r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 30c30d01178fc74ac5266ee64c3ee85b
c0c2af8a864c00aa85a8775d55f85ab107150a3b
c15644f69fbfeb99074c7e9711dfc9452ee164fa78eb981b6bae4fb7e3585f2a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C15644F69FBFEB99074C7E9711DFC9452EE164FA78EB981B6BAE4FB7E3585F2A"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2786
Expires: Fri, 18 Nov 2022 14:41:46 GMT
Date: Fri, 18 Nov 2022 13:55:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4e84f361a3c81abc5d665a5f441452a8
7aa4b9cb0a7ba1daa514dbb48fe8e74fdf09b60d
04d64920cc8e6b096841938b0c1140889f5d7a04eabd440934a31f1c7ab90352
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "04D64920CC8E6B096841938B0C1140889F5D7A04EABD440934A31F1C7AB90352"
Last-Modified: Wed, 16 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3424
Expires: Fri, 18 Nov 2022 14:52:24 GMT
Date: Fri, 18 Nov 2022 13:55:20 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 67f53a639d57dd6237b5be86fe4f6c1b
287f09532dc331228d09c20b75f4160e91e9800a
41913a8af366685c42af59e9d8e02fccedbe68a3313d2d9fe353deb0c1019075
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3931
Cache-Control: max-age=164478
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 13:55:20 GMT
Etag: "63775eeb-1d7"
Expires: Sun, 20 Nov 2022 11:36:38 GMT
Last-Modified: Fri, 18 Nov 2022 10:31:07 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 0UapGbt9+UIZHIHGek4txo75P6B2Hl4VaZH337SDf/Mkr2+fVyHM0Rre64y0WxQ3Wk6DbWNXMGI=
x-amz-request-id: 9492T95ZRS5G70E6
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 18 Nov 2022 13:52:56 GMT
age: 144
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 18 Nov 2022 13:44:48 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 632
alt-svc: clear
X-Firefox-Spdy: h2
anbg-ga.com/
51.91.236.193301 Moved Permanently 0 B IP 51.91.236.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
date: Fri, 18 Nov 2022 13:55:20 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
server: Apache
x-powered-by: PHP/7.2
expires: Fri, 18 Nov 2022 14:55:20 GMT
cache-control: max-age=3600
x-redirect-by: WordPress
location: https://www.anbg-ga.com/
x-iplb-request-id: 5B5A2A9A:115B_335BECC1:0050_63778EC8_BF46:17B09
x-iplb-instance: 32679
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 13:55:20 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d01555b7e7ae086ad84bb129e6959aa5
8aa78780b40a37ec82e41e9a29b171177e57235f
4c18fd9a5d6c2452b38a573ddcfdd99819f25b54ad81819f972d128d04d87a8d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C18FD9A5D6C2452B38A573DDCFDD99819F25B54AD81819F972D128D04D87A8D"
Last-Modified: Wed, 16 Nov 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15121
Expires: Fri, 18 Nov 2022 18:07:21 GMT
Date: Fri, 18 Nov 2022 13:55:20 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 18 Nov 2022 13:25:01 GMT
cache-control: public,max-age=3600
age: 1819
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fe40cc6ea871d80382b6082111393fbe
281f75d0a35dc8ef908bb0500e57abd86bd5388e
6d15422cdf7a6d72d06497188f27af893682314e82ac8a189a0ee2d798cb62d7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3685
Cache-Control: max-age=159180
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 13:55:21 GMT
Etag: "63774b30-1d7"
Expires: Sun, 20 Nov 2022 10:08:21 GMT
Last-Modified: Fri, 18 Nov 2022 09:06:56 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
www.anbg-ga.com/wp-includes/css/classic-themes.min.css?ver=1
51.91.236.193200 OK 189 B URL HTTP/2 www.anbg-ga.com/wp-includes/css/classic-themes.min.css?ver=1
IP 51.91.236.193:0
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: text/css
content-length: 189
server: Apache
last-modified: Wed, 02 Nov 2022 09:09:13 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
51.91.236.193200 OK 12 kB URL HTTP/2 www.anbg-ga.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 51.91.236.193:0
File type ASCII text, with very long lines (47826)
Hash 8fa87dd23394a22621248ec378d2af59
9305bc637a89b1700d7f56a19a80bd32b0feb2f7
c162f7de24fa2d4e93e0da254ef287ff72f4a3e03f42443265097968351388dc
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: text/css
content-length: 12518
server: Apache
last-modified: Tue, 15 Nov 2022 21:08:58 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
51.91.236.193200 OK 972 B URL HTTP/2 www.anbg-ga.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP 51.91.236.193:0
Hash 8bf268dfcca7cb20719b7ea14373ef4a
58bd839bbf0e8cc082f0a488b538b4ec71bebd2e
eece4a14939273c7af07bce8bab3a6cfc2c9de44c0eea82cc886abac13cb3870
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: text/css
content-length: 972
server: Apache
last-modified: Tue, 15 Nov 2022 10:29:11 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/plugins/custom-twitter-feeds/css/ctf-styles.min.css?ver=2.0.3
51.91.236.193200 OK 3.1 kB URL HTTP/2 www.anbg-ga.com/wp-content/plugins/custom-twitter-feeds/css/ctf-styles.min.css?ver=2.0.3
IP 51.91.236.193:0
File type ASCII text, with very long lines (17189), with no line terminators
Hash fe5311184c8c54a1547ff22c71844229
ffa39b08562f6102e717f28b43c33b733eb7f803
19da29c9a0050554825136666db2bc3f84daa6acf265c8e78d8607784e872824
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/custom-twitter-feeds/css/ctf-styles.min.css?ver=2.0.3 HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: text/css
content-length: 3051
server: Apache
last-modified: Tue, 15 Nov 2022 10:29:28 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.7
51.91.236.193200 OK 12 kB URL HTTP/2 www.anbg-ga.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.7
IP 51.91.236.193:0
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash cf0ddf258a67da92b182a0059de224b4
06b4e471de9eb447216ee701f640903f8f364cd9
24632cb6ac59d62d07bafef6ab02294f49fbc0f22c68ad576f73b6283805d813
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.7 HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: text/css
content-length: 12130
server: Apache
last-modified: Tue, 08 Nov 2022 01:41:03 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/themes/wizeedu/style.css?ver=6.1.1
51.91.236.193200 OK 399 B URL HTTP/2 www.anbg-ga.com/wp-content/themes/wizeedu/style.css?ver=6.1.1
IP 51.91.236.193:0
File type ASCII text, with very long lines (351), with CRLF line terminators
Hash 7051aa7cdb9a0197a45695cccb7d22c9
8340fb824a3a2e5d363df274e03bc220102c59b3
