 Last Seen2023-03-12 06:11:03 Times Seen1 Hash f640876ff13da601a4701a8714d78a3c 808afa18a83afb2901f7beaaef95f3006602f08a f5faa9aa858ef6cbfe171b228a9466cd7bce009fa74bed0a22c09276e8303397 Loading...

	baobabsports.com/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.9.4	17 kB	2023-03-07	2024-04-24
Pretty URL baobabsports.com/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.9.4 IP 192.185.129.121 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:22:33 Last Seen2024-04-24 17:28:41 Times Seen1026 Hash 423e4eab18767461cb68a11c5b2a0cb4 d5c17c5fbecfe815e7c27347155158e90e9fb709 d6a23f9c4dec2f455c8e2340a99ad4db01a1d538bb1f2537bab3991ec64e14c7 Loading...

	baobabsports.com/	47 B	2023-03-07	2024-04-24
Pretty URL baobabsports.com/ IP 192.185.129.121 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-24 18:59:51 Times Seen2007 Hash 2c51b5be11f71c5e12aff7f05787fdfd 5e99384e82d66bdfa4db7c8b43a9066c2896e46d f305ca5823e9ef3bf3cdd312369057a018addabb859d129e07543349fdd74d35 Loading...

	baobabsports.com/wp-includes/js/underscore.min.js?ver=1.13.4	19 kB	2023-03-08	2024-04-26
Pretty URL baobabsports.com/wp-includes/js/underscore.min.js?ver=1.13.4 IP 192.185.129.121 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26:29 Last Seen2024-04-26 03:21:06 Times Seen41474 Hash f88d5720bb454ed5d204cbdb56901f6b f1952292fde4b15936e9aac16b2b9896684db95b 726b820e44f6ab90ad991d30a4bf26d3a5d71493cbcd1fb1efd0d14e89b9df2a Loading...

	baobabsports.com/	333 B	2023-03-07	2024-04-26
Pretty URL baobabsports.com/ IP 192.185.129.121 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-26 02:04:43 Times Seen7490 Hash 3688fd64c409264431201fa55a828e81 2b7eeefaa1edf3a7621f7576b35b01c895ef5367 944433761a880eab1d567dd5389499af76aa03582c82a8aa88838e3c6c2134c6 Loading...

	baobabsports.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2	21 kB	2023-03-08	2024-04-26
Pretty URL baobabsports.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 IP 192.185.129.121 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-26 01:56:03 Times Seen9812 Hash 034bd11ecaf6fb9240d905245e42e202 ff136c394ed95badfc0107fb98a890dcff642828 ca7154cdda62b535ceaba9ad2a2b2217ff49de94c069a2c4e89733f3f06b3651 Loading...

	baobabsports.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-26
Pretty URL baobabsports.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 192.185.129.121 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-26 01:56:03 Times Seen68646 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	www.youtube.com/embed/kYmZNwt7QXs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=http%3A%2F%2Fbaobabsports.com&widgetid=1	2.0 kB	2023-03-07	2024-01-05
Pretty URL www.youtube.com/embed/kYmZNwt7QXs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=http%3A%2F%2Fbaobabsports.com&widgetid=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:14 Last Seen2024-01-05 16:27:33 Times Seen7664 Hash 6a73bc1d6d65579cd4d0e4ac0f0bbc4a 81de5599ae45f49e93a23f53833d3dc9c27c7a1e bf473ebe5e6ccb16d5b1df9579ac0666659badd85ee14dbb4669531ca0e226b1 Loading...

	static.doubleclick.net/instream/ad_status.js	29 B	2023-03-07	2024-04-18
Pretty URL static.doubleclick.net/instream/ad_status.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:17 Last Seen2024-04-18 07:35:29 Times Seen2735 Hash 1fa71744db23d0f8df9cce6719defcb7 e4be9b7136697942a036f97cf26ebaf703ad2067 eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9 Loading...

	www.youtube.com/s/player/21149d65/www-widgetapi.vflset/www-widgetapi.js	188 kB	2023-03-10	2023-03-14
Pretty URL www.youtube.com/s/player/21149d65/www-widgetapi.vflset/www-widgetapi.js IP 216.58.207.238 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 01:17:16 Last Seen2023-03-14 07:56:05 Times Seen1 Hash acad2051529e5361981d3915768db1bd bfb586bc6c5654e0d25d680040e44465ddd8e97e 9c8c4819f65dd12131d77a7b5d4a5ef6ab87a7385ed7aaaab68ebca112c0b1ff Loading...

	www.youtube.com/embed/kYmZNwt7QXs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=http%3A%2F%2Fbaobabsports.com&widgetid=1	26 B	2023-03-07	2024-04-26
Pretty URL www.youtube.com/embed/kYmZNwt7QXs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=http%3A%2F%2Fbaobabsports.com&widgetid=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:14 Last Seen2024-04-26 02:59:35 Times Seen34184 Hash 173a08c5d6adc5c93611a599bcb2c717 735a7301e66ae2c3584357f7bf0bf09eefb62df0 271e6368679a21c3416e2a0325db33d6bc445d601c72a49914081b5efd0cdf3f Loading...

	www.youtube.com/s/player/21149d65/player_ias.vflset/en_US/remote.js	122 kB	2023-03-09	2023-03-18
Pretty URL www.youtube.com/s/player/21149d65/player_ias.vflset/en_US/remote.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 23:45:17 Last Seen2023-03-18 04:22:56 Times Seen1 Hash 62fb37c5445a799f32ef9bfd8a39642f 8c23febcec352a8cbb28b237c7e910860e0d66b9 b268937863e37505eb86ab385f49d8a4233a91ec0ffe7b4a57cf48629e5e2fac Loading...

	baobabsports.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	90 kB	2023-03-08	2024-04-26
Pretty URL baobabsports.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 IP 192.185.129.121 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-26 01:56:03 Times Seen31823 Hash 17738318d61d394f1de8890d589afaec f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3 cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981 Loading...

	baobabsports.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.9.1	32 kB	2023-03-09	2024-04-14
Pretty URL baobabsports.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.9.1 IP 192.185.129.121 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 09:29:46 Last Seen2024-04-14 17:47:59 Times Seen203 Hash e2c8dac9a1d5d631379ca15ba824a2d5 74306e359122ecf951396a852a1c06381a03fa9d 132858a7a793814411def5f66c77fb9be9436be9bb8be5b8a55ca16630aaaa78 Loading...

	baobabsports.com/	84 B	2023-03-07	2024-04-25
Pretty URL baobabsports.com/ IP 192.185.129.121 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-04-25 18:11:53 Times Seen3213 Hash 7f215c9370788561e1b9e30dd40697ef aca5a8d9d6bae876f32a5b9fb7d1d948afe855b0 eed9d591cae9c609fb97d73f7fe3d192432da0246d97bbbad6d0de0a1bc0cc2d Loading...

	baobabsports.com/wp-content/plugins/elementor/assets/js/video.d86bfd0676264945e968.bundle.min.js	3.5 kB	2023-03-09	2023-03-13
Pretty URL baobabsports.com/wp-content/plugins/elementor/assets/js/video.d86bfd0676264945e968.bundle.min.js IP 192.185.129.121 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 12:06:31 Last Seen2023-03-13 18:52:31 Times Seen1 Hash ed6a8d8a1bc61e8cc6dd31b245f7beae bdb7edd72e2b52898ed0f94630eca6a31d3c7ed5 f233d5b1b7872b4beb8a897ab75f2589b85c61a33e9e6cc91e981c428053b648 Loading...

	baobabsports.com/	9 B	2023-03-07	2024-04-26
Pretty URL baobabsports.com/ IP 192.185.129.121 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:05 Last Seen2024-04-26 00:32:43 Times Seen16147 Hash 5e543256c480ac577d30f76f9120eb74 d5d4cd07616a542891b7ec2d0257b3a24b69856e eb045d78d273107348b0300c01d29b7552d622abbc6faf81b3ec55359aa9950c Loading...

	www.youtube.com/embed/kYmZNwt7QXs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=http%3A%2F%2Fbaobabsports.com&widgetid=1	13 B	2023-03-07	2024-04-26
Pretty URL www.youtube.com/embed/kYmZNwt7QXs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=http%3A%2F%2Fbaobabsports.com&widgetid=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:14 Last Seen2024-04-26 02:59:35 Times Seen34143 Hash d8fb965e7ead2924508e97e5326bd3b1 fae376d0cb54d4433b7bdc9aba04690cd6cb5d27 57bb660c2fdf4369ff8e37f99b26963dba87c120b80c443ff3d31e030ab3a0f5 Loading...

	baobabsports.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1	19 kB	2023-03-07	2024-04-26
Pretty URL baobabsports.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 IP 192.185.129.121 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-26 01:56:03 Times Seen38055 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	baobabsports.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.9.1	5.0 kB	2023-03-09	2024-04-14
Pretty URL baobabsports.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.9.1 IP 192.185.129.121 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 09:29:46 Last Seen2024-04-14 17:47:59 Times Seen202 Hash 9e519bec28e1bc3e182d0d4c2c2ad78b eba78a01b6e90000cd4f30d6de5a0b523c741f06 18f36558effb7463469e4087110bf188536e4942a0e3be8739d7ecab34fab4de Loading...

	baobabsports.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.9.1	41 kB	2023-03-09	2024-04-14
Pretty URL baobabsports.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.9.1 IP 192.185.129.121 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 09:29:46 Last Seen2024-04-14 17:47:59 Times Seen231 Hash 3073c641d7f23bf458a25a5d521bedd1 791c84ecbf6d2695df69c0ea90ac3e2a7a6fcf65 883dff47fea6a3a5858d9fc03d0fdca51571bf1c25153c45725fdef2a89c0f1e Loading...

	baobabsports.com/wp-includes/js/wp-util.min.js?ver=6.1.1	1.4 kB	2023-03-08	2024-04-26
Pretty URL baobabsports.com/wp-includes/js/wp-util.min.js?ver=6.1.1 IP 192.185.129.121 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26:29 Last Seen2024-04-26 03:21:06 Times Seen24443 Hash 19d386c9004e54941c1cc61d357efa5d 0a77594006c8d86fdcc0adbc2b9aecaef3869586 3bc6467a95cec8fa516c6f5f69e1301e37e16f9bb1046fe7756729249f901b95 Loading...

	www.youtube.com/s/player/21149d65/player_ias.vflset/en_US/base.js	2.2 MB	2023-03-09	2023-03-12
Pretty URL www.youtube.com/s/player/21149d65/player_ias.vflset/en_US/base.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 23:45:18 Last Seen2023-03-12 14:21:42 Times Seen1 Hash 8dfe064193d3b37d9d4897ba81b59f5b f692b0f552e4831eaeba38749275a7a4310f663a 2c3ad5227fcc5b11a4f7298ea9c74cf1060b50f9aa475508ee7a532c6dc4260a Loading...

		Size	First Seen	Last Seen
	#1 Eval - e47eac5ffa4a6ecd0e0b02a4575fecdc	22 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:03 Times Seen1 Hash e47eac5ffa4a6ecd0e0b02a4575fecdc 767355324f80aa34c61f24692a0f0cdbca74bb11 1606d028feae5bf4c7506f9292f855f7532cb10b6b12183454c6878ea4f9eb86 Loading...

	#2 Eval - 57cec4137b614c87cb4e24a3d003a3e0	1 B	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-26 00:51:52 Times Seen8277 Hash 57cec4137b614c87cb4e24a3d003a3e0 23eb4d3f4155395a74e9d534f97ff4c1908f5aac 18f5384d58bcb1bba0bcd9e6a6781d1a6ac2cc280c330ecbab6cb7931b721552 Loading...

	#3 Eval - 25d6c78aa672ad5603fb0b7da416f90a	2 B	2023-03-08	2024-03-11
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2024-03-11 07:30:37 Times Seen1354 Hash 25d6c78aa672ad5603fb0b7da416f90a 3a4b083cacc31dd7d0a40050744e5a5acdfc1f76 b5bdca718ffd3f26e43ed3a3e104301ebc70d8a2f3a71f46fafb8f6f6d6ae947 Loading...

	#4 Eval - 43b1cc1db7be63d899dd4280f578691a	2 B	2023-03-07	2024-03-14
Pretty Observations First Seen2023-03-07 13:15:10 Last Seen2024-03-14 04:39:15 Times Seen6 Hash 43b1cc1db7be63d899dd4280f578691a 665a4dc918ddfb85ea0f1e35c9aef6d1b697c23d 198dea392afc21d070f8abfc7c06d11060f1b278e5d62501bd57f1159a72ebac Loading...

	#5 Eval - b1341072ca65fd05d28d193d4ebef5af	58 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-03-13 01:02:03 Times Seen1 Hash b1341072ca65fd05d28d193d4ebef5af c805ad405183f32150d7fd97861e109bafa4110e ddd77f24fd3e1e6ef4ac6eb42ab9a88f68b4db5ce79c3140fc7f7328067454cd Loading...

	#6 Eval - a0190496ceaf3dc7c2ae9373dd7317b3	2 B	2023-03-07	2023-03-17
Pretty Observations First Seen2023-03-07 16:58:30 Last Seen2023-03-17 12:31:37 Times Seen1 Hash a0190496ceaf3dc7c2ae9373dd7317b3 57c24c56c83113e722078337cfe2d513db43c570 978425f807853d5b45aa67dc5e37fcdb95ee73e1d250930cf7aaf6480254b803 Loading...

	#7 Eval - f20cfd16c3c41e402e43e3c8159c2bcc	29 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-03-13 01:02:03 Times Seen1 Hash f20cfd16c3c41e402e43e3c8159c2bcc 0a3b57d4d39d9f13cf894eb018dabf3ef885f66e f055427c86a36907e6c4b85a6ffe3d9d7fd45d46f908dab1a4571a3691e32dcd Loading...

	#8 Eval - b21b7d346ee61177ff38055d73564403	254 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-03-13 01:02:03 Times Seen1 Hash b21b7d346ee61177ff38055d73564403 d2239462011b012b554a7429ca843cf35d50e3ea 723d1627fcbe4ee421d92367b1304d9c5c51bd352b527e80d82f90a7552b16df Loading...

