r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3284
Expires: Mon, 30 Jan 2023 01:59:05 GMT
Date: Mon, 30 Jan 2023 01:04:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3eb88dea4fe00db1182370e72683c3ab
ca520abf1e91bfd2aef40c6a1270a911071e8922
d8083ee567c7b3023111dc30f32c94237df7db30d4d2daaea0a569e8a3069ad7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8083EE567C7B3023111DC30F32C94237DF7DB30D4D2DAAEA0A569E8A3069AD7"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3055
Expires: Mon, 30 Jan 2023 01:55:16 GMT
Date: Mon, 30 Jan 2023 01:04:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 302c7548412192add063ad6c8b99cf3b
e5d178931a27db036ce8daae302594d3ff7050b8
fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15339
Expires: Mon, 30 Jan 2023 05:20:00 GMT
Date: Mon, 30 Jan 2023 01:04:21 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 30 Jan 2023 00:35:38 GMT
content-type: application/json
age: 1723
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: K6vMrCzDf2bLiU/yaQv87X3buT5ZrgO3BYGpVdJ+PysonQhJN8X0mytJjdBLV+HhNLLoVl3S9sIQD908VEEogA==
x-amz-request-id: NZ371CMFB77FBMCV
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 30 Jan 2023 00:50:32 GMT
age: 829
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 01:04:21 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ytbmafrofruits.com/
192.185.195.31200 OK 16 kB IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (14457), with CRLF, LF line terminators
Hash e3d647d6710d446040bb291e512c9d64
48e365da84b9f760a0229dbd7e4c4cd59d3886e1
8bc359e3ccaa91cf271c432b1e9b643330744a2169dd1d92f728642974e51d07
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:21 GMT
Server: nginx/1.23.2
Content-Type: text/html; charset=UTF-8
Content-Length: 16275
X-Pingback: http://ytbmafrofruits.com/xmlrpc.php
Link: <http://ytbmafrofruits.com/index.php/wp-json/>; rel="https://api.w.org/", <http://ytbmafrofruits.com/>; rel=shortlink
Cache-Control: max-age=300
Expires: Mon, 30 Jan 2023 01:09:13 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-Server-Cache: true
X-Proxy-Cache: HIT
fonts.googleapis.com/css?family=Poppins%3A300%2C400%2C500%2C600%2C700%7CRaleway%3A400%2C400i%2C500%2C500i%2C700%2C700i&subset=latin%2Clatin-ext&ver=1.0.0
142.250.74.106200 OK 881 B URL HTTP/1.1 fonts.googleapis.com/css?family=Poppins%3A300%2C400%2C500%2C600%2C700%7CRaleway%3A400%2C400i%2C500%2C500i%2C700%2C700i&subset=latin%2Clatin-ext&ver=1.0.0
IP 142.250.74.106:0
Hash 00ead0adb5aa5897c1ee477ed6a93b43
f354f57f5a3c9469027034a887440b274f0d3172
678d1ad3a9f8949112feef4cb6b2521cf5676c97e84346754ccb186d9e2aad60
GET /css?family=Poppins%3A300%2C400%2C500%2C600%2C700%7CRaleway%3A400%2C400i%2C500%2C500i%2C700%2C700i&subset=latin%2Clatin-ext&ver=1.0.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Mon, 30 Jan 2023 01:04:21 GMT
Date: Mon, 30 Jan 2023 01:04:21 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
ytbmafrofruits.com/wp-includes/css/dist/block-library/style.min.css?ver=5.4.12
192.185.195.31200 OK 9.8 kB URL HTTP/1.1 ytbmafrofruits.com/wp-includes/css/dist/block-library/style.min.css?ver=5.4.12
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (28088)
Hash 0f01185d6a397a0956dfb4cd6819b507
1ef2787c65358e6bd69e2805e91bf144c244675a
ecfcaaf80c077263b5516c938803306fb2958367f6a2c63fb413d9d82d1c37a0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.4.12 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:21 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Wed, 29 Apr 2020 21:32:00 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 01:04:21 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
Content-Length: 9824
Content-Type: text/css
ytbmafrofruits.com/wp-content/themes/nt-agricom/css/css-spin-loader.css?ver=1.0
192.185.195.31200 OK 1.7 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/themes/nt-agricom/css/css-spin-loader.css?ver=1.0
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (310)
Hash 1d5673dae208ad2a03b0e4d97aa5b4d5
c26baacb6df9a516c18848663dea5b6c03839620
86894dbae85c58c8fb422d2129ba71dc53d41515a50247f3a4b9007d268444cc
GET /wp-content/themes/nt-agricom/css/css-spin-loader.css?ver=1.0 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:21 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Sat, 31 Aug 2019 07:11:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 01:04:21 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
Content-Length: 1731
Content-Type: text/css
ytbmafrofruits.com/wp-content/plugins/revolution_slider/public/assets/css/settings.css?ver=5.4.5.2
192.185.195.31200 OK 9.3 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/plugins/revolution_slider/public/assets/css/settings.css?ver=5.4.5.2
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (29701), with CRLF line terminators
Hash a8833afe0949cea5c601ac8c339a7da6
72921edb44050b2a6202f68d0096d592c53f2789
62971af391726343b12cbf6146e1eebf6b3446b0e99ca12275fb21a24c3e03b4
GET /wp-content/plugins/revolution_slider/public/assets/css/settings.css?ver=5.4.5.2 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:21 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Thu, 31 Jan 2019 15:17:33 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 01:04:21 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
Content-Length: 9250
Content-Type: text/css
ytbmafrofruits.com/wp-content/themes/nt-agricom/css/fontawesome.min.css?ver=1.0
192.185.195.31200 OK 7.1 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/themes/nt-agricom/css/fontawesome.min.css?ver=1.0
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (30837)
Hash 82a55032c4b614390aea6ef6870d3e90
bb21577feea531540a8d4f27ac3730ffac111e1b
4f068500ef9ef0dbffa5b76ac10f1970a7a9de8ff033f84228971a140eb20069
GET /wp-content/themes/nt-agricom/css/fontawesome.min.css?ver=1.0 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:21 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Sat, 31 Aug 2019 07:11:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 01:04:21 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
Content-Length: 7114
Content-Type: text/css
ytbmafrofruits.com/wp-content/themes/nt-agricom/css/vegas-slider.css?ver=1.0
192.185.195.31200 OK 2.6 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/themes/nt-agricom/css/vegas-slider.css?ver=1.0
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (9475), with CRLF line terminators
Hash 8d7102003b9fd5e258b873b085a0cb5a
6ce6c913cb6340dd4b8c20d0cfdc457dfa59bffb
b8d46d4db24f4a4104dd4f7c6fb7fded3703402aebdf2465bdb199ff031c02d6
GET /wp-content/themes/nt-agricom/css/vegas-slider.css?ver=1.0 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:21 GMT
Server: Apache
Last-Modified: Sat, 31 Aug 2019 07:11:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 01:04:21 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
Content-Length: 2564
Content-Type: text/css
ytbmafrofruits.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.3.2
192.185.195.31409 Conflict 83 B URL HTTP/1.1 ytbmafrofruits.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.3.2
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.3.2 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 409 Conflict
Date: Mon, 30 Jan 2023 01:04:21 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ytbmafrofruits.com/wp-content/themes/nt-agricom/css/bootstrap.min.css?ver=1.0
192.185.195.31200 OK 27 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/themes/nt-agricom/css/bootstrap.min.css?ver=1.0
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65371)
Hash f6fe471efcd0640d3c1511b332a6e6f4
1f2d2c8ccf897899eaa61ae1d1599ea6f5ab653b
71f93ce41596b846c7418f85f5f297c50c1e160e887ed5a00c4ccfd4980f797b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/nt-agricom/css/bootstrap.min.css?ver=1.0 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:21 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Sat, 31 Aug 2019 07:11:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 01:04:21 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
Transfer-Encoding: chunked
Content-Type: text/css
ytbmafrofruits.com/wp-content/themes/nt-agricom/css/framework-visual-composer.css?ver=1.0
192.185.195.31200 OK 204 B URL HTTP/1.1 ytbmafrofruits.com/wp-content/themes/nt-agricom/css/framework-visual-composer.css?ver=1.0
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 6070634005b76fa0011d17d8dd52d20c
742b4bc1e1516040f3cf4b50fee8133ed729d9d2