bace46e854466c1920bc9ae3c291ae42dc051aedb5de11a126ca8e68e3f43e1a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/wizeedu/style.css?ver=6.1.1 HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: text/css
content-length: 399
server: Apache
last-modified: Tue, 08 Nov 2022 00:45:24 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.anbg-ga.com/
51.91.236.193200 OK 28 kB IP 51.91.236.193:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (23001), with CRLF, LF line terminators
Hash 808a796e08de64e374bd7275ef0fc807
cf5e46142f14af68622648b17d5bd5bdeb53938f
3534907dfd9892d56373ff41f97dda5dbd262f5d1eb83c8fa78d35f2447498fd
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: text/html; charset=UTF-8
server: Apache
x-powered-by: PHP/7.2
link: <https://www.anbg-ga.com/wp-json/>; rel="https://api.w.org/", <https://www.anbg-ga.com/wp-json/wp/v2/pages/1905>; rel="alternate"; type="application/json", <https://www.anbg-ga.com/>; rel=shortlink
x-tec-api-version: v1
x-tec-api-root: https://www.anbg-ga.com/wp-json/tribe/events/v1/
x-tec-api-origin: https://www.anbg-ga.com
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/themes/wizeedu/css/font-awesome.min.css?ver=6.1.1
51.91.236.193200 OK 7.1 kB URL HTTP/2 www.anbg-ga.com/wp-content/themes/wizeedu/css/font-awesome.min.css?ver=6.1.1
IP 51.91.236.193:0
File type ASCII text, with very long lines (30837), with CRLF line terminators
Hash bf03b8f20ac9063cd68fdaad99f33471
b7ed452624cf0ad672802f062a90c32cfbcc33fc
47ab379a793e73b136a795ef9e1d1a4fc95e7109a74863c3a6df40d0f9086c13
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/wizeedu/css/font-awesome.min.css?ver=6.1.1 HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: text/css
content-length: 7057
server: Apache
last-modified: Tue, 08 Nov 2022 01:01:30 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/themes/wizeedu/css/theme.css?ver=6.1.1
51.91.236.193200 OK 17 kB URL HTTP/2 www.anbg-ga.com/wp-content/themes/wizeedu/css/theme.css?ver=6.1.1
IP 51.91.236.193:0
File type ASCII text, with CRLF line terminators
Hash 95afcc4a6932cc5d8a55f3ee8b80520b
1bf63ed55b09a3705a0672ec58563422d128b262
916dc7d0597c4e60a24fcfc1f75df9d4b8f739a8a67e994c40c554746131a874
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/wizeedu/css/theme.css?ver=6.1.1 HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: text/css
content-length: 17181
server: Apache
last-modified: Tue, 08 Nov 2022 01:01:29 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/themes/wizeedu/css/base_composer.css?ver=6.1.1
51.91.236.193200 OK 20 kB URL HTTP/2 www.anbg-ga.com/wp-content/themes/wizeedu/css/base_composer.css?ver=6.1.1
IP 51.91.236.193:0
File type ASCII text, with CRLF line terminators
Hash 6e5d50442fa97dcc27a8a4d15242206a
b5736bfd376b29376624f81ca5c833a971eebab3
c2e4925b783440ccc6466c619b244fd0a02cbbd8a0d9130a1b5afb251b7ed787
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/wizeedu/css/base_composer.css?ver=6.1.1 HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: text/css
content-length: 19535
server: Apache
last-modified: Tue, 08 Nov 2022 01:01:29 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
51.91.236.193200 OK 5.0 kB URL HTTP/2 www.anbg-ga.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 51.91.236.193:0
File type ASCII text, with very long lines (15660)
Hash e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: application/javascript
content-length: 5009
server: Apache
last-modified: Tue, 08 Nov 2022 00:27:57 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/themes/wizeedu/css/responsive.css?ver=6.1.1
51.91.236.193200 OK 1.0 kB URL HTTP/2 www.anbg-ga.com/wp-content/themes/wizeedu/css/responsive.css?ver=6.1.1
IP 51.91.236.193:0
File type ASCII text, with CRLF line terminators
Hash 0e3df93e4eedcf4e9b3ad8ce384bfc95
f5beee7d6075b522939f0f82496b930997db855a
ec1f66a9af6207ca23915bca61f69445204535c5553ebc65f0c8f753a3f9397d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/wizeedu/css/responsive.css?ver=6.1.1 HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: text/css
content-length: 1001
server: Apache
last-modified: Tue, 08 Nov 2022 01:01:30 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/plugins/cookie-notice/css/front.min.css?ver=6.1.1
51.91.236.193200 OK 1.1 kB URL HTTP/2 www.anbg-ga.com/wp-content/plugins/cookie-notice/css/front.min.css?ver=6.1.1
IP 51.91.236.193:0
File type ASCII text, with very long lines (5334), with no line terminators
Hash 0b06d9e311712e0f5c38e06f549d646c
96ffc4906d416ca3c5e0aa21fc2d6ea262b4f8bd
e3c5dbba5924a8329f175882cd40dba5f02b082fb631dc6510119a88ce19b112
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/cookie-notice/css/front.min.css?ver=6.1.1 HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: text/css
content-length: 1108
server: Apache
last-modified: Tue, 15 Nov 2022 10:29:20 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.186.117.16101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.186.117.16:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 9GIXb/zgIgyLH+LMa1XDqA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: LB5+L/hY6ym3n+a6aRbiciKo9xc=
www.anbg-ga.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
51.91.236.193200 OK 4.2 kB URL HTTP/2 www.anbg-ga.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 51.91.236.193:0
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: application/javascript
content-length: 4169
server: Apache
last-modified: Tue, 08 Nov 2022 00:32:39 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
51.91.236.193200 OK 31 kB URL HTTP/2 www.anbg-ga.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 51.91.236.193:0
File type ASCII text, with very long lines (65447)
Hash 1b5264c989379b828aff60f65a518a24
98641237f14ccb33ac114f54329a33bd0aa17eb7
6c8e7b78c6dbc13426810c905572db7589cf3e00264e30ce797fddb0b1092237
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: application/javascript
content-length: 30995
server: Apache
last-modified: Tue, 15 Nov 2022 21:08:58 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.0.2
51.91.236.193200 OK 46 kB URL HTTP/2 www.anbg-ga.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.0.2
IP 51.91.236.193:0
File type ASCII text, with very long lines (65358)
Hash 172de5b3622edec059c065912a77195e
eda1755022e0bfc36efc46b6c8cca7842b96aaf7
96afcbcd340485f718923e6b7527c6bbf3cb3da8d18b058abd5acfd1f3c3443b
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.0.2 HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: text/css
content-length: 45758
server: Apache
last-modified: Tue, 08 Nov 2022 01:24:17 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0
51.91.236.193200 OK 52 kB URL HTTP/2 www.anbg-ga.com/wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0
IP 51.91.236.193:0
File type ASCII text, with very long lines (32017), with CRLF line terminators
Hash 3750583197f1770da9dcfbbb15c32a37
2f2bf1454b2db6739741b1f7578f2e6a6071325d
0a3f4af86862c282532bd659bc61dd783eea1297c03a6f5a7aea414b8355d3d6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0 HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: application/javascript
content-length: 52434
server: Apache
last-modified: Tue, 08 Nov 2022 01:40:56 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.2
51.91.236.193200 OK 2.1 kB URL HTTP/2 www.anbg-ga.com/wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.2
IP 51.91.236.193:0
File type C source, ASCII text, with very long lines (8750), with no line terminators
Hash 1d6593b72c9938162804278667f43ad7
f52acc79cd764663ed38cec2d7bee6de77934faa
ef864756355341b2a24b0a74926d095b617504cf5db6a79015ac2f7d752cdb7d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.2 HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: application/javascript
content-length: 2128
server: Apache
last-modified: Tue, 15 Nov 2022 10:29:20 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/uploads/2020/02/anbg-logo-200x130-menu-v3.png
51.91.236.193200 OK 8.0 kB URL HTTP/2 www.anbg-ga.com/wp-content/uploads/2020/02/anbg-logo-200x130-menu-v3.png
IP 51.91.236.193:0
File type PNG image data, 200 x 130, 8-bit/color RGBA, non-interlaced\012- data
Hash ea6461009000e51ecd73fa68be554f91
a672eeb7733303133f216599a0a0a8def6b4cfe2
0dc4ed02ffa77e62c07eb3bb03dbebb871f430567be1c1d1694ec4c1cd703f08
GET /wp-content/uploads/2020/02/anbg-logo-200x130-menu-v3.png HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: image/png
content-length: 7992
server: Apache
last-modified: Tue, 08 Nov 2022 00:54:56 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/uploads/2020/02/anbg-logo-89x59-sticky-v3.png
51.91.236.193200 OK 3.6 kB URL HTTP/2 www.anbg-ga.com/wp-content/uploads/2020/02/anbg-logo-89x59-sticky-v3.png
IP 51.91.236.193:0
File type PNG image data, 89 x 58, 8-bit/color RGBA, non-interlaced\012- data
Hash 6fbb85d01ad3ae1b6260c48b7bf64511
23928b95fe55148e6067fca25955abdbbad81b4e
ce888c0d6585273ca62c44f31af2f4f36ae2f68a4135cb852857ca71628ff3e9
GET /wp-content/uploads/2020/02/anbg-logo-89x59-sticky-v3.png HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: image/png
content-length: 3554
server: Apache
last-modified: Tue, 08 Nov 2022 00:54:44 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/uploads/2017/02/icon-4-110x110.png
51.91.236.193200 OK 3.8 kB URL HTTP/2 www.anbg-ga.com/wp-content/uploads/2017/02/icon-4-110x110.png
IP 51.91.236.193:0
File type PNG image data, 110 x 110, 8-bit/color RGBA, non-interlaced\012- data
Hash 330dfd721ed0d25beb91384362402e6c
8ebb5d7f6e136f286637c95162b871f4d206ebdc
09f1d0a4963e6757306cefa2e45b9ce63ee5f036553a25697499ce41054cf8cc
GET /wp-content/uploads/2017/02/icon-4-110x110.png HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: image/png
content-length: 3788
server: Apache
last-modified: Tue, 08 Nov 2022 00:59:10 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/uploads/2017/02/icon-1-110x110.png
51.91.236.193200 OK 6.4 kB URL HTTP/2 www.anbg-ga.com/wp-content/uploads/2017/02/icon-1-110x110.png
IP 51.91.236.193:0
File type PNG image data, 110 x 110, 8-bit/color RGBA, non-interlaced\012- data
Hash 5b1035aee7c00165abb34a9e662b6770
7f8df85a451b30db7ec42af1854f69f9a205ced7
b3803704ea5d66fd9a5135ca90b267481dfdb907a61c95e7025aa4644d8b0e45
GET /wp-content/uploads/2017/02/icon-1-110x110.png HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: image/png
content-length: 6448
server: Apache
last-modified: Tue, 08 Nov 2022 00:58:16 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/uploads/2020/01/etudiant-beneficiaire-110x110.png
51.91.236.193200 OK 2.1 kB URL HTTP/2 www.anbg-ga.com/wp-content/uploads/2020/01/etudiant-beneficiaire-110x110.png
IP 51.91.236.193:0
File type PNG image data, 110 x 110, 8-bit/color RGBA, non-interlaced\012- data
Hash f10b1cc33d587dacca36d3a449a64fa3
19494022b5a281d2f529840aa233a64557faedd6
f6bb5d8b839a93c2820a2eb9eb3ff879956f3a9a29764698b5053c7a7740e332
GET /wp-content/uploads/2020/01/etudiant-beneficiaire-110x110.png HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: image/png
content-length: 2073
server: Apache
last-modified: Tue, 08 Nov 2022 00:53:48 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash feaeba711c7421b074e726f89ff34e0b
c590c0b76a7a78ab51a4dabcd8f20a1b172b02fb
ebe6e312ea7116713547fbd756805843b1c242ad22269158a79305f1819fa990
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 13:55:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash feaeba711c7421b074e726f89ff34e0b
c590c0b76a7a78ab51a4dabcd8f20a1b172b02fb
ebe6e312ea7116713547fbd756805843b1c242ad22269158a79305f1819fa990
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 13:55:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash feaeba711c7421b074e726f89ff34e0b
c590c0b76a7a78ab51a4dabcd8f20a1b172b02fb
ebe6e312ea7116713547fbd756805843b1c242ad22269158a79305f1819fa990
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 13:55:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.anbg-ga.com/wp-content/uploads/2021/01/E13A03log79-2048x1353.jpg
51.91.236.193200 OK 255 kB URL HTTP/2 www.anbg-ga.com/wp-content/uploads/2021/01/E13A03log79-2048x1353.jpg
IP 51.91.236.193:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 2048x1353, components 3\012- data
Size 255 kB (254880 bytes)
Hash 1f3c5a3228717423ed4e0482873f1e38
c7b7dcd47bdd954692934754eba96a2b793b3e9c
893fb0083822bc9d24fcc764ddd00ff0d396c808c9facfdb8c622f758548ddc3
GET /wp-content/uploads/2021/01/E13A03log79-2048x1353.jpg HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: image/jpeg
content-length: 254880
server: Apache
last-modified: Tue, 08 Nov 2022 00:56:20 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/uploads/2020/02/smart-africa.png
51.91.236.193200 OK 6.1 kB URL HTTP/2 www.anbg-ga.com/wp-content/uploads/2020/02/smart-africa.png
IP 51.91.236.193:0
File type PNG image data, 225 x 225, 8-bit colormap, non-interlaced\012- data
Hash c6a00b50dfefa430e298de4a0767a2bf
eed6de1c09326c6231efbae35e447580f9319243
114ce08a0c88b6044da3906f658676bc1bd3a98433444695fe240ac7cde0c4f9
GET /wp-content/uploads/2020/02/smart-africa.png HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: image/png
content-length: 6068
server: Apache
last-modified: Tue, 08 Nov 2022 00:55:09 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/uploads/2020/04/CEGEP.jpg
51.91.236.193200 OK 28 kB URL HTTP/2 www.anbg-ga.com/wp-content/uploads/2020/04/CEGEP.jpg
IP 51.91.236.193:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 66", baseline, precision 8, 1000x333, components 3\012- data
Hash 49f372b819b2b83ddc9b3ec3ab522f7c
30263f8e63fd75aa7ee93b456fc60cc3e8323a46
ff9a074a53a814f627159b0c0f58b7b641b50e30db19abec9afc76862cd172a2
GET /wp-content/uploads/2020/04/CEGEP.jpg HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: image/jpeg
content-length: 28248
server: Apache
last-modified: Tue, 08 Nov 2022 00:52:56 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/uploads/2020/02/CDC.jpg
51.91.236.193200 OK 98 kB URL HTTP/2 www.anbg-ga.com/wp-content/uploads/2020/02/CDC.jpg
IP 51.91.236.193:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS3 Windows, datetime=2012:05:07 13:52:09], baseline, precision 8, 685x449, components 3\012- data
Hash 4ba349040203ddcf711abaab652469f9
0d5ec159bd370257640f9c7ac2aee7a58c009b84
b49ce6971830e816a43d8906415ae114105f36668751d1e1d52359d86747f5e3
GET /wp-content/uploads/2020/02/CDC.jpg HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: image/jpeg
content-length: 98209
server: Apache
last-modified: Tue, 08 Nov 2022 00:54:32 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/uploads/2020/04/CNOUGABON.png
51.91.236.193200 OK 329 kB URL HTTP/2 www.anbg-ga.com/wp-content/uploads/2020/04/CNOUGABON.png
IP 51.91.236.193:0
File type PNG image data, 712 x 712, 8-bit/color RGBA, non-interlaced\012- data
Size 329 kB (329174 bytes)
Hash ab84b3acf82a0736c6dbb36bf28f68b7
7ad9b72574522a9e90f916824bed447e6a6f1bc7
d109ceca7f16217bb660071e5609ddc3953858363fc9d6f1a77bab2e266427ab
GET /wp-content/uploads/2020/04/CNOUGABON.png HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: image/png
content-length: 329174
server: Apache
last-modified: Tue, 08 Nov 2022 00:53:11 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/uploads/2021/07/E13A2359-scaled.jpg
51.91.236.193200 OK 594 kB URL HTTP/2 www.anbg-ga.com/wp-content/uploads/2021/07/E13A2359-scaled.jpg
IP 51.91.236.193:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 240x240, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=9, manufacturer=Canon, model=Canon EOS 5D Mark III, xresolution=150, yresolution=158, resolutionunit=2, software=Adobe Photoshop Lightroom Classic 8.4.1 (Macintosh), datetime=2021:07:08 10:31:15], baseline, precision 8, 2560x1707, components 3\012- data
Size 594 kB (594274 bytes)
Hash a468d5d41a9b9d713a84fdeba8e3990d
507af551f3d6d454fb88b96cde4bba1de5f326bb
4d9d880c5497d458a90909f6067a70d21cf47846ebdd952f55a31ddf766a8948
GET /wp-content/uploads/2021/07/E13A2359-scaled.jpg HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: image/jpeg
content-length: 594274
server: Apache
last-modified: Tue, 08 Nov 2022 00:56:01 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/uploads/2021/07/E13A2480-scaled.jpg
51.91.236.193200 OK 927 kB URL HTTP/2 www.anbg-ga.com/wp-content/uploads/2021/07/E13A2480-scaled.jpg
IP 51.91.236.193:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 240x240, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=9, manufacturer=Canon, model=Canon EOS 5D Mark III, xresolution=150, yresolution=158, resolutionunit=2, software=Adobe Photoshop Lightroom Classic 8.4.1 (Macintosh), datetime=2021:07:08 11:23:44], baseline, precision 8, 2560x1707, components 3\012- data
Size 927 kB (927372 bytes)
Hash bc8b795ed344a9bb247f542cf7c8ccc9
ab3351736a59cb92851d1579fd56563541b516a4
19ff8f9bb779550fad38808db7e193fb92986d1be79a456b885317f541115d64
GET /wp-content/uploads/2021/07/E13A2480-scaled.jpg HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: image/jpeg
content-length: 927372
server: Apache
last-modified: Tue, 08 Nov 2022 00:55:49 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/uploads/2020/05/facebook.png
51.91.236.193200 OK 13 kB URL HTTP/2 www.anbg-ga.com/wp-content/uploads/2020/05/facebook.png
IP 51.91.236.193:0
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash 308f0e8d4b36e961bb5aafc9191e2eb1
3ba52632b707598fb80a9cae8ee48a4a9cc09475
ded782c7ba23546bc1ae1ea2ffd1bf3eb69791a605fd352a67c6baf32c756ab2
GET /wp-content/uploads/2020/05/facebook.png HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: image/png
content-length: 12583
server: Apache
last-modified: Tue, 08 Nov 2022 00:54:26 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/uploads/2020/02/772px-Campus-france.svg_.png
51.91.236.193200 OK 27 kB URL HTTP/2 www.anbg-ga.com/wp-content/uploads/2020/02/772px-Campus-france.svg_.png
IP 51.91.236.193:0
File type PNG image data, 772 x 237, 8-bit/color RGBA, non-interlaced\012- data
Hash 9a52a9ba0d4116b9a9f936cfc4572941
11aea2a0dd1efb55450428b7d94a0d73ab96beba
649598865b442f6ff97ccbf188a498463a3bf7e63a9f4839381b101097dfc115
GET /wp-content/uploads/2020/02/772px-Campus-france.svg_.png HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: image/png
content-length: 27102
server: Apache
last-modified: Tue, 08 Nov 2022 00:55:04 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/uploads/2020/05/twitter-1.png
51.91.236.193200 OK 18 kB URL HTTP/2 www.anbg-ga.com/wp-content/uploads/2020/05/twitter-1.png
IP 51.91.236.193:0
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash 755520cf55ca32f175c5bf4fd757e8dd
657ae611590f257cdc6b59c9a5f531eb25f4868c
0fff65003fa5709e0de0015833c9ade766eec657c91de36d97a97db9a3c28005
GET /wp-content/uploads/2020/05/twitter-1.png HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: image/png
content-length: 18430
server: Apache
last-modified: Tue, 08 Nov 2022 00:54:27 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/uploads/2020/04/DGEC.png
51.91.236.193200 OK 34 kB URL HTTP/2 www.anbg-ga.com/wp-content/uploads/2020/04/DGEC.png
IP 51.91.236.193:0
File type PNG image data, 398 x 123, 8-bit/color RGB, non-interlaced\012- data
Hash 0a2f57385f278c775efed136070ea37e
90308702e43b795ed3db29a9e209daf39b6822ed
133e4353fc0c28cb1795c8f1b92bf25a0101849cf22924d2c363325609867159
GET /wp-content/uploads/2020/04/DGEC.png HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: image/png
content-length: 33762
server: Apache
last-modified: Tue, 08 Nov 2022 00:53:00 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/uploads/2020/05/instagram.png
51.91.236.193200 OK 19 kB URL HTTP/2 www.anbg-ga.com/wp-content/uploads/2020/05/instagram.png
IP 51.91.236.193:0
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash c8a77e4d301a90a50de7b4df9a085fff
df7d570c0242c5339bbad1b6bb87ffecadd6f7ed
c37f6167896224e2e9d6c13626ec945092b7a279b0ad5e03f7d288de66c16ced
GET /wp-content/uploads/2020/05/instagram.png HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: image/png
content-length: 18756
server: Apache
last-modified: Tue, 08 Nov 2022 00:54:26 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/uploads/2020/01/002-linkedin-blanc-square.png
51.91.236.193200 OK 4.5 kB URL HTTP/2 www.anbg-ga.com/wp-content/uploads/2020/01/002-linkedin-blanc-square.png
IP 51.91.236.193:0
File type PNG image data, 382 x 382, 8-bit/color RGBA, non-interlaced\012- data
Hash d58a3635637b098d1ff18d8906f43154
ea9c0bbde00a822db2c14582df2abb73116fb375
11351f35bf0dd4f00b971bceb4076e83e419f0f0f49be19a495baf4c821f9cc7
GET /wp-content/uploads/2020/01/002-linkedin-blanc-square.png HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: image/png
content-length: 4502
server: Apache
last-modified: Tue, 08 Nov 2022 00:53:37 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/uploads/2020/01/002-twitter.png
51.91.236.193200 OK 998 B URL HTTP/2 www.anbg-ga.com/wp-content/uploads/2020/01/002-twitter.png
IP 51.91.236.193:0
File type PNG image data, 112 x 112, 8-bit/color RGBA, non-interlaced\012- data
Hash d2b9bbd7810d8af8874bca12d7a3f8db
4e12c84a9ff3331de95c11e840a23477ee15b0d3
8cae89284539a8e6692d1e17fead3748fb3dfa995e7f8f502401073420e4685f
GET /wp-content/uploads/2020/01/002-twitter.png HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: image/png
content-length: 998
server: Apache
last-modified: Tue, 08 Nov 2022 00:53:56 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/uploads/2020/05/youtube.png
51.91.236.193200 OK 13 kB URL HTTP/2 www.anbg-ga.com/wp-content/uploads/2020/05/youtube.png
IP 51.91.236.193:0
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash a04938a02f163104931918076f820c8d
28b1a61781d58b3c8f9430c3e635dc094cd257fe
0ad267d9923500c890ebead2c98c11307e4257ca7e6ea4c4f81e3e0204dcc7ba
GET /wp-content/uploads/2020/05/youtube.png HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: image/png
content-length: 13286
server: Apache
last-modified: Tue, 08 Nov 2022 00:54:25 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
51.91.236.193200 OK 2.9 kB URL HTTP/2 www.anbg-ga.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP 51.91.236.193:0
File type ASCII text, with very long lines (9937), with no line terminators
Hash 8189a6a3f3f0efc64f857fe869d3729b
bc84b1c1e96a26fd6595da0cb024aad989c1f331
e2683386c2d5a8b3280fa9920d22fedb31a33a8bdca8ec494d3fe4df9fc6b337
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: application/javascript
content-length: 2937
server: Apache
last-modified: Tue, 15 Nov 2022 10:29:10 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
51.91.236.193200 OK 4.0 kB URL HTTP/2 www.anbg-ga.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP 51.91.236.193:0
File type HTML document, ASCII text, with very long lines (12310), with no line terminators
Hash 832eeb1fd498e5839b89bfb5f05a2f0d
cf2d8668aecc5033346ac2906bb8bf7e143cfa4a
35b2b27ba0ba63c065e4c67d15b7cb1878b5868d7f475cc7f6f1724d3988793a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: application/javascript
content-length: 3957
server: Apache
last-modified: Tue, 15 Nov 2022 10:29:11 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/plugins/gdpr-framework/assets/js/gdpr-donotsell.js?ver=2.0.3
51.91.236.193200 OK 886 B URL HTTP/2 www.anbg-ga.com/wp-content/plugins/gdpr-framework/assets/js/gdpr-donotsell.js?ver=2.0.3
IP 51.91.236.193:0
Hash b4e83d7570f1778bb3b102f5e53e2fb2
4aa11e01e13df6b568b2bc0e672c15729aac76c3
045dee5a948c327c545a4cebf0f2dec97a64f13d4707439761c9b1e74aac393c
GET /wp-content/plugins/gdpr-framework/assets/js/gdpr-donotsell.js?ver=2.0.3 HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: application/javascript
content-length: 886
server: Apache
last-modified: Tue, 15 Nov 2022 10:30:17 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/themes/wizeedu/js/jquery.cookie.js?ver=6.1.1
51.91.236.193200 OK 685 B URL HTTP/2 www.anbg-ga.com/wp-content/themes/wizeedu/js/jquery.cookie.js?ver=6.1.1
IP 51.91.236.193:0
File type ASCII text, with very long lines (1335), with no line terminators
Hash 2fc35f2fab880ed62c9894a8ce3ae3d4
998cc4c90b589a4160212118c444d26ce9b7e0e8
76db82386f2a15f492b9530a23bc23bcd3b9adf8cb211f7c4422b79eebd59552
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/wizeedu/js/jquery.cookie.js?ver=6.1.1 HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: application/javascript
content-length: 685
server: Apache
last-modified: Tue, 08 Nov 2022 01:01:16 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/themes/wizeedu/js/theme.js?ver=6.1.1
51.91.236.193200 OK 5.8 kB URL HTTP/2 www.anbg-ga.com/wp-content/themes/wizeedu/js/theme.js?ver=6.1.1
IP 51.91.236.193:0
File type exported SGML document, ASCII text, with CRLF line terminators
Hash 835a94fbc206447722c3c1b6ad86ffcd
cef0a01e62e281e5e08ef6fb8c94e9de733137f4
974b2062e08ef75b080005be4affb79e97ce8a3a1f8256ca5f7af802412c6a93
GET /wp-content/themes/wizeedu/js/theme.js?ver=6.1.1 HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: application/javascript
content-length: 5825
server: Apache
last-modified: Tue, 08 Nov 2022 01:01:16 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/themes/wizeedu/js/jquery.event.swipe.js?ver=6.1.1
51.91.236.193200 OK 5.2 kB URL HTTP/2 www.anbg-ga.com/wp-content/themes/wizeedu/js/jquery.event.swipe.js?ver=6.1.1
IP 51.91.236.193:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 242538c48e52cc662653b0eb3a7c2d25
2304b3085386573fd93d68ba7f675f2de89a5bdc
e6c2830bfefc932d14e94c70f50943f17035b349dd1cfb49560b5a98939a7472
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/wizeedu/js/jquery.event.swipe.js?ver=6.1.1 HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: application/javascript
content-length: 5173
server: Apache
last-modified: Tue, 08 Nov 2022 01:01:16 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.0.2
51.91.236.193200 OK 5.8 kB URL HTTP/2 www.anbg-ga.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.0.2
IP 51.91.236.193:0
File type ASCII text, with very long lines (20348)
Hash 87557f97255984632495ab966ca80902
76434ccc4a0a1871066336e2f125bd7ade80799f
53f634d6b172f9152312491d9b635dc563deba3e9eac7f3f5a9b0bf4eaaaa720
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.0.2 HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: application/javascript
content-length: 5822
server: Apache
last-modified: Tue, 08 Nov 2022 01:42:39 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/plugins/custom-twitter-feeds/js/ctf-scripts.min.js?ver=2.0.3
51.91.236.193200 OK 6.1 kB URL HTTP/2 www.anbg-ga.com/wp-content/plugins/custom-twitter-feeds/js/ctf-scripts.min.js?ver=2.0.3
IP 51.91.236.193:0
File type ASCII text, with very long lines (16139)
Hash 0313b6ed1e0b47747424766905312773
325e63e53d241360342de928233ddb75ca5753c9
249c6b34708f8dd151c9264115e104c0afeeb636c927f803e8c8a17ec024bfe9
GET /wp-content/plugins/custom-twitter-feeds/js/ctf-scripts.min.js?ver=2.0.3 HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: application/javascript
content-length: 6129
server: Apache
last-modified: Tue, 15 Nov 2022 10:29:28 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/themes/wizeedu/style.css
51.91.236.193200 OK 399 B URL HTTP/2 www.anbg-ga.com/wp-content/themes/wizeedu/style.css
IP 51.91.236.193:0
File type ASCII text, with very long lines (351), with CRLF line terminators
Hash 7051aa7cdb9a0197a45695cccb7d22c9
8340fb824a3a2e5d363df274e03bc220102c59b3
bace46e854466c1920bc9ae3c291ae42dc051aedb5de11a126ca8e68e3f43e1a
GET /wp-content/themes/wizeedu/style.css HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/wp-content/themes/anbg-child/style.css?ver=6.1.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: text/css
content-length: 399
server: Apache
last-modified: Tue, 08 Nov 2022 00:45:24 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash feaeba711c7421b074e726f89ff34e0b
c590c0b76a7a78ab51a4dabcd8f20a1b172b02fb
ebe6e312ea7116713547fbd756805843b1c242ad22269158a79305f1819fa990
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 13:55:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.anbg-ga.com/wp-content/themes/wizeedu/fonts/fontawesome-webfont.woff2?v=4.7.0
51.91.236.193200 OK 77 kB URL HTTP/2 www.anbg-ga.com/wp-content/themes/wizeedu/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 51.91.236.193:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/wizeedu/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.anbg-ga.com/wp-content/themes/wizeedu/css/font-awesome.min.css?ver=6.1.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:22 GMT
content-length: 77160
server: Apache
last-modified: Tue, 08 Nov 2022 01:01:35 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 987a8d0483563ca6c6faa59c9a4c6675
da30995169319ad71887a9ba62a0b514c94c653c
3a92b5c992d8b64ffd12507e8dcc0b7fa74215c2a3eefd4a9bafd25724b037c2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 13:55:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.anbg-ga.com/wp-content/uploads/2020/04/gabon-vert-2.jpg
51.91.236.193200 OK 123 kB URL HTTP/2 www.anbg-ga.com/wp-content/uploads/2020/04/gabon-vert-2.jpg
IP 51.91.236.193:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 75", baseline, precision 8, 1170x530, components 3\012- data
Size 123 kB (122979 bytes)
Hash 1c68caf9e30a95c9fe0b27438b08cbeb
933a471b023910e6e756b8e3fff740b8352ed198
bccbe5fb125f8bb8c6a0d7eaa938a06d370d45aa17de783505f9a0a214b29698
GET /wp-content/uploads/2020/04/gabon-vert-2.jpg HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:22 GMT
content-type: image/jpeg
content-length: 122979
server: Apache
last-modified: Tue, 08 Nov 2022 00:53:21 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:22 GMT
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/uploads/2020/04/Humpback_Whales_-_Flickr_-_Christopher.Michel_44.jpg
51.91.236.193200 OK 71 kB URL HTTP/2 www.anbg-ga.com/wp-content/uploads/2020/04/Humpback_Whales_-_Flickr_-_Christopher.Michel_44.jpg
IP 51.91.236.193:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=9, manufacturer=SONY, model=DSC-RX100M2, orientation=upper-left, xresolution=140, yresolution=148, resolutionunit=2, software=Adobe Photoshop CC (Macintosh), datetime=2014:02:05 20:35:55], baseline, precision 8, 1280x853, components 3\012- data
Hash 1f08803294ea833498396ba0e0933041
4df42a6a584be2900ef07c1378be38d79e37d524
f542b8ace618b50a2b563f29e6ee14e2eb8100ac19993f9540a6bde6945bb140
GET /wp-content/uploads/2020/04/Humpback_Whales_-_Flickr_-_Christopher.Michel_44.jpg HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:22 GMT
content-type: image/jpeg
content-length: 71281
server: Apache
last-modified: Tue, 08 Nov 2022 00:52:23 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:22 GMT
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/uploads/2020/04/gabon-des-services-scaled.jpg
51.91.236.193200 OK 293 kB URL HTTP/2 www.anbg-ga.com/wp-content/uploads/2020/04/gabon-des-services-scaled.jpg
IP 51.91.236.193:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 2560x1700, components 3\012- data
Size 293 kB (293002 bytes)
Hash d5ad6b1c1b2082865b092d7de3033417
4b7e3299ddd395c28957fe41cb1726e564680323
06e6b5ef1d1e913f4f8efb31b2a5881057e03fd726db48e1b1de3931fbf7a316
GET /wp-content/uploads/2020/04/gabon-des-services-scaled.jpg HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:22 GMT
content-type: image/jpeg
content-length: 293002
server: Apache
last-modified: Tue, 08 Nov 2022 00:53:12 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:22 GMT
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.7
51.91.236.193200 OK 74 kB URL HTTP/2 www.anbg-ga.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.7
IP 51.91.236.193:0
Hash c6751119da4edc256545deb6cc97c901
e8f2fccea02e4d0b02ed21547a6e68467df027df
9f1a87682cf8ee91e997c517cb9cff9bbbad90ec19822ad63cf03e0517c38332
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.7 HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: application/javascript
server: Apache
last-modified: Tue, 08 Nov 2022 01:40:57 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 13:55:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 13:55:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.anbg-ga.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 14:07:32 GMT
expires: Thu, 16 Nov 2023 14:07:32 GMT
cache-control: public, max-age=31536000
age: 172070
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/uploads/2020/04/two-person-in-long-sleeved-shirt-shakehand-955395-scaled.jpg
51.91.236.193200 OK 445 kB URL HTTP/2 www.anbg-ga.com/wp-content/uploads/2020/04/two-person-in-long-sleeved-shirt-shakehand-955395-scaled.jpg
IP 51.91.236.193:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 2560x1709, components 3\012- data
Size 445 kB (444944 bytes)
Hash d6b2c2b40f691888959a0e02a39a55df
6af7c02e7c1bebe480c19dbd733843082055d7c1
b7aec35a87341bb3f09f0ea564c4e88a58e9403c7f7d826b48828c120fd0e5ed
GET /wp-content/uploads/2020/04/two-person-in-long-sleeved-shirt-shakehand-955395-scaled.jpg HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:22 GMT
content-type: image/jpeg
content-length: 444944
server: Apache
last-modified: Tue, 08 Nov 2022 00:51:50 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:22 GMT
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ptserif/v17/EJRSQgYoZZY2vCFuvAnt66qSVys.woff2
216.58.207.195200 OK 30 kB URL HTTP/2 fonts.gstatic.com/s/ptserif/v17/EJRSQgYoZZY2vCFuvAnt66qSVys.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 29492, version 1.0\012- data
Hash 1ef64f017b272dc9baf01a7e6c1f2c30
3a2cc0c846c0c5af065eee0f45edde9c02ec596f
7f9694a5641741d04e1c98eb1011059826aa5feb34e47d2b2f95bdb47cb0c2f5
GET /s/ptserif/v17/EJRSQgYoZZY2vCFuvAnt66qSVys.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.anbg-ga.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29492
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 11 Nov 2022 23:36:09 GMT
expires: Sat, 11 Nov 2023 23:36:09 GMT
cache-control: public, max-age=31536000
age: 569953
last-modified: Wed, 27 Apr 2022 16:29:15 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/uploads/2020/02/logo-anbg-2020-RVB-V2-300x232.png
51.91.236.193200 OK 22 kB URL HTTP/2 www.anbg-ga.com/wp-content/uploads/2020/02/logo-anbg-2020-RVB-V2-300x232.png
IP 51.91.236.193:0
File type PNG image data, 300 x 232, 8-bit/color RGBA, non-interlaced\012- data
Hash e8387332132557153f7f597ed642bbb5
add800b52e3244bfbeb4468a15cc656e86b0366f
010f1a438f0847d0573cbddb84d86e3f719b77afbef678e47a647d767777c233
GET /wp-content/uploads/2020/02/logo-anbg-2020-RVB-V2-300x232.png HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:22 GMT
content-type: image/png
content-length: 21760
server: Apache
last-modified: Tue, 08 Nov 2022 00:54:42 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:22 GMT
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.anbg-ga.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 19:34:08 GMT
expires: Thu, 16 Nov 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 152474
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/uploads/2020/01/002-book.png
51.91.236.193200 OK 16 kB URL HTTP/2 www.anbg-ga.com/wp-content/uploads/2020/01/002-book.png
IP 51.91.236.193:0
File type PNG image data, 600 x 600, 8-bit/color RGBA, non-interlaced\012- data
Hash 0164f0d1108acf8bdf10b3722c7ad913
1ed15791d79b6e2e07e7ac232233cf6186d2b564
918ea799d805ea9909de25ecd70a3dd8aa1e661211aee3f9debce5de59e0b502
GET /wp-content/uploads/2020/01/002-book.png HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:22 GMT
content-type: image/png
content-length: 16145
server: Apache
last-modified: Tue, 08 Nov 2022 00:54:09 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:22 GMT
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.195200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.anbg-ga.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 16:40:18 GMT
expires: Fri, 17 Nov 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 76504
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/uploads/2020/01/003-scholarship.png
51.91.236.193200 OK 75 kB URL HTTP/2 www.anbg-ga.com/wp-content/uploads/2020/01/003-scholarship.png
IP 51.91.236.193:0
File type PNG image data, 600 x 600, 8-bit/color RGBA, non-interlaced\012- data
Hash e81b9fe87987aa8c977a947a1e375da1
0c37c04e0f698d71f1b9cfd20404641b5276384f
e659f47c8ed7f9f68c966d305747fc5b39b9718251591081c8619c30ea5d29d7
GET /wp-content/uploads/2020/01/003-scholarship.png HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:22 GMT
content-type: image/png
content-length: 75006
server: Apache
last-modified: Tue, 08 Nov 2022 00:53:48 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:22 GMT
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ptserif/v17/EJRVQgYoZZY2vCFuvAFWzr8.woff2
216.58.207.195200 OK 33 kB URL HTTP/2 fonts.gstatic.com/s/ptserif/v17/EJRVQgYoZZY2vCFuvAFWzr8.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 32900, version 1.0\012- data
Hash fda3323314d895ae39de612559f6fad9
644dbb14f599920fdc8f8260b6e67bd1f8770e89
d355afb9705c3f8651f6a1f813b4670b758d59a17783830f534e7a8839c5b666
GET /s/ptserif/v17/EJRVQgYoZZY2vCFuvAFWzr8.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.anbg-ga.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 32900
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 19:45:19 GMT
expires: Thu, 16 Nov 2023 19:45:19 GMT
cache-control: public, max-age=31536000
age: 151803
last-modified: Wed, 27 Apr 2022 15:44:11 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/uploads/2020/01/004-scholarship-1.png
51.91.236.193200 OK 14 kB URL HTTP/2 www.anbg-ga.com/wp-content/uploads/2020/01/004-scholarship-1.png
IP 51.91.236.193:0
File type PNG image data, 600 x 600, 8-bit/color RGBA, non-interlaced\012- data
Hash 48adf74eb7e69846b937eec8dec51057
949b7dac0d222127d5f9f6c775c15076bf0c7e36
59e92eeea53967a27c93b16d20a9a47dbf83c16b3d9bb3ca32b71b352a6087f4
GET /wp-content/uploads/2020/01/004-scholarship-1.png HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:22 GMT
content-type: image/png
content-length: 14230
server: Apache
last-modified: Tue, 08 Nov 2022 00:53:50 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:22 GMT
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/uploads/2020/01/001-bus.png
51.91.236.193200 OK 13 kB URL HTTP/2 www.anbg-ga.com/wp-content/uploads/2020/01/001-bus.png
IP 51.91.236.193:0
File type PNG image data, 600 x 600, 8-bit/color RGBA, non-interlaced\012- data
Hash b97030ec36d00ac74cd4dfef15139b46
d0756d37eed26916cefb2bffac98b234029348c7
7988486a11ad7ab7a8558468bd25f60f92cd33e7a93259a7e71c23ac840ea4fe
GET /wp-content/uploads/2020/01/001-bus.png HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:22 GMT
content-type: image/png
content-length: 12589
server: Apache
last-modified: Tue, 08 Nov 2022 00:53:40 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:22 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 13:55:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 987a8d0483563ca6c6faa59c9a4c6675
da30995169319ad71887a9ba62a0b514c94c653c
3a92b5c992d8b64ffd12507e8dcc0b7fa74215c2a3eefd4a9bafd25724b037c2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 13:55:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s.w.org/images/core/emoji/14.0.0/svg/1f3a5.svg
192.0.77.48200 OK 771 B URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/1f3a5.svg
IP 192.0.77.48:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (771), with no line terminators
Hash 733a0db94b390b2fd5da87408285a079
ada41ed104793db66a1067b0e20de464f9cf2319
a6841d2c4a12ed948dd6c51720e62a032135ccd7f50cc17b7d8d37b20f43c2cb
GET /images/core/emoji/14.0.0/svg/1f3a5.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 13:55:22 GMT
content-type: image/svg+xml
content-length: 771
last-modified: Tue, 12 Apr 2022 03:53:43 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
s.w.org/images/core/emoji/14.0.0/svg/1f514.svg
192.0.77.48200 OK 314 B URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/1f514.svg
IP 192.0.77.48:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (314), with no line terminators
Hash 6201ff6add4821014e02cfc1bc82fc95
afd344621ef88b39f6e7013b7ce4765d67892315
5f70fb8150f0a1f184b40f86d012db040d229056b9b0d8c681f08987cb124e5f
GET /images/core/emoji/14.0.0/svg/1f514.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 13:55:22 GMT
content-type: image/svg+xml
content-length: 314
last-modified: Tue, 12 Apr 2022 03:50:38 GMT
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
www.youtube.com/s/player/041a7965/www-player.css
142.250.74.46200 OK 50 kB URL HTTP/2 www.youtube.com/s/player/041a7965/www-player.css
IP 142.250.74.46:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 660f0ed1206720a6377711f80a254044
bb82706fce39ac84746a1e227732853c8991995d
8a2d03560ac10fd9d29e7592a555d6cf56b8f561c187dac91bc3a6e703171a17
GET /s/player/041a7965/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/F6VpZrlsegE?feature=oembed
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 49809
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 16:01:16 GMT
expires: Fri, 17 Nov 2023 16:01:16 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 17 Nov 2022 01:17:30 GMT
content-type: text/css
age: 78846
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 12 Nov 2022 12:31:58 GMT
expires: Sun, 12 Nov 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 523404
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 21:46:16 GMT
expires: Fri, 17 Nov 2023 21:46:16 GMT
cache-control: public, max-age=31536000
age: 58146
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
s.w.org/images/core/emoji/14.0.0/svg/1f5de.svg
192.0.77.48200 OK 3.7 kB URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/1f5de.svg
IP 192.0.77.48:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2381), with no line terminators
Hash 5f5f6359c668c4c6646b94f64618080a
b40883beecbc9886dc89d971a03ddf28343e5209
6feddfe2dbbb54029512efb607c7e92a0791a4e87bf54927d99df788b95be5e0
GET /images/core/emoji/14.0.0/svg/1f5de.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 13:55:22 GMT
content-type: image/svg+xml
last-modified: Tue, 12 Apr 2022 03:47:50 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/plugins/revslider/public/assets/assets/loader.gif
51.91.236.193200 OK 2.5 kB URL HTTP/2 www.anbg-ga.com/wp-content/plugins/revslider/public/assets/assets/loader.gif
IP 51.91.236.193:0
File type GIF image data, version 89a, 24 x 24\012- data
Hash 4b3afb84b2b71ef56df09997a350bd04
accdac8a7abeab0e21c49539aad0a973addb28ef
9034d5d34015e4b05d2c1d1a8dc9f6ec9d59bd96d305eb9e24e24e65c591a645
GET /wp-content/plugins/revslider/public/assets/assets/loader.gif HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:22 GMT
content-type: image/gif
content-length: 2545
server: Apache
last-modified: Tue, 08 Nov 2022 01:40:59 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:22 GMT
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
51.91.236.193200 OK 7.5 kB URL HTTP/2 www.anbg-ga.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
IP 51.91.236.193:0
File type Web Open Font Format, TrueType, length 7536, version 1.0\012- data
Hash 04eb8fc57f27498e5ae37523e3bfb2c7
d942ae11706c3f7e511e3c49b0e4574d7ad199c4
f7b9c3065e55fa3b9e320093612e7b30dcb14355a44ec461247b495a3e729686
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888 HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.anbg-ga.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.7
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:22 GMT
content-type: application/x-font-woff
content-length: 7536
server: Apache
last-modified: Tue, 08 Nov 2022 02:01:40 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/uploads/2021/07/cropped-favicon-256x256-1-192x192.png
51.91.236.193200 OK 11 kB URL HTTP/2 www.anbg-ga.com/wp-content/uploads/2021/07/cropped-favicon-256x256-1-192x192.png
IP 51.91.236.193:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash da752e02b17772f5a2813d20075a7415
12861c9120ce91fa1de54d47f62e763acbf6348b
a0fec89b0facac42620c94a1c51ca8d9a2cde83fe3a55648514a6634a737073e
GET /wp-content/uploads/2021/07/cropped-favicon-256x256-1-192x192.png HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:22 GMT
content-type: image/png
content-length: 10875
server: Apache
last-modified: Tue, 08 Nov 2022 00:56:13 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:22 GMT
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/uploads/2021/07/cropped-favicon-256x256-1-32x32.png
51.91.236.193200 OK 1.2 kB URL HTTP/2 www.anbg-ga.com/wp-content/uploads/2021/07/cropped-favicon