	#9 Eval - d7853f7f2876e0834c2ca73c7921b6f3	77 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:03 Times Seen1 Hash d7853f7f2876e0834c2ca73c7921b6f3 74e9699d0fc54d9478f088c9b129fa24ff926db2 8e5a83a5cf21d31e69e533fd2c220755b599b52d8cdb945e1620db0bd29b1a3c Loading...

	#10 Eval - f465da03521180d47c811a98c793a2d6	9 B	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 01:02:14 Last Seen2024-04-26 02:59:36 Times Seen33252 Hash f465da03521180d47c811a98c793a2d6 9b76105ff4c8bb84cd630914d772f4cc73df0155 e8183224e440eb4578fd87c4c47735f9ede4c43b1c6ebbdcd7033e98aba6a009 Loading...

	#11 Eval - c16b2593c4dc9e9058d180f6e4b20910	22 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-03-13 01:02:03 Times Seen1 Hash c16b2593c4dc9e9058d180f6e4b20910 5b0a3ac7648b4fcf9911f25f351414b885da51d9 16d5ffdd7455edf7cb6a32673836802be5e48191e0e772fd329ce1fc44ebdd36 Loading...

	#12 Eval - b6fedf4d8b41bcd6fdd00dc73afebbf0	186 B	2023-03-07	2023-06-20
Pretty Observations First Seen2023-03-07 01:02:15 Last Seen2023-06-20 22:42:19 Times Seen10985 Hash b6fedf4d8b41bcd6fdd00dc73afebbf0 cc79d9f18327c590bfbf582db80c8771dbfda9a8 b98b82c364cf0a1c34b8ecf1aa18a6bf51bbd21631dd3794dad96c8ad3082a5f Loading...

	#13 Eval - c06af6077eae1716e6f24b0922ec8744	44 kB	2023-03-12	2023-03-12
Pretty Observations First Seen2023-03-12 06:11:03 Last Seen2023-03-12 06:11:03 Times Seen1 Hash c06af6077eae1716e6f24b0922ec8744 30445aa938c342e0d03b1acbab444b757296916b c7030b3fa2f92802fbf2567d00878772135324e502134c70091c80e69ca205b1 Loading...

	#14 Eval - 05b8c74cbd96fbf2de4c1a352702fbf4	6 B	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-26 02:59:35 Times Seen54667 Hash 05b8c74cbd96fbf2de4c1a352702fbf4 320ad267d8d969f285eda5c184f5455bd29c8c95 44ff7b02c80d38b26dd6aa31d9470aed81b32e10331a3c994fb1a9945fd847ba Loading...

	#15 Eval - 0563fcd3c81eef58e50b984c70677036	159 B	2023-03-07	2024-02-29
Pretty Observations First Seen2023-03-07 01:02:14 Last Seen2024-02-29 10:56:21 Times Seen35304 Hash 0563fcd3c81eef58e50b984c70677036 297f56d56ec1918a65a72c146da33d3ffb468684 ed2b7d8395578b6813022e5d55ce8066479d2def9c664882260f1516472c1838 Loading...

	#16 Eval - 2db95e8e1a9267b7a1188556b2013b33	1 B	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 01:15:12 Last Seen2024-04-26 01:15:57 Times Seen10569 Hash 2db95e8e1a9267b7a1188556b2013b33 07c342be6e560e7f43842e2e21b774e61d85f047 acac86c0e609ca906f632b0e2dacccb2b77d22b0621f20ebece1a4835b93f6f0 Loading...

	#17 Eval - 47d77215e130fff6920253d4307a7be7	71 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 47d77215e130fff6920253d4307a7be7 4154411c37b5c0424621341a942ce8717cbc1221 3ec3292535597f1e1ea9ba347cf0f67c9903a0d1e7976236de02ebbc12ac56fe Loading...

	#18 Eval - 37ee86efb5a65b2db27b32381f43dbde	246 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 37ee86efb5a65b2db27b32381f43dbde 564f551651473af7221093f701a79b64a270ecaa e4b83e117d6bd99a7061a610d93057f6b596e18af2a12b28194613aba538a6e1 Loading...

	#19 Eval - baf993e55cb74719b2715de1dacabee0	43 kB	2023-03-12	2023-03-12
Pretty Observations First Seen2023-03-12 06:11:03 Last Seen2023-03-12 06:11:03 Times Seen1 Hash baf993e55cb74719b2715de1dacabee0 9fbc25f3df8e17398f1bf120e5aaff03745aa69d 0b0fb058b20ebd6df0f5ce7e18ca66b00f1e5593f4852a16f58995bc683ad06d Loading...

	#20 Eval - 9db500d31ee99016d30ade523c91d3b3	2 B	2023-03-08	2024-04-22
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2024-04-22 14:59:15 Times Seen45 Hash 9db500d31ee99016d30ade523c91d3b3 a6bc350c07a49e9b2327ae4671d888b7bfeb8476 cddc3895eb025399ffa7ea885ad307323375c0892660ee787d82992f75bfb23f Loading...

	#21 Eval - 9f8e220831d2263e74d77eee99a42a41	118 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 9f8e220831d2263e74d77eee99a42a41 d5f85bbb595ceed7a224a7ac01b3c9d83aa77916 5ae08d270951040f66b909735c3c1a54b9ac1fa7478dc806191b72ed40385d42 Loading...

	#22 Eval - 7fd15125fa42a595cdbb8e9322265cc3	92 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-03-13 01:02:02 Times Seen1 Hash 7fd15125fa42a595cdbb8e9322265cc3 b998294cf2a526d8fc8ef1e0771aa75a6a0e84c5 38f0ff7da3bb8c2a9232972c30af64ee94d44736f7174ec599afd20f23602d8a Loading...

	#23 Eval - 97439320a79ff22a2ca4587b6d956192	97 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 97439320a79ff22a2ca4587b6d956192 f8545342590380e1151385bb5255739dcc4d0f01 1fc2e552dbbcf6223374afdb415b4caef6a0c802e111d0ea2cf0fd40b8042990 Loading...

	#24 Eval - 1b78460412db10706819a6dabba323bc	447 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 1b78460412db10706819a6dabba323bc 81e18403d4897c5b6904d9f086081cbad1e416cb c262de2bd458fb4f636fa92edd7b9c4c9fee306b9f869f5deae85b160813c885 Loading...

	#25 Eval - cb48af3e40ab9ec3622c07b8faf27cf3	2 B	2023-03-08	2024-04-11
Pretty Observations First Seen2023-03-08 05:16:31 Last Seen2024-04-11 05:25:38 Times Seen32 Hash cb48af3e40ab9ec3622c07b8faf27cf3 04266c9873cc1135b5b5d555a89942cdd1e8274e ff9ec9f7cb7ae85b2d12a560388e9371ebbccad8451fc264929234c2d3654c43 Loading...

	#26 Eval - 47d43b70c3b2136c5b6461fe965ec1e1	267 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 47d43b70c3b2136c5b6461fe965ec1e1 5e9f2b98375f90750201a8a5f2eb9e812dce1bc5 bbfb529e490425edf7d268ecdbbf424e091c3bb5b01dc8a7f1224359f3b3e3d3 Loading...

	#27 Eval - 72ae0f81158749517ea92304778c4c4b	51 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 72ae0f81158749517ea92304778c4c4b a759555e04e00e8c75944c60f81187ea0244531a 2bba2c9504de9c9a6f41560476b530b4bf0eb6d4e326ebcbe3e3bd6becec9ecd Loading...

	#28 Eval - b7f41b572ec7b594e20bbfa479856b38	194 B	2023-03-07	2023-03-18
Pretty Observations First Seen2023-03-07 01:02:15 Last Seen2023-03-18 04:22:56 Times Seen1 Hash b7f41b572ec7b594e20bbfa479856b38 fa479c73e85fd5cb563bdf256eea6204c1ffa5b8 23f010e071f4759be28de8b76acc566788f4c15db1fe7f6e4c020a63f139cfa3 Loading...

	#29 Eval - 24cc3dc813f384fde380df619f1525cb	19 B	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 01:02:05 Last Seen2024-04-26 02:59:36 Times Seen48850 Hash 24cc3dc813f384fde380df619f1525cb 56399e3ce57ff98d68c7de98a563e572230dff6b 5421715bbdaf2550e31d10fc28d444310a8fe7147bbddecf0abb490358a1553b Loading...

	#30 Eval - 81edfb22d5e5bb9200b7b0ce04e95b20	867 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 81edfb22d5e5bb9200b7b0ce04e95b20 d25b86da2a635dbdf164e2a9c444934bb34df10d 9a0fa11c51cededde352cd36e82ecb9839dfb660ad5cd7dbd717ee63e287cd71 Loading...

	#31 Eval - 4bf3fd6a0c4f4ac570903654c28fb2bb	2 B	2023-03-07	2024-03-12
Pretty Observations First Seen2023-03-07 12:08:31 Last Seen2024-03-12 17:25:59 Times Seen10 Hash 4bf3fd6a0c4f4ac570903654c28fb2bb be93a5b8e63a6cbbb9a62cbea73001cd7f3a309b 72aa80bf1ac4eef0263917c350d8941a1c3f90b3b50d1232b52e6ceda51d53d4 Loading...

	#32 Eval - 4cd6ffa3113687fbdbadf1c47c103120	210 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 4cd6ffa3113687fbdbadf1c47c103120 0985110eb26f5665e596c22f2a6e07882e1d1a1f e6c1eef9b18a7040b8419907e976b5b37b3a45da74ffe9e135bfc9f4b59ed97b Loading...

	#33 Eval - 2d1a34089c92bbc03bc573ba13278814	137 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 2d1a34089c92bbc03bc573ba13278814 f242e9ab81f3dcde6ccc91495cb4a06ee3189b05 183f4ec79993bbddfd01458c906fd5cf5c535f95b5bbf0c930c3b6fef6ba0e6c Loading...

	#34 Eval - 8eef4500048a97a9600f03c9a7d9fd77	148 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 8eef4500048a97a9600f03c9a7d9fd77 d3197029a25bd42a4c157fd6f3ca74a00accaca6 8b101efd021e2778ca83e26264cc90b97ad6229dc1cc035327c63872facefc3c Loading...

	#35 Eval - eb10ba64ee40bb99ca98697a02ee88bc	289 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:03 Times Seen1 Hash eb10ba64ee40bb99ca98697a02ee88bc 49268a239c7eb936b6fc18faaef46f50f0ab7964 01d56337d49a0f5bf3c3e4683813504218bc48b99f533dc46954ebfa8796dc85 Loading...

	#36 Eval - 2a0a7cc18f18ffc9e11ec1e1df8b86ce	95 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 2a0a7cc18f18ffc9e11ec1e1df8b86ce c6d4766adf39d5809b9f90d0792d672c15b66be5 fba03ab0a6f7af6ecd97f6ca723fe8bdcda74244ae9b6fcf43dca7c34ac93029 Loading...

	#37 Eval - d1b62cb44a46584349c312a819e4a6a3	29 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:03 Times Seen1 Hash d1b62cb44a46584349c312a819e4a6a3 6d0cfe46d46ce0396504822b853d3829686194a4 21a39cca3dbd697f9fe79cef4e8a6e21b913e1d70cd61573977e7de3f0b741e0 Loading...

	#38 Eval - a7a004f35cf249ecbe5b297633dc53a9	649 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:03 Times Seen1 Hash a7a004f35cf249ecbe5b297633dc53a9 239e5ab4de2c4c0a4cb17725c1bae2bc485fb641 51bff49350bb754149412bd7aae7402a69eb6bdb70a5756d696287a60ce57bb6 Loading...

	#39 Eval - 9b45d54c67211018b75119661ee10e64	65 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 9b45d54c67211018b75119661ee10e64 267426a854aa63939c2650d3303b2d30e17814a7 47d3dcfeec54249e6666fccb965138b1346f70821191a4b3e7a93c8479f0e4f1 Loading...

	#40 Eval - bae3f90cb000352645e35fad60da411c	35 B	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-26 02:59:36 Times Seen53288 Hash bae3f90cb000352645e35fad60da411c 00023f94c170125b979cb1914925d06ab1abfbce 1e3606d95ce27d593157594820335681a9380f51a96147303cd8000e60a95e12 Loading...

	#41 Eval - 8277e0910d750195b448797616e091ad	1 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:15:11 Last Seen2024-04-25 20:14:11 Times Seen8631 Hash 8277e0910d750195b448797616e091ad 3c363836cf4e16666669a25da280a1865c2d2874 18ac3e7343f016890c510e93f935261169d9e3f565436429830faf0934f4f8e4 Loading...

	#42 Eval - 5a961c674daeb3c375671925e6e0e91e	365 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 5a961c674daeb3c375671925e6e0e91e 7e3effc43a98ee2223519da95ea8c2d54b67f2eb adb8a230612bf8a13de5e2952a5e541fb3dcabd25234e43a7248afaf273e2881 Loading...

	#43 Eval - 05975a12807e1f069506a7c290275951	218 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:02 Times Seen1 Hash 05975a12807e1f069506a7c290275951 29169048273d5a046ab74a131f6c7e53e27b52ac eda39fc8abd1a9964425d473150b85756473ef2e4fae50aa843f05ba256420a6 Loading...

	#44 Eval - ccb21680cb44cbc3715ed8acc0145efe	2 B	2023-03-08	2023-12-02
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-12-02 08:40:22 Times Seen1219 Hash ccb21680cb44cbc3715ed8acc0145efe 3cd63cf4ccfdb308ab85a20fd0407e74fe25f4a2 b6191bbbc00d24eb7631b1bed68737d8a9b83b65844367a663a052d7071b3e7e Loading...

	#45 Eval - 50f4c9ae0d471aa05a87fe3f6e4a3886	132 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 50f4c9ae0d471aa05a87fe3f6e4a3886 56cbdb420cd2114ad1020cff7a66d6875486abf4 7469e8b86b36771cfc5b347f0e883ad64805f96ab17b88be66de62711c81042c Loading...

	#46 Eval - db16ccdc0a6d0e881f68549e8de0c22a	128 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:03 Times Seen1 Hash db16ccdc0a6d0e881f68549e8de0c22a 673fb5bc64af6194253c11505f6388f9b8062994 ea81667268c1bff58ac5e9cbb76a927bf5baf190dbf526953dd6c43fa22581d8 Loading...

	#47 Eval - 47861ac22efe94feca954d74b76f7f4e	90 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 47861ac22efe94feca954d74b76f7f4e 14133f5753adc6821af62f040d3d5b66bd674997 46d0d132e342e9d1e9862adb6837cced3f522601820b5c01b7ba1681b9b002e8 Loading...