06f075f4f474246f42c1cd838af16871b98c123b9309e98e8072e15059c3e32e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/nt-agricom/css/framework-visual-composer.css?ver=1.0 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Last-Modified: Sat, 31 Aug 2019 07:11:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 01:04:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
Content-Length: 204
Content-Type: text/css
ytbmafrofruits.com/wp-content/themes/nt-agricom/js/flexslider/framework-flexslider.css?ver=1.0
192.185.195.31200 OK 1.8 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/themes/nt-agricom/js/flexslider/framework-flexslider.css?ver=1.0
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash fe43ae05e4c6d08898f7cf0ea2d42f08
adc14930a2aa3f48e131258d910f40ce14eefac9
a9dc6bfbc6555b6feb6d2022d3040e9db0a8bfdcb486b9a1187f69f21f374429
GET /wp-content/themes/nt-agricom/js/flexslider/framework-flexslider.css?ver=1.0 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Last-Modified: Sat, 31 Aug 2019 07:11:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 01:04:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
Content-Length: 1781
Content-Type: text/css
ytbmafrofruits.com/wp-content/themes/nt-agricom/css/framework-wordpress.css?ver=1.0
192.185.195.31200 OK 11 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/themes/nt-agricom/css/framework-wordpress.css?ver=1.0
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 6f64f9a3e0fa6da0617022b83f75548b
c963a77c2a5781608f97cb9d94c34f063bbc82b1
303e6e269b326b5463bd26f1ef483b09f064bbe9d1528a203d8227bed38f8629
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/nt-agricom/css/framework-wordpress.css?ver=1.0 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Last-Modified: Sat, 31 Aug 2019 07:11:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 01:04:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
Content-Length: 10574
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash b67335a8e235eacf68e4b7f98cc5dc40
887a9b34cf2ba9371bbe8c93e362c174668cf812
1ad2f6328af6d819acd85f4e4646afcafd945e17e555d5eeb54244db83cd48fa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 01:04:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 30 Jan 2023 00:41:41 GMT
age: 1361
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=6LcZSNQaAAAAADYCKYpw0nwdMQOWq6BDUlOavuV4&ver=3.0
142.250.74.164200 OK 586 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LcZSNQaAAAAADYCKYpw0nwdMQOWq6BDUlOavuV4&ver=3.0
IP 142.250.74.164:0
File type ASCII text, with very long lines (884), with no line terminators
Hash 3c868c56d2b4b15cdf913ff41ef56146
e95a445d50dbbe7a4867b8e39f4fe20f9b79746c
c5ad31af0d7bb0caed0e1e360e8fc7e97729eeeabcad53b6e2cdb5611e56b71f
GET /recaptcha/api.js?render=6LcZSNQaAAAAADYCKYpw0nwdMQOWq6BDUlOavuV4&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Mon, 30 Jan 2023 01:04:22 GMT
date: Mon, 30 Jan 2023 01:04:22 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 586
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ytbmafrofruits.com/wp-content/themes/nt-agricom/css/framework-custom-style.css?ver=1.0
192.185.195.31200 OK 0 B URL HTTP/1.1 ytbmafrofruits.com/wp-content/themes/nt-agricom/css/framework-custom-style.css?ver=1.0
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/nt-agricom/css/framework-custom-style.css?ver=1.0 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Last-Modified: Sat, 31 Aug 2019 07:11:12 GMT
Accept-Ranges: bytes
Content-Length: 0
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 01:04:22 GMT
X-Endurance-Cache-Level: 2
Content-Type: text/css
ytbmafrofruits.com/wp-content/themes/nt-agricom/css/style.css?ver=1.0
192.185.195.31200 OK 35 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/themes/nt-agricom/css/style.css?ver=1.0
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (813)
Hash 46993f5387ffdafaa5252f1497748763
6662d94bd16e06c7ee5ae743992aa413c8747398
74f1793d90cf41b365a7dbffc75f3d2be1ba97021dca7bac6a938a623a5cd51c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/nt-agricom/css/style.css?ver=1.0 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:21 GMT
Server: Apache
Last-Modified: Sat, 31 Aug 2019 07:11:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 01:04:21 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
Transfer-Encoding: chunked
Content-Type: text/css
ytbmafrofruits.com/wp-content/themes/nt-agricom/css/framework-update.css?ver=1.0
192.185.195.31200 OK 966 B URL HTTP/1.1 ytbmafrofruits.com/wp-content/themes/nt-agricom/css/framework-update.css?ver=1.0
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 376835c116c86bb16da54ead849cd4b9
78a7792404832ba109cd654d6279ad9c9d7374bf
67bba6a5fb8a499faab56943b8d41f2ab787f16f794aa3c9c6fd9464f2ce8b4d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/nt-agricom/css/framework-update.css?ver=1.0 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Last-Modified: Sat, 31 Aug 2019 07:11:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 01:04:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
Content-Length: 966
Content-Type: text/css
ytbmafrofruits.com/wp-content/themes/nt-agricom/style.css?ver=5.4.12
192.185.195.31200 OK 395 B URL HTTP/1.1 ytbmafrofruits.com/wp-content/themes/nt-agricom/style.css?ver=5.4.12
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 36bb9794e65d9fe60d0534061046b4d5
ca655875046ee6ea928765aa61c98afbb0353b8d
67293b42de85c97166a28da32dadb5085be918b7094e4d65b1d79eac46df1ff9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/nt-agricom/style.css?ver=5.4.12 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Last-Modified: Sat, 31 Aug 2019 07:11:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 01:04:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
Content-Length: 395
Content-Type: text/css
ytbmafrofruits.com/wp-content/themes/nt-agricom/css/framework-extra.css?ver=1.0
192.185.195.31200 OK 1.2 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/themes/nt-agricom/css/framework-extra.css?ver=1.0
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type assembler source, ASCII text, with CRLF line terminators
Hash 162d8773532930e8c433bb27e2cdfe66
d4bb84a66783c590a04c225ac0af809522587945
5fd4890a9723a479a82f04c81a831f5d2a2516d912aea83bfc0b3e69a1e2471e
GET /wp-content/themes/nt-agricom/css/framework-extra.css?ver=1.0 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Sat, 31 Aug 2019 07:11:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 01:04:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
Content-Length: 1154
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 1141ae65ad448fb3438690d5042af728
aa8b236bb1099c9440bfe3e98530939623250c03
e55eeaf5cd454042706c3e2d7d2b0211e91087b430cb5bae6b9e030392f57b4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 01:04:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8246
Expires: Mon, 30 Jan 2023 03:21:48 GMT
Date: Mon, 30 Jan 2023 01:04:22 GMT
Connection: keep-alive
ytbmafrofruits.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
192.185.195.31200 OK 4.4 kB URL HTTP/1.1 ytbmafrofruits.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (9959)
Hash 1e40dfe689f1e989e1a3de2e3c6e26bf
4196eddc5203fd18f63e90065d777f757088ca2f
b40b1ef07db6e093ad2df064e8cb582906eb2448e1caacc2f5b721cd5d0e3cb4
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Last-Modified: Fri, 20 May 2016 06:11:28 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 30 Jan 2023 07:04:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
Content-Length: 4444
Content-Type: application/javascript
ytbmafrofruits.com/wp-content/plugins/visual_composer/assets/css/js_composer.min.css?ver=5.2.1
192.185.195.31200 OK 62 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/plugins/visual_composer/assets/css/js_composer.min.css?ver=5.2.1
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65536), with no line terminators
Hash 419142115e6be4485e0b4dbb3bf75f86
995709b7f926b00ccd74a74bbaddc5ccb1fdf08c
38134da86f75af62e7f4735a23086b7f043afe13428b0bdc779ea4ee9e699c14
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/visual_composer/assets/css/js_composer.min.css?ver=5.2.1 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Last-Modified: Thu, 31 Jan 2019 11:45:23 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 01 Mar 2023 01:04:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
Transfer-Encoding: chunked
Content-Type: text/css
ytbmafrofruits.com/wp-content/themes/nt-agricom/js/device.js?ver=1.0
192.185.195.31200 OK 2.1 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/themes/nt-agricom/js/device.js?ver=1.0
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text
Hash 4bf81847840efe43a54714e0d5bcbb3b
988512b8e587ce2b2668c9dd0c77c9b5f60cf198
5dfc2999bd53d7805e0d7bf754455ea2e351a5613db234cd291b2effb7cf7bcd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/nt-agricom/js/device.js?ver=1.0 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Last-Modified: Sat, 31 Aug 2019 07:11:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 30 Jan 2023 07:04:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
Content-Length: 2060
Content-Type: application/javascript
ytbmafrofruits.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
192.185.195.31200 OK 43 kB URL HTTP/1.1 ytbmafrofruits.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (31997)
Hash db3a0076514643ba73afd55e1a83d176
762702ae91e53968444bd2d9d743539d04c29642
a96be560ba0bbbf51a4d02e4a60f523e1470bfb6a2a72881a77bb8963a343842
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Last-Modified: Tue, 21 May 2019 20:25:14 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 30 Jan 2023 07:04:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
Transfer-Encoding: chunked
Content-Type: application/javascript
ytbmafrofruits.com/wp-content/plugins/revolution_slider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.5.2
192.185.195.31200 OK 48 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/plugins/revolution_slider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.5.2
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (27287), with CRLF line terminators
Hash 82b0efec5e1186e71b6f5ecd25c034df
535b640322c3c51aa3a36cb3364d7b7e527a91f1
a9e00e8201280b6e7c7337ecfb548f87beab2fd10f8ec2249e1ad9360a531919
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revolution_slider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.5.2 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Last-Modified: Thu, 31 Jan 2019 15:17:33 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 30 Jan 2023 07:04:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
Transfer-Encoding: chunked
Content-Type: application/javascript
ytbmafrofruits.com/wp-content/plugins/revolution_slider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.5.2
192.185.195.31200 OK 24 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/plugins/revolution_slider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.5.2
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (64561), with CRLF line terminators
Hash ee0c2b558b6ffbf1222b717a8a16475b
e8ffa4364596685684c323b87916ad94360367ee
3bcdbe6ae692cf827b0fc5456e7d10adf7663fa5dd92ad487ccbc24cd35231ba
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revolution_slider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.5.2 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Last-Modified: Thu, 31 Jan 2019 15:17:33 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 30 Jan 2023 07:04:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
Transfer-Encoding: chunked
Content-Type: application/javascript
ytbmafrofruits.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.3.2
192.185.195.31409 Conflict 83 B URL HTTP/1.1 ytbmafrofruits.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.3.2
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.3.2 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 409 Conflict
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ytbmafrofruits.com/wp-content/plugins/contact-form-7/modules/recaptcha/script.js?ver=5.3.2
192.185.195.31409 Conflict 83 B URL HTTP/1.1 ytbmafrofruits.com/wp-content/plugins/contact-form-7/modules/recaptcha/script.js?ver=5.3.2
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/modules/recaptcha/script.js?ver=5.3.2 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 409 Conflict
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ytbmafrofruits.com/wp-includes/js/comment-reply.min.js?ver=5.4.12
192.185.195.31200 OK 1.2 kB URL HTTP/1.1 ytbmafrofruits.com/wp-includes/js/comment-reply.min.js?ver=5.4.12
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2337)
Hash 0faeb89c767e9b21c45b357cf71e98eb
8240ab00552661b713b7f8da8606db7242eae53f
dd78539675023a58e24c17d4c5b26bc47be8efa5600e35dcb1e138c3f5052fe6
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/comment-reply.min.js?ver=5.4.12 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 20:26:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 30 Jan 2023 07:04:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
Content-Length: 1169
Content-Type: application/javascript
ytbmafrofruits.com/wp-content/plugins/visual_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=5.2.1
192.185.195.31200 OK 13 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/plugins/visual_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=5.2.1
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (32003)
Hash f0cf91d52c2af9175a5f19c101a772ad
86e8b62f790a6fbb024606704976c34ce5a3293d
e47311cd769d3e4595a9990e6a50de1052c1134d109c50d4e1c2e589c0e5e297
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/visual_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=5.2.1 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Last-Modified: Thu, 31 Jan 2019 11:45:23 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 30 Jan 2023 07:04:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
Content-Length: 12876
Content-Type: application/javascript
ytbmafrofruits.com/wp-content/themes/nt-agricom/js/owl.carousel.js?ver=1.0
192.185.195.31200 OK 29 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/themes/nt-agricom/js/owl.carousel.js?ver=1.0
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (360)
Hash df233a3dd2fec8f46c7392303e5a879d
f205bd93a69b107b8bc9d4b1808a6f25a89bce2d
9e2459ede2b0078c17e382f43e2a5f02f5e724601c0d244319082cb1e3238579
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/nt-agricom/js/owl.carousel.js?ver=1.0 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Last-Modified: Sat, 31 Aug 2019 07:11:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 30 Jan 2023 07:04:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
Transfer-Encoding: chunked
Content-Type: application/javascript
ytbmafrofruits.com/wp-content/themes/nt-agricom/js/jquery.countTo.js?ver=1.0
192.185.195.31200 OK 1.2 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/themes/nt-agricom/js/jquery.countTo.js?ver=1.0
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash f7e449b7bbf2db3acfec2dea4e9f39e2
a4e6c7f7b8013199939ff64e094c361b01f4ed2f
1a7319a4d0ec051d2875f3df196907e6943ab07cfdac4134b7171f5732d09a59
GET /wp-content/themes/nt-agricom/js/jquery.countTo.js?ver=1.0 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Last-Modified: Sat, 31 Aug 2019 07:11:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 30 Jan 2023 07:04:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
Content-Length: 1210
Content-Type: application/javascript
push.services.mozilla.com/
52.10.36.158101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.10.36.158:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: hcbuuIDUAqNEK3ke1kxlOg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 6TfJzwTDx2uZoX6k6ig6GVQYGe8=
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
216.58.207.227200 OK 7.9 kB URL HTTP/1.1 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ytbmafrofruits.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 7884
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 24 Jan 2023 18:57:59 GMT
Expires: Wed, 24 Jan 2024 18:57:59 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 27 Apr 2022 17:03:52 GMT
Content-Type: font/woff2
Age: 453983
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
216.58.207.227200 OK 8.0 kB URL HTTP/1.1 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Hash 72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ytbmafrofruits.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 8000
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 27 Jan 2023 10:06:26 GMT
Expires: Sat, 27 Jan 2024 10:06:26 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 27 Apr 2022 16:59:07 GMT
Content-Type: font/woff2
Age: 226676
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
216.58.207.227200 OK 7.8 kB URL HTTP/1.1 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Hash 25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ytbmafrofruits.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 7816
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 27 Jan 2023 02:07:32 GMT
Expires: Sat, 27 Jan 2024 02:07:32 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 27 Apr 2022 16:11:40 GMT
Content-Type: font/woff2
Age: 255410
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
216.58.207.227200 OK 46 kB URL HTTP/1.1 fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Hash c1fd378f54921c75e4ae1821e7b8fff6
2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826
GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ytbmafrofruits.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 46524
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 28 Jan 2023 15:56:53 GMT
Expires: Sun, 28 Jan 2024 15:56:53 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 18 Jul 2022 19:58:01 GMT
Content-Type: font/woff2
Age: 119249
ytbmafrofruits.com/wp-content/themes/nt-agricom/js/jquery.fs.boxer.min.js?ver=1.0
192.185.195.31200 OK 5.8 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/themes/nt-agricom/js/jquery.fs.boxer.min.js?ver=1.0
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (16133)
Hash 36d45d8daddb0975d1e5a6b695c077b1
4ea7fc21ff9d58e7a7e8abedd75b00335415d4cd
19817576a378cd554e6491d4a54b4c9a8a6aa0f14819e2a6198e2ae8805a0843
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/nt-agricom/js/jquery.fs.boxer.min.js?ver=1.0 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Last-Modified: Sat, 31 Aug 2019 07:11:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 30 Jan 2023 07:04:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
Content-Length: 5844
Content-Type: application/javascript
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2
216.58.207.227200 OK 7.8 kB URL HTTP/1.1 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 7840, version 1.0\012- data
Hash 8d91ec1ca2d8b56640a47117e313a3e9
a9e9bafe64666f4595051a0e895b47a5fa39e67e
78bc3aa78faec288bbb3bf26c9a0fa4eb67b1e69da94a17233c5cab60525efdb
GET /s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ytbmafrofruits.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 7840
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 27 Jan 2023 02:56:04 GMT
Expires: Sat, 27 Jan 2024 02:56:04 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 27 Apr 2022 16:51:55 GMT
Content-Type: font/woff2
Age: 252498
ytbmafrofruits.com/wp-content/themes/nt-agricom/js/main.js?ver=1.0
192.185.195.31200 OK 3.4 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/themes/nt-agricom/js/main.js?ver=1.0
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash c6b8a98cdcc7b9dfc6801c41e99ee22b
f0afbd4ab518c0e66bd60e628efd63800fc6c3a7
931fc813f85c27c909d65c7616211fad33a2aeb2741bcbb0f48d404f1f753065
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/nt-agricom/js/main.js?ver=1.0 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Last-Modified: Sat, 31 Aug 2019 07:11:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 30 Jan 2023 07:04:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
Content-Length: 3428
Content-Type: application/javascript
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
216.58.207.227200 OK 7.7 kB URL HTTP/1.1 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Hash a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ytbmafrofruits.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 7748
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 27 Jan 2023 02:07:32 GMT
Expires: Sat, 27 Jan 2024 02:07:32 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 27 Apr 2022 16:21:30 GMT
Content-Type: font/woff2
Age: 255410
ytbmafrofruits.com/wp-content/themes/nt-agricom/js/flexslider/framework-flexslider.js?ver=1.0
192.185.195.31200 OK 16 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/themes/nt-agricom/js/flexslider/framework-flexslider.js?ver=1.0
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash d05e239dbada777103c792bf7dba0ce8
492f373eff878117cb28ba6e87bd7e5c005e97e3
0855d36725ef3f9d0a3f33e6ce44dbb42dff66b906ae8cdfa0774a0c8836f751
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/nt-agricom/js/flexslider/framework-flexslider.js?ver=1.0 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Last-Modified: Sat, 31 Aug 2019 07:11:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 30 Jan 2023 07:04:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
Content-Length: 16034
Content-Type: application/javascript
ytbmafrofruits.com/wp-content/themes/nt-agricom/js/framework-fitvids.js?ver=1.0
192.185.195.31200 OK 1.4 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/themes/nt-agricom/js/framework-fitvids.js?ver=1.0
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with CRLF line terminators
Hash f769125f2e73b20d9c40b1419e93f99d
2273dae0e0c15402b010c2dec1e8974c3edd2bce
d9ff73a0280836e407a92ce825597f646b7e4aad2cd84d0265675eadf76eed80
GET /wp-content/themes/nt-agricom/js/framework-fitvids.js?ver=1.0 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Last-Modified: Sat, 31 Aug 2019 07:11:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 30 Jan 2023 07:04:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
Content-Length: 1388
Content-Type: application/javascript
ytbmafrofruits.com/wp-content/themes/nt-agricom/js/jquery.stellar.min.js?ver=1.0
192.185.195.31200 OK 4.1 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/themes/nt-agricom/js/jquery.stellar.min.js?ver=1.0
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (12453)
Hash 3525f2201b4f09032255aa580b5ffb6f
00b2c0b860cdc0a4d466575d57b6f3d9b748decc
700f7e51cd1033335fd0dff2838e02e9cbf3fd206eb4635de5fd07ccaa92dfaa
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/nt-agricom/js/jquery.stellar.min.js?ver=1.0 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Sat, 31 Aug 2019 07:11:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 30 Jan 2023 07:04:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
Content-Length: 4109
Content-Type: application/javascript
ytbmafrofruits.com/wp-content/themes/nt-agricom/js/jquery.appear.min.js?ver=1.0
192.185.195.31200 OK 610 B URL HTTP/1.1 ytbmafrofruits.com/wp-content/themes/nt-agricom/js/jquery.appear.min.js?ver=1.0
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1448)
Hash 723dab06bf294e7f3dae05201c91d10c
3eff3fe021c42e972b676c726d05c86f384adb6c
0e1cf95706a8ab79493317b0bc70cb9c404f1ac97f7197cec1d7d1a8243a38d2
GET /wp-content/themes/nt-agricom/js/jquery.appear.min.js?ver=1.0 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Sat, 31 Aug 2019 07:11:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 30 Jan 2023 07:04:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
Content-Length: 610
Content-Type: application/javascript
ytbmafrofruits.com/wp-content/themes/nt-agricom/js/framework-blog-settings.js?ver=1.0
192.185.195.31200 OK 305 B URL HTTP/1.1 ytbmafrofruits.com/wp-content/themes/nt-agricom/js/framework-blog-settings.js?ver=1.0
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 49fffb6ae98abb92027e4a90779be965
93618ad50b7125f59258a3cd56e65fe6c541bf1d
ac9a8a4dd645c9266ddf0301b4468fc6134a859f1aba62c619bca0453abd2867
GET /wp-content/themes/nt-agricom/js/framework-blog-settings.js?ver=1.0 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Last-Modified: Sat, 31 Aug 2019 07:11:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 30 Jan 2023 07:04:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
Content-Length: 305
Content-Type: application/javascript
ytbmafrofruits.com/wp-includes/js/wp-embed.min.js?ver=5.4.12
192.185.195.31200 OK 777 B URL HTTP/1.1 ytbmafrofruits.com/wp-includes/js/wp-embed.min.js?ver=5.4.12
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1391)
Hash 06ece4d01ee88297957c9f4cdcaa4df5
2b3321654a8ead1e1493eac9b5f1fdfb65e2037f
0b17eb6ab02e69f50ac52ca157375bd69853ae4f4796eb48a35eb4a12fc7af8b
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-embed.min.js?ver=5.4.12 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 20:26:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 30 Jan 2023 07:04:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
Content-Length: 777
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 75bf326700e29b1b06e57fb96ee2b064
4f979f28905b65637a058cd44be6c25bb51a42e4
385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 01:04:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ytbmafrofruits.com/wp-content/plugins/visual_composer/assets/js/dist/js_composer_front.min.js?ver=5.2.1
192.185.195.31200 OK 7.2 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/plugins/visual_composer/assets/js/dist/js_composer_front.min.js?ver=5.2.1
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (19781), with no line terminators
Hash 36758da1a7001bd1400df6429c661f6b
c8f35acf7a8636d8032c9df39bd6881f08531742
a2f126c6a53331c35d778ea71c8b04f695874c850893d1230d41aef6d810b46c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/visual_composer/assets/js/dist/js_composer_front.min.js?ver=5.2.1 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Last-Modified: Thu, 31 Jan 2019 11:45:23 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 30 Jan 2023 07:04:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
Content-Length: 7202
Content-Type: application/javascript
ytbmafrofruits.com/wp-content/themes/nt-agricom/js/vegas-slider.js?ver=1.0
192.185.195.31200 OK 3.7 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/themes/nt-agricom/js/vegas-slider.js?ver=1.0
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (9842), with CRLF line terminators
Hash 4c45526ab5153c54a8baf1abb1b55aca
0c6af1f4756141e79ce38fd023fb6a04e4791c01
3a1d9f05d54897c5fc545500bbd144474e9180e08f2143c4112faa3a37bfc613
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/nt-agricom/js/vegas-slider.js?ver=1.0 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Last-Modified: Sat, 31 Aug 2019 07:11:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 30 Jan 2023 07:04:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
Content-Length: 3740
Content-Type: application/javascript
ytbmafrofruits.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.3.2
192.185.195.31409 Conflict 83 B URL HTTP/1.1 ytbmafrofruits.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.3.2
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.3.2 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 409 Conflict
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ytbmafrofruits.com/wp-content/themes/nt-agricom/js/jquery.easypiechart.js?ver=1.0
192.185.195.31200 OK 3.5 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/themes/nt-agricom/js/jquery.easypiechart.js?ver=1.0
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash ebac15e597e7674effd3d7981251e058
59c328b20ae92c0100abc407250b8da08e43c71f
6f4400f3937bba294a865581d73bcef0d3058254063d835b7055534c9453b831
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/nt-agricom/js/jquery.easypiechart.js?ver=1.0 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Last-Modified: Sat, 31 Aug 2019 07:11:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 30 Jan 2023 07:04:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
Content-Length: 3515
Content-Type: application/javascript
maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en®ion=ug&callback=onApiLoad
142.250.74.10200 OK 56 kB URL HTTP/2 maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en®ion=ug&callback=onApiLoad
IP 142.250.74.10:0
File type ASCII text, with very long lines (2436)
Hash f5e100fb7d0148d5b7c877cedea7766b
98123dda02218a136346601a44abd6d2628ae06b
5febe091d1c3b827a864cea9001fda85fa800c5d92300080b2f04581e7290402
GET /maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en®ion=ug&callback=onApiLoad HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Mon, 30 Jan 2023 01:04:22 GMT
expires: Mon, 30 Jan 2023 01:34:22 GMT
cache-control: public, max-age=1800
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 55999
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=29
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 75bf326700e29b1b06e57fb96ee2b064
4f979f28905b65637a058cd44be6c25bb51a42e4
385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 01:04:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ytbmafrofruits.com/wp-content/themes/nt-agricom/fonts/fontello.woff2?84940194
192.185.195.31200 OK 12 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/themes/nt-agricom/fonts/fontello.woff2?84940194
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 11812, version 1.0\012- data
Hash eaa888ec66c9281748c19c6893a0275b
39020a2584024f9ccb22cf8b9ccb2d109311e616
026cab18263e445a412d1aee5a511b04fe3952b84146486f3dd5381906aaa0f7
GET /wp-content/themes/nt-agricom/fonts/fontello.woff2?84940194 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://ytbmafrofruits.com/wp-content/themes/nt-agricom/css/style.css?ver=1.0
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Last-Modified: Sat, 31 Aug 2019 07:11:12 GMT
Accept-Ranges: bytes
Content-Length: 11812
Cache-Control: max-age=21600
Expires: Mon, 30 Jan 2023 07:04:22 GMT
X-Endurance-Cache-Level: 2
Content-Type: font/woff2
ytbmafrofruits.com/wp-content/uploads/2017/02/ico_9-77x77.png
192.185.195.31200 OK 3.1 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/uploads/2017/02/ico_9-77x77.png
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 77 x 77, 8-bit colormap, non-interlaced\012- data
Hash 014c5dbc424c5f53a6966c9e26d6879e
1baf4649abd9d2da0d77944e8a3a42fe82035e55
1b7db0b23c54e73d73f3eb4d01e5217724ef975dcb082ca9c7032368773dbe6c
GET /wp-content/uploads/2017/02/ico_9-77x77.png HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Last-Modified: Mon, 04 Feb 2019 09:29:06 GMT
Accept-Ranges: bytes
Content-Length: 3104
Cache-Control: max-age=31536000
Expires: Tue, 30 Jan 2024 01:04:22 GMT
X-Endurance-Cache-Level: 2
Content-Type: image/png
ytbmafrofruits.com/wp-content/uploads/2017/02/ico_7-77x77.png
192.185.195.31200 OK 2.6 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/uploads/2017/02/ico_7-77x77.png
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 77 x 77, 8-bit colormap, non-interlaced\012- data
Hash 79ab246e19c05014cbc21143eceb6ed6
29542c56ee4068fe356e601c2fb9815bf51d2c7e
0cb3fc6d5b5fa61ef254dbe65823e60910649195a8c4ed80190412bde9f9b602
GET /wp-content/uploads/2017/02/ico_7-77x77.png HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Last-Modified: Mon, 04 Feb 2019 09:29:06 GMT
Accept-Ranges: bytes
Content-Length: 2604
Cache-Control: max-age=31536000
Expires: Tue, 30 Jan 2024 01:04:22 GMT
X-Endurance-Cache-Level: 2
Content-Type: image/png
ytbmafrofruits.com/wp-content/uploads/2017/02/ico_1-90x77.png
192.185.195.31200 OK 4.4 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/uploads/2017/02/ico_1-90x77.png
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 90 x 77, 8-bit colormap, non-interlaced\012- data
Hash ab7c0c34fd3839b2b9d64e24ee910e2e
1e4fe41666860c831b5e7dac7b1ab26fd58b9f0f
3296b41972d0c7c516b357c70dc0a72263f130bc4e32b6b5a11e1bfb817674a0
GET /wp-content/uploads/2017/02/ico_1-90x77.png HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Last-Modified: Mon, 04 Feb 2019 09:29:06 GMT
Accept-Ranges: bytes
Content-Length: 4449
Cache-Control: max-age=31536000
Expires: Tue, 30 Jan 2024 01:04:22 GMT
X-Endurance-Cache-Level: 2
Content-Type: image/png
ytbmafrofruits.com/wp-content/uploads/2019/02/ytbm-slogan-1.png
192.185.195.31200 OK 13 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/uploads/2019/02/ytbm-slogan-1.png
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 555 x 204, 8-bit/color RGBA, non-interlaced\012- data
Hash 2003b07231bf5ef9fb91cb98d75032f2
e3ff9eca976e7509d07442cfac1879405c7b4f52
72e453e81133a2b87203c4d5a4e47475330131111222480197a3a80be4b0e9a5
GET /wp-content/uploads/2019/02/ytbm-slogan-1.png HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Last-Modified: Mon, 04 Feb 2019 11:12:40 GMT
Accept-Ranges: bytes
Content-Length: 12885
Cache-Control: max-age=31536000
Expires: Tue, 30 Jan 2024 01:04:22 GMT
X-Endurance-Cache-Level: 2
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 01:04:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.gstatic.com/maps-api-v3/embed/js/51/7/init_embed.js
142.250.74.3200 OK 69 kB URL HTTP/2 maps.gstatic.com/maps-api-v3/embed/js/51/7/init_embed.js
IP 142.250.74.3:0
File type ASCII text, with very long lines (2599)
Hash fd4867728783671f13b38d1f073e7be9
ff5ba304ce5b2838e4b49b6cff833dede37e1098
52a398663110b5dc50e72094c287b049ec5ed33a2b639418e4e1a9c3d313b82c
GET /maps-api-v3/embed/js/51/7/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 69373
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 03:51:36 GMT
expires: Sun, 28 Jan 2024 03:51:36 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 23 Jan 2023 21:48:16 GMT
content-type: text/javascript
age: 162766
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ytbmafrofruits.com/wp-content/uploads/2019/06/ytbm-icon.png
192.185.195.31200 OK 16 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/uploads/2019/06/ytbm-icon.png
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 116 x 104, 8-bit/color RGBA, non-interlaced\012- data
Hash d4a898663bbe5855ab50d4ac936e63de
bc5058d642239f27b1dc787d0b2073ebf7889551
a1284af506a676139dcfd80ce6ae88203277db77c768b2152bdb9f7567931999
GET /wp-content/uploads/2019/06/ytbm-icon.png HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Last-Modified: Tue, 25 Jun 2019 06:50:15 GMT
Accept-Ranges: bytes
Content-Length: 15810
Cache-Control: max-age=31536000
Expires: Tue, 30 Jan 2024 01:04:22 GMT
X-Endurance-Cache-Level: 2
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 01:04:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ytbmafrofruits.com/wp-content/uploads/2019/06/background22.png?id=704
192.185.195.31200 OK 22 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/uploads/2019/06/background22.png?id=704
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1118 x 527, 8-bit/color RGBA, non-interlaced\012- data
Hash ec37c16d245539e237a569af353606e2
eb95dc21d473c11c10107ed5fb27e58f54251e87
f6fee5088063eab3aab82fb99a40f511a0ff5d0215f1b2459161b5b48406291f
GET /wp-content/uploads/2019/06/background22.png?id=704 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:23 GMT
Server: Apache
Last-Modified: Tue, 25 Jun 2019 08:13:05 GMT
Accept-Ranges: bytes
Content-Length: 22318
Cache-Control: max-age=31536000
Expires: Tue, 30 Jan 2024 01:04:23 GMT
X-Endurance-Cache-Level: 2
Content-Type: image/png
ytbmafrofruits.com/newer/wp-content/uploads/2019/02/ytbm-icon-faded-1.png?id=575
192.185.195.31500 Internal Server Error 672 B URL HTTP/1.1 ytbmafrofruits.com/newer/wp-content/uploads/2019/02/ytbm-icon-faded-1.png?id=575
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 1fe6914134a6ca2adc6dec419c6771bd
354918c77653bba961c490eec5e510ccdb9b489c
72617ce16e6c7afa6b6f6007fc54b1446a08841e3d84dc68ba0f396931b91329
Analyzer Verdict Alert fortinet Phishing
GET /newer/wp-content/uploads/2019/02/ytbm-icon-faded-1.png?id=575 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 500 Internal Server Error
Date: Mon, 30 Jan 2023 01:04:23 GMT
Server: Apache
Content-Length: 672
Connection: close
Content-Type: text/html; charset=iso-8859-1
ytbmafrofruits.com/wp-content/themes/nt-agricom/images/blank.gif
192.185.195.31200 OK 43 B URL HTTP/1.1 ytbmafrofruits.com/wp-content/themes/nt-agricom/images/blank.gif
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /wp-content/themes/nt-agricom/images/blank.gif HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:23 GMT
Server: Apache
Last-Modified: Sat, 31 Aug 2019 07:11:12 GMT
Accept-Ranges: bytes
Content-Length: 43
Cache-Control: max-age=31536000
Expires: Tue, 30 Jan 2024 01:04:23 GMT
X-Endurance-Cache-Level: 2
Content-Type: image/gif
ytbmafrofruits.com/wp-content/uploads/2019/02/yams-510x510.jpg
192.185.195.31200 OK 46 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/uploads/2019/02/yams-510x510.jpg
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 510x510, components 3\012- data
Hash 07309d6842d6ad3ff70bfd68ff2690f4
e4cb2647388da8dba1c58bb63291c20a9415b172
c99335b982d9188a5a0c3a02d8645114ccac2bb7d5c0747148d3295bb18b2e72
GET /wp-content/uploads/2019/02/yams-510x510.jpg HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:23 GMT
Server: Apache
Last-Modified: Mon, 18 Feb 2019 07:59:05 GMT
Accept-Ranges: bytes
Content-Length: 45764
Cache-Control: max-age=31536000
Expires: Tue, 30 Jan 2024 01:04:23 GMT
X-Endurance-Cache-Level: 2
Content-Type: image/jpeg
ytbmafrofruits.com/wp-includes/js/wp-emoji-release.min.js?ver=5.4.12
192.185.195.31200 OK 26 kB URL HTTP/1.1 ytbmafrofruits.com/wp-includes/js/wp-emoji-release.min.js?ver=5.4.12
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash af4f81e7fedf603016d1cca12fec0cba
ba405ff309b3f608a2bdcfc64bec89ffbfdda2f6
bc3d6c0653b65961b153068d5c756a77aa1ac07b16e7d92c10b38f120df21087
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.4.12 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:22 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 20:26:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 30 Jan 2023 07:04:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
Content-Length: 4919
Content-Type: application/javascript
ytbmafrofruits.com/wp-content/uploads/2019/02/13177605_657357217750265_8982343295453430454_n.jpg
192.185.195.31200 OK 32 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/uploads/2019/02/13177605_657357217750265_8982343295453430454_n.jpg
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 540x540, components 3\012- data
Hash affa770b0e180fe96e6312b4e7f6a280
4fd58365e319d939163f722da4ae0fc2d07bec7d
47ac8847c817d79aeaf3a2b4406ad40d7709ccbe4a7f6e60d8c99c6557f18906
GET /wp-content/uploads/2019/02/13177605_657357217750265_8982343295453430454_n.jpg HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:23 GMT
Server: Apache
Last-Modified: Mon, 18 Feb 2019 08:15:12 GMT
Accept-Ranges: bytes
Content-Length: 32406
Cache-Control: max-age=31536000
Expires: Tue, 30 Jan 2024 01:04:23 GMT
X-Endurance-Cache-Level: 2
Content-Type: image/jpeg
ytbmafrofruits.com/wp-content/uploads/2019/06/62746A.jpg?id=701
192.185.195.31200 OK 199 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/uploads/2019/06/62746A.jpg?id=701
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=8, xresolution=110, yresolution=118, resolutionunit=2, software=Adobe Photoshop Lightroom Classic 7.3.1 (Windows), datetime=2018-10-24T18:17:39+05:30], progressive, precision 8, 800x800, components 3\012- data
Size 199 kB (199382 bytes)
Hash 3f9773863c979454a03400d6d0998c34
e6e28703890f9a09199f41e3e9cb7052113a7dfb
e19dd9dad392cdc5f1c3a832a623dbca803ea55694d1530d728aba97074670ed
GET /wp-content/uploads/2019/06/62746A.jpg?id=701 HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:23 GMT
Server: Apache
Last-Modified: Tue, 25 Jun 2019 07:26:05 GMT
Accept-Ranges: bytes
Content-Length: 199382
Cache-Control: max-age=31536000
Expires: Tue, 30 Jan 2024 01:04:23 GMT
X-Endurance-Cache-Level: 2
Content-Type: image/jpeg
ytbmafrofruits.com/wp-content/uploads/2019/02/garden-eggs-2-510x510.jpg
192.185.195.31200 OK 18 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/uploads/2019/02/garden-eggs-2-510x510.jpg
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 510x510, components 3\012- data
Hash ed65f65d8e434228fe2c6bf2d9936e82
da20d6d5224cb0dbd95b75a12617a4bfce18f30d
b12a7cf54a23fac638912af0c137a7726ac7872dee5e138dce13e2be7af50913
GET /wp-content/uploads/2019/02/garden-eggs-2-510x510.jpg HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:23 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Mon, 18 Feb 2019 07:59:05 GMT
Accept-Ranges: bytes
Content-Length: 18373
Cache-Control: max-age=31536000
Expires: Tue, 30 Jan 2024 01:04:23 GMT
X-Endurance-Cache-Level: 2
Content-Type: image/jpeg
ytbmafrofruits.com/wp-content/uploads/2019/02/Richard.png
192.185.195.31200 OK 205 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/uploads/2019/02/Richard.png
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 500 x 458, 8-bit/color RGBA, non-interlaced\012- data
Size 205 kB (205209 bytes)
Hash 1121cf4585c7681964842046697ecdd2
f7b13f37a45147920772c00ea53370535381925c
05daba575ee3b96419f7e9bb5f11805607417fb9b9970957c9e5894b82f57dfc
GET /wp-content/uploads/2019/02/Richard.png HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:23 GMT
Server: Apache
Last-Modified: Mon, 18 Feb 2019 08:27:18 GMT
Accept-Ranges: bytes
Content-Length: 205209
Cache-Control: max-age=31536000
Expires: Tue, 30 Jan 2024 01:04:23 GMT
X-Endurance-Cache-Level: 2
Content-Type: image/png
ytbmafrofruits.com/wp-content/uploads/2019/02/okra-510x510.jpg
192.185.195.31200 OK 33 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/uploads/2019/02/okra-510x510.jpg
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 510x510, components 3\012- data
Hash 6e5a17492cb98453a4bfe2f84da75254
a6e5075b47a4d1d48b8371f822865c7d8e5e54af
627dde82a16de9979e228386721f6e1e78e3b96c89059ad8975d1870747cc897
GET /wp-content/uploads/2019/02/okra-510x510.jpg HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:23 GMT
Server: Apache
Last-Modified: Mon, 18 Feb 2019 07:51:22 GMT
Accept-Ranges: bytes
Content-Length: 32813
Cache-Control: max-age=31536000
Expires: Tue, 30 Jan 2024 01:04:23 GMT
X-Endurance-Cache-Level: 2
Content-Type: image/jpeg
ytbmafrofruits.com/wp-content/uploads/2019/02/chllies-small-510x510.jpg
192.185.195.31200 OK 34 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/uploads/2019/02/chllies-small-510x510.jpg
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 510x510, components 3\012- data
Hash d09297e924829bea7f9d4b9132f08eae
94020296b4351c9653652522937283c7702b7fbe
d358310a61550793aa723d135b29267f1c27170ef31d66bb4079adddea3227df
GET /wp-content/uploads/2019/02/chllies-small-510x510.jpg HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:23 GMT
Server: Apache
Last-Modified: Mon, 18 Feb 2019 07:51:22 GMT
Accept-Ranges: bytes
Content-Length: 34461
Cache-Control: max-age=31536000
Expires: Tue, 30 Jan 2024 01:04:23 GMT
X-Endurance-Cache-Level: 2
Content-Type: image/jpeg
ytbmafrofruits.com/wp-content/uploads/2019/02/jose.png
192.185.195.31200 OK 100 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/uploads/2019/02/jose.png
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 302 x 282, 8-bit/color RGBA, non-interlaced\012- data
Hash 0712fcd252c616f2e4135c793312c913
55810aada05ef91cf2a2e44c8c5a8fa5aa9f45ac
378ba6c0acb683639c1c89e2ae0ebf83d4e42ffd327ca550e401369059354061
GET /wp-content/uploads/2019/02/jose.png HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:23 GMT
Server: Apache
Last-Modified: Mon, 18 Feb 2019 08:24:43 GMT
Accept-Ranges: bytes
Content-Length: 99551
Cache-Control: max-age=31536000
Expires: Tue, 30 Jan 2024 01:04:23 GMT
X-Endurance-Cache-Level: 2
Content-Type: image/png
ytbmafrofruits.com/wp-content/uploads/2019/02/garden-eggs-2-370x265.jpg
192.185.195.31200 OK 11 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/uploads/2019/02/garden-eggs-2-370x265.jpg
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 370x265, components 3\012- data
Hash 89305071983fdcaf906d5da077f0888e
30af18daf1c304e9af994dfea97abb373a775d26
9a7d7083607280dbff65f105ad13b106f8d4ff10cce9b82c8cd50cca6434a2b8
GET /wp-content/uploads/2019/02/garden-eggs-2-370x265.jpg HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:23 GMT
Server: Apache
Last-Modified: Mon, 18 Feb 2019 07:59:06 GMT
Accept-Ranges: bytes
Content-Length: 10953
Cache-Control: max-age=31536000
Expires: Tue, 30 Jan 2024 01:04:23 GMT
X-Endurance-Cache-Level: 2
Content-Type: image/jpeg
ytbmafrofruits.com/wp-content/uploads/2019/02/yams-370x265.jpg
192.185.195.31200 OK 27 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/uploads/2019/02/yams-370x265.jpg
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 370x265, components 3\012- data
Hash b48d9359e90aed0fdabc4038845a388c
0df3a639fbba88d140c05bd5ee30ec93d5067a44
89facdb54eb909357f26153d205dc75c9aca1966a0707b6fd1c6b6c71e6d6d48
GET /wp-content/uploads/2019/02/yams-370x265.jpg HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:23 GMT
Server: Apache
Last-Modified: Mon, 18 Feb 2019 07:59:06 GMT
Accept-Ranges: bytes
Content-Length: 26584
Cache-Control: max-age=31536000
Expires: Tue, 30 Jan 2024 01:04:23 GMT
X-Endurance-Cache-Level: 2
Content-Type: image/jpeg
ytbmafrofruits.com/wp-content/uploads/2019/02/mizuna-510x510.jpg
192.185.195.31200 OK 45 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/uploads/2019/02/mizuna-510x510.jpg
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 510x510, components 3\012- data
Hash d010272cb7202634d3f1fd0c6f7fa85a
4e50f5b500c9f99e87223400f3aceaf4ee964386
9050cb38153e8245f9a2b0c0f752f92c8cb510ca2ff19c428057a7d129340aa6
GET /wp-content/uploads/2019/02/mizuna-510x510.jpg HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:23 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Mon, 18 Feb 2019 07:51:22 GMT
Accept-Ranges: bytes
Content-Length: 44566
Cache-Control: max-age=31536000
Expires: Tue, 30 Jan 2024 01:04:23 GMT
X-Endurance-Cache-Level: 2
Content-Type: image/jpeg
ytbmafrofruits.com/wp-content/uploads/2019/02/sweet-potatoes-370x265.jpg
192.185.195.31200 OK 16 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/uploads/2019/02/sweet-potatoes-370x265.jpg
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 370x265, components 3\012- data
Hash 17d82d4b16b1868c2860a837ed4f76e8
007f01d92c74c35419c6948181cf0642e04ac2c0
8224c5c6107a7baf9864683fdf1d13dfeeedd4c60f185baeddcfac6aa9a3b283
GET /wp-content/uploads/2019/02/sweet-potatoes-370x265.jpg HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:23 GMT
Server: Apache
Last-Modified: Mon, 18 Feb 2019 07:59:06 GMT
Accept-Ranges: bytes
Content-Length: 16101
Cache-Control: max-age=31536000
Expires: Tue, 30 Jan 2024 01:04:23 GMT
X-Endurance-Cache-Level: 2
Content-Type: image/jpeg
ytbmafrofruits.com/wp-content/uploads/2019/02/pea-nuts-370x265.jpg
192.185.195.31200 OK 37 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/uploads/2019/02/pea-nuts-370x265.jpg
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 370x265, components 3\012- data
Hash 91806bcc22c2007ea9e33b6ad98e6377
715ab4d2604b6f6e4cbbd627f8ab42c8ab10622f
0b179ccda9e1e9c55ed15eda8d6a7b75937fc10b7fe48326668c8b2fcbda125f
GET /wp-content/uploads/2019/02/pea-nuts-370x265.jpg HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:23 GMT
Server: Apache
Last-Modified: Mon, 18 Feb 2019 07:59:05 GMT
Accept-Ranges: bytes
Content-Length: 36800
Cache-Control: max-age=31536000
Expires: Tue, 30 Jan 2024 01:04:23 GMT
X-Endurance-Cache-Level: 2
Content-Type: image/jpeg
ytbmafrofruits.com/wp-content/uploads/2019/02/apple-banana-copy.jpg
192.185.195.31200 OK 55 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/uploads/2019/02/apple-banana-copy.jpg
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=720, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1280], progressive, precision 8, 854x594, components 3\012- data
Hash e7dc69dba20e62195f92e1d54ae9054e
12abd0e5e8895c399beb1b1fd7f734fd11f29b46
b89079a377853557caca20fd32675de7eaa9c7162a5426cd1260fc62161ec801
GET /wp-content/uploads/2019/02/apple-banana-copy.jpg HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:23 GMT
Server: Apache
Last-Modified: Sat, 02 Feb 2019 13:22:06 GMT
Accept-Ranges: bytes
Content-Length: 54866
Cache-Control: max-age=31536000
Expires: Tue, 30 Jan 2024 01:04:23 GMT
X-Endurance-Cache-Level: 2
Content-Type: image/jpeg
ytbmafrofruits.com/wp-content/uploads/2017/02/04.png
192.185.195.31200 OK 100 B URL HTTP/1.1 ytbmafrofruits.com/wp-content/uploads/2017/02/04.png
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1 x 2, 1-bit colormap, non-interlaced\012- data
Hash ffd4b971f80f62d80e423d71d2779ca4
6dba625c6b1ef938827a844cae775c0c7c86707b
01de42757cec1c1fa1427f87c217b723b417ddd263cc9f114a6a33b13de5f029
GET /wp-content/uploads/2017/02/04.png HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:23 GMT
Server: Apache
Last-Modified: Thu, 31 Jan 2019 11:47:15 GMT
Accept-Ranges: bytes
Content-Length: 100
Cache-Control: max-age=31536000
Expires: Tue, 30 Jan 2024 01:04:23 GMT
X-Endurance-Cache-Level: 2
Content-Type: image/png
ytbmafrofruits.com/wp-content/uploads/2017/02/img_7.jpg
192.185.195.31200 OK 157 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/uploads/2017/02/img_7.jpg
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1068x838, components 3\012- data
Size 157 kB (156757 bytes)
Hash 6babf7d90ec6b294a7ac5aa88af0255d
c02c2639dfb8dec485b288c24512ef40189a4f0e
94892645f35ff84ad495e21c2d3c29c5a74094852a95e3c1a048e77fbfc33493
GET /wp-content/uploads/2017/02/img_7.jpg HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:23 GMT
Server: Apache
Last-Modified: Thu, 31 Jan 2019 11:46:47 GMT
Accept-Ranges: bytes
Content-Length: 156757
Cache-Control: max-age=31536000
Expires: Tue, 30 Jan 2024 01:04:23 GMT
X-Endurance-Cache-Level: 2
Content-Type: image/jpeg
ytbmafrofruits.com/wp-content/uploads/2017/02/bg_9.jpg
192.185.195.31200 OK 162 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/uploads/2017/02/bg_9.jpg
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1600x980, components 3\012- data
Size 162 kB (161557 bytes)
Hash f818a3b6125c278a6f3fb33b924ffd2a
cd7da6469b4e37ad2405dfba2b35ad1d1ed29e34
429c9b9eac20d235fffbcd3a87ccd8f003631914ce0f70930554278c4812bf69
GET /wp-content/uploads/2017/02/bg_9.jpg HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:23 GMT
Server: Apache
Last-Modified: Thu, 31 Jan 2019 11:47:00 GMT
Accept-Ranges: bytes
Content-Length: 161557
Cache-Control: max-age=31536000
Expires: Tue, 30 Jan 2024 01:04:23 GMT
X-Endurance-Cache-Level: 2
Content-Type: image/jpeg
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6823
Expires: Mon, 30 Jan 2023 02:58:06 GMT
Date: Mon, 30 Jan 2023 01:04:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6823
Expires: Mon, 30 Jan 2023 02:58:06 GMT
Date: Mon, 30 Jan 2023 01:04:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6823
Expires: Mon, 30 Jan 2023 02:58:06 GMT
Date: Mon, 30 Jan 2023 01:04:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6823
Expires: Mon, 30 Jan 2023 02:58:06 GMT
Date: Mon, 30 Jan 2023 01:04:23 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f96350b-0dd8-46ee-a270-85f96329b7c9.png
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f96350b-0dd8-46ee-a270-85f96329b7c9.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bb1a5e0a2bb1cacf87189373c118adf4
079974268f755aa38fb2cb32b8bcb748353c793f
1b0519e6bfca30a31b83d427302f7e22140f5b2da6f13cac37ea9c07abc42676
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f96350b-0dd8-46ee-a270-85f96329b7c9.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11095
x-amzn-requestid: dc7c00e2-cd2d-4265-8763-3dd7dbe223ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkFyEhJIAMFjpw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6f1-541a17c362e95dfa5e90f58f;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UuPN6Nq84hFgUDMbvpLTysWfU1JcRiecGH3tkdqDOOXBo9hVhmpMBA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:59:52 GMT
age: 11071
etag: "079974268f755aa38fb2cb32b8bcb748353c793f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4cd82b56-3d58-4627-91e3-41d3555a724a.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4cd82b56-3d58-4627-91e3-41d3555a724a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 753b2e6ed7101000e26612f3f828abc0
14a61823bc47407cde91abc408bbd02ed975e783
fa1f5f03eb56a03e5ccd8f9b3228b6497ddbf889f59cba7b44c258c212165cf7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4cd82b56-3d58-4627-91e3-41d3555a724a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5732
x-amzn-requestid: 060af694-0cee-440e-b201-95c1fc663d23
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhk01Gr2oAMFs0w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e81e-64563e8b163fbe585ed4e909;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:41:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 2hvmB3KdFIhxA4JfJoQR700qhvegiGoNVT55iBBycyY3q26L7TxxHQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:39:40 GMT
age: 8683
etag: "14a61823bc47407cde91abc408bbd02ed975e783"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ytbmafrofruits.com/wp-content/uploads/2019/02/pea-nuts-510x510.jpg
192.185.195.31200 OK 67 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/uploads/2019/02/pea-nuts-510x510.jpg
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 510x510, components 3\012- data
Hash 9a321062ed5190c618e595e4b54067d1
dbe3a0aca04d62fa6f9b5982a3f308cc59fe524d
858e34d2a59dfc59bf131f3121ae20f4e88e39a6f22de827db98704298f072d5
GET /wp-content/uploads/2019/02/pea-nuts-510x510.jpg HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:23 GMT
Server: Apache
Last-Modified: Mon, 18 Feb 2019 07:59:05 GMT
Accept-Ranges: bytes
Content-Length: 67360
Cache-Control: max-age=31536000
Expires: Tue, 30 Jan 2024 01:04:23 GMT
X-Endurance-Cache-Level: 2
Content-Type: image/jpeg
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc62816c-5ae0-4a32-ad19-0aa70ed552c5.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc62816c-5ae0-4a32-ad19-0aa70ed552c5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1133381d25a3804d01148f332e4cdd7e
d0d0e9d7e8afbf5a4926c44d9fc9ff94bc276f5a
7dd9a03052e733f3418991f237cae7b9aa5d20c34dd661078199bd85d26a4d1f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc62816c-5ae0-4a32-ad19-0aa70ed552c5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8751
x-amzn-requestid: 28610adf-7206-4dff-9e34-c9441fdaf4b1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkGHFixIAMF1jg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6f3-1de169331c105c35519fd34c;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vpkET9Ym44JpkXbIxIW7hH5afDO2COTnP4_l-65mJeIavP17a2w3FA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:51:22 GMT
age: 11581
etag: "d0d0e9d7e8afbf5a4926c44d9fc9ff94bc276f5a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3be81f83687ddb6c93d3ff3c09a9dba2
50a48e737310d3f31840db4301b25927fbcc12c5
e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: e6e0789c-a4a9-4ffa-a0ae-691770d1035b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPF9YEBmIAMF0kQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf8388-01d2093432d3959903671a69;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:06:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: awfNeaKbFw2bjiTGwUrwUTxU-qbVS2eTjn948H8kn1hy7pi_DwLMlQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 17:35:56 GMT
age: 26907
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 65c02d8a1b0d6a210cb2a649c5c67469
027dbc7a104c922904f067ed15d696c363c11774
89d5443a1d313c632d09a583ef602aa4645a16986076387329f434262d15b0a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10997
x-amzn-requestid: a6fac0ab-1acf-4808-8785-3b4ec5e32edf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj30FX7IAMFa5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e698-005109ec2e76529e793678d6;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: skGKI_MWvDwpAbGibUcr8wTlimgoPU9ZYhEHltd3uhdJZ_GoNznVAA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:08:57 GMT
etag: "027dbc7a104c922904f067ed15d696c363c11774"
content-type: image/jpeg
age: 10526
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57d55e9c-b793-48b6-9641-536d9d4b8a49.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57d55e9c-b793-48b6-9641-536d9d4b8a49.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7ce4f845d4cdd467b4c82d8fbeb9ae0b
68257cdadb6e13a8f7f5e2354aca225286107a79
243b58df1616fd8b78c11302dbf90c97ecb6a3b289abe5f3439252cdbf304892
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57d55e9c-b793-48b6-9641-536d9d4b8a49.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9150
x-amzn-requestid: 2b8949c8-5c97-49f5-8784-85daa42adff1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj4NF1moAMFQ9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e69a-2ab06022306835b013c1e46f;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: rhWnoHh5bILzb5MAI88JvXr6MGkRKHOT5L10I8VJkjjfN-Iuupva2Q==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:19:22 GMT
age: 9901
etag: "68257cdadb6e13a8f7f5e2354aca225286107a79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js
142.250.74.35200 OK 164 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (771)
Size 164 kB (163774 bytes)
Hash 57c909ab73fc27ec24f737bbf1cb1de8
89b2c02e9e7a9a764518fca545d3eec2044fd6d9
7e407e2b00bb7c238c71d96472f7ab030de4e610b1048f0f77b25cb85c2d166b
GET /recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://ytbmafrofruits.com
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163774
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 17:09:34 GMT
expires: Tue, 23 Jan 2024 17:09:34 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 23 Jan 2023 01:02:00 GMT
content-type: text/javascript
age: 546889
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ytbmafrofruits.com/favicon.ico
192.185.195.31500 Internal Server Error 672 B URL HTTP/1.1 ytbmafrofruits.com/favicon.ico
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 1fe6914134a6ca2adc6dec419c6771bd
354918c77653bba961c490eec5e510ccdb9b489c
72617ce16e6c7afa6b6f6007fc54b1446a08841e3d84dc68ba0f396931b91329
GET /favicon.ico HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 500 Internal Server Error
Date: Mon, 30 Jan 2023 01:04:23 GMT
Server: nginx/1.23.2
Content-Type: text/html; charset=iso-8859-1
Content-Length: 672
Connection: close
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 21:48:03 GMT
expires: Fri, 26 Jan 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 270981
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 16:40:43 GMT
expires: Fri, 26 Jan 2024 16:40:43 GMT
cache-control: public, max-age=31536000
age: 289421
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 22:02:00 GMT
expires: Mon, 29 Jan 2024 22:02:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 10945
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 07:51:59 GMT
expires: Thu, 25 Jan 2024 07:51:59 GMT
cache-control: public, max-age=31536000
age: 407546
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ytbmafrofruits.com/wp-content/uploads/2017/02/img_1.jpg
192.185.195.31200 OK 97 kB URL HTTP/1.1 ytbmafrofruits.com/wp-content/uploads/2017/02/img_1.jpg
IP 192.185.195.31:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1600x934, components 3\012- data
Hash 133f4b5d7c2c3967e2409003c4bd09b8
ea15c39404c8512f8508b0fcf7b5cd46becacf24
2607dd7252c8a4e1b9b3cd9cc794799903f2b899a9d0c2c6abb528b71d7b42b3
GET /wp-content/uploads/2017/02/img_1.jpg HTTP/1.1
Host: ytbmafrofruits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ytbmafrofruits.com/
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:04:28 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Thu, 31 Jan 2019 11:47:09 GMT
Accept-Ranges: bytes
Content-Length: 97208
Cache-Control: max-age=31536000
Expires: Tue, 30 Jan 2024 01:04:28 GMT
X-Endurance-Cache-Level: 2
Content-Type: image/jpeg