r3.o.lencr.org/
23.36.76.242200 OK 503 B IP 23.36.76.242:0
ASN #20940 Akamai International B.V.
Hash be88d3e043e3b95b52e41812e50fb634
0318ba1ce487817ea7cba61dd9413bed29213800
b5f178d23e633283f226cca7a9ae79b01e6cab2299ff7065c980d3a9953212fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5F178D23E633283F226CCA7A9AE79B01E6CAB2299FF7065C980D3A9953212FD"
Last-Modified: Tue, 13 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7694
Expires: Thu, 15 Sep 2022 21:59:36 GMT
Date: Thu, 15 Sep 2022 19:51:22 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 15 Sep 2022 19:10:31 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: xU2XKCKQPspAl1yS5r-e03NFTNVQmFXsmhNkBko94rfhWm2qnSLUqA==
Age: 2451
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 15 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 24Wf7TdioyU8tTWqJl8J0yA24B5zQPSpE5qwCGYa_i2xrJ8CuFE-pQ==
age: 54967
X-Firefox-Spdy: h2
sellitafrica.com/media/storage/editor/files/free-robux-com_gm431946152.pdf
85.233.160.184200 OK 23 kB URL HTTP/1.1 sellitafrica.com/media/storage/editor/files/free-robux-com_gm431946152.pdf
IP 85.233.160.184:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (47271)
Hash 370ba7a923890419df33a3db312af6e7
85246d1dff2609f2720cc065b7d56972376c049e
654641f9296867249c2fe74b64a9550b6ff47a37e36ee07bb1d67537ae986acf
Analyzer Verdict Alert fortinet Phishing
GET /media/storage/editor/files/free-robux-com_gm431946152.pdf HTTP/1.1
Host: sellitafrica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 19:51:21 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=7nk0mcnc4o65bjlgsh84vqj4v7; path=/
PHPSESSID=7nk0mcnc4o65bjlgsh84vqj4v7; expires=Fri, 16-Sep-2022 05:51:22 GMT
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 0
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 19:51:22 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
sellitafrica.com/media/font-awesome/css/font-awesome.min.css
85.233.160.184200 OK 5.2 kB URL HTTP/1.1 sellitafrica.com/media/font-awesome/css/font-awesome.min.css
IP 85.233.160.184:0
File type ASCII text, with very long lines (20604)
Hash 6a548c1b35fc2fe0761c47a78b25d924
163ed6c3fa2e10e5840157c182fb96ecec5c0b1d
5b029061eec182bed2c53287e4bc0aeabaadb6ce7cf422a2ba455e1fd9fda86b
GET /media/font-awesome/css/font-awesome.min.css HTTP/1.1
Host: sellitafrica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/media/storage/editor/files/free-robux-com_gm431946152.pdf
Cookie: PHPSESSID=7nk0mcnc4o65bjlgsh84vqj4v7
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 19:51:22 GMT
Server: Apache
Last-Modified: Fri, 14 Aug 2015 09:34:04 GMT
Accept-Ranges: bytes
Content-Type: text/css
ETag: W/"511e-51d4227111f42"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 0
Transfer-Encoding: chunked
Connection: keep-alive
w.sharethis.com/button/buttons.js
54.230.111.82301 Moved Permanently 167 B URL HTTP/1.1 w.sharethis.com/button/buttons.js
IP 54.230.111.82:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /button/buttons.js HTTP/1.1
Host: w.sharethis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Thu, 15 Sep 2022 19:51:22 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://w.sharethis.com/button/buttons.js
X-Cache: Redirect from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: AWtI5y0mUNWXDVSwyUpqtyIQNUIk4WBnS0r2_AdMcJvvYeX-4hIKIg==
fonts.googleapis.com/css?family=Ruda:400,900,700
142.250.74.10200 OK 474 B URL HTTP/1.1 fonts.googleapis.com/css?family=Ruda:400,900,700
IP 142.250.74.10:0
Hash da6d9358118d0991819b41b2aa815be1
9b083c49249a238a7772609d9ba3f3b55d3ce56f
3ff390af9f6b78102a551cde48cf04583c079e978fdd3404bc644fdb2a8af7bb
GET /css?family=Ruda:400,900,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Thu, 15 Sep 2022 19:51:22 GMT
Date: Thu, 15 Sep 2022 19:51:22 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
sellitafrica.com/media/css/ezmark.css
85.233.160.184200 OK 533 B URL HTTP/1.1 sellitafrica.com/media/css/ezmark.css
IP 85.233.160.184:0
Hash 3b7e478117a4c1b1e2f5a10170e48fb3
6cab01ba17f1cea46bb450ad0e2f658632d423ec
dc1755e76c555edf69c13ce6dd7d804802d76f2cc3a63962b702b76be7d2bf35
GET /media/css/ezmark.css HTTP/1.1
Host: sellitafrica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/media/storage/editor/files/free-robux-com_gm431946152.pdf
Cookie: PHPSESSID=7nk0mcnc4o65bjlgsh84vqj4v7
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 19:51:22 GMT
Server: Apache
Last-Modified: Fri, 14 Aug 2015 09:30:58 GMT
Accept-Ranges: bytes
Content-Type: text/css
ETag: W/"644-51d421bfb2a19"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 0
Transfer-Encoding: chunked
Connection: keep-alive
sellitafrica.com/media/css/scrollbar.css
85.233.160.184200 OK 867 B URL HTTP/1.1 sellitafrica.com/media/css/scrollbar.css
IP 85.233.160.184:0
Hash 0fa68209c9f60cdd3389b63608469a00
103d77761bc2103bee8bad7463474699040f66ad
d7c8ef0ad88ee31bb04f1fd296d23bd08ff20b79a104041d577d65083216f30b
GET /media/css/scrollbar.css HTTP/1.1
Host: sellitafrica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/media/storage/editor/files/free-robux-com_gm431946152.pdf
Cookie: PHPSESSID=7nk0mcnc4o65bjlgsh84vqj4v7
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 19:51:22 GMT
Server: Apache
Last-Modified: Fri, 14 Aug 2015 09:30:40 GMT
Accept-Ranges: bytes
Content-Type: text/css
ETag: W/"1042-51d421aeb18de"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 0
Transfer-Encoding: chunked
Connection: keep-alive
sellitafrica.com/media/css/popup.css
85.233.160.184200 OK 1.0 kB URL HTTP/1.1 sellitafrica.com/media/css/popup.css
IP 85.233.160.184:0
Hash 05a3186108409f6ff84c94614e3a7022
68703d387eed9155e2099b48660833fa5882f4d4
ca3416d97ec4226b03616610115f399a3a324c9e62e5b991fe65ab1a42fd9a90
GET /media/css/popup.css HTTP/1.1
Host: sellitafrica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/media/storage/editor/files/free-robux-com_gm431946152.pdf
Cookie: PHPSESSID=7nk0mcnc4o65bjlgsh84vqj4v7
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 19:51:22 GMT
Server: Apache
Last-Modified: Fri, 14 Aug 2015 09:31:01 GMT
Accept-Ranges: bytes
Content-Type: text/css
ETag: W/"b0e-51d421c303f3f"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 0
Transfer-Encoding: chunked
Connection: keep-alive
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
142.250.74.46301 Moved Permanently 0 B URL HTTP/1.1 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP 142.250.74.46:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/
HTTP/1.1 301 Moved Permanently
Content-Type: application/binary
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Thu, 15 Sep 2022 19:51:22 GMT
Location: https://translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
Cross-Origin-Opener-Policy: same-origin-allow-popups
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
sellitafrica.com/media/fancybox/jquery.fancybox-1.3.4.css
85.233.160.184200 OK 2.0 kB URL HTTP/1.1 sellitafrica.com/media/fancybox/jquery.fancybox-1.3.4.css
IP 85.233.160.184:0
Hash de9654b5c08d63b90fd2e3e9185a039d
f4dea84ed060ba1fac171f7e7d3d933322e26237
827b4080bc5c5e6edbb1a42cab78327911ce1907427b16557dec17dd4aee4da2
GET /media/fancybox/jquery.fancybox-1.3.4.css HTTP/1.1
Host: sellitafrica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/media/storage/editor/files/free-robux-com_gm431946152.pdf
Cookie: PHPSESSID=7nk0mcnc4o65bjlgsh84vqj4v7
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 19:51:22 GMT
Server: Apache
Last-Modified: Fri, 04 Apr 2014 10:31:02 GMT
Accept-Ranges: bytes
Content-Type: text/css
ETag: W/"212e-4f63503ad54da"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 0
Transfer-Encoding: chunked
Connection: keep-alive
sellitafrica.com/media/css/style.css
85.233.160.184200 OK 9.9 kB URL HTTP/1.1 sellitafrica.com/media/css/style.css
IP 85.233.160.184:0
Hash 1f9269005eddf5c18c687387ead19b2a
1d14fa1d6f3fdfdfe98f34e747c870d140c70036
f9160cf89822e5791916c234702068a4a927fbd2b987395854922ee900967783
GET /media/css/style.css HTTP/1.1
Host: sellitafrica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/media/storage/editor/files/free-robux-com_gm431946152.pdf
Cookie: PHPSESSID=7nk0mcnc4o65bjlgsh84vqj4v7
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 19:51:22 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2015 11:41:15 GMT
Accept-Ranges: bytes
Content-Type: text/css
ETag: W/"b002-5273ebbc1c7a8"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 0
Transfer-Encoding: chunked
Connection: keep-alive
sellitafrica.com/media/js/jquery-migrate-1.1.1.min.js
85.233.160.184200 OK 3.1 kB URL HTTP/1.1 sellitafrica.com/media/js/jquery-migrate-1.1.1.min.js
IP 85.233.160.184:0
File type ASCII text, with very long lines (6923)
Hash 5f7090ee18e8e1ca33305b3e29529499
85409e954738081191cbb1d51d93a1df297efb5e
44ca2ac73c1770d361c4f8a88b577602dfdac6fffa30aaf11eda62594a826188
Analyzer Verdict Alert fortinet Phishing
GET /media/js/jquery-migrate-1.1.1.min.js HTTP/1.1
Host: sellitafrica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/media/storage/editor/files/free-robux-com_gm431946152.pdf
Cookie: PHPSESSID=7nk0mcnc4o65bjlgsh84vqj4v7
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 19:51:22 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2015 11:41:34 GMT
Accept-Ranges: bytes
Content-Type: application/javascript
ETag: W/"1bae-5273ebcefcc3c"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 0
Transfer-Encoding: chunked
Connection: keep-alive
sellitafrica.com/media/css/jquery.selectBox.css
85.233.160.184200 OK 1.3 kB URL HTTP/1.1 sellitafrica.com/media/css/jquery.selectBox.css
IP 85.233.160.184:0
Hash 10f4ba8e8ef3aea22314169c0d17dec8
48e3fb0a56ceab904a5a6bca46402f9fb7f9460e
8cb67e9e459db7119b93f4fe999185a49e4d89f73e8a3f16f7fd6e59f816f59c
GET /media/css/jquery.selectBox.css HTTP/1.1
Host: sellitafrica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/media/storage/editor/files/free-robux-com_gm431946152.pdf
Cookie: PHPSESSID=7nk0mcnc4o65bjlgsh84vqj4v7
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 19:51:22 GMT
Server: Apache
Last-Modified: Fri, 14 Aug 2015 09:30:40 GMT
Accept-Ranges: bytes
Content-Type: text/css
ETag: W/"f9f-51d421af6f3fb"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 0
Transfer-Encoding: chunked
Connection: keep-alive
maps.google.com/maps/api/js?sensor=true
216.58.211.14200 OK 54 kB URL HTTP/1.1 maps.google.com/maps/api/js?sensor=true
IP 216.58.211.14:0
File type ASCII text, with very long lines (2499)
Hash eaf208512b7ab26464c4643f73d0eceb
8f6cbdbf6a8740de99d283fadf6d6b1f1f068e94
0f38e40cfc07a4e16a730bd760c3ce37ae78a3e6484644a25721ce9b72bee863
GET /maps/api/js?sensor=true HTTP/1.1
Host: maps.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
Date: Thu, 15 Sep 2022 19:51:22 GMT
Expires: Thu, 15 Sep 2022 20:21:22 GMT
Cache-Control: public, max-age=1800
Vary: Accept-Language
Cross-Origin-Resource-Policy: cross-origin
Timing-Allow-Origin: *
Content-Encoding: gzip
Server: mafe
Content-Length: 54084
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
Server-Timing: gfet4t7; dur=11
sellitafrica.com/media/css/tipsy.css
85.233.160.184200 OK 392 B URL HTTP/1.1 sellitafrica.com/media/css/tipsy.css
IP 85.233.160.184:0
Hash e2b292b053c03fde32d0d5ed520a77cc
1b573ecdee298610a7664a863568f387c4669bcd
37f55fe689dda967893e053dde3bab9efccc82df93c593c23a54b8fa76dec17e
GET /media/css/tipsy.css HTTP/1.1
Host: sellitafrica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/media/storage/editor/files/free-robux-com_gm431946152.pdf
Cookie: PHPSESSID=7nk0mcnc4o65bjlgsh84vqj4v7
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 19:51:22 GMT
Server: Apache
Last-Modified: Fri, 14 Aug 2015 09:30:38 GMT
Accept-Ranges: bytes
Content-Type: text/css
ETag: W/"443-51d421acb5078"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 0
Transfer-Encoding: chunked
Connection: keep-alive
w.sharethis.com/button/buttons.js
54.230.111.82200 OK 26 kB URL HTTP/2 w.sharethis.com/button/buttons.js
IP 54.230.111.82:0
File type ASCII text, with very long lines (998)
Hash 1e9f2232bb57b7ff3572ae16e83f257b
a9c8dd03eb658dc27be9ce0c4b4e7554350a66ae
e6b3b7a72fc3d7a572cd1727f3bb2bd2a9bc52838cc60e70d510a657ef1b7119
GET /button/buttons.js HTTP/1.1
Host: w.sharethis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://sellitafrica.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 26307
content-encoding: gzip
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
date: Thu, 15 Sep 2022 01:29:06 GMT
cache-control: max-age=259200
expires: Fri, 16 Sep 2022 00:33:37 GMT
etag: W/"62bdf23a-19615"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: SUqvgfE6BI0TCKjUDb9MioMNEsC2LW2Mky6lJfQ9EDLeLnzt_4cwfg==
age: 242265
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
sellitafrica.com/media/js/bootstrap.min.js
85.233.160.184200 OK 11 kB URL HTTP/1.1 sellitafrica.com/media/js/bootstrap.min.js
IP 85.233.160.184:0
File type ASCII text, with very long lines (32034)
Hash 2b42bf584f138190cffa244c5db19ef5
6d638a8ad8101a3d2d12742077fcce65556030d8
aa3fab9f26d088de33db930f96f86bac2b99fda9f9fc38bef230f62548eb90d6
Analyzer Verdict Alert fortinet Phishing
GET /media/js/bootstrap.min.js HTTP/1.1
Host: sellitafrica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/media/storage/editor/files/free-robux-com_gm431946152.pdf
Cookie: PHPSESSID=7nk0mcnc4o65bjlgsh84vqj4v7
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 19:51:22 GMT
Server: Apache
Last-Modified: Fri, 14 Aug 2015 09:31:38 GMT
Accept-Ranges: bytes
Content-Type: application/javascript
ETag: W/"8fd0-51d421e630300"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 0
Transfer-Encoding: chunked
Connection: keep-alive
sellitafrica.com/media/js/jquery.validate.min.js
85.233.160.184200 OK 7.1 kB URL HTTP/1.1 sellitafrica.com/media/js/jquery.validate.min.js
IP 85.233.160.184:0
File type Unicode text, UTF-8 text, with very long lines (21334)
Hash 502753aa4f08023c2b57c4ce18e3c202
2bf647766d7025aa397b6c8b21dcf39e548b3132
21f39d22c2a6345bfc270bcd8952fc03c4a483ddf60e2738d539bc202e93bff5
Analyzer Verdict Alert fortinet Phishing
GET /media/js/jquery.validate.min.js HTTP/1.1
Host: sellitafrica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/media/storage/editor/files/free-robux-com_gm431946152.pdf
Cookie: PHPSESSID=7nk0mcnc4o65bjlgsh84vqj4v7
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 19:51:22 GMT
Server: Apache
Last-Modified: Fri, 14 Aug 2015 09:31:43 GMT
Accept-Ranges: bytes
Content-Type: application/javascript
ETag: W/"53f5-51d421eb80f22"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 0
Transfer-Encoding: chunked
Connection: keep-alive
sellitafrica.com/media/js/jquery-1.9.1.min.js
85.233.160.184200 OK 36 kB URL HTTP/1.1 sellitafrica.com/media/js/jquery-1.9.1.min.js
IP 85.233.160.184:0
File type ASCII text, with very long lines (32089)
Hash ae28801ad28a7540a49306a13ba2bea6
e34e85896c20e7ab630836c4aac92856068eba21
c7125b8c0ae9d41314be7d4162b3e099be0fb8d0b73f76d4a228c235906d7395
Analyzer Verdict Alert fortinet Phishing
GET /media/js/jquery-1.9.1.min.js HTTP/1.1
Host: sellitafrica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/media/storage/editor/files/free-robux-com_gm431946152.pdf
Cookie: PHPSESSID=7nk0mcnc4o65bjlgsh84vqj4v7
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 19:51:22 GMT
Server: Apache
Last-Modified: Fri, 14 Aug 2015 09:31:36 GMT
Accept-Ranges: bytes
Content-Type: application/javascript
ETag: W/"169d5-51d421e41f69a"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 0
Transfer-Encoding: chunked
Connection: keep-alive
sellitafrica.com/media/js/jquery.mousewheel.min.js
85.233.160.184200 OK 727 B URL HTTP/1.1 sellitafrica.com/media/js/jquery.mousewheel.min.js
IP 85.233.160.184:0
File type ASCII text, with very long lines (1020)
Hash bdd73ffdc18afed9936f37670134a0f5
5e4994339d9c57dbd58562cbb6f870b2ae7811a6
a1a127fa3571f62ecf92534870c55e51d96a59c846e4c315210b4536eb8eda38
Analyzer Verdict Alert fortinet Phishing
GET /media/js/jquery.mousewheel.min.js HTTP/1.1
Host: sellitafrica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/media/storage/editor/files/free-robux-com_gm431946152.pdf
Cookie: PHPSESSID=7nk0mcnc4o65bjlgsh84vqj4v7
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 19:51:22 GMT
Server: Apache
Last-Modified: Fri, 14 Aug 2015 09:31:39 GMT
Accept-Ranges: bytes
Content-Type: application/javascript
ETag: W/"570-51d421e794a08"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 0
Transfer-Encoding: chunked
Connection: keep-alive
sellitafrica.com/media/js/jquery.mCustomScrollbar.js
85.233.160.184200 OK 8.3 kB URL HTTP/1.1 sellitafrica.com/media/js/jquery.mCustomScrollbar.js
IP 85.233.160.184:0
File type ASCII text, with very long lines (1019)
Hash 7a7b3c9460321e1731379133f832ec3b
593a21526a7e179cda537e8bed56e19a9812bd67
e79736dcd4519b89d95d5a7bac29af0836121f4532cdcc1e28104c877ab12457
Analyzer Verdict Alert fortinet Phishing
GET /media/js/jquery.mCustomScrollbar.js HTTP/1.1
Host: sellitafrica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/media/storage/editor/files/free-robux-com_gm431946152.pdf
Cookie: PHPSESSID=7nk0mcnc4o65bjlgsh84vqj4v7
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 19:51:22 GMT
Server: Apache
Last-Modified: Fri, 14 Aug 2015 09:31:46 GMT
Accept-Ranges: bytes
Content-Type: application/javascript
ETag: W/"9bc6-51d421ede211b"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 0
Transfer-Encoding: chunked
Connection: keep-alive
sellitafrica.com/media/js/jquery.ezmark.min.js
85.233.160.184200 OK 616 B URL HTTP/1.1 sellitafrica.com/media/js/jquery.ezmark.min.js
IP 85.233.160.184:0
File type ASCII text, with very long lines (625)
Hash dd00d21e74ddc098bbfbbf935a999800
407f4702a987eb2577612abdd75b22bd9bc60de9
0de68c7468b45ade33cbffe7a33087a51c00ae1289312a01f8cf883408e16ef1
Analyzer Verdict Alert fortinet Phishing
GET /media/js/jquery.ezmark.min.js HTTP/1.1
Host: sellitafrica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/media/storage/editor/files/free-robux-com_gm431946152.pdf
Cookie: PHPSESSID=7nk0mcnc4o65bjlgsh84vqj4v7
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 19:51:22 GMT
Server: Apache
Last-Modified: Fri, 14 Aug 2015 09:31:46 GMT
Accept-Ranges: bytes
Content-Type: application/javascript
ETag: W/"5f9-51d421ee397ab"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 0
Transfer-Encoding: chunked
Connection: keep-alive
sellitafrica.com/media/js/jquery-ui-1.9.0.custom.min.js
85.233.160.184200 OK 71 kB URL HTTP/1.1 sellitafrica.com/media/js/jquery-ui-1.9.0.custom.min.js
IP 85.233.160.184:0
File type ASCII text, with very long lines (64558)
Hash 76c91d193224ceeb616823bfc03a0aa1
beea4ae4440ad64f40ba82824b12e37be65d9c2f
8eef26f519ed11176242ce6146a5e838b3ca01fd0c9964aaa447ef4c7438fcc2
Analyzer Verdict Alert fortinet Phishing
GET /media/js/jquery-ui-1.9.0.custom.min.js HTTP/1.1
Host: sellitafrica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/media/storage/editor/files/free-robux-com_gm431946152.pdf
Cookie: PHPSESSID=7nk0mcnc4o65bjlgsh84vqj4v7
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 19:51:22 GMT
Server: Apache
Last-Modified: Fri, 14 Aug 2015 09:31:42 GMT
Accept-Ranges: bytes
Content-Type: application/javascript
ETag: W/"39945-51d421e9e902a"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 0
Transfer-Encoding: chunked
Connection: keep-alive
sellitafrica.com/media/js/jquery.selectBox.min.js
85.233.160.184200 OK 8.4 kB URL HTTP/1.1 sellitafrica.com/media/js/jquery.selectBox.min.js
IP 85.233.160.184:0
Hash 9e3fa5c90aa023f5b899cdf2276232f9
653c8bb106a50a9dd20d722443cb31adf97efc98
eb4766522970c9750d6d9987e5d0a8d2c423a1350c000f724013e2b1b7748878
Analyzer Verdict Alert fortinet Phishing
GET /media/js/jquery.selectBox.min.js HTTP/1.1
Host: sellitafrica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/media/storage/editor/files/free-robux-com_gm431946152.pdf
Cookie: PHPSESSID=7nk0mcnc4o65bjlgsh84vqj4v7
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 19:51:22 GMT
Server: Apache
Last-Modified: Fri, 14 Aug 2015 09:31:41 GMT
Accept-Ranges: bytes
Content-Type: application/javascript
ETag: W/"a175-51d421e9608c7"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 0
Transfer-Encoding: chunked
Connection: keep-alive
sellitafrica.com/media/js/jquery.selectBoxSpec.min.js
85.233.160.184200 OK 5.2 kB URL HTTP/1.1 sellitafrica.com/media/js/jquery.selectBoxSpec.min.js
IP 85.233.160.184:0
Hash 6beada5b568ab922283829855a97ca42
7bc770f93fb10220fa7be03d902da8f2b8d089ba
c67779e696af46de4338d233e0ccd17c3ac27de3747fd8155ee687f2e5e081e7
Analyzer Verdict Alert fortinet Phishing
GET /media/js/jquery.selectBoxSpec.min.js HTTP/1.1
Host: sellitafrica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/media/storage/editor/files/free-robux-com_gm431946152.pdf
Cookie: PHPSESSID=7nk0mcnc4o65bjlgsh84vqj4v7
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 19:51:22 GMT
Server: Apache
Last-Modified: Fri, 14 Aug 2015 09:31:45 GMT
Accept-Ranges: bytes
Content-Type: application/javascript
ETag: W/"7ae5-51d421ecf487b"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 0
Transfer-Encoding: chunked
Connection: keep-alive
sellitafrica.com/media/js/google_maps.js
85.233.160.184200 OK 2.2 kB URL HTTP/1.1 sellitafrica.com/media/js/google_maps.js
IP 85.233.160.184:0
File type ISO-8859 text, with very long lines (4020)
Hash 6990da0ed8a231991e4367efff15be2f
f8b117eec59d145102f3fc1183152c37de42a9c6
c3e698263185d5adeb5773530817c45c76a3fc94ded3cc8e9881a2aae9f51223
Analyzer Verdict Alert fortinet Phishing
GET /media/js/google_maps.js HTTP/1.1
Host: sellitafrica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/media/storage/editor/files/free-robux-com_gm431946152.pdf
Cookie: PHPSESSID=7nk0mcnc4o65bjlgsh84vqj4v7
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 19:51:22 GMT
Server: Apache
Last-Modified: Fri, 14 Aug 2015 09:31:46 GMT
Accept-Ranges: bytes
Content-Type: application/javascript
ETag: W/"fe2-51d421ed8d56b"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 0
Transfer-Encoding: chunked
Connection: keep-alive
sellitafrica.com/media/js/jquery.tipsy.js
85.233.160.184200 OK 2.1 kB URL HTTP/1.1 sellitafrica.com/media/js/jquery.tipsy.js
IP 85.233.160.184:0
Hash a74a42d7c5db11a588f07cd28c3e48d4
b05d5ded10003d925c193ceaf4b57278f2b222bc
f93c3bea3fa2ec0e2813374bc6dc0d95e2f4d5186b174e2d758fbe041af09e69
Analyzer Verdict Alert fortinet Phishing
GET /media/js/jquery.tipsy.js HTTP/1.1
Host: sellitafrica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/media/storage/editor/files/free-robux-com_gm431946152.pdf
Cookie: PHPSESSID=7nk0mcnc4o65bjlgsh84vqj4v7
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 19:51:22 GMT
Server: Apache
Last-Modified: Fri, 14 Aug 2015 09:31:44 GMT
Accept-Ranges: bytes
Content-Type: application/javascript
ETag: W/"1cdd-51d421ec6a9dc"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 0
Transfer-Encoding: chunked
Connection: keep-alive
sellitafrica.com/media/js/jquery.tweet.js
85.233.160.184200 OK 5.0 kB URL HTTP/1.1 sellitafrica.com/media/js/jquery.tweet.js
IP 85.233.160.184:0
Hash 859d666ccf85c245207b09d35a777c53
81086ecc8cba036246185fb736bcb8d0676fafdb
9cafa76d0ff7d75070b5d1e12c0d953a157944b8e580e5d6500cf3715cacfc32
Analyzer Verdict Alert fortinet Phishing
GET /media/js/jquery.tweet.js HTTP/1.1
Host: sellitafrica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/media/storage/editor/files/free-robux-com_gm431946152.pdf
Cookie: PHPSESSID=7nk0mcnc4o65bjlgsh84vqj4v7
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 19:51:22 GMT
Server: Apache
Last-Modified: Fri, 14 Aug 2015 09:31:44 GMT
Accept-Ranges: bytes
Content-Type: application/javascript
ETag: W/"347e-51d421ebc1e75"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 0
Transfer-Encoding: chunked
Connection: keep-alive
sellitafrica.com/media/fancybox/jquery.fancybox-1.3.4.pack.js
85.233.160.184200 OK 5.9 kB URL HTTP/1.1 sellitafrica.com/media/fancybox/jquery.fancybox-1.3.4.pack.js
IP 85.233.160.184:0
File type ASCII text, with very long lines (752)
Hash bf16dd8250e9fce666117a03278a503a
47d8a3364ce477ac3bf7736467fe31926d7b7229
47f60fae4a5f3350739313ce9655efc085fa563f614ec8de95adf0fd4e51737e
Analyzer Verdict Alert fortinet Phishing
GET /media/fancybox/jquery.fancybox-1.3.4.pack.js HTTP/1.1
Host: sellitafrica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/media/storage/editor/files/free-robux-com_gm431946152.pdf
Cookie: PHPSESSID=7nk0mcnc4o65bjlgsh84vqj4v7
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 19:51:22 GMT
Server: Apache
Last-Modified: Fri, 04 Apr 2014 10:31:02 GMT
Accept-Ranges: bytes
Content-Type: application/javascript
ETag: W/"3d08-4f63503b2b7db"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 0
Transfer-Encoding: chunked
Connection: keep-alive
sellitafrica.com/media/js/script.js
85.233.160.184200 OK 6.1 kB URL HTTP/1.1 sellitafrica.com/media/js/script.js
IP 85.233.160.184:0
File type ASCII text, with very long lines (370)
Hash 237b9b1790c10556372e61ffcca51a52
68cb70f4cc7f5e2b290a7f12f666bb576dd228db
1d5dd384a6d4eff9f142f913143571158e4130f405ed9369abd5410d1755576b
Analyzer Verdict Alert fortinet Phishing
GET /media/js/script.js HTTP/1.1
Host: sellitafrica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/media/storage/editor/files/free-robux-com_gm431946152.pdf
Cookie: PHPSESSID=7nk0mcnc4o65bjlgsh84vqj4v7
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 19:51:22 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2015 11:41:30 GMT
Accept-Ranges: bytes
Content-Type: application/javascript
ETag: W/"54fd-5273ebca936b9"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 0
Transfer-Encoding: chunked
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 39aa25d8411997d98f9093c19b0ccbca
3cb31e92d707cd561897042ed1a09de5a79e7108
f1b7b71241b580ec34281f5addc49d716eac9ecc46a3217e646c76e6dc8d4578
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 19:51:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sellitafrica.com/media/images/logo.png
85.233.160.184200 OK 17 kB URL HTTP/1.1 sellitafrica.com/media/images/logo.png
IP 85.233.160.184:0
File type PNG image data, 332 x 115, 8-bit/color RGBA, non-interlaced\012- data
Hash bf7dc4881fef7208c0b1e230c5db5d33
4fe2f1ab024cd16b9ce230aed80fa774daf48a94
e0663d43db656857946ca2ffe9215416697349c16f0df5292d4150bd4586b2ba
GET /media/images/logo.png HTTP/1.1
Host: sellitafrica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/media/storage/editor/files/free-robux-com_gm431946152.pdf
Cookie: PHPSESSID=7nk0mcnc4o65bjlgsh84vqj4v7
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 19:51:22 GMT
Server: Apache
Last-Modified: Fri, 14 Aug 2015 09:33:18 GMT
ETag: "4160-51d422453e7ed"
Accept-Ranges: bytes
Content-Length: 16736
Content-Type: image/png
Age: 0
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 39aa25d8411997d98f9093c19b0ccbca
3cb31e92d707cd561897042ed1a09de5a79e7108
f1b7b71241b580ec34281f5addc49d716eac9ecc46a3217e646c76e6dc8d4578
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 19:51:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Thu, 15 Sep 2022 19:03:22 GMT
Expires: Thu, 15 Sep 2022 19:03:30 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 4lLaRsBOisx_I7ZWB4O3xNKSR588vOuJsrxZS0nmNLFeHGwKZopDVg==
Age: 2880
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7975b33417f675d21a178b997288d616
1d2e957c46d45d6cb2f44389f3dcc66c880b6065
daffff63daade8bb0c2fd63570229df8502c563dd079b4da4103f6ee89fa67e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 19:51:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
translate.googleapis.com/translate_static/css/translateelement.css
142.250.74.74200 OK 3.6 kB URL HTTP/2 translate.googleapis.com/translate_static/css/translateelement.css
IP 142.250.74.74:0
File type ASCII text, with very long lines (18670)
Hash 897ba9a21d9625286674da769dacc2e2
84b4923ab7dee562395160824d53496314499b77
696cbf5c2f3f1efae555562b72abbbb22bed02eff03d62074555cab241190ae0
GET /translate_static/css/translateelement.css HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sellitafrica.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3619
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 19:12:26 GMT
expires: Thu, 15 Sep 2022 20:12:26 GMT
cache-control: public, max-age=3600
age: 2336
last-modified: Wed, 17 Aug 2022 23:38:00 GMT
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
sellitafrica.com/media/images/feedback_btn.png
85.233.160.184200 OK 4.9 kB URL HTTP/1.1 sellitafrica.com/media/images/feedback_btn.png
IP 85.233.160.184:0
File type PNG image data, 37 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 0631a18a9e154797df8223e8b28bcc24
c34833087a6a14c047a99762490b97ab695df870
c630b7bb4983915c64d71c2526d3ffb45c5ec45224ab7fb5141e685e35d6e0ea
GET /media/images/feedback_btn.png HTTP/1.1
Host: sellitafrica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/media/css/style.css
Cookie: PHPSESSID=7nk0mcnc4o65bjlgsh84vqj4v7
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 19:51:22 GMT
Server: Apache
Last-Modified: Fri, 14 Aug 2015 09:33:13 GMT
ETag: "1304-51d422413f976"
Accept-Ranges: bytes
Content-Length: 4868
Content-Type: image/png
Age: 0
Connection: keep-alive
sellitafrica.com/media/images/header-bottom.png
85.233.160.184200 OK 223 B URL HTTP/1.1 sellitafrica.com/media/images/header-bottom.png
IP 85.233.160.184:0
File type PNG image data, 504 x 2, 8-bit/color RGB, non-interlaced\012- data
Hash 0a53817ce530657017aaf9142c4edf73
3cdc78ec93e4fa3b44847b72708cfda3f968792e
c9d545e8916e9e648f7f86d0269901dc0a822fb28ef7fb6881eef18642c5a397
GET /media/images/header-bottom.png HTTP/1.1
Host: sellitafrica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/media/css/style.css
Cookie: PHPSESSID=7nk0mcnc4o65bjlgsh84vqj4v7
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 19:51:22 GMT
Server: Apache
Last-Modified: Fri, 14 Aug 2015 09:33:19 GMT
ETag: "df-51d4224662bad"
Accept-Ranges: bytes
Content-Length: 223
Content-Type: image/png
Age: 0
Connection: keep-alive
sellitafrica.com/media/fonts/glyphicons-halflings-regular.woff2
85.233.160.184200 OK 18 kB URL HTTP/1.1 sellitafrica.com/media/fonts/glyphicons-halflings-regular.woff2
IP 85.233.160.184:0
File type Web Open Font Format (Version 2), TrueType, length 18028, version 1.589\012- data
Hash 448c34a56d699c29117adc64c43affeb
ca35b697d99cae4d1b60f2d60fcd37771987eb07
fe185d11a49676890d47bb783312a0cda5a44c4039214094e7957b4c040ef11c
Analyzer Verdict Alert fortinet Phishing
GET /media/fonts/glyphicons-halflings-regular.woff2 HTTP/1.1
Host: sellitafrica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://sellitafrica.com/media/css/bootstrap.min.css
Cookie: PHPSESSID=7nk0mcnc4o65bjlgsh84vqj4v7
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 19:51:22 GMT
Server: Apache
Last-Modified: Fri, 14 Aug 2015 09:34:25 GMT
ETag: "466c-51d4228581e36"
Accept-Ranges: bytes
Content-Length: 18028
Age: 0
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c86fc6649c7c512abb52fcd62d51ee26
bf241d6c1779668447df444a239d715b6ed46f6d
822cb499ea058f2c40ce4942048528575fadc172d3669007f5f34fae41c7ea49
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 19:51:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sellitafrica.com/media/font-awesome/fonts/fontawesome-webfont.woff?v=4.1.0
85.233.160.184200 OK 84 kB URL HTTP/1.1 sellitafrica.com/media/font-awesome/fonts/fontawesome-webfont.woff?v=4.1.0
IP 85.233.160.184:0
File type Web Open Font Format, TrueType, length 83760, version 1.0\012- data
Hash fdf491ce5ff5b2da02708cd0e9864719
7f2f3c55c2de192387c351b995115f6b79e09173
66db52b456efe7e29cec11fa09421d03cb09e37ed1b567307ec0444fd605ce31
Analyzer Verdict Alert fortinet Phishing
GET /media/font-awesome/fonts/fontawesome-webfont.woff?v=4.1.0 HTTP/1.1
Host: sellitafrica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://sellitafrica.com/media/font-awesome/css/font-awesome.min.css
Cookie: PHPSESSID=7nk0mcnc4o65bjlgsh84vqj4v7
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 19:51:22 GMT
Server: Apache
Last-Modified: Fri, 14 Aug 2015 09:34:07 GMT
ETag: "14730-51d42274c1057"
Accept-Ranges: bytes
Content-Length: 83760
Content-Type: application/font-woff
Age: 0
Connection: keep-alive
ws.sharethis.com/button/async-buttons.js
54.230.111.82200 OK 19 kB URL HTTP/2 ws.sharethis.com/button/async-buttons.js
IP 54.230.111.82:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 0b3b7d06f8df8276ede0facec198706e
3e42fc6cacb95a5fa1b56c5b3984e8269752fbbe
342ffe242184c80ddf304e21db8b256ccb8aecb1f4bd9363802dcf2f36053837
GET /button/async-buttons.js HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sellitafrica.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 18813
cache-control: max-age=259200
content-encoding: gzip
date: Mon, 12 Sep 2022 22:39:40 GMT
etag: W/"62bdf287-16245"
expires: Thu, 15 Sep 2022 22:39:40 GMT
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: O1SdzIMf1y0b-K5sog4Uhdt2_WXPn3Brztc-ynIr1DgbAqVnrzl8WA==
age: 249102
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
s7.addthis.com/js/300/addthis_widget.js
23.38.200.123308 Permanent Redirect 171 B URL HTTP/1.1 s7.addthis.com/js/300/addthis_widget.js
IP 23.38.200.123:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3c417e9efbcaeb3bf7e7df75cf3b22fd
00465aec6b8ec302eae8abb99678fc5c09c3f343
21bd143d38dbbae427615a7266a86a18dc95c417f3e510632d7a9180d98d3571
GET /js/300/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/
HTTP/1.1 308 Permanent Redirect
Server: nginx/1.15.8
Content-Type: text/html
Content-Length: 171
Location: https://s7.addthis.com/js/300/addthis_widget.js
Date: Thu, 15 Sep 2022 19:51:22 GMT
Connection: keep-alive
X-Distribution: 99
X-Host: s7.addthis.com
connect.facebook.net/en_US/all.js
31.13.72.12200 OK 1.7 kB URL HTTP/1.1 connect.facebook.net/en_US/all.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1961)
Hash 6d856e06cb52fc318b0f514c73b9764a
d1f91130b26c71c3ea9723d8dab27991331e4733
aab003f2dfbf147128b0214f22461a0b6846817d5c503c709307a2114265b142
GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Expose-Headers: X-FB-Content-MD5
x-fb-content-md5: 63d23df048233f57cff71eb388a41b04
ETag: "887e80c3b0c95645e5e6190f8a161c84"
Content-Type: application/x-javascript; charset=utf-8
timing-allow-origin: *
Access-Control-Allow-Origin: *
cross-origin-resource-policy: cross-origin
Expires: Thu, 15 Sep 2022 19:52:45 GMT
Cache-Control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
X-Content-Type-Options: nosniff
x-fb-rlafr: 0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
Content-MD5: bYVuBstS/DGLD1FMc7l2Sg==
X-FB-Debug: 8fCNuNCGRzpBIcqgnvDDYtU9C2dT7uWO6+3S69pEPK2sbsMPPu4uYtfa6Ir7idtss63PLnpui7HK/VPkmd4ZjA==
X-FB-TRIP-ID: 1904183273
Date: Thu, 15 Sep 2022 19:51:22 GMT
Alt-Svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
Connection: keep-alive
Content-Length: 1685
v2.zopim.com/?35QXRUvp7FB2YwXKnEss5AtdOdbczRp8
104.16.105.139302 Moved Temporarily 0 B URL HTTP/1.1 v2.zopim.com/?35QXRUvp7FB2YwXKnEss5AtdOdbczRp8
IP 104.16.105.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?35QXRUvp7FB2YwXKnEss5AtdOdbczRp8 HTTP/1.1
Host: v2.zopim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/
HTTP/1.1 302 Moved Temporarily
Date: Thu, 15 Sep 2022 19:51:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Location: https://static.zdassets.com/ekr/asset_composer.js
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b3e5909badb523-OSL
ws.sharethis.com/button/css/buttons-secure.css
54.230.111.82200 OK 3.9 kB URL HTTP/2 ws.sharethis.com/button/css/buttons-secure.css
IP 54.230.111.82:0
File type ASCII text, with very long lines (23158), with no line terminators
Hash 61da924a747e08c5f54a6cb31c724a48
8e49d971d6a667c3888a481b742e05cafcf72a43
54302324d4b6aa780466c869b9932504d0b1eaa7ef1df6c5481b35fb0625343a
GET /button/css/buttons-secure.css HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sellitafrica.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 3851
content-encoding: gzip
last-modified: Thu, 30 Jun 2022 18:59:19 GMT
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
date: Thu, 15 Sep 2022 02:54:03 GMT
etag: W/"62bdf287-5a76"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5woq55U0hp89cMjeu-pTY1FeQ6LZgKAFERd4fw9JwKgOeDP4z4-WxQ==
age: 61066
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/1.1 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 20006
Date: Thu, 15 Sep 2022 18:20:39 GMT
Expires: Thu, 15 Sep 2022 20:20:39 GMT
Cache-Control: public, max-age=7200
Age: 5443
Last-Modified: Wed, 13 Apr 2022 21:02:38 GMT
Content-Type: text/javascript
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.66200 OK 58 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.66:0
File type ASCII text, with very long lines (2903)
Hash 896c2fdc5e9cf6483ecf4fd6a80ad2e8
e24da8201b486dfb7a773e66d71c2bdb541b59d5
2472ba556ccd459962baca9940f79ec060d1c3b07005f9ba5af6cc746908c983
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Date: Thu, 15 Sep 2022 19:51:22 GMT
Expires: Thu, 15 Sep 2022 19:51:22 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 12425173637582307907
Vary: Accept-Encoding, Origin
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 57925
X-XSS-Protection: 0
s7.addthis.com/js/300/addthis_widget.js
23.38.200.123200 OK 116 kB URL HTTP/2 s7.addthis.com/js/300/addthis_widget.js
IP 23.38.200.123:0
File type ASCII text, with very long lines (54602)
Size 116 kB (116423 bytes)
Hash d5b9b7a3accd3b7b7de639c072ae3ee2
9583b5c046d78af5c6379d844219f828aa2222d0
648dad6716bb917c7d981e7772fca499d9583717fd83ffef47b0534cb9132b60
GET /js/300/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://sellitafrica.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.15.8
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: "5f971164-5834c"
cache-control: public, max-age=600
strict-transport-security: max-age=15724800; includeSubDomains
content-type: application/javascript
content-encoding: gzip
content-length: 116423
date: Thu, 15 Sep 2022 19:51:23 GMT
vary: Accept-Encoding
x-distribution: 99
x-host: s7.addthis.com
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d597af1ab2f21a983bf0f0d105b94209
9d5dd938777abde094c89066b539141a02106b88
a614eb7f969544c8040642be7c852625341e2441e757d063d2af1ff465c8c3f4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5746
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 19:51:23 GMT
Last-Modified: Thu, 15 Sep 2022 18:15:37 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7dff4bc87dbee6fd33e0d7a3dc5ed3bd
59878d4dd98e60b39dcf7ac288e77bb262afab5d
8c3a027cee1f48144eb0504deff1f2b9aa98c9fc3f4e3057ece6caac9f604315
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6378
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 19:51:23 GMT
Last-Modified: Thu, 15 Sep 2022 18:05:05 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/all.js?hash=0682d8767e10ed7aead9cca25e686a47
31.13.72.12200 OK 87 kB URL HTTP/2 connect.facebook.net/en_US/all.js?hash=0682d8767e10ed7aead9cca25e686a47
IP 31.13.72.12:0
File type ASCII text, with very long lines (18639)
Hash d9ac63ea3099bf1795a6a3df9a00a9ba
1a58679a3d2f0788afd1c978deadac071e3807ff
6e01403136580080806a326233208b954ce6520b1a45505da02072e70cb302d5
GET /en_US/all.js?hash=0682d8767e10ed7aead9cca25e686a47 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://sellitafrica.com
Connection: keep-alive
Referer: http://sellitafrica.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 5742551d005732ffb984b889934bcc4e
etag: "992335f9451c06a692dc4f8114624fba"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Fri, 15 Sep 2023 18:57:39 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: 2axj6jCZvxeVpqPfmgCpug==
x-fb-debug: JtdVA0KvesPBKlUde6Kad1CWrz7jQ4mfj1NTZcoTZ2A5KmaWW7j77lczFoIksL9j5FpnsW8re+slna4jmEkU7A==
content-length: 86895
x-fb-trip-id: 1904183273
date: Thu, 15 Sep 2022 19:51:23 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 3b816941816ca5fed922c0604e9da8dc
94c14ea6c512c6c262479b4299f1cd4dd99ea5cd
a05000788114487ba8b8c661ba1370b29c96a93a16275b3fab497cf75722b51d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 19:51:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 29df771358c022fe0b4de59cd16d3054
762b2b601a2ee8cf1d55be8608ce18c2b26e1324
ba1567895d80048f078cc1bea3ae79eadd8aa764df104e6717516ca8d728e4e6
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 15 Sep 2022 19:51:23 GMT
Last-Modified: Thu, 15 Sep 2022 18:29:07 GMT
Server: ECS (nyb/1D10)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: nND8M49IKhkKlKbuxULv6GHUTClPOveNuhj5cu07uYH9pu-Wuf4Slg==
Age: 4936
www.google-analytics.com/j/collect?v=1&_v=j96&a=1792598628&t=pageview&_s=1&dl=http%3A%2F%2Fsellitafrica.com%2Fmedia%2Fstorage%2Feditor%2Ffiles%2Ffree-robux-com_gm431946152.pdf&ul=en-us&de=UTF-8&dt=Sell%20It%20Africa&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAAC~&jid=370769990&gjid=899694612&cid=1701725394.1663271468&tid=UA-66330051-1&_gid=16838742.1663271468&_r=1&_slc=1&z=503643555
142.250.74.174200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j96&a=1792598628&t=pageview&_s=1&dl=http%3A%2F%2Fsellitafrica.com%2Fmedia%2Fstorage%2Feditor%2Ffiles%2Ffree-robux-com_gm431946152.pdf&ul=en-us&de=UTF-8&dt=Sell%20It%20Africa&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAAC~&jid=370769990&gjid=899694612&cid=1701725394.1663271468&tid=UA-66330051-1&_gid=16838742.1663271468&_r=1&_slc=1&z=503643555
IP 142.250.74.174:0
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j96&a=1792598628&t=pageview&_s=1&dl=http%3A%2F%2Fsellitafrica.com%2Fmedia%2Fstorage%2Feditor%2Ffiles%2Ffree-robux-com_gm431946152.pdf&ul=en-us&de=UTF-8&dt=Sell%20It%20Africa&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAAC~&jid=370769990&gjid=899694612&cid=1701725394.1663271468&tid=UA-66330051-1&_gid=16838742.1663271468&_r=1&_slc=1&z=503643555 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://sellitafrica.com
Connection: keep-alive
Referer: http://sellitafrica.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://sellitafrica.com
date: Thu, 15 Sep 2022 19:51:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 20620ba615dba1de34528390492c3f53
2ca43d3a828682e10eb7638972b79b7136395e2b
12cf30cf1de58b4bab8af4a5d159b42909c554ae7b34e6f7361d9a49f1e861b7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 19:51:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
l.sharethis.com/pview?event=pview&version=buttons.js&lang=en&sessionID=1663271467185.67273&hostname=sellitafrica.com&location=%2Fmedia%2Fstorage%2Feditor%2Ffiles%2Ffree-robux-com_gm431946152.pdf&product=widget&fcmp=false&fcmpv2=false&publisher=ur.00000000-0000-0000-0000-000000000000&url=http%3A%2F%2Fsellitafrica.com%2Fmedia%2Fstorage%2Feditor%2Ffiles%2Ffree-robux-com_gm431946152.pdf&title=Sell%20It%20Africa&sop=false&description=Sell%20It%20Africa
18.196.212.55204 No Content 0 B URL HTTP/1.1 l.sharethis.com/pview?event=pview&version=buttons.js&lang=en&sessionID=1663271467185.67273&hostname=sellitafrica.com&location=%2Fmedia%2Fstorage%2Feditor%2Ffiles%2Ffree-robux-com_gm431946152.pdf&product=widget&fcmp=false&fcmpv2=false&publisher=ur.00000000-0000-0000-0000-000000000000&url=http%3A%2F%2Fsellitafrica.com%2Fmedia%2Fstorage%2Feditor%2Ffiles%2Ffree-robux-com_gm431946152.pdf&title=Sell%20It%20Africa&sop=false&description=Sell%20It%20Africa
IP 18.196.212.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pview?event=pview&version=buttons.js&lang=en&sessionID=1663271467185.67273&hostname=sellitafrica.com&location=%2Fmedia%2Fstorage%2Feditor%2Ffiles%2Ffree-robux-com_gm431946152.pdf&product=widget&fcmp=false&fcmpv2=false&publisher=ur.00000000-0000-0000-0000-000000000000&url=http%3A%2F%2Fsellitafrica.com%2Fmedia%2Fstorage%2Feditor%2Ffiles%2Ffree-robux-com_gm431946152.pdf&title=Sell%20It%20Africa&sop=false&description=Sell%20It%20Africa HTTP/1.1
Host: l.sharethis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://sellitafrica.com
Connection: keep-alive
Referer: http://sellitafrica.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Origin: http://sellitafrica.com
Access-Control-Expose-Headers: stid
Access-Control-Max-Age: 1728000
Cache-Control: no-cache, no-store, must-revalidate
Date: Thu, 15 Sep 2022 19:51:23 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains;
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0dfd060e0fb8dec42e8f52f8db247b61
d6f33b6390aa9a4b34375d58009977926bc1fff3
17e3d9698e2cd4caf0cbf66b71393b473300fb9a8a4b6f7b97f421e93d54ec44
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 19:51:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 3b816941816ca5fed922c0604e9da8dc
94c14ea6c512c6c262479b4299f1cd4dd99ea5cd
a05000788114487ba8b8c661ba1370b29c96a93a16275b3fab497cf75722b51d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 19:51:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sellitafrica.com/media/css/bootstrap.min.css
85.233.160.184200 OK 23 kB URL HTTP/1.1 sellitafrica.com/media/css/bootstrap.min.css
IP 85.233.160.184:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (47271)
Hash 370ba7a923890419df33a3db312af6e7
85246d1dff2609f2720cc065b7d56972376c049e
654641f9296867249c2fe74b64a9550b6ff47a37e36ee07bb1d67537ae986acf
GET /media/css/bootstrap.min.css HTTP/1.1
Host: sellitafrica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/media/storage/editor/files/free-robux-com_gm431946152.pdf
Cookie: PHPSESSID=7nk0mcnc4o65bjlgsh84vqj4v7
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 19:51:22 GMT
Server: Apache
Last-Modified: Fri, 14 Aug 2015 09:30:32 GMT
Accept-Ranges: bytes
Content-Type: text/css
ETag: W/"1deac-51d421a7aa135"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 0
Transfer-Encoding: chunked
Connection: keep-alive
googleads.g.doubleclick.net/pagead/html/r20220912/r20190131/zrt_lookup.html
142.250.74.34200 OK 4.4 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20220912/r20190131/zrt_lookup.html
IP 142.250.74.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1731)
Hash 09a8bd805dba1307ae0bd76a0c9ca73d
bdc16e7610abae944da47ff3a0e5fea818241fb0
e3978f36e9c5f0b909ed64015db629e2c64b46e75d165c6d1d146fcb792cdbde
GET /pagead/html/r20220912/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sellitafrica.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 4412
x-xss-protection: 0
date: Thu, 15 Sep 2022 19:33:55 GMT
expires: Thu, 29 Sep 2022 19:33:55 GMT
cache-control: public, max-age=1209600
age: 1048
etag: 8616628553774171045
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 91dad4479f7dcb623266cf0dcfef5875
9fcf1f0e16c17a43021ab8fb01089d2d9c9f1d3a
0dc4f9c3ecdccb7e1b7a651c72ee63acc06482b362f060547534c3196e561412
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 19:51:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209080101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-4955153524733617&plah=sellitafrica.com
142.250.74.66200 OK 125 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209080101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-4955153524733617&plah=sellitafrica.com
IP 142.250.74.66:0
File type ASCII text, with very long lines (5015)
Size 125 kB (124748 bytes)
Hash 2768526873f53e6772db655ea585adef
36dfcccae3e963b104270383f8fd3ea271025a87
1ecb7b06ec8a240e0acad309117b4f838bd3e841414771244eb32cad18f6e2ce
GET /pagead/managed/js/adsense/m202209080101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-4955153524733617&plah=sellitafrica.com HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sellitafrica.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Thu, 15 Sep 2022 19:51:23 GMT
expires: Thu, 15 Sep 2022 19:51:23 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 196248240226552200
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 124748
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7df27d4646e6e1cd358f0997ad604ea9
bf0c3feb55312e00ed8aa718458cc1e932903ac2
ba7ebd5b66156d280c46a2e492c5830f67e114711498b405b4e57ee1f45f4905
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 19:51:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
z.moatads.com/addthismoatframe568911941483/moatframe.js
23.38.201.146200 OK 948 B URL HTTP/2 z.moatads.com/addthismoatframe568911941483/moatframe.js
IP 23.38.201.146:0
File type ASCII text, with very long lines (523)
Hash f14b4e1f799b14f798a195f43cf58376
b6fd3b3d407fb4c0a00fb8a31862235e2a6e0a86
92ed3e9fda5fa4d738ff4d9023846b56633617363dda6a750cacb4fba53241ac
GET /addthismoatframe568911941483/moatframe.js HTTP/1.1
Host: z.moatads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sellitafrica.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: e0HboiVQpjIDEK8WTxqU5+8G8wOtu9bNCFY72alTHLP0/Yb+qoiTOxu6fad89ebRofzHxENxOOg=
x-amz-request-id: 61EC92F13BB22DD4
last-modified: Fri, 08 Nov 2019 20:13:52 GMT
etag: "f14b4e1f799b14f798a195f43cf58376"
content-encoding: gzip
accept-ranges: bytes
content-type: application/x-javascript
content-length: 948
server: AmazonS3
vary: Accept-Encoding
cache-control: max-age=53466
date: Thu, 15 Sep 2022 19:51:23 GMT
X-Firefox-Spdy: h2
www.google.com/images/cleardot.gif
142.250.74.164200 OK 43 B URL HTTP/2 www.google.com/images/cleardot.gif
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
GET /images/cleardot.gif HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sellitafrica.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/gif
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 43
date: Thu, 15 Sep 2022 19:51:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Tue, 22 Oct 2019 18:30:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/images/branding/product/1x/translate_24dp.png
142.250.74.163200 OK 846 B URL HTTP/2 www.gstatic.com/images/branding/product/1x/translate_24dp.png
IP 142.250.74.163:0
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash e9cd262114358f26b7608b56905185dc
6dbde0a96deaab2b529723ce26c62043cf9180ab
5a861509b658aa24fc3aed2867ac3c061e7d818d90b9990959afc6d1b5d4ff99
GET /images/branding/product/1x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sellitafrica.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 846
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 04:18:25 GMT
expires: Fri, 15 Sep 2023 04:18:25 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
age: 55978
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/images/branding/product/2x/translate_24dp.png
142.250.74.163200 OK 1.8 kB URL HTTP/2 www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP 142.250.74.163:0
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82
GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://translate.googleapis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 19:18:14 GMT
expires: Fri, 15 Sep 2023 19:18:14 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
age: 1989
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 20620ba615dba1de34528390492c3f53
2ca43d3a828682e10eb7638972b79b7136395e2b
12cf30cf1de58b4bab8af4a5d159b42909c554ae7b34e6f7361d9a49f1e861b7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 19:51:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 3f94c38b92316f91765ceed606f9f4ea
03442fbbe884ceac60c9585a8bbc0b87278523fd
70df317dbe22ae71bcc285fc0ea2185a11822856187a6c235c758df3f63eb75f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 19:51:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6e669093dc2c285ce41d74ad82e5c3d2
1e65ded94e2b8c575979da362ce8dc2e304c5d5f
5a3c12851ee84e69a6ff8f0707d036d36827c77011af12aeabc187220e0fc79c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 19:51:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 01721134027b8087fcaea01ae7470149
e3d82b3dd35d846d3bd662a0f9b7a51cba2ba864
a7aa0a8736af71aee8a545362876a784954dbb37cda1a2c184c7ef99e14f2b56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 19:51:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ekr.zdassets.com/compose/zopim_chat/35QXRUvp7FB2YwXKnEss5AtdOdbczRp8
104.18.70.113200 OK 624 B URL HTTP/2 ekr.zdassets.com/compose/zopim_chat/35QXRUvp7FB2YwXKnEss5AtdOdbczRp8
IP 104.18.70.113:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 339b8c5071bcbfbb6d773b0e45d168eb
18fbfa29b4253a9d8bd52bbd68cea76d929c423e
7a8b7f65238f4d88bb0fcd05663a80db412db215a9cf7ba2f9b74e151b635679
GET /compose/zopim_chat/35QXRUvp7FB2YwXKnEss5AtdOdbczRp8 HTTP/1.1
Host: ekr.zdassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://sellitafrica.com
Connection: keep-alive
Referer: http://sellitafrica.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 19:51:23 GMT
content-type: application/json; charset=utf-8
status: 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=600, public, s-maxage=60, stale-while-revalidate=600, stale-if-error=3600
etag: W/"3eafc951b3b4c447a737e67ba1874f7b"
x-request-id: e858c5e82a9a9fad3836a32eba38a8d7, e858c5e82a9a9fad3836a32eba38a8d7
x-runtime: 0.002533
vary: Origin, Accept-Encoding
x-zendesk-zorg: yes
cf-cache-status: HIT
age: 8
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0J5CxJ7tbRTLZxYO3fRFnj6R3S1CISRCJLhNkiYaXLY5%2B6YxJP637urm%2FY2OWwEkzn08kijZ2HluIYCFqCXZkGipl5ox%2BO7w0RidlwLaILwG13Vt137cRW9s%2FV3hm28lbPc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 74b3e592ebe21bfe-OSL
content-encoding: br
X-Firefox-Spdy: h2
l.sharethis.com/pview?event=pview&version=buttons.js&lang=en&sessionID=1663271467185.67273&hostname=sellitafrica.com&location=%2Fmedia%2Fstorage%2Feditor%2Ffiles%2Ffree-robux-com_gm431946152.pdf&product=widget&fcmp=false&fcmpv2=false&publisher=ur.00000000-0000-0000-0000-000000000000&url=http%3A%2F%2Fsellitafrica.com%2Fmedia%2Fstorage%2Feditor%2Ffiles%2Ffree-robux-com_gm431946152.pdf&title=Sell%20It%20Africa&sop=false&description=Sell%20It%20Africa&description=Sell%20It%20Africa&img_pview=true
18.196.212.55204 No Content 0 B URL HTTP/1.1 l.sharethis.com/pview?event=pview&version=buttons.js&lang=en&sessionID=1663271467185.67273&hostname=sellitafrica.com&location=%2Fmedia%2Fstorage%2Feditor%2Ffiles%2Ffree-robux-com_gm431946152.pdf&product=widget&fcmp=false&fcmpv2=false&publisher=ur.00000000-0000-0000-0000-000000000000&url=http%3A%2F%2Fsellitafrica.com%2Fmedia%2Fstorage%2Feditor%2Ffiles%2Ffree-robux-com_gm431946152.pdf&title=Sell%20It%20Africa&sop=false&description=Sell%20It%20Africa&description=Sell%20It%20Africa&img_pview=true
IP 18.196.212.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pview?event=pview&version=buttons.js&lang=en&sessionID=1663271467185.67273&hostname=sellitafrica.com&location=%2Fmedia%2Fstorage%2Feditor%2Ffiles%2Ffree-robux-com_gm431946152.pdf&product=widget&fcmp=false&fcmpv2=false&publisher=ur.00000000-0000-0000-0000-000000000000&url=http%3A%2F%2Fsellitafrica.com%2Fmedia%2Fstorage%2Feditor%2Ffiles%2Ffree-robux-com_gm431946152.pdf&title=Sell%20It%20Africa&sop=false&description=Sell%20It%20Africa&description=Sell%20It%20Africa&img_pview=true HTTP/1.1
Host: l.sharethis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sellitafrica.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: stid
Access-Control-Max-Age: 1728000
Cache-Control: no-cache, no-store, must-revalidate
Date: Thu, 15 Sep 2022 19:51:23 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains;
Connection: keep-alive
push.services.mozilla.com/
35.162.203.49101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.162.203.49:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: wuFrlAsSZxEI8RrpMFdDBw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: vXbaQMtjuCfuRMeLzrYIFmn35dY=
translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback
142.250.74.42200 OK 1.4 kB URL HTTP/2 translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback
IP 142.250.74.42:0
Hash 3ad547ec47ef63d87eff80e53d6dd861
20cd334266b4bc9b47966d5487f0a2b2d41db765
c9b9dc1b30d38db2a72068eb7d8a5d1af32006b64263cab5e89f500f62856ea3
GET /v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback HTTP/1.1
Host: translate-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sellitafrica.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 15 Sep 2022 19:51:23 GMT
server: ESF
cache-control: private
content-length: 1392
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
expires: Thu, 15 Sep 2022 19:51:23 GMT
set-cookie: NID=511=NewL2c5ZeIxV8LqsUjsIGlZ5Sv36HyiudM-7HEpwpC-vL5Ip0cr5I5A52V2f_vy1rZJLHKEmRI5fn4W6C0KDp5QkhpkFc0Ylwf5kwgVsr9E_ND-0XC2nRXvaQtKRevYoGqrvYbWt1B3wTCRaLAVAYnfyXtCTCJh82ste5vpo0xs; expires=Fri, 17-Mar-2023 19:51:23 GMT; path=/; domain=.translate-pa.googleapis.com; HttpOnly
CONSENT=PENDING+116; expires=Sat, 14-Sep-2024 19:51:23 GMT; path=/; domain=.googleapis.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5c5d3d907a3f1200abaf8498135f7196
7bcc003762243409d8d94a0afd8ba7712a08e4fa
96524e2083d0bd0052309077ec068010a30b490d7470bfe432af50765c30d051
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 19:51:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a8b2bb270d78a6dddeb5b7fa01bd896c
eee28c4dd10c090f100c6ed383392b67d9fb9200
5c929c1a5e85ed508916eda62cccedb3ef1a5f407468596fa2726c476e2a9340
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 19:51:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.js?domain=sellitafrica.com
142.250.74.34200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=sellitafrica.com
IP 142.250.74.34:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=sellitafrica.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sellitafrica.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 15 Sep 2022 19:51:23 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
partner.googleadservices.com/gampad/cookie.js?domain=sellitafrica.com&callback=_gfp_s_&client=ca-pub-4955153524733617
172.217.21.162200 OK 204 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=sellitafrica.com&callback=_gfp_s_&client=ca-pub-4955153524733617
IP 172.217.21.162:0
File type ASCII text, with no line terminators
Hash 6a270f7299f3cf4b8a15c2e96c05db89
ecb93cbb1ab1d277173bc239fe869a8941d1b782
fd79fa4bd562969a799b629571e7393be25fe2247a304975181a9c286c742941
GET /gampad/cookie.js?domain=sellitafrica.com&callback=_gfp_s_&client=ca-pub-4955153524733617 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sellitafrica.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 15 Sep 2022 19:51:23 GMT
server: cafe
cache-control: private
content-length: 204
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 01721134027b8087fcaea01ae7470149
e3d82b3dd35d846d3bd662a0f9b7a51cba2ba864
a7aa0a8736af71aee8a545362876a784954dbb37cda1a2c184c7ef99e14f2b56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 19:51:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=sellitafrica.com
216.58.207.194200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=sellitafrica.com
IP 216.58.207.194:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=sellitafrica.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sellitafrica.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 15 Sep 2022 19:51:23 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash edc3fd16211643f33475ab54eac21a38
2971ab3faf279849c6c89c2e557b361b09010a9b
eeea21b2ec81e44dc5caabf4c8be119c12c8566098253f5da2c45d45a517f0dc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 19:51:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a8761319363e537f58bedc071786c203
1e983c0df7eeca5ed22cf839bb36c16c251101fe
528d57282b86878146b06df898cfa945913c02e05e5f8b1190907d456f13860e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 19:51:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
v2.zopim.com/w?35QXRUvp7FB2YwXKnEss5AtdOdbczRp8
104.16.105.139302 Found 0 B URL HTTP/2 v2.zopim.com/w?35QXRUvp7FB2YwXKnEss5AtdOdbczRp8
IP 104.16.105.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /w?35QXRUvp7FB2YwXKnEss5AtdOdbczRp8 HTTP/1.1
Host: v2.zopim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sellitafrica.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 15 Sep 2022 19:51:23 GMT
content-type: application/octet-stream
content-length: 0
location: https://v2.zopim.com/bin/v/widget_v2.334.js
etag: "62e9bace-0"
expires: Thu, 15 Sep 2022 23:51:23 GMT
cache-control: max-age=14400, max-age=14400, public, must-revalidate, proxy-revalidate
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74b3e5941dc81c0a-OSL
X-Firefox-Spdy: h2
v1.addthisedge.com/live/boost/ra-530ec96b2245a9e9/_ate.track.config_resp
23.38.200.123200 OK 632 B URL HTTP/2 v1.addthisedge.com/live/boost/ra-530ec96b2245a9e9/_ate.track.config_resp
IP 23.38.200.123:0
File type ASCII text, with very long lines (1922), with no line terminators
Hash 63552e116d48020f9e0acb6427b989d6
d6ce922b17fe3fc7abd9a0bfaa8054f3292078fd
66f0021736981bbfe8f3f7689b8d5da64135be8f9dc4ea3a0985ee61107cdece
GET /live/boost/ra-530ec96b2245a9e9/_ate.track.config_resp HTTP/1.1
Host: v1.addthisedge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sellitafrica.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 632
etag: -1384418184--gzip
content-disposition: attachment; filename=1.txt
content-encoding: gzip
cache-control: public, max-age=52, s-maxage=86400
date: Thu, 15 Sep 2022 19:51:23 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
23.38.200.123200 OK 26 kB URL HTTP/2 s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
IP 23.38.200.123:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63757)
Hash 707317ccaabe08d32d1bd781754e6871
bb82dcd3e044c960e0861c2ce878f5504e628f78
d0a164ece41c61aec26517fb645646f5ba91f72ea5448eff1ee6c393b7c53051
GET /static/sh.f48a1a04fe8dbf021b4cda1d.html HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sellitafrica.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: text/html
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-11adc"
timing-allow-origin: *
cache-control: public, max-age=86313600
p3p: CP="NON ADM OUR DEV IND COM STA"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 26421
date: Thu, 15 Sep 2022 19:51:23 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
s7.addthis.com/static/layers.fa6cd1947ce26e890d3d.js
23.38.200.123200 OK 78 kB URL HTTP/2 s7.addthis.com/static/layers.fa6cd1947ce26e890d3d.js
IP 23.38.200.123:0
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash 9a77dff666eebb6cf4bbc4c67c7b563b
9e98d7824a7b4e34665c2690d6f52caddad1fe4b
6cdf8e597f3cbe759531153fd926d51aeaebd836a1c9bc1436e079645bfd3ad7
GET /static/layers.fa6cd1947ce26e890d3d.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sellitafrica.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-41cf5"
timing-allow-origin: *
cache-control: public, max-age=86313600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 77672
date: Thu, 15 Sep 2022 19:51:23 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
v2.zopim.com/bin/v/widget_v2.334.js
104.16.105.139200 OK 260 kB URL HTTP/2 v2.zopim.com/bin/v/widget_v2.334.js
IP 104.16.105.139:0
File type Unicode text, UTF-8 text, with very long lines (5091)
Size 260 kB (260435 bytes)
Hash fe64db5bdae939fc75b48b03f42d060e
ee17f254074fc4ab955c05c33a115a55644e96d3
1f1c38e2fe6acfa8ad4372a2ac60b8ac7b3fb5a6c9f56739c585076d9c204de2
GET /bin/v/widget_v2.334.js HTTP/1.1
Host: v2.zopim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://sellitafrica.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 19:51:23 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Wed, 27 Jul 2022 03:35:19 GMT
vary: Accept-Encoding
etag: W/"62e0b277-10301f"
expires: Sun, 12 Sep 2032 19:51:23 GMT
cache-control: public, max-age=315360000
content-encoding: gzip
cf-cache-status: HIT
age: 62037
server: cloudflare
cf-ray: 74b3e5945e2c1c0a-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 12bf16f54f35521707d8553f01f5ef77
d2352fdafb9ca1a0578f230832adf335770d44f1
151977d5788e540f46357f731c6846903682f2d0c9e2273f113eeca05c138912
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 19:51:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 7220be447989606f97cb130c743af08c
2783f24b7539c2bad42df8d2989cc7f720b500b4
c7545cfc6907cfc3b1aa84b6c563f4c71f94b06d590a127e3d397c6f9bc949c5
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 15 Sep 2022 19:51:23 GMT
Last-Modified: Thu, 15 Sep 2022 19:00:02 GMT
Server: ECS (nyb/1D1C)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: jIFWpnRbCrC6Z2tEF0GmKdKvGSkCnfReO94yLWvRCEjBqeIAJwRo6Q==
Age: 3081
tpc.googlesyndication.com/sodar/sodar2.js
142.250.74.33200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sellitafrica.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Thu, 15 Sep 2022 19:51:23 GMT
expires: Thu, 15 Sep 2022 19:51:23 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
m.addthis.com/live/red_lojson/300lo.json?si=6323822ba77c44ac&bkl=0&bl=1&pdt=456&sid=6323822ba77c44ac&pub=ra-530ec96b2245a9e9&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=sellitafrica.com&fp=media%2Fstorage%2Feditor%2Ffiles%2Ffree-robux-com_gm431946152.pdf&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1663271468376&jsl=129&uvs=6323822b84d9fa2e000&skipb=1&callback=addthis.cbs.jsonp__171881266249009120
23.38.200.123200 OK 90 B URL HTTP/2 m.addthis.com/live/red_lojson/300lo.json?si=6323822ba77c44ac&bkl=0&bl=1&pdt=456&sid=6323822ba77c44ac&pub=ra-530ec96b2245a9e9&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=sellitafrica.com&fp=media%2Fstorage%2Feditor%2Ffiles%2Ffree-robux-com_gm431946152.pdf&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1663271468376&jsl=129&uvs=6323822b84d9fa2e000&skipb=1&callback=addthis.cbs.jsonp__171881266249009120
IP 23.38.200.123:0
File type ASCII text, with no line terminators
Hash 03c3e93dfe8eecadda5a9dfe1181b91d
5a959e47c468296a2f495bb5abad7f6a24ddacc5
7a565f8e7373119b4066f4ae5f81baa611ff7a4d8a99b135e8112e4cb5245e76
GET /live/red_lojson/300lo.json?si=6323822ba77c44ac&bkl=0&bl=1&pdt=456&sid=6323822ba77c44ac&pub=ra-530ec96b2245a9e9&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=sellitafrica.com&fp=media%2Fstorage%2Feditor%2Ffiles%2Ffree-robux-com_gm431946152.pdf&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1663271468376&jsl=129&uvs=6323822b84d9fa2e000&skipb=1&callback=addthis.cbs.jsonp__171881266249009120 HTTP/1.1
Host: m.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sellitafrica.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 90
cache-control: max-age=0, no-cache, no-store, no-transform
pragma: no-cache
content-disposition: attachment; filename=1.txt
date: Thu, 15 Sep 2022 19:51:23 GMT
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
142.250.74.33200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sellitafrica.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 12:27:00 GMT
expires: Wed, 13 Sep 2023 12:27:00 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 199463
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
widget-mediator.zopim.com/s/W/ws/c-lMAQDfUHcGiDF5/c/1663271468356
3.121.47.64101 Switching Protocols 0 B URL HTTP/1.1 widget-mediator.zopim.com/s/W/ws/c-lMAQDfUHcGiDF5/c/1663271468356
IP 3.121.47.64:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/W/ws/c-lMAQDfUHcGiDF5/c/1663271468356 HTTP/1.1
Host: widget-mediator.zopim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: http://sellitafrica.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: R3f9REa+2QR3SrvbBgRpgw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Thu, 15 Sep 2022 19:51:23 GMT
Connection: upgrade
Set-Cookie: AWSALB=Jy1oTVzfkcaEfJnjQD3cUdhaaUOhZWf8mID+0JCIEJ6uz3iMcid+FCWvpuYLspAa94ILh8/ExeDsbIp8tawRX9lLEQbw9WEn0PiQvIVPUYN3kszi1eDvEX2iqZg9; Expires=Thu, 22 Sep 2022 19:51:23 GMT; Path=/
AWSALBCORS=Jy1oTVzfkcaEfJnjQD3cUdhaaUOhZWf8mID+0JCIEJ6uz3iMcid+FCWvpuYLspAa94ILh8/ExeDsbIp8tawRX9lLEQbw9WEn0PiQvIVPUYN3kszi1eDvEX2iqZg9; Expires=Thu, 22 Sep 2022 19:51:23 GMT; Path=/; SameSite=None; Secure
Upgrade: websocket
Sec-WebSocket-Accept: ETO/fKOjC5GnDcn98QbM7vEf6Ls=
Sec-WebSocket-Version: 13
WebSocket-Server: uWebSockets
r3.o.lencr.org/
23.36.76.242200 OK 503 B IP 23.36.76.242:0
ASN #20940 Akamai International B.V.
Hash b9bfbb189fcbbdc76ff274e424f39053
de008d728f2274f08019c97bc969ddd6fe64a65d
a4f07d30f29e785e2ee605aee590ab928c3e1412f4dc61ff163cf32445cc3af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4054
Expires: Thu, 15 Sep 2022 20:58:58 GMT
Date: Thu, 15 Sep 2022 19:51:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.242200 OK 503 B IP 23.36.76.242:0
ASN #20940 Akamai International B.V.
Hash b9bfbb189fcbbdc76ff274e424f39053
de008d728f2274f08019c97bc969ddd6fe64a65d
a4f07d30f29e785e2ee605aee590ab928c3e1412f4dc61ff163cf32445cc3af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4054
Expires: Thu, 15 Sep 2022 20:58:58 GMT
Date: Thu, 15 Sep 2022 19:51:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.242200 OK 503 B IP 23.36.76.242:0
ASN #20940 Akamai International B.V.
Hash b9bfbb189fcbbdc76ff274e424f39053
de008d728f2274f08019c97bc969ddd6fe64a65d
a4f07d30f29e785e2ee605aee590ab928c3e1412f4dc61ff163cf32445cc3af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4054
Expires: Thu, 15 Sep 2022 20:58:58 GMT
Date: Thu, 15 Sep 2022 19:51:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.242200 OK 503 B IP 23.36.76.242:0
ASN #20940 Akamai International B.V.
Hash b9bfbb189fcbbdc76ff274e424f39053
de008d728f2274f08019c97bc969ddd6fe64a65d
a4f07d30f29e785e2ee605aee590ab928c3e1412f4dc61ff163cf32445cc3af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4054
Expires: Thu, 15 Sep 2022 20:58:58 GMT
Date: Thu, 15 Sep 2022 19:51:24 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb035d64b-46a7-4c49-b95b-e454aa90f817.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb035d64b-46a7-4c49-b95b-e454aa90f817.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1633672fad0b564108cf81ad711dc881
d37ad0f40bc1f3f0022467dd0af2478980bd858a
cc7176a297f6009f07074fb9af796132b4452833be675bf378cc950fe81a582a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb035d64b-46a7-4c49-b95b-e454aa90f817.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9071
x-amzn-requestid: b450f7cf-6cc7-4d1f-aef3-4496f0971727
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeIxuEq6oAMF9jQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632254d7-6912ef8731d81fa43b805e5b;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:25:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 6LDUuDX1W8-Q88pDJma0xCAd5QuJ0YV-VpJ_8LVyDHX9YN1k0fQZ8Q==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 22:25:28 GMT
etag: "d37ad0f40bc1f3f0022467dd0af2478980bd858a"
content-type: image/jpeg
age: 77156
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4d822c-5153-4c55-bcb3-aa6ee72e3b62.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4d822c-5153-4c55-bcb3-aa6ee72e3b62.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f2157f7cfbdeb607f28ae51eb090f2c3
33d0dcadaa42179b2eae914c8ad16c9c088afbc9
135cd89c2c82f0f5e53d2612d5eac868c175b28a567a07e63a2073942e36a066
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4d822c-5153-4c55-bcb3-aa6ee72e3b62.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6078
x-amzn-requestid: e09c099f-5a2d-49d7-b6ab-e16f09c28bd0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YavJEEM5IAMFreQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f8a0-0fbb7b3d0cd6fbfa04f5a5d2;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:39:44 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Rx8KX_QI5I2x7q0gcvxcJX7QzZUe2KkfqAUVR64lEujF4xDEWWDhZQ==
via: 1.1 9b21fd56256eda6d1379e32829c4c446.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 20:21:10 GMT
age: 84614
etag: "33d0dcadaa42179b2eae914c8ad16c9c088afbc9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86bf6a5e-a3e5-479d-a052-fa843c45a3d9.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86bf6a5e-a3e5-479d-a052-fa843c45a3d9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4833535b1650b0ac875704023b650e66
96ab8cd8e14350f730d26731f3445710324e24e2
d2b5a51e39a4890ba56e819d4d5d1d57d4d3cfc50dde42efdf23b8e9be17d1c7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86bf6a5e-a3e5-479d-a052-fa843c45a3d9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9400
x-amzn-requestid: 8cf35176-18a1-427b-870c-bdae465060c8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYM18E-iIAMFcmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ff4f2-427bc0ff6593e71e25b91589;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 03:11:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0nTpbTo79RT78Sin1pTWaq4pRKWZyqnBkZCT2p66wWoW-A1OScJmIg==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 20:21:09 GMT
age: 84615
etag: "96ab8cd8e14350f730d26731f3445710324e24e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F706eea65-3ba8-43f4-85c3-967026936660.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F706eea65-3ba8-43f4-85c3-967026936660.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3ef9865421a37eae9a4df04083d27485
c7cf1f6a259cece60a34261ec83ee00736e1d72b
723b65ba660f22281f85d6caceea23e9cd932ee9084dc905a08a585746c4c4cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F706eea65-3ba8-43f4-85c3-967026936660.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9922
x-amzn-requestid: de1e3e45-74ff-41b2-986f-e78473cb6d98
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YVc1SGM7IAMFw0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631edb54-2099524d6f2c338b41eea101;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 07:10:12 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: g4LYoK2-sx5QTvWPxwsh8yhHjOswmtzMB6d4N9YAvQOvspuvSFbJOA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 22:17:07 GMT
age: 77657
etag: "c7cf1f6a259cece60a34261ec83ee00736e1d72b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1266c973-1bdd-4969-82ca-1106689fe929.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1266c973-1bdd-4969-82ca-1106689fe929.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f50c34bc30a732593e8fe465055a44ff
af100925cba1be716fd2200715d6136bd7f0c5bc
703049736ccc8815945d69634059c4cd39533417e0969107d460c36a6787c761
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1266c973-1bdd-4969-82ca-1106689fe929.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5078
x-amzn-requestid: b6177371-a8ba-4541-a48d-21bd806e866e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X0erUHT-IAMFWKg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6311ab15-157ed5b700e0aad5481f5c0f;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 07:04:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Vlo8vCUrKDtvhAGHSYKMmPk-wVNgx9OlU3ZVrpgG0tgk8ZBllAtXNQ==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 20:21:58 GMT
age: 84566
etag: "af100925cba1be716fd2200715d6136bd7f0c5bc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fafb10f81-8409-401c-bd62-3ec01954600c.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fafb10f81-8409-401c-bd62-3ec01954600c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2e5f57ba37fac4e6047a9a321a8ec084
f6b742549ea35a4b1345cffb937a8bbcceee08ef
f8c67c54806e47089b9ba297599e3e4cde1fd2e2e38b76acc9e8de0e99d7b77e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fafb10f81-8409-401c-bd62-3ec01954600c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6770
x-amzn-requestid: b7c9513c-b8ba-41c7-9f9a-0a9d2266172d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X7FlpEVRIAMFygA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63144fbd-7a4408363cdc46c9355a9f47;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 07:11:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: fqj5PljprRruE1jwYAVwKoHkjys-RakUjzuV67_Ued6T4et99JPxPg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:42:04 GMT
age: 79760
etag: "f6b742549ea35a4b1345cffb937a8bbcceee08ef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ws.sharethis.com/secure/index.html
54.230.111.82200 OK 2.1 kB URL HTTP/2 ws.sharethis.com/secure/index.html
IP 54.230.111.82:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 419687bd508caebcc46a7905a7ee92ce
b7325a1aa7dd75dc648f38cc455ff88b41d81ee3
a1ac47cf892265d3b60c4c9e8a1f39e3dbe4004a003ba9b472a1532a5158afcd
GET /secure/index.html HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sellitafrica.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 2090
content-encoding: gzip
last-modified: Thu, 30 Jun 2022 18:59:19 GMT
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
date: Thu, 15 Sep 2022 06:49:46 GMT
etag: W/"62bdf287-1ade"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: krR2ssMakBD59GNVsbRG4I4GqxWZLlkzqhYnhcVBCow2vSpoL1QM7w==
age: 46901
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
maps.google.com/maps-api-v3/api/js/50/5/common.js
216.58.211.14200 OK 69 kB URL HTTP/1.1 maps.google.com/maps-api-v3/api/js/50/5/common.js
IP 216.58.211.14:0
File type ASCII text, with very long lines (581)
Hash 1f44a9e5bcab08f690753426bc4f23d6
e974f2f3d0187b294b2d5a89379b1e9c3b9e73f1
d5927d4901f331a5280b7119f15dfc089da328104759b562c913f4d1f8b96633
GET /maps-api-v3/api/js/50/5/common.js HTTP/1.1
Host: maps.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding, Origin
Content-Encoding: gzip
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="maps-api-js"
Report-To: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
Content-Length: 69165
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 14 Sep 2022 18:21:17 GMT
Expires: Thu, 14 Sep 2023 18:21:17 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Tue, 13 Sep 2022 20:19:15 GMT
Content-Type: text/javascript
Age: 91810
ws.sharethis.com/secure/js/st.da2f6a88d7bfe891c2a6f4578518e3f4.js
54.230.111.82200 OK 98 kB URL HTTP/2 ws.sharethis.com/secure/js/st.da2f6a88d7bfe891c2a6f4578518e3f4.js
IP 54.230.111.82:0
Hash 9d729986d32d9461e3a49ff9aff412cb
6bfaa78bbadbfc8d7a5233ba557ee61308380864
03ba203eed57509c666489870c6ae6285da4cd897c9b54e4f99c6b8764c325b3
GET /secure/js/st.da2f6a88d7bfe891c2a6f4578518e3f4.js HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ws.sharethis.com/secure/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
cache-control: max-age=31536000
content-encoding: gzip
date: Thu, 30 Jun 2022 19:31:03 GMT
etag: W/"62bdf287-24e3c"
expires: Fri, 30 Jun 2023 19:31:03 GMT
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _8upHbpiCdIdfYPndvJ-E44EzPstxmvXYXJvgd6-aMMc6nsX5qoFfg==
age: 6654021
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
sellitafrica.com/media/uploadify/jquery.uploadify.js
85.233.160.184200 OK 0 B URL HTTP/1.1 sellitafrica.com/media/uploadify/jquery.uploadify.js
IP 85.233.160.184:0
Analyzer Verdict Alert fortinet Phishing
GET /media/uploadify/jquery.uploadify.js HTTP/1.1
Host: sellitafrica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sellitafrica.com/media/storage/editor/files/free-robux-com_gm431946152.pdf
Cookie: PHPSESSID=7nk0mcnc4o65bjlgsh84vqj4v7
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 19:51:22 GMT
Server: Apache
Last-Modified: Fri, 04 Apr 2014 10:31:03 GMT
Accept-Ranges: bytes
Content-Type: application/javascript
ETag: W/"fd37-4f63503bfac02"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 0
Transfer-Encoding: chunked
Connection: keep-alive
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
142.250.74.46200 OK 0 B URL HTTP/2 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP 142.250.74.46:0
GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://sellitafrica.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 15 Sep 2022 19:51:22 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+293; expires=Sat, 14-Sep-2024 19:51:22 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.zdassets.com/ekr/asset_composer.js
104.18.70.113200 OK 0 B URL HTTP/2 static.zdassets.com/ekr/asset_composer.js
IP 104.18.70.113:0
GET /ekr/asset_composer.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://sellitafrica.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 19:51:23 GMT
content-type: application/javascript
x-amz-id-2: dUZfshkH6s6HIQA7+U0tDhX+A5i1VSOF0AP1wrYwttudGl3FDx99SpKMnalxiwyFmxN4PZcqRnA=
x-amz-request-id: Y9E1NT7ZVNF7R3ZX
x-amz-replication-status: COMPLETED
last-modified: Thu, 28 Jul 2022 23:44:02 GMT
etag: W/"5cae6ce528dce0c327b2bcbaad459fdb"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600, s-maxage=60
x-amz-version-id: 57KHzv0Z81imwMa0XxScJAmcLiHhq1Ku
cf-cache-status: HIT
age: 51
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u5HXqWt9vVT9Qh8YKLxR%2FHNAvZxR88ymShncAo9XVX1gK1SJha9PZBze7%2FlMUp%2Fro29%2BNhdKc%2F4jCdyEW3iiuG%2By2tbDhtBdcxYlLIVIYzVgpxn6oC4VMxj5YTKgxyQtsZi5rzU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 74b3e5914aafb529-OSL
content-encoding: br
X-Firefox-Spdy: h2