	#48 Eval - 47e87337937a69ef0891ca97b49efcfe	72 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 47e87337937a69ef0891ca97b49efcfe b4c3530e062c27f669a49bc4ac97b7efba99c1bd 70cfa507df3140a20591c6f65a174060c46d259bda542458ed7de92552bde6e2 Loading...

	#49 Eval - 55dea402cbaf5124651adc37be99ddd4	2 B	2023-03-08	2024-02-25
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2024-02-25 23:39:30 Times Seen919 Hash 55dea402cbaf5124651adc37be99ddd4 5151109ae36dabb68e589a35527bcf64e1dfe563 ee3dd1c9a98b2601b8b99733fd32e57f330597417c4c9f104c94a52c0c559498 Loading...

	#50 Eval - 45261a8036c1be59176d869a45488999	2 B	2023-03-07	2024-04-15
Pretty Observations First Seen2023-03-07 12:25:56 Last Seen2024-04-15 16:04:57 Times Seen1149 Hash 45261a8036c1be59176d869a45488999 3505a6f63211dcd6e81e553c43965c552a9de965 aaa6602d9143d264ad55c59835c126a2bb546c3e9d2cbbdfe1fb7d9d81700365 Loading...

	#51 Eval - 413bdc1610793588f5166e8aec4da233	134 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 413bdc1610793588f5166e8aec4da233 d636f662e122264c3d9c2ef43729a442c26b3553 8ff334dfdf8771dd96310123180eb94a2eda231e2e9cbb5d39a0223b5e298944 Loading...

	#52 Eval - def8593b96a4748b1a8d59f8580f37fc	269 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:03 Times Seen1 Hash def8593b96a4748b1a8d59f8580f37fc b16d9f84442ec2fc80a0103538a8d33246bd07cf b1b563fa6fd2d04e4527e13a9253a2a0d1e792a0445a0d01105bd5b0f9ec430b Loading...

	#53 Eval - 0d80d99d7f209071a284c9ab6d14accf	83 B	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-26 02:59:36 Times Seen53545 Hash 0d80d99d7f209071a284c9ab6d14accf c91e7389c28a7b35eeb114484808a20cddb8c20e 0cb21d1de060008bab472c15c63e6f15828de601f85deff00d701d26c0f6819a Loading...

	#54 Eval - 415290769594460e2e485922904f345d	1 B	2023-03-07	2024-04-22
Pretty Observations First Seen2023-03-07 01:11:47 Last Seen2024-04-22 16:59:43 Times Seen9856 Hash 415290769594460e2e485922904f345d 95cb0bfd2977c761298d9624e4b4d4c72a39974a a1fce4363854ff888cff4b8e7875d600c2682390412a8cf79b37d0b11148b0fa Loading...

	#55 Eval - 4345ed1bd9c52c31610be7c0080981c3	2 B	2023-03-08	2023-12-05
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-12-05 19:49:53 Times Seen1606 Hash 4345ed1bd9c52c31610be7c0080981c3 dcccef1c61b9892f75822537bc6ad84a598af2e9 a2f28e2b1232f081f121c15cabd72fbe38ec39643ffa241439478dac4c948f0a Loading...

	#56 Eval - 25c0ed0ce67424e1efb5bd0e6250de1f	44 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:02 Times Seen1 Hash 25c0ed0ce67424e1efb5bd0e6250de1f c22ccef89f4e6d62f372cac5022ebe797de73496 42709e01fbb3e7a0172cddd559acd52a7c7f5f68c2f6d33f221e163c9614d73d Loading...

	#57 Eval - 142da75438c9ed6fe3fe168cb2409299	123 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 142da75438c9ed6fe3fe168cb2409299 fef1b2fde32d92a2f74722464a9179b84681a919 5bfce03b1b024cb3ea9d50a8c87baee477d8e752a394a469a5b6f1dd3b0252c9 Loading...

	#58 Eval - cef920cf8d76bafac05a59cd35233358	158 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-03-13 01:02:03 Times Seen1 Hash cef920cf8d76bafac05a59cd35233358 7b3f7a42f04dec362f3d1bde6906cc766395a875 2ed8d2f36184dae08e2cee4070d4304ee623cb2d1a3bc3c98ac93c70046e4f0d Loading...

	#59 Eval - 6b8c30c563d78614a6752b5d03c541f4	2 B	2023-03-08	2024-04-25
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2024-04-25 23:29:40 Times Seen445 Hash 6b8c30c563d78614a6752b5d03c541f4 57458ef88eb1b6043d7f69f4b649b80e27369e11 ef6fba6a2fc8239bf5697ee71ebea1ae28dc653e96a2d9c781ef388dc12d96a5 Loading...

	#60 Eval - 02d66a50be6a1f6241f9e9c230d26eca	142 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 02d66a50be6a1f6241f9e9c230d26eca 8be928b7fa850d5e7be7ec9d780da7f7483f2f1d ea5803fd969b7e4e3f29bb596591748155308776b5ecb6ac4d7ed1ad74ba0d33 Loading...

	#61 Eval - d48a24ae9672ee573050e4d3aeeebe4d	29 B	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-26 02:59:36 Times Seen53251 Hash d48a24ae9672ee573050e4d3aeeebe4d 8f8c4d27852980a1ec5a8b1aba30769001314ec8 53e5b7d706a350fe98d52499058624e15cddc1541f17370f94a899a386c50255 Loading...

	#62 Eval - efc9532d35e3cb19235d8b7ec6c97fbd	29 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-03-13 01:02:03 Times Seen1 Hash efc9532d35e3cb19235d8b7ec6c97fbd ec9cc78a30b189b8c859b4f17ff4e38308c2a628 9009e8b02028b6855d68caac32bedd31f97f7e8ac9c5ed787939c8be93457f51 Loading...

	#63 Eval - 5206560a306a2e085a437fd258eb57ce	1 B	2023-03-07	2024-04-23
Pretty Observations First Seen2023-03-07 12:04:13 Last Seen2024-04-23 07:45:39 Times Seen10724 Hash 5206560a306a2e085a437fd258eb57ce c9ee5681d3c59f7541c27a38b67edf46259e187b de5a6f78116eca62d7fc5ce159d23ae6b889b365a1739ad2cf36f925a140d0cc Loading...

	#64 Eval - 707293a968e05803850c9d01b3776719	142 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 707293a968e05803850c9d01b3776719 3c37ba935fa55dea484ba5bc085f00d77f7897dc 69941c7b07a47bbf30c065938bcbeeb5a83352c2c3debaf03912a5cb0921c20b Loading...

	#65 Eval - 7ffba495f93c32fe4b5ee2845d6c9f3d	130 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 7ffba495f93c32fe4b5ee2845d6c9f3d 14d7bd9d90cd48a2392102053f06d4dd7a256082 1bfa1eb060489ff382abb868d26f5eed875097414798b71d3d5374be8f23ec48 Loading...

	#66 Eval - f9d769d7aadff9a2c0951146d91661c2	244 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-03-13 01:02:03 Times Seen1 Hash f9d769d7aadff9a2c0951146d91661c2 9ef4261aec87beeacdc49dbcbb6fee433cfff33d 6ac5eadb5c8fa762fbbbdcb7d306dcd09fb94682e27b818904d47c8ee4cba000 Loading...

	#67 Eval - 8d8b85adc4d2474a84fbca1381afb3c7	83 B	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 01:02:15 Last Seen2024-04-26 02:59:36 Times Seen39416 Hash 8d8b85adc4d2474a84fbca1381afb3c7 3815645d5a8680fd3ed4ce5a3b82f8d432448698 3eb8abc484d33a620c974de75babdd2caae4fff7dc8daad7d860dd41c93ee611 Loading...

	#68 Eval - bd4496eb0285aba06273987971f6063a	35 B	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-26 02:59:36 Times Seen38661 Hash bd4496eb0285aba06273987971f6063a 8c7d085c9d54b41debd437430b6852de7f898857 f2a353ed5469812b863c5fbeb58b4d46b864ba4e20a49f57f9c44c7cda45f46b Loading...

	#69 Eval - 37a6259cc0c1dae299a7866489dff0bd	4 B	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 01:02:14 Last Seen2024-04-26 02:59:36 Times Seen50189 Hash 37a6259cc0c1dae299a7866489dff0bd 2be88ca4242c76e8253ac62474851065032d6833 74234e98afe7498fb5daf1f36ac2d78acc339464f950703b8c019892f982b90b Loading...

	#70 Eval - 4ee4e2e038b5e7e2ded7eebdb2d17606	114 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 4ee4e2e038b5e7e2ded7eebdb2d17606 3fbd60ff6f156190713a153ab19f91f85ddfeb05 d097d2920ceb2b98a5d246455d55a8dd945ba9641c113c1fd9f00a2b82f6b761 Loading...

	#71 Eval - a8a1cc50865cc63ba9b068a76b527952	22 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-03-13 01:02:02 Times Seen1 Hash a8a1cc50865cc63ba9b068a76b527952 76338885d6c7df3f5db96f0a21429a678aaa5400 09a491d5e78780880cf74cc928c849d7c2965d9f63c26c06d3a813551599b902 Loading...

	#72 Eval - a4cd6c019448b8f9274e0b5e34ea32b8	2 B	2023-03-07	2023-09-28
Pretty Observations First Seen2023-03-07 23:17:27 Last Seen2023-09-28 08:57:44 Times Seen86 Hash a4cd6c019448b8f9274e0b5e34ea32b8 855d44ee6b7e36f7b3ce1fba18f56bf091306e27 373f02a5f2b6ade271be382f142d64274a82598fd0096a4c7df03c4fb9e96c0b Loading...

	#73 Eval - 828ff32057d30cbbce2003f6fcdb8d48	869 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 828ff32057d30cbbce2003f6fcdb8d48 f90f7883457337d7b3a6c6e91eac34e5db35d0bb d3d61bde5588789a8da3d1007ca3562aa8a3656d232049f353a63f172a0cb178 Loading...

	#74 Eval - f610fb376c5e5eeffe664ddd475029c0	22 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-03-13 01:02:03 Times Seen1 Hash f610fb376c5e5eeffe664ddd475029c0 bcf2f4a57368c6f58a6aeca5a14d6d5d7192da7d b3add7bd3c54bcdd41bee26749fcf66e3bf2cdd2094d2606b50ea783c2b75de6 Loading...

	#75 Eval - 313a5506f214244eaecee34c8b505349	77 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-03-13 01:02:02 Times Seen1 Hash 313a5506f214244eaecee34c8b505349 ec826f6f0fe785a3e91d22f36e4306e9c0d1d85b 2b256d561c456c5105ae542edb9813bee01af771d1890da8bbb83e7290af2fec Loading...

	#76 Eval - a931635074a5017da74948b67e16c76f	206 B	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 01:02:15 Last Seen2024-04-26 02:59:36 Times Seen39451 Hash a931635074a5017da74948b67e16c76f a6799582ad16a7c1ab8221c166268130df6691d2 1fb437ac78114eda813a7c4d5771b6d3aa34908a5ca3b743d5eb5c79088cf82c Loading...

	#77 Eval - e88df31e7d9381707136ac9c89fd534b	78 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:02 Times Seen1 Hash e88df31e7d9381707136ac9c89fd534b d8f6805637199cd6129d3c122f776fc5c3040400 e7fedcc3cf904097035c50e548f9671a7c94e6b5cee3ad376ef906cf4a736e52 Loading...

	#78 Eval - f471ce2335cdd9ef3a9b67d66c7968d1	460 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-03-13 01:02:02 Times Seen1 Hash f471ce2335cdd9ef3a9b67d66c7968d1 db137e2f438a86da9aab64fc391906be21a93a29 1be7ed9d836312f9f493399dd5e915a86607f7d2a2410310db15e3966b7df138 Loading...

	#79 Eval - 3f071f4f163d68551f4fc1544c7f69a6	2 B	2023-03-08	2024-04-18
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2024-04-18 05:38:32 Times Seen156 Hash 3f071f4f163d68551f4fc1544c7f69a6 fc471ce1ec61f8c7b76f85bd7169cc53c56b215c 9716536f62c81fe13e7c21c8807af96fd93f677e905e53817a0d2b72a95bcd2b Loading...

	#80 Eval - 6f8f57715090da2632453988d9a1501b	1 B	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 12:09:42 Last Seen2024-04-26 02:59:36 Times Seen7923 Hash 6f8f57715090da2632453988d9a1501b 6b0d31c0d563223024da45691584643ac78c96e8 62c66a7a5dd70c3146618063c344e531e6d4b59e379808443ce962b3abd63c5a Loading...

	#81 Eval - 02129bb861061d1a052c592e2dc6b383	1 B	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-26 01:15:57 Times Seen12316 Hash 02129bb861061d1a052c592e2dc6b383 c032adc1ff629c9b66f22749ad667e6beadf144b 4b68ab3847feda7d6c62c1fbcbeebfa35eab7351ed5e78f4ddadea5df64b8015 Loading...

	#82 Eval - 968afced9a3b7a090e20addde6a0cfc4	161 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 968afced9a3b7a090e20addde6a0cfc4 972187b1841037a1b162dc3a880820135545cfb9 e918aa89ff1dcf9c293bc8b9172a79d72a074eb2ad031fae10774efd0d7e0d58 Loading...

	#83 Eval - ebe86682666f2ab3da0843ed3097e4b3	2 B	2023-03-08	2024-04-07
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2024-04-07 21:51:52 Times Seen274 Hash ebe86682666f2ab3da0843ed3097e4b3 1389845b02c07bffd4eaa5fc2e561554ab54a18a 131ed734290d30f32aedb3548cc92b420b3760571fb0e655084b48b31043106c Loading...

	#84 Eval - 5231753af6d3eaca859c8a7317ef02aa	78 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-03-13 01:02:02 Times Seen1 Hash 5231753af6d3eaca859c8a7317ef02aa f1add0f83f7a68e8057791303283238618495c03 7c63744d455ba2cdb63d4b2872e83fb2620b9eb056d850c4186a3c134d0e67fa Loading...

	#85 Eval - 4ececb4085dd6f4bb05767e7be378837	78 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 4ececb4085dd6f4bb05767e7be378837 07215c8cd0efa1f9813cac04d2ad757a6694734f fb4dcf825bbf807189a893e129f56f83f7496d12cc70663bedecb2f6ba31bc84 Loading...

	#86 Eval - cd43ec6af614e806a0042f776cb8c9fe	106 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-03-13 01:02:03 Times Seen1 Hash cd43ec6af614e806a0042f776cb8c9fe 034388773bdfd372a2893d93662bac4e0c03cc0c 6e1ea1ca0e319927a77037286c0af81e2dfe6960085363aed135e0a6bc2fbce9 Loading...

	#87 Eval - d0679d2b966eb9bd5d05105b63c525e8	78 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-03-13 01:02:03 Times Seen1 Hash d0679d2b966eb9bd5d05105b63c525e8 360fbfceab16e5b0e8f557e900e8dcfd396d5e5c 8424f3da503e8f79d9f115dd604f9fa0455d2ed5c917c935cfe37e35ae58484d Loading...

	#88 Eval - a7740020f4619c67ee1613a36cbe3970	79 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-03-13 01:02:03 Times Seen1 Hash a7740020f4619c67ee1613a36cbe3970 b04bf5d9ae952e3a63fbb900a80ce7c0fa2a646b 4e2c9855e4c637f87885cbe8ee45978fe07e5f8e56e75235e30d8b155c08acb2 Loading...

	#89 Eval - 719a064ef9af3edf2ad15d765856490c	303 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 719a064ef9af3edf2ad15d765856490c 2476968bdb6c786821bbc79074f7be80d5061c8b 499591719cd4c34a5a9d7d3b33c54eb577d769f020e3a09aa2e10d09d138ef71 Loading...

	#90 Eval - 2654a3a2df9baff7cc9fa2823705c12a	347 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 2654a3a2df9baff7cc9fa2823705c12a db3139f26bfd13a0a852f990b780e222e26794dc dd92ef9a066d592bf579636bdf8b614a1fa5bee5267721b0049cdeda753b7974 Loading...

	#91 Eval - aa9896b6d895afe056639fd96e6f8736	658 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-03-13 01:02:03 Times Seen1 Hash aa9896b6d895afe056639fd96e6f8736 e035ddb98aa16d5010b23e89063ffca70a038a73 74e12f4cbcfc567c968193e181c13414561e007a48beeb9944dcfb613a9b4f61 Loading...

	#92 Eval - 9d0137bffa0f20d5e8e9f54f2c84cf0a	10 B	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 01:02:15 Last Seen2024-04-26 02:59:36 Times Seen33260 Hash 9d0137bffa0f20d5e8e9f54f2c84cf0a 39edf6d919f82b9692a2edfecc78427a82567c42 269d4d56785ffc82f3ed05d8ee3b84fc18d7474663ddd06c6fd285165190bb19 Loading...

	#93 Eval - 74ce2e1a498f2fa27b5542040be774dc	2 B	2023-03-08	2024-02-25
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2024-02-25 23:39:30 Times Seen849 Hash 74ce2e1a498f2fa27b5542040be774dc 547cd2ba3a17b483651496c5ba8c78f1789b5cbd b6e1288527a6032c0f29c9da2c599202cc250fb404e4783820d4ce0b09459989 Loading...

	#94 Eval - 0b48b1841bf2b209986a30f9720aafd1	2 B	2023-03-08	2023-12-02
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-12-02 08:40:22 Times Seen1412 Hash 0b48b1841bf2b209986a30f9720aafd1 c47bd3e06226c64f19c22571b7e5ae0abb5d7ef8 e75d1509b86b903f14316bbc8b9ba4ccb96f18b8543a423f24e5e869aac65097 Loading...

	#95 Eval - a0aae9f2b4fd5c82a914a9f792453a46	76 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:03 Times Seen1 Hash a0aae9f2b4fd5c82a914a9f792453a46 955815dc075ffa2c8ed1bb434819175dc56ee4c1 da94543a00b1eaa1b32f6db1c32ff067cbf49c64070a6b4356033db78ecdaf36 Loading...

	#96 Eval - 45f52639589dcaf4e252fa701959ea98	97 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 45f52639589dcaf4e252fa701959ea98 7606c22500af94ae93081362ac6fc05a644392fa 4a9b836c6b5c28d4a9737ddf9583c8d61d7bbf15c7b2a98101adee316b690422 Loading...

	#97 Eval - ca89e3c58ab66d8c4a2a1ade4bf3612d	22 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:03 Times Seen1 Hash ca89e3c58ab66d8c4a2a1ade4bf3612d c3a08511c1b21c680866ce76da17fbf7d4d36e3a 7e9869a8989f5e48f48815e77bf08714c728fdcafcd73dac5fca8fb97baee5e1 Loading...

	#98 Eval - b78749c698562fd60eaf2a4fb08aa417	651 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:03 Times Seen1 Hash b78749c698562fd60eaf2a4fb08aa417 ca8255754e29f43e6f38ea050395d5e2347871ee eab2e7971ed2ebe34c9a468b4bfad94ed2a4ec0e9b90ac728538c609715fd45f Loading...

	#99 Eval - f4095b20a8c848dc4f4b27900b4dbae4	70 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-03-13 01:02:02 Times Seen1 Hash f4095b20a8c848dc4f4b27900b4dbae4 7d23fa463b016609ef374e3fa7b1eb4dea17ddf0 32bfe3216deb73e8696fe8add9289d7b3dab5e3f7e10a6dd8d3c3f7909a0ef0a Loading...

	#100 Eval - 98cb0368081535c005f43042354615bb	53 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 98cb0368081535c005f43042354615bb 4f0eb94e589a7cb05e31e0c4c8e9aedb491baec9 71e55e640fb751adc1b242961c47f77ec37439ff664dfd7a7216083e2ce43447 Loading...

	#101 Eval - 965d4e0f277022d5ae84e7435d6b8061	118 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 965d4e0f277022d5ae84e7435d6b8061 b957c4bcc3fadbf2382d0e13e2981e9e644646f1 a2409dae7184e2a03bab425d6c8143a0cfdb5272d6560c15caf9a292a3c4442c Loading...

	#102 Eval - 8bdba81f06730a94d2a1dda4ee5f865e	76 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:02 Times Seen1 Hash 8bdba81f06730a94d2a1dda4ee5f865e b7e913fcff986563d64a6ffb76362a6e7fbeaf9c 392201c9d93937f79fa24a1a2d649037633a7f2179cc006718ea7fcecea8a8dc Loading...

	#103 Eval - 9da1ce3af7f1a1115d7180411303caf0	120 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 9da1ce3af7f1a1115d7180411303caf0 cb0cc640072b6e1a566478d0741ec6f637594eb6 89b24490dc3501b7db90bd07a46b5015ca69effcc5395b658b05f4b59897409b Loading...

	#104 Eval - 49cde6e9e7a9234967e95c13bf52a622	22 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 49cde6e9e7a9234967e95c13bf52a622 c2337b22df088223b776c4b77135131eadc76818 91be5856558dcea216d36320bae09663e5273966a5af31c51423ba7972483e46 Loading...

	#105 Eval - e1a15dd7fe3e85ec0c47944e9b853695	207 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:03 Times Seen1 Hash e1a15dd7fe3e85ec0c47944e9b853695 dff09fbed29abd68409721d8974a42688771f091 8dcfb172d954e1a92e2c7533a387f63fd385976ff8e5f60e725a2a59963832d6 Loading...

	#106 Eval - f0e976b756b6afe7f40bca206a2d7150	29 B	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 01:02:14 Last Seen2024-04-26 02:59:36 Times Seen34207 Hash f0e976b756b6afe7f40bca206a2d7150 db9bee9a7bba93a60330ec5ef1334d9c164fcd56 029b84af88c5d6ced58173997a15fa47011e198e5449027d87e2f7b871f332c2 Loading...

	#107 Eval - 267962ad4cada3ed1d5959ca5ba88f46	94 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 267962ad4cada3ed1d5959ca5ba88f46 1179eff88af9514deb6fe53c76046d6e44804b5d 19a0f3a17e546bf3f0af05a8d94bb0b681bfcd47c376bb4b9aed600ee3354b4b Loading...

	#108 Eval - 261644ee781fdb4c2ede0657fb3b0608	345 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 261644ee781fdb4c2ede0657fb3b0608 15e313223d5849e16f2c0964933d14dd318ad1fa f786263f0a1750709c7cd11381ea13265205ecc9e6b5f48119ff7667940767b7 Loading...

	#109 Eval - b5d448c73f421fe173043f89edbaa427	325 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:03 Times Seen1 Hash b5d448c73f421fe173043f89edbaa427 94813b91f67c4517203f6326457166927b32241c d20a634d79f751cd811add7b4628ad598875493c8e367f4234fe78d6926cf57a Loading...

	#110 Eval - 557ffcd961bca374efcb68ff06cff13b	571 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 557ffcd961bca374efcb68ff06cff13b 66987689117e72c33fadc083030a778a7d1c1570 fab44d9d633f198b73fd834ffb4af4480000065dbdd3114294b60e20e9d3dcb5 Loading...

	#111 Eval - eb491541c406d317d1750691a0f4b3a5	80 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-03-13 01:02:03 Times Seen1 Hash eb491541c406d317d1750691a0f4b3a5 af80ccc421360c002795fb1228588e1f7a9ec914 9388e3b7d554871aa9eff45bd56bd6c7252b533200810cc8ead86f45533c65a5 Loading...

	#112 Eval - ad57484016654da87125db86f4227ea3	2 B	2023-03-08	2024-02-17
Pretty Observations First Seen2023-03-08 14:21:58 Last Seen2024-02-17 07:46:49 Times Seen61 Hash ad57484016654da87125db86f4227ea3 1c4f0c6eb8bf8bbf11cc2ae1cdcc5c5d1f3a3c16 b84ff8057ee3a7f87deac4ae29ac59292f02e6c28f987031648011018384d888 Loading...

	#113 Eval - 42832138fa468dd4bc0adb62858b142c	216 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-03-13 01:02:03 Times Seen1 Hash 42832138fa468dd4bc0adb62858b142c 22eb9dc21f7aeb42471e0519b3049a773fab7171 b29196a9e62f04bf8da155c74f5a044df08a62530474e27ec4e82bc314efc0c0 Loading...

	#114 Eval - a78647a0d4b04979ea03bb1365ddf9ad	22 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 14:21:59 Last Seen2023-03-13 01:02:03 Times Seen1 Hash a78647a0d4b04979ea03bb1365ddf9ad 9ee60f973e038fffed76ca987fb543d7558cf10b 5d9141602af95f63768fcf8fe31a0066e5e654fd605a5e90706301ef7e0168fd Loading...

	#115 Eval - 1151f24be3c63db056f10938a42ab0ea	27 B	2023-03-07	2024-02-29
Pretty Observations First Seen2023-03-07 01:02:14 Last Seen2024-02-29 10:56:20 Times Seen35314 Hash 1151f24be3c63db056f10938a42ab0ea 5284a27f38597741e877ab31328cc8178b005676 0bc774ed3674af6aae8dd2c83bf89261e13ee293742afeda5161156a54bfc8ee Loading...

HTTP Transactions (105)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ede732d48f2c32ad5e3b899bb4348df9
15fa12733818b3ae39f3022a715ed0f431b28242
446c9bf6bc38a43f5758f6f44f89ad76eff44eb8779cf7e62bbfeb002b298dee

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "446C9BF6BC38A43F5758F6F44F89AD76EFF44EB8779CF7E62BBFEB002B298DEE"
Last-Modified: Thu, 22 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3729
Expires: Sat, 24 Dec 2022 05:32:07 GMT
Date: Sat, 24 Dec 2022 04:29:58 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d6a971d765338f107fe9d2c67fa4bbdf
a72bdf191446a37fa0420cc9d7c087aaff757cd6
dc5291c136b0b81621a02679a31f6b7c852e2803429d54c2a9afcc8edf031328

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DC5291C136B0B81621A02679A31F6B7C852E2803429D54C2A9AFCC8EDF031328"
Last-Modified: Thu, 22 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14912
Expires: Sat, 24 Dec 2022 08:38:30 GMT
Date: Sat, 24 Dec 2022 04:29:58 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 24 Dec 2022 03:34:49 GMT
content-type: application/json
age: 3309
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f7f0ad5c2841a345f98197c2f1e86f4d
84cbfd91934a8715baba4a2da46451f35597c99c
be30540f2e06a3565c9b38bdbb9691f707d692b196bdcef5d671708aa9609795

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BE30540F2E06A3565C9B38BDBB9691F707D692B196BDCEF5D671708AA9609795"
Last-Modified: Thu, 22 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14439
Expires: Sat, 24 Dec 2022 08:30:37 GMT
Date: Sat, 24 Dec 2022 04:29:58 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: T+5O9Sh2u4baG2p1SK/ia6Z5WAeRU3CEcLmEkkWXXyD8WRpQejckG3O4bmn+E/28PfSLC8/y8vs=
x-amz-request-id: 93VS2WR45YV7NQK4
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 24 Dec 2022 03:56:27 GMT
age: 2011
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 24 Dec 2022 04:29:58 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, ETag, Pragma, Last-Modified, Expires, Alert, Content-Type, Retry-After, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 24 Dec 2022 03:33:25 GMT
age: 3394
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

baobabsports.com/

192.185.129.121

200 OK

35 kB

URL HTTP/1.1
baobabsports.com/
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (50392), with CRLF, LF line terminators
Size
35 kB (34680 bytes)
Hash
e23769172efc18cf7a3074d20c8ea221
e87a044ca6ad0750723ab4550b83fca804624cac
6e3cb0bd9711365b358686cbb7a366cddf4cea5c279049e64bbcc97e57d4632f

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 04:29:55 GMT
Server: nginx/1.21.6
Content-Type: text/html; charset=UTF-8
Link: <https://baobabsports.com/index.php?rest_route=/>; rel="https://api.w.org/", <https://baobabsports.com/index.php?rest_route=/wp/v2/pages/15>; rel="alternate"; type="application/json", <https://baobabsports.com/>; rel=shortlink
Vary: Accept-Encoding
Content-Encoding: gzip
X-Server-Cache: true
X-Proxy-Cache: EXPIRED
Transfer-Encoding: chunked

baobabsports.com/wp-content/themes/astra/assets/css/minified/frontend.min.css?ver=3.9.4

192.185.129.121

200 OK

13 kB

URL HTTP/1.1
baobabsports.com/wp-content/themes/astra/assets/css/minified/frontend.min.css?ver=3.9.4
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (44191)
Size
13 kB (12828 bytes)
Hash
98435100842b30708842c7f10ee8048c
0b37dfb718e6253b9c67e87a865df4bb09bc1f1a
120a983755e3ad1ffa10f34ee1aeb0d7b4ff2c36fb106f1674a7274cf68d27fa

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/astra/assets/css/minified/frontend.min.css?ver=3.9.4 HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baobabsports.com/

HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 04:29:59 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Wed, 21 Dec 2022 05:30:41 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 12828
Content-Type: text/css

baobabsports.com/wp-content/themes/astra/assets/css/minified/menu-animation.min.css?ver=3.9.4

192.185.129.121

200 OK

468 B

URL HTTP/1.1
baobabsports.com/wp-content/themes/astra/assets/css/minified/menu-animation.min.css?ver=3.9.4
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (3412), with no line terminators
Size
468 B (468 bytes)
Hash
f88a6a529851c8ed1ffe2bd83219e490
597ff167b702900ee4473e31e390808b8de95664
ae20c6ea52a0534fdda58a7ae13839ac66194434406e00a3bb5f4538f9909886

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/astra/assets/css/minified/menu-animation.min.css?ver=3.9.4 HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baobabsports.com/

HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 04:29:59 GMT
Server: Apache
Last-Modified: Wed, 21 Dec 2022 05:30:41 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 468
Content-Type: text/css

baobabsports.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1

192.185.129.121

200 OK

5.3 kB

URL HTTP/1.1
baobabsports.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (15660)
Size
5.3 kB (5321 bytes)
Hash
710f8b142ea44c0682dc2c30f318f065
49144e9b3a76d3d383b1d4359cf7a25e947f4233
708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baobabsports.com/

HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 04:29:59 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Tue, 12 Apr 2022 11:26:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5321
Content-Type: application/javascript

baobabsports.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1

192.185.129.121

200 OK

18 kB

URL HTTP/1.1
baobabsports.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (47826)
Size
18 kB (17667 bytes)
Hash
9415c9562591af7a582c29139621505f
0b12eecf36a48b871a3198550f4f65bb4a6d9b1b
06c70d3232c2ae3ed2aa259eb7a1beb329b654926813935fffa8902cd5ebaa4a

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baobabsports.com/

HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 04:29:59 GMT
Server: Apache
Last-Modified: Fri, 11 Nov 2022 20:26:46 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
dc2725df0fb812e32298bb7faaf0c231
4ce4ac649b05b8eedab5bda51f4baf5f98417689
1a60eb1f9b71718c2061dfeb9de8241bef6fecab5d48adbc8ce3a89d1dddb8f5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Dec 2022 04:29:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
dc2725df0fb812e32298bb7faaf0c231
4ce4ac649b05b8eedab5bda51f4baf5f98417689
1a60eb1f9b71718c2061dfeb9de8241bef6fecab5d48adbc8ce3a89d1dddb8f5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Dec 2022 04:29:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
c615c937e6371bda0824b44af0c21c74
b097d69452bcc60085f563d094388185c26f0e7d
9f1194921b5d57dd52a217a47e69ad4cec7c08378c73c8dfccc3817119fcbb41

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1611
Cache-Control: max-age=104619
Content-Type: application/ocsp-response
Date: Sat, 24 Dec 2022 04:29:59 GMT
Etag: "63a56fa7-1d7"
Expires: Sun, 25 Dec 2022 09:33:38 GMT
Last-Modified: Fri, 23 Dec 2022 09:06:47 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

baobabsports.com/wp-content/plugins/preloader-plus/assets/css/preloader-plus.min.css?ver=2.2.1

192.185.129.121

200 OK

573 B

URL HTTP/1.1
baobabsports.com/wp-content/plugins/preloader-plus/assets/css/preloader-plus.min.css?ver=2.2.1
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (1440), with no line terminators
Size
573 B (573 bytes)
Hash
445642da9cbbb60a25d385037f6d895c
a03244d52035df95cca85c34d7db5af627a7ed84
f0d4d1c5cb92ecc187e7c9d204a430cdaa3b87cefa75e16899f73ef7b1ca2733

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/preloader-plus/assets/css/preloader-plus.min.css?ver=2.2.1 HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baobabsports.com/

HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 04:29:59 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Fri, 23 Dec 2022 07:01:08 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 573
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
dc2725df0fb812e32298bb7faaf0c231
4ce4ac649b05b8eedab5bda51f4baf5f98417689
1a60eb1f9b71718c2061dfeb9de8241bef6fecab5d48adbc8ce3a89d1dddb8f5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Dec 2022 04:29:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

baobabsports.com/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13

192.185.129.121

200 OK

323 B

URL HTTP/1.1
baobabsports.com/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
323 B (323 bytes)
Hash
b24c24b7da3ffeed6ae8ade102a4d317
c4445b3977ce704b927508108e100213eea67a3c
5421ad49b70f379553eaceec744d753e74d4b065966c08aa7c7dd949553ca9a8

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13 HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baobabsports.com/

HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 04:29:59 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Wed, 21 Dec 2022 05:41:41 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 323
Content-Type: text/css

baobabsports.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0

192.185.129.121

200 OK

4.0 kB

URL HTTP/1.1
baobabsports.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (19233)
Size
4.0 kB (4008 bytes)
Hash
2701214b028ad24fa347df8335b36d12
156bc8a7ad2657f00881890637f07c6052636499
9a6e62615ceeec7a9763e4f9614e4715d04fd87873b23db2b3ead06c996cad27

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baobabsports.com/

HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 04:29:59 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Tue, 20 Dec 2022 17:12:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4008
Content-Type: text/css

baobabsports.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.9.1

192.185.129.121

200 OK

18 kB

URL HTTP/1.1
baobabsports.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.9.1
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (65497)
Size
18 kB (17892 bytes)
Hash
06c41d8bd3678eac73e153ab0cef9537
899c5a76537d359b981424e0bf11d97f23620638
d425d4c265f00832cb61a38eede46f15ad73c20715051fa169b36c221636fdb7

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.9.1 HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baobabsports.com/

HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 04:29:59 GMT
Server: Apache
Last-Modified: Tue, 20 Dec 2022 17:12:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: text/css

baobabsports.com/wp-content/uploads/elementor/css/post-778.css?ver=1671782170

192.185.129.121

200 OK

358 B

URL HTTP/1.1
baobabsports.com/wp-content/uploads/elementor/css/post-778.css?ver=1671782170
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (1101), with no line terminators
Size
358 B (358 bytes)
Hash
f4d49a0835359d52119124868178d039
9dce15ce565280097f7baf1d0f64877def408100
f8a3816b32cf996eacceee49738dc7dabd7dd79bb658fb06abb7fdf7e5066683

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/post-778.css?ver=1671782170 HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baobabsports.com/

HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 04:29:59 GMT
Server: Apache
Last-Modified: Fri, 23 Dec 2022 07:56:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 358
Content-Type: text/css

baobabsports.com/wp-content/uploads/elementor/css/post-15.css?ver=1671784650

192.185.129.121

200 OK

3.4 kB

URL HTTP/1.1
baobabsports.com/wp-content/uploads/elementor/css/post-15.css?ver=1671784650
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (15466), with no line terminators
Size
3.4 kB (3380 bytes)
Hash
9f381bfd5b483fdb1173502b2b41174a
d93b062e58559a8f2d8b3b54231f3c779ba1e2f4
dac80d410f614fcb204b4f44ce53e15e3d8ddf0baac3a6efb8065e871784b6f6

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/post-15.css?ver=1671784650 HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baobabsports.com/

HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 04:29:59 GMT
Server: Apache
Last-Modified: Fri, 23 Dec 2022 08:37:30 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3380
Content-Type: text/css

push.services.mozilla.com/

54.149.149.164

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.149.149.164:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: RH4ZGk+qtvVLBzKOebH+Ew==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: OsfVClbLy9kpnhTUqb4ljaTWkMI=

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
996d1e75df18f927e75dd110dd97c517
7b8163f828ead7df7fb4e0a41219480652a4bba2
8ae6334248c8cd45b6a556700c89c026bfb4ab40c7cf04a4e4b227347e51a2ca

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8AE6334248C8CD45B6A556700C89C026BFB4AB40C7CF04A4E4B227347E51A2CA"
Last-Modified: Wed, 21 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12412
Expires: Sat, 24 Dec 2022 07:56:51 GMT
Date: Sat, 24 Dec 2022 04:29:59 GMT
Connection: keep-alive

baobabsports.com/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13

192.185.129.121

200 OK

12 kB

URL HTTP/1.1
baobabsports.com/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 text, with very long lines (1646)
Size
12 kB (11654 bytes)
Hash
e56098a703c5beb99abc9c3a870be594
76e54634e0628ab91310c760d619360151e26be1
0eb4438e57550f2c2a321d45a5cb1c92fb22d58f6dbcc9c189fc3bd1e4f78b8f

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13 HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baobabsports.com/

HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 04:29:59 GMT
Server: Apache
Last-Modified: Wed, 21 Dec 2022 05:41:41 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11654
Content-Type: text/css

baobabsports.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3

192.185.129.121

200 OK

309 B

URL HTTP/1.1
baobabsports.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (483)
Size
309 B (309 bytes)
Hash
0ea43e394ddaae5fdb710dbbc8869e58
3b0c93adc80720236096201db5cc2751e703996d
85225fffa21a94bfd954393d7471069ab227b98fd8b51cb5ab4af5488168a34e

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baobabsports.com/

HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 04:29:59 GMT
Server: Apache
Last-Modified: Tue, 20 Dec 2022 17:12:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 309
Content-Type: text/css

baobabsports.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3

192.185.129.121

200 OK

308 B

URL HTTP/1.1
baobabsports.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (489)
Size
308 B (308 bytes)
Hash
0a08469d24387f830bbaaa00b3c228ae
01f5dfeb8f93a32c9a8f66fe5940758109771fcd
3c7c29e5fc1193ff7ce24f72f77b2dc129e1a9434a97ef7b625f6f715531803c

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baobabsports.com/

HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 04:29:59 GMT
Server: Apache
Last-Modified: Tue, 20 Dec 2022 17:12:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 308
Content-Type: text/css

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
403a3eb06518b6eda121db6f62459440
fd051f2db3dd842e14a7b8e833f046c911472faa
84f3b4a5ec3c4f7e4656a983824cd93af77a9be3efa936fee60f4eb969f92db3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "84F3B4A5EC3C4F7E4656A983824CD93AF77A9BE3EFA936FEE60F4EB969F92DB3"
Last-Modified: Thu, 22 Dec 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21593
Expires: Sat, 24 Dec 2022 10:29:52 GMT
Date: Sat, 24 Dec 2022 04:29:59 GMT
Connection: keep-alive

baobabsports.com/wp-content/uploads/elementor/css/post-317.css?ver=1671782170

192.185.129.121

200 OK

2.5 kB

URL HTTP/1.1
baobabsports.com/wp-content/uploads/elementor/css/post-317.css?ver=1671782170
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (13097), with no line terminators
Size
2.5 kB (2535 bytes)
Hash
5e7e0bf2389ff6c52712e2fda2d50f7f
b0aae7fa2725b9de73a3e336d10ddfc01be32084
42435b6dc51aca97548d0d1850d3effb2074ea8ddea63d2bd309c316ce993578

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/post-317.css?ver=1671782170 HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baobabsports.com/

HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 04:29:59 GMT
Server: Apache
Last-Modified: Fri, 23 Dec 2022 07:56:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2535
Content-Type: text/css

baobabsports.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3

192.185.129.121

200 OK

13 kB

URL HTTP/1.1
baobabsports.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (57726)
Size
13 kB (12577 bytes)
Hash
dc63c0a8e2d5857cc7a00a4b5456dabb
ee29df5eb2a4bf3eb805b160551c1afd84b42599
035ef40b1dd3df1eefb2dd3c8c2096425727fb939b06f3aa0bc6ef91dafd5441

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baobabsports.com/

HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 04:29:59 GMT
Server: Apache
Last-Modified: Tue, 20 Dec 2022 17:12:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 12577
Content-Type: text/css

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
996d1e75df18f927e75dd110dd97c517
7b8163f828ead7df7fb4e0a41219480652a4bba2
8ae6334248c8cd45b6a556700c89c026bfb4ab40c7cf04a4e4b227347e51a2ca

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8AE6334248C8CD45B6A556700C89C026BFB4AB40C7CF04A4E4B227347E51A2CA"
Last-Modified: Wed, 21 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21536
Expires: Sat, 24 Dec 2022 10:28:55 GMT
Date: Sat, 24 Dec 2022 04:29:59 GMT
Connection: keep-alive

baobabsports.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1

192.185.129.121

200 OK

39 kB

URL HTTP/1.1
baobabsports.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (65447)
Size
39 kB (39153 bytes)
Hash
32f58a61f7c5a7e10f8b2dcf8e9a8e34
865c25589283ab1debd45bdfa6c4d8c6ecf15ad3
481cb2216fbdb0797af8c61b69c0bda2c10d025f7b11f2cdfac382d35dc45d63

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baobabsports.com/

HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 04:29:59 GMT
Server: Apache
Last-Modified: Mon, 19 Sep 2022 19:46:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: application/javascript

baobabsports.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

192.185.129.121

200 OK

4.6 kB

URL HTTP/1.1
baobabsports.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (11126)
Size
4.6 kB (4618 bytes)
Hash
acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baobabsports.com/

HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 04:29:59 GMT
Server: Apache
Last-Modified: Wed, 18 Nov 2020 14:36:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4618
Content-Type: application/javascript

baobabsports.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.9.1

192.185.129.121

200 OK

3.0 kB

URL HTTP/1.1
baobabsports.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.9.1
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (10019)
Size
3.0 kB (2997 bytes)
Hash
c2b5af6052f630a96e450e5e2a3cea52
00ca76a8828a1bbec1534eb10786804fd36492f2
58f6cc2d4fa3e528622102975fb62949dc0170bd47b588a67318d18552a57d59

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.9.1 HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baobabsports.com/

HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 04:29:59 GMT
Server: Apache
Last-Modified: Tue, 20 Dec 2022 17:12:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2997
Content-Type: text/css

baobabsports.com/wp-content/plugins/preloader-plus//assets/js/preloader-plus.min.js?ver=2.2.1

192.185.129.121

200 OK

561 B

URL HTTP/1.1
baobabsports.com/wp-content/plugins/preloader-plus//assets/js/preloader-plus.min.js?ver=2.2.1
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (1130)
Size
561 B (561 bytes)
Hash
90d6e2311b1d130feb2113378e86600f
b728fa2f02f3bcb4348b1c41074c816911462b8c
ff5f4d7b4b7c6f83ce90e33f4a3cb00733f687bc6f4e1c7b4b5bc66906eddc0a

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/preloader-plus//assets/js/preloader-plus.min.js?ver=2.2.1 HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baobabsports.com/

HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 04:29:59 GMT
Server: Apache
Last-Modified: Fri, 23 Dec 2022 07:01:08 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 561
Content-Type: application/javascript

baobabsports.com/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.9.4

192.185.129.121

200 OK

5.6 kB

URL HTTP/1.1
baobabsports.com/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.9.4
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (16935), with no line terminators
Size
5.6 kB (5649 bytes)
Hash
a78183fdd6c2052aae66fdfa441cd9e3
a0f5511451ded6205fad27309cab6813a281ce47
9efd1dd9d939bf979383f67bc0ab30cc64150f1d08050cd240fc1bb8fcc0b9e3

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.9.4 HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baobabsports.com/

HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 04:29:59 GMT
Server: Apache
Last-Modified: Wed, 21 Dec 2022 05:30:41 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5649
Content-Type: application/javascript

baobabsports.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.9.1

192.185.129.121

200 OK

2.3 kB

URL HTTP/1.1
baobabsports.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.9.1
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (4918)
Size
2.3 kB (2313 bytes)
Hash
0349166bce12c166ba452b877e6293db
78441d9b65a0462a334db97089304fef4cd15034
e6ae763f6276cb345881aca20177c69d4f37147b02ce5f9a89e2c694c5ccc926

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.9.1 HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baobabsports.com/

HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 04:29:59 GMT
Server: Apache
Last-Modified: Tue, 20 Dec 2022 17:12:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2313
Content-Type: application/javascript

baobabsports.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.9.1

192.185.129.121

200 OK

13 kB

URL HTTP/1.1
baobabsports.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.9.1
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 text, with very long lines (31482)
Size
13 kB (12649 bytes)
Hash
968f39d977b08b6353c69d8265620bcd
a89930da20bac547f36c35eea7925a3bf988d803
180b9a1c272d7733a6af24a38f1f41755aabcee21d36db18c02145af1bc30804

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.9.1 HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baobabsports.com/

HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 04:29:59 GMT
Server: Apache
Last-Modified: Tue, 20 Dec 2022 17:12:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 12649
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b9643a377daeefa9e867de25d84d90a4
7ab8aade6752606edfa9a6e68248fdbdca76dae8
0265378147b5eaa4ad2c4f570790b2b71b1abe8386e674c565bf0885396c04d0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Dec 2022 04:30:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b9643a377daeefa9e867de25d84d90a4
7ab8aade6752606edfa9a6e68248fdbdca76dae8
0265378147b5eaa4ad2c4f570790b2b71b1abe8386e674c565bf0885396c04d0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Dec 2022 04:30:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/candal/v15/XoHn2YH6T7-t_8c9BhQI.woff2

216.58.207.227

200 OK

12 kB

URL HTTP/2
fonts.gstatic.com/s/candal/v15/XoHn2YH6T7-t_8c9BhQI.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 11796, version 1.0\012- data
Size
12 kB (11796 bytes)
Hash
16db5010d54843a8e3a79badbbae3e77
8748c792a157fa467ccdbd8ba56fee1f5c3ff820
b15111cc66f3435add60217e85003e1e15573f03522918e21d1d888fd8b9d83b

HTTP Headers

GET /s/candal/v15/XoHn2YH6T7-t_8c9BhQI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://baobabsports.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11796
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 23 Dec 2022 13:34:32 GMT
expires: Sat, 23 Dec 2023 13:34:32 GMT
cache-control: public, max-age=31536000
age: 53728
last-modified: Thu, 21 Apr 2022 16:57:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b9643a377daeefa9e867de25d84d90a4
7ab8aade6752606edfa9a6e68248fdbdca76dae8
0265378147b5eaa4ad2c4f570790b2b71b1abe8386e674c565bf0885396c04d0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Dec 2022 04:30:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b9643a377daeefa9e867de25d84d90a4
7ab8aade6752606edfa9a6e68248fdbdca76dae8
0265378147b5eaa4ad2c4f570790b2b71b1abe8386e674c565bf0885396c04d0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Dec 2022 04:30:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2

216.58.207.227

200 OK

23 kB

URL HTTP/2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Size
23 kB (23040 bytes)
Hash
de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49

HTTP Headers

GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://baobabsports.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 23 Dec 2022 13:33:12 GMT
expires: Sat, 23 Dec 2023 13:33:12 GMT
cache-control: public, max-age=31536000
age: 53808
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

baobabsports.com/wp-content/uploads/2020/12/onlinelogomaker-011820-1403-4295-1-300x138.png

192.185.129.121

200 OK

12 kB

URL HTTP/2
baobabsports.com/wp-content/uploads/2020/12/onlinelogomaker-011820-1403-4295-1-300x138.png
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 300 x 138, 8-bit/color RGBA, non-interlaced\012- data
Size
12 kB (12486 bytes)
Hash
516f308b401a57793317496e325f8519
89797fe9d6c6bdfb5e19150de2c6bb7efa350cec
4c9e84a0cc891bc49e3b50466d9dbe7b3c72e740ec343c5bb83f802dd2528834

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2020/12/onlinelogomaker-011820-1403-4295-1-300x138.png HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://baobabsports.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 23 Dec 2022 07:13:20 GMT
accept-ranges: bytes
content-length: 12486
content-type: image/png
date: Sat, 24 Dec 2022 04:29:59 GMT
server: Apache
X-Firefox-Spdy: h2

baobabsports.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2

192.185.129.121

200 OK

3.7 kB

URL HTTP/1.1
baobabsports.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (12198), with no line terminators
Size
3.7 kB (3747 bytes)
Hash
e2a8decccf4d0a6b925af707a36077a9
26a0febc9c3d91e75410f74b9ec62099ba1cbe90
09e0e638a6f53c0fdcfeeb8ae91f3a404bef47b471324e335e29be14a2aa87f7

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baobabsports.com/

HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 04:30:00 GMT
Server: Apache
Last-Modified: Tue, 20 Dec 2022 17:12:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3747
Content-Type: application/javascript

fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2

216.58.207.227

200 OK

24 kB

URL HTTP/2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Size
24 kB (23580 bytes)
Hash
e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537

HTTP Headers

GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://baobabsports.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 23 Dec 2022 13:33:12 GMT
expires: Sat, 23 Dec 2023 13:33:12 GMT
cache-control: public, max-age=31536000
age: 53808
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/heebo/v21/NGSpv5_NC0k9P_v6ZUCbLRAHxK1EuyysdUmm.woff2

216.58.207.227

200 OK

10 kB

URL HTTP/2
fonts.gstatic.com/s/heebo/v21/NGSpv5_NC0k9P_v6ZUCbLRAHxK1EuyysdUmm.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 10364, version 1.0\012- data
Size
10 kB (10364 bytes)
Hash
c0ac2d60f54a7cb65d5606bdb7330f6d
97e222d8c78bad7676f075b42a866c067a331e3c
9ffb7d5a1b114ac98ab222d743f0629a17464e74258163fbe074df800c747bc3

HTTP Headers

GET /s/heebo/v21/NGSpv5_NC0k9P_v6ZUCbLRAHxK1EuyysdUmm.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://baobabsports.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10364
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 18 Dec 2022 03:23:48 GMT
expires: Mon, 18 Dec 2023 03:23:48 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 20:30:30 GMT
content-type: font/woff2
age: 522372
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

baobabsports.com/wp-content/uploads/2022/12/green-nature-illustration-logo-template-social-media-1.png

192.185.129.121

200 OK

13 kB

URL HTTP/2
baobabsports.com/wp-content/uploads/2022/12/green-nature-illustration-logo-template-social-media-1.png
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced\012- data
Size
13 kB (12588 bytes)
Hash
2fe575ceddd36e14457e0bc289c2a7de
801ea07e899e1e938fe4a3f8d5d55c1d5b1a3222
50717aa84c2c888fd213e64347aa04c5aa224dab05e48845c4303053870360a4

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/12/green-nature-illustration-logo-template-social-media-1.png HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://baobabsports.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 23 Dec 2022 07:12:23 GMT
accept-ranges: bytes
content-length: 12588
content-type: image/png
date: Sat, 24 Dec 2022 04:29:59 GMT
server: Apache
X-Firefox-Spdy: h2

baobabsports.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css

192.185.129.121

200 OK

1.4 kB

URL HTTP/2
baobabsports.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (9804)
Size
1.4 kB (1441 bytes)
Hash
f336f99ba218dca7699a645928b5a7e5
66acb696687075a1cdb721a6649274648ae6b31f
b158bc556cfc1b01d5704eab90c0fce441465806df07ec76621a7d32b12fa3d0

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/widget-icon-list.min.css HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://baobabsports.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Tue, 20 Dec 2022 17:12:56 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1441
content-type: text/css
date: Sat, 24 Dec 2022 04:29:59 GMT
server: Apache
X-Firefox-Spdy: h2

baobabsports.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2

192.185.129.121

200 OK

8.3 kB

URL HTTP/1.1
baobabsports.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 text, with very long lines (8189)
Size
8.3 kB (8344 bytes)
Hash
838560e989767f2ef5951b9eeee20352
6bf8419cb4d68d9beced9e4b79b22b347ae16a46
72e6d275c5229613a59aef94523fc6a96330553976aee003d8544d5806fa0c3d

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baobabsports.com/

HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 04:30:00 GMT
Server: Apache
Last-Modified: Sat, 24 Sep 2022 01:25:30 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8344
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b9643a377daeefa9e867de25d84d90a4
7ab8aade6752606edfa9a6e68248fdbdca76dae8
0265378147b5eaa4ad2c4f570790b2b71b1abe8386e674c565bf0885396c04d0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Dec 2022 04:30:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

baobabsports.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.9.1

192.185.129.121

200 OK

16 kB

URL HTTP/1.1
baobabsports.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.9.1
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (40657)
Size
16 kB (16214 bytes)
Hash
6e66ba744c8512cfc7736a05460b01b7
5ce8e02e7bff6abd9b94d9d2a803b264f2a1958b
e8bf5a61dfaf2d7e0430c887849a7641cc8d1e4d98629e606e37ad3aff7ffbba

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.9.1 HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baobabsports.com/

HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 04:30:00 GMT
Server: Apache
Last-Modified: Tue, 20 Dec 2022 17:12:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 16214
Content-Type: application/javascript

baobabsports.com/wp-includes/js/underscore.min.js?ver=1.13.4

192.185.129.121

200 OK

8.3 kB

URL HTTP/1.1
baobabsports.com/wp-includes/js/underscore.min.js?ver=1.13.4
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (18798)
Size
8.3 kB (8305 bytes)
Hash
ac9c7baaab74ef2576932d5798161987
fa202113e12b09696788a7024984879bddd29143
c03d52f8f157e9209646e3e696e9845d7d2b3cf3e73c8204f371b7393e738026

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baobabsports.com/

HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 04:30:00 GMT
Server: Apache
Last-Modified: Tue, 27 Sep 2022 20:48:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8305
Content-Type: application/javascript

baobabsports.com/wp-includes/js/wp-util.min.js?ver=6.1.1

192.185.129.121

200 OK

758 B

URL HTTP/1.1
baobabsports.com/wp-includes/js/wp-util.min.js?ver=6.1.1
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (1391)
Size
758 B (758 bytes)
Hash
60bc75e3b14030c62d9fd3a3d317d8a8
6d919bbd05a3984a8e5e67b693e6d5d41cc885f9
e22df84be1a3ffe3b54352a4a39e14adb3fac69f2ce755e4c7babbc243c5bb4b

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/wp-util.min.js?ver=6.1.1 HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baobabsports.com/

HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 04:30:00 GMT
Server: Apache
Last-Modified: Tue, 20 Sep 2022 09:22:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 758
Content-Type: application/javascript

baobabsports.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8

192.185.129.121

200 OK

374 B

URL HTTP/1.1
baobabsports.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (754), with no line terminators
Size
374 B (374 bytes)
Hash
ef785f463505633971eae5c08ad626d4
624e22257f386801822229db3a4bbd2e24b25e2f
b2a0dc77f0f79d81698a7e3893e16ecba7b0d980b80a5233656d9b11f1d8160d

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8 HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baobabsports.com/

HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 04:30:00 GMT
Server: Apache
Last-Modified: Sun, 11 Dec 2022 09:51:31 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 374
Content-Type: application/javascript

baobabsports.com/wp-content/uploads/2020/12/covid19-blue-circle-bg.svg

192.185.129.121

200 OK

401 B

URL HTTP/2
baobabsports.com/wp-content/uploads/2020/12/covid19-blue-circle-bg.svg
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (401), with no line terminators
Size
401 B (401 bytes)
Hash
f7e4dc991b2d76a77a92d327f44dd7c1
2a6dbb3c47d80371f1f6a84a536150b032ad63a2
43db6a9e0cc1cf91f559957bc9d5c240580c50feca9f78ad2c981040e3df1d95

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2020/12/covid19-blue-circle-bg.svg HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://baobabsports.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Dec 2022 06:06:32 GMT
accept-ranges: bytes
content-length: 401
content-type: image/svg+xml
date: Sat, 24 Dec 2022 04:30:00 GMT
server: Apache
X-Firefox-Spdy: h2

baobabsports.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2

192.185.129.121

200 OK

78 kB

URL HTTP/1.1
baobabsports.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Size
78 kB (78196 bytes)
Hash
e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://baobabsports.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3

HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 04:30:00 GMT
Server: Apache
Last-Modified: Tue, 20 Dec 2022 17:12:56 GMT
Accept-Ranges: bytes
Content-Length: 78196
Content-Type: font/woff2

baobabsports.com/wp-content/uploads/2020/12/covid19-cta-green-circle-bg.svg

192.185.129.121

200 OK

346 B

URL HTTP/2
baobabsports.com/wp-content/uploads/2020/12/covid19-cta-green-circle-bg.svg
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (346), with no line terminators
Size
346 B (346 bytes)
Hash
f2a6c544dec771808237aa30f551dd9a
5a5adccf1c8281347a7d38152fa0946a04da08ad
6ae7aae6a500313b8818f714d4923f103814d78e8dd2907ba22a16ece6ba2e21

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2020/12/covid19-cta-green-circle-bg.svg HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://baobabsports.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Dec 2022 06:06:32 GMT
accept-ranges: bytes
content-length: 346
content-type: image/svg+xml
date: Sat, 24 Dec 2022 04:30:00 GMT
server: Apache
X-Firefox-Spdy: h2

baobabsports.com/wp-content/uploads/2020/12/onlinelogomaker-011820-1403-4295-1-120x55.png

192.185.129.121

200 OK

3.9 kB

URL HTTP/2
baobabsports.com/wp-content/uploads/2020/12/onlinelogomaker-011820-1403-4295-1-120x55.png
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 120 x 55, 8-bit/color RGBA, non-interlaced\012- data
Size
3.9 kB (3946 bytes)
Hash
87012b357c548f8106d4aca7f2f1c93b
e69ba319e9d919c01019c4167e36680b07621979
8ed687429a6b31ecd0b63922a3ea3e71a53be8d31a8625fd2f7e37354f5b93d3

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2020/12/onlinelogomaker-011820-1403-4295-1-120x55.png HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://baobabsports.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 23 Dec 2022 07:13:20 GMT
accept-ranges: bytes
content-length: 3946
content-type: image/png
date: Sat, 24 Dec 2022 04:30:00 GMT
server: Apache
X-Firefox-Spdy: h2

baobabsports.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2

192.185.129.121

200 OK

77 kB

URL HTTP/1.1
baobabsports.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Size
77 kB (76764 bytes)
Hash
f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://baobabsports.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3

HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 04:30:00 GMT
Server: Apache
Last-Modified: Tue, 20 Dec 2022 17:12:56 GMT
Accept-Ranges: bytes
Content-Length: 76764
Content-Type: font/woff2

baobabsports.com/wp-content/uploads/2022/12/kid_football_330.webp

192.185.129.121

200 OK

23 kB

URL HTTP/2
baobabsports.com/wp-content/uploads/2022/12/kid_football_330.webp
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 456x684, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
23 kB (23406 bytes)
Hash
6197ed9ac4acc176246d71811c14ae2f
1e9f2d0cb98b437d1a8bf39e8b66ed3fa8ed5186
34753e8e0134eae65a5306f117e0074f55a21daaafcbce258cc77f1d7b232f86

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/12/kid_football_330.webp HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://baobabsports.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 24 Dec 2022 04:30:00 GMT
server: Apache
content-type: image/webp
content-length: 23406
last-modified: Thu, 22 Dec 2022 07:49:27 GMT
x-server-cache: true
x-proxy-cache: EXPIRED
accept-ranges: bytes
X-Firefox-Spdy: h2

baobabsports.com/wp-content/plugins/elementor/assets/js/video.d86bfd0676264945e968.bundle.min.js

192.185.129.121

200 OK

1.5 kB

URL HTTP/1.1
baobabsports.com/wp-content/plugins/elementor/assets/js/video.d86bfd0676264945e968.bundle.min.js
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (3459)
Size
1.5 kB (1506 bytes)
Hash
a774a97fb55ce0e366883d6320dda09b
5ce90ed1674099761c157fa033820ddeeb426a43
fd9d249ccc059fa08009e05cb8db51b9f1bc621545c9fcb30b6b6f6cfe21b2b0

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/video.d86bfd0676264945e968.bundle.min.js HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baobabsports.com/

HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 04:30:00 GMT
Server: Apache
Last-Modified: Tue, 20 Dec 2022 17:12:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1506
Content-Type: application/javascript

baobabsports.com/wp-content/uploads/2020/12/kids-png-8.png

192.185.129.121

200 OK

84 kB

URL HTTP/2
baobabsports.com/wp-content/uploads/2020/12/kids-png-8.png
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 320 x 320, 8-bit/color RGBA, non-interlaced\012- data
Size
84 kB (84228 bytes)
Hash
c2c7e623d55aee7d2c0137c62af3dd1d
1891c2e61e56c10351881fa3101f8352781a6238
4d212573fbf924ba3eca18c1fb00b6521795044e86ac568c92529e187e9578fc

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2020/12/kids-png-8.png HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://baobabsports.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Dec 2022 06:17:42 GMT
accept-ranges: bytes
content-length: 84228
content-type: image/png
date: Sat, 24 Dec 2022 04:30:00 GMT
server: Apache
X-Firefox-Spdy: h2

baobabsports.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js

192.185.129.121

200 OK

671 B

URL HTTP/1.1
baobabsports.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (1320)
Size
671 B (671 bytes)
Hash
1df6dd14f4b536b105d44b4695df8f27
9aba700c7f16aa91b1e230801af4d880f465d716
32600e03ec238dc3067e1df57a900b378b6db21e0b5ff0728669e909f7f605cb

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baobabsports.com/

HTTP/1.1 200 OK
Date: Sat, 24 Dec 2022 04:30:00 GMT
Server: Apache
Last-Modified: Tue, 20 Dec 2022 17:12:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 671
Content-Type: application/javascript

baobabsports.com/wp-content/uploads/2020/12/light-up-jump-rope-b98f0d90-6f8d-4211-85c4-21d1b8f9de21.webp

192.185.129.121

200 OK

57 kB

URL HTTP/2
baobabsports.com/wp-content/uploads/2020/12/light-up-jump-rope-b98f0d90-6f8d-4211-85c4-21d1b8f9de21.webp
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
RIFF (little-endian) data, Web/P image\012- data
Size
57 kB (57190 bytes)
Hash
a3043184e26beee3d7d60e4a3fd38e61
dc6ddd7f3c0df354b516e85f93d42740e27ff154
7bd1d7cbcf79eb849e8fe8bd1c4ae01c8207d466988a929fb2f2bc2c8adec1c6

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2020/12/light-up-jump-rope-b98f0d90-6f8d-4211-85c4-21d1b8f9de21.webp HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://baobabsports.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 24 Dec 2022 04:30:00 GMT
server: Apache
content-type: image/webp
content-length: 57190
last-modified: Thu, 22 Dec 2022 06:17:45 GMT
x-server-cache: true
x-proxy-cache: EXPIRED
accept-ranges: bytes
X-Firefox-Spdy: h2

baobabsports.com/wp-content/uploads/2022/12/2-8.png

192.185.129.121

200 OK

235 kB

URL HTTP/2
baobabsports.com/wp-content/uploads/2022/12/2-8.png
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 1366 x 768, 8-bit/color RGBA, non-interlaced\012- data
Size
235 kB (235273 bytes)
Hash
a59bda18efc0720b43e01f79495518af
00114d4ec4eea441609269d19484b747c11e24fc
c81223518f25f961c5323af5c84d5ceb252e2ba343b9e166039bc6b4eb282b0c

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/12/2-8.png HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://baobabsports.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Dec 2022 08:44:00 GMT
accept-ranges: bytes
content-length: 235273
content-type: image/png
date: Sat, 24 Dec 2022 04:30:00 GMT
server: Apache
X-Firefox-Spdy: h2

baobabsports.com/wp-content/uploads/2020/12/ConnectedAthlete.png

192.185.129.121

200 OK

266 kB

URL HTTP/2
baobabsports.com/wp-content/uploads/2020/12/ConnectedAthlete.png
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 668 x 865, 8-bit/color RGBA, non-interlaced\012- data
Size
266 kB (265837 bytes)
Hash
b52b98b18ddb0e2dc1199f23c048d9ff
bde66094c250030b353c81ad95f33dce2da8e398
53d173b9f8863e36a9c80cb7508b94fb59bd1db7e9f7d1f31ccf27c60388d020

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2020/12/ConnectedAthlete.png HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://baobabsports.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Dec 2022 06:17:41 GMT
accept-ranges: bytes
content-length: 265837
content-type: image/png
date: Sat, 24 Dec 2022 04:30:00 GMT
server: Apache
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6ce699bd0db3ee9d3a4ef6dcf941f9f1
14d813942d74d801024c42e2a4628ecd9306d2ad
060de67922db1f612b7f4c173f11e8714c8329d20fbec45a421bcefe7451f388

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "060DE67922DB1F612B7F4C173F11E8714C8329D20FBEC45A421BCEFE7451F388"
Last-Modified: Thu, 22 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8973
Expires: Sat, 24 Dec 2022 06:59:33 GMT
Date: Sat, 24 Dec 2022 04:30:00 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6ce699bd0db3ee9d3a4ef6dcf941f9f1
14d813942d74d801024c42e2a4628ecd9306d2ad
060de67922db1f612b7f4c173f11e8714c8329d20fbec45a421bcefe7451f388

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "060DE67922DB1F612B7F4C173F11E8714C8329D20FBEC45A421BCEFE7451F388"
Last-Modified: Thu, 22 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8973
Expires: Sat, 24 Dec 2022 06:59:33 GMT
Date: Sat, 24 Dec 2022 04:30:00 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6ce699bd0db3ee9d3a4ef6dcf941f9f1
14d813942d74d801024c42e2a4628ecd9306d2ad
060de67922db1f612b7f4c173f11e8714c8329d20fbec45a421bcefe7451f388

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "060DE67922DB1F612B7F4C173F11E8714C8329D20FBEC45A421BCEFE7451F388"
Last-Modified: Thu, 22 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8973
Expires: Sat, 24 Dec 2022 06:59:33 GMT
Date: Sat, 24 Dec 2022 04:30:00 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3b796350-ff1b-4da6-91c7-f598bab0dde2.jpeg

34.120.237.76

200 OK

9.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3b796350-ff1b-4da6-91c7-f598bab0dde2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.3 kB (9343 bytes)
Hash
42578645a06eaf381fd25ddc41b91820
8656fddf2a13fff129a073fc85c8197c78ffaaed
f1afcf62cbe9ce3a786f2f38a851781450fe52ce8f367d30fc31c31977624379

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3b796350-ff1b-4da6-91c7-f598bab0dde2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9343
x-amzn-requestid: 2720f2c1-7d46-4a81-b570-f63490384967
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dnnqZGyDIAMF4Fw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a61fdb-79c3107c2c0465885bd76558;Sampled=0
x-amzn-remapped-date: Fri, 23 Dec 2022 21:38:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EYD2n7YFOmgZ8y-ozxFxAB1hSIfelVWgbs5lV-CzKf6CoLowACVkQQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Dec 2022 21:49:02 GMT
age: 24059
etag: "8656fddf2a13fff129a073fc85c8197c78ffaaed"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b1b8038-223d-41a9-93ec-79f253678af2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10817 bytes)
Hash
3fe7fe9b99c0613c472f943ad435064a
6694802c6a1cb2da2ea89270067f84d35823c858
e40ceb2dcc7c78455f72c609ef8a640866bcca4d876b4dedd33bde7cf7e475b2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b1b8038-223d-41a9-93ec-79f253678af2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10817
x-amzn-requestid: 2050494f-8272-4123-bfe8-a0aff3160322
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dnnPzHLBIAMFfbQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a61f31-0471013f4dd5f4690a1499e2;Sampled=0
x-amzn-remapped-date: Fri, 23 Dec 2022 21:35:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ZdGsSiirj7XXsrHwaIYf-gs1QpRODhNtn6Q-TiZJiMpWUJxks0lPGA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Dec 2022 21:42:36 GMT
etag: "6694802c6a1cb2da2ea89270067f84d35823c858"
content-type: image/jpeg
age: 24445
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fafc522eb-7237-4387-a813-3d8a7c2ad6cc.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.2 kB (6157 bytes)
Hash
c5b0f55bf63a36fce0a246df2039a407
2970cf26ace931d06195838af978ae13b8ccd843
cf84f2b532bc16c028fc93c3d910e2431f989a3d8fe1ffcbc3c08122ec18fe65

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fafc522eb-7237-4387-a813-3d8a7c2ad6cc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6157
x-amzn-requestid: 10e24df4-2ac1-46cc-86ac-6fbbb25a2ece
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dnnbBHexIAMFX4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a61f79-13279779115da25e040775f7;Sampled=0
x-amzn-remapped-date: Fri, 23 Dec 2022 21:36:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EjWEfDcW1Yz5KuQ973XtJgNDMG6V7PkIiyfHeJ_JKuThH4HXgvg9Zg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Dec 2022 21:53:13 GMT
age: 23808
etag: "2970cf26ace931d06195838af978ae13b8ccd843"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ebee3d-1399-4100-87ce-23d8990b97d2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7478 bytes)
Hash
33d7fa2f0af62e65eb23c36297749038
d28362f2babfde4ca02f309b80be75bfc520de9a
070da72e06d4492a954b130ff6bef5ca5fd625f0fcfee81e801ef26a03d07e2f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ebee3d-1399-4100-87ce-23d8990b97d2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7478
x-amzn-requestid: b9f7f6d8-fada-45fd-80a7-3ac122dae6fc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dnoYlEbVIAMF_lA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a62103-15601045320b166c295d24d2;Sampled=0
x-amzn-remapped-date: Fri, 23 Dec 2022 21:43:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1lxJbDYXaWwexDy9roJuh8FUu85Vi7qHtkZYBze8SbE2dWCCxH7duw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Dec 2022 21:49:01 GMT
age: 24060
etag: "d28362f2babfde4ca02f309b80be75bfc520de9a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9bbf0437-e3f8-4c0c-ac43-11a9d84659cb.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.6 kB (4576 bytes)
Hash
b92387330acabeb3e5475a52f789314e
c27aa6c638e130063905e556d5d2213dcadb690f
b67e7688d3ed7d4a7aaa9bae8c083f296ed9f52986e8bddbcc93ac13ae02a6af

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9bbf0437-e3f8-4c0c-ac43-11a9d84659cb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4576
x-amzn-requestid: 81468234-ef31-40ad-b003-2d22e8fd2ef8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dnnpAGi8oAMFXBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a61fd3-0ddf619f2677a5a134334202;Sampled=0
x-amzn-remapped-date: Fri, 23 Dec 2022 21:38:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: IxJvwJFHYzKzXY7mfM3nIRaRoDVu3auCR-dYq-zI_v77uau1cRT1LA==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Dec 2022 21:49:04 GMT
age: 24057
etag: "c27aa6c638e130063905e556d5d2213dcadb690f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ef950d0-91b0-49dc-861b-561575fba09f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.5 kB (5505 bytes)
Hash
f041b688028eb1c8dcbee925ec0255fd
f60c30fd1ea1105f9a6fb23d6fd00f30f6deb757
724e5404f4b8ba9abf581972c1474fd1d497e9b16c3e5b42336a7ad48863fae6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ef950d0-91b0-49dc-861b-561575fba09f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5505
x-amzn-requestid: 971471d1-6863-4f42-ad7f-6afa0cc651e5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dkUqqFrRIAMFiPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a4ce44-664cbcc82f3949a821ddde85;Sampled=0
x-amzn-remapped-date: Thu, 22 Dec 2022 21:38:12 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3vjU-CX4xa8UNlVS4gjm9tgl5G6q8GCrqyxF0Hsk2E0ys6RyTaDkwA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Dec 2022 03:39:49 GMT
age: 3012
etag: "f60c30fd1ea1105f9a6fb23d6fd00f30f6deb757"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

baobabsports.com/wp-content/uploads/2022/12/1-9.png

192.185.129.121

200 OK

361 kB

URL HTTP/2
baobabsports.com/wp-content/uploads/2022/12/1-9.png
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 1366 x 768, 8-bit/color RGBA, non-interlaced\012- data
Size
361 kB (360586 bytes)
Hash
d1c3a3f4438d9c50948f93efae68398b
5af331849e80ed782a8c7d19e15c15fa8ef60178
aad5dc99afd9953df7a0d19b25c87450831c9e8b67491ac190c2cd3614440cc7

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/12/1-9.png HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://baobabsports.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Dec 2022 08:43:56 GMT
accept-ranges: bytes
content-length: 360586
content-type: image/png
date: Sat, 24 Dec 2022 04:30:00 GMT
server: Apache
X-Firefox-Spdy: h2

baobabsports.com/wp-content/uploads/2022/12/screencapture-mobak-info-en-mobak-3-4-self-movement-rolling-2022-04-03-14_26_42.png

192.185.129.121

200 OK

1.4 MB

URL HTTP/2
baobabsports.com/wp-content/uploads/2022/12/screencapture-mobak-info-en-mobak-3-4-self-movement-rolling-2022-04-03-14_26_42.png
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 1400 x 1094, 8-bit/color RGBA, non-interlaced\012- data
Size
1.4 MB (1408273 bytes)
Hash
0eeb1c5283a84ff923b28314edcf534d
bda0d3c01cee1adcfb1cd07691e62b72b420c0fd
0c20ad6ed06f1894f360af4c6f96f5f515596ec1c427c7f062b51644bbdb5879

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/12/screencapture-mobak-info-en-mobak-3-4-self-movement-rolling-2022-04-03-14_26_42.png HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://baobabsports.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Dec 2022 07:29:29 GMT
accept-ranges: bytes
content-length: 1408273
content-type: image/png
date: Sat, 24 Dec 2022 04:30:00 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f37c9faffd8b6d93a4994c02ff1d3d21
b41b823e9b33d7fff8c1670cf510edda28f7082b
7494a95cab50f2a0409796d95e999fc5add96030fba70be912c1c80124169bc6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Dec 2022 04:30:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.youtube.com/s/player/21149d65/www-widgetapi.vflset/www-widgetapi.js

216.58.207.238

200 OK

63 kB

URL HTTP/2
www.youtube.com/s/player/21149d65/www-widgetapi.vflset/www-widgetapi.js
IP
216.58.207.238:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (817)
Size
63 kB (63032 bytes)
Hash
c3c766aa8634999320dc4688a2e84808
5095291ebac2179419034c1362829f660dd49beb
d25784f8ff176076d8aeee95551e42c115275f24fb625ee28d810bcbbbd33254

HTTP Headers

GET /s/player/21149d65/www-widgetapi.vflset/www-widgetapi.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://baobabsports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 63032
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 23 Dec 2022 14:47:52 GMT
expires: Sat, 23 Dec 2023 14:47:52 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Dec 2022 01:17:46 GMT
content-type: text/javascript
age: 49329
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f37c9faffd8b6d93a4994c02ff1d3d21
b41b823e9b33d7fff8c1670cf510edda28f7082b
7494a95cab50f2a0409796d95e999fc5add96030fba70be912c1c80124169bc6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Dec 2022 04:30:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

baobabsports.com/favicon.ico

192.185.129.121

500 Internal Server Error

685 B

URL HTTP/1.1
baobabsports.com/favicon.ico
IP
192.185.129.121:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
685 B (685 bytes)
Hash
e4d04ec906e32dda63bcf9cffbe355b8
e28660427bb6de97f0cf6b844c8a9de8f52f3454
29c9f1f3daff1d06fde37da39e5b749ac29cb5d1f2c14e7f96ac5eae4912e85e

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: baobabsports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baobabsports.com/

HTTP/1.1 500 Internal Server Error
Date: Sat, 24 Dec 2022 04:29:57 GMT
Server: nginx/1.21.6
Content-Type: text/html; charset=iso-8859-1
Content-Length: 685
Connection: close

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

15 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Dec 2022 21:48:03 GMT
expires: Fri, 22 Dec 2023 21:48:03 GMT
cache-control: public, max-age=31536000
age: 110518
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Size
16 kB (15552 bytes)
Hash
285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Dec 2022 16:40:43 GMT
expires: Fri, 22 Dec 2023 16:40:43 GMT
cache-control: public, max-age=31536000
age: 128958
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e2b94572412cbd6dec9120f26fbd8edd
4ded5a76d85e2c35e8d3b1c5c196fa58159ba2a5
1371df100af0981a2cc1a7d9796c06dd16b71bd3e94f3439d7f789281853bb82

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Dec 2022 04:30:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

googleads.g.doubleclick.net/pagead/id

142.250.74.66

302 Found

0 B

URL HTTP/2
googleads.g.doubleclick.net/pagead/id
IP
142.250.74.66:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Sat, 24 Dec 2022 04:30:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create

216.58.207.202

200 OK

0 B

URL HTTP/2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
216.58.207.202:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sat, 24 Dec 2022 04:30:02 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create

216.58.207.202

200 OK

31 kB

URL HTTP/2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
216.58.207.202:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Size
31 kB (31142 bytes)
Hash
b1fa5fc6069943d8bc5ae30ac7cff2b5
68cca75d0d86f26ac9940b323137b9bbb2b02360
b6bf751eca4dd3188ecabcfcb12bd068ebdb1910e2055889496c0839ca0a5505

HTTP Headers

POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 24 Dec 2022 04:30:02 GMT
server: ESF
cache-control: private
content-length: 31142
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e3f349d1d8399a24315e98fc54179857
cdab7a12ec47358b257ba217173e088323aadc1f
f6262476101b554129fcbf637f6ae7658311cf11e63dc942639ea04fc86b8ae4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Dec 2022 04:30:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ca9512237f87f9b258f470a0569c483e
81d7f7b1e8ab5657d33944a55a07ac22af57f473
faf3fce2abb109bb79e5e808a7de6ae04ba070a115b6ac6c8dbb393d3bd0069b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Dec 2022 04:30:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e2b94572412cbd6dec9120f26fbd8edd
4ded5a76d85e2c35e8d3b1c5c196fa58159ba2a5
1371df100af0981a2cc1a7d9796c06dd16b71bd3e94f3439d7f789281853bb82

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Dec 2022 04:30:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.youtube.com/iframe_api

216.58.207.238

200 OK

517 B

URL HTTP/2
www.youtube.com/iframe_api
IP
216.58.207.238:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (509)
Size
517 B (517 bytes)
Hash
eb710cfe56b9a82dfc3ffd91b1810e02
e08a06481103597af3529d2c51e84821d0a03173
b7f45ed2769d075de5e32a23ddb9d47e87f01b55199b247e2d236be00dba1433

HTTP Headers

GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://baobabsports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Sat, 24 Dec 2022 04:30:01 GMT
date: Sat, 24 Dec 2022 04:30:01 GMT
cache-control: private, max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=It6gbIR0u1w; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=MWRV1GjCLbQ; Domain=.youtube.com; Expires=Thu, 22-Jun-2023 04:30:01 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+911; expires=Mon, 23-Dec-2024 04:30:01 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js

142.250.74.164

200 OK

14 kB

URL HTTP/2
www.google.com/js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (36106)
Size
14 kB (14302 bytes)
Hash
7fc7e22ecccb0cfd0ae897bb40a58efe
5d46470a711120793c362235105836fe49e699a4
1907005cab41fbd6d1d67df3b25586f3232e053a261c9e2b2503459f4980b1c5

HTTP Headers

GET /js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14302
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 18 Dec 2022 14:32:25 GMT
expires: Mon, 18 Dec 2023 14:32:25 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 03 Nov 2022 10:00:00 GMT
content-type: text/javascript
age: 482257
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
78e82a9675e463307ad999770860908f
313547cb4eb5db1baed433622f85755e55288c6d
58d6bbee65101684a680936123138ae99add1597f794967454ba691acedcb03d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Dec 2022 04:30:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e3f349d1d8399a24315e98fc54179857
cdab7a12ec47358b257ba217173e088323aadc1f
f6262476101b554129fcbf637f6ae7658311cf11e63dc942639ea04fc86b8ae4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Dec 2022 04:30:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d7dc6f29af0912baf33dc26771c4bda2
032fcf4f0dff6644aceadade92866c74937e6540
6dfcbb4b2403b85a352f8602c24e0555c4e66d77638e9f77d57c041651f6834e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Dec 2022 04:30:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT

216.58.207.202

200 OK

0 B

URL HTTP/2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
216.58.207.202:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sat, 24 Dec 2022 04:30:02 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

i.ytimg.com/vi/kYmZNwt7QXs/hqdefault.jpg?sqp=-oaymwEmCOADEOgC8quKqQMa8AEB-AH-BIAC4AKKAgwIABABGHIgYigrMA8=&rs=AOn4CLDcZjB6b5DLytUg9bb8qXvkPq_ImA

216.58.211.22

200 OK

12 kB

URL HTTP/2
i.ytimg.com/vi/kYmZNwt7QXs/hqdefault.jpg?sqp=-oaymwEmCOADEOgC8quKqQMa8AEB-AH-BIAC4AKKAgwIABABGHIgYigrMA8=&rs=AOn4CLDcZjB6b5DLytUg9bb8qXvkPq_ImA
IP
216.58.211.22:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Size
12 kB (12317 bytes)
Hash
6f0e06ebce0b4e434f3329cae7ca3292
c365330ccfa1785a47ab365481d044cd607ee2e1
f3950679fc8df56ae0334c4ec81cb742f20cd39859b3994e3a94442bd9ce1a03

HTTP Headers

GET /vi/kYmZNwt7QXs/hqdefault.jpg?sqp=-oaymwEmCOADEOgC8quKqQMa8AEB-AH-BIAC4AKKAgwIABABGHIgYigrMA8=&rs=AOn4CLDcZjB6b5DLytUg9bb8qXvkPq_ImA HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 12317
date: Sat, 24 Dec 2022 04:30:02 GMT
expires: Sat, 24 Dec 2022 06:30:02 GMT
cache-control: public, max-age=7200
etag: "1653109300"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT

216.58.207.202

200 OK

112 B

URL HTTP/2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
216.58.207.202:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
112 B (112 bytes)
Hash
d94a6c2f81cc9cb18745ace43e129d58
dcde1919dbf016715032e0a82233d8eac47e6f1e
e274f8b7aecf1bd702976a5d6a4ae13fc795e07d5f031f79d5852f4af4cc4037

HTTP Headers

POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 868
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 24 Dec 2022 04:30:02 GMT
server: ESF
cache-control: private
content-length: 112
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
78e82a9675e463307ad999770860908f
313547cb4eb5db1baed433622f85755e55288c6d
58d6bbee65101684a680936123138ae99add1597f794967454ba691acedcb03d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Dec 2022 04:30:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

yt3.ggpht.com/B-Gcy6wI62ZT1Jw0cVaMxGIoh22REMwr7DiujIYPdIaPxV-4zdcjCdgLfhcRg00yPRPgF206oQ=s68-c-k-c0x00ffffff-no-rj

142.250.74.161

200 OK

1.6 kB

URL HTTP/2
yt3.ggpht.com/B-Gcy6wI62ZT1Jw0cVaMxGIoh22REMwr7DiujIYPdIaPxV-4zdcjCdgLfhcRg00yPRPgF206oQ=s68-c-k-c0x00ffffff-no-rj
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data
Size
1.6 kB (1609 bytes)
Hash
dd0394feb757e3f13453926506be86e7
50000217bf066bca6ad4a9fa658cddde7c8f69c3
8c8b7b5ab4d00bce9102fcfb59204ca8a9a394a8c4793d32c17f02c90bf329e2

HTTP Headers

GET /B-Gcy6wI62ZT1Jw0cVaMxGIoh22REMwr7DiujIYPdIaPxV-4zdcjCdgLfhcRg00yPRPgF206oQ=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sun, 25 Dec 2022 04:30:02 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="channels4_profile.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 24 Dec 2022 04:30:02 GMT
server: fife
content-length: 1609
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d7dc6f29af0912baf33dc26771c4bda2
032fcf4f0dff6644aceadade92866c74937e6540
6dfcbb4b2403b85a352f8602c24e0555c4e66d77638e9f77d57c041651f6834e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Dec 2022 04:30:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.googleapis.com/css?family=Lato%3A400%2C700%7CHeebo%3A500&display=fallback&ver=3.9.4

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Lato%3A400%2C700%7CHeebo%3A500&display=fallback&ver=3.9.4
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Lato%3A400%2C700%7CHeebo%3A500&display=fallback&ver=3.9.4 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://baobabsports.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 24 Dec 2022 04:29:59 GMT
date: Sat, 24 Dec 2022 04:29:59 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CCandal%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.1.1

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CCandal%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.1.1
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CCandal%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://baobabsports.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 24 Dec 2022 04:29:59 GMT
date: Sat, 24 Dec 2022 04:29:59 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (153)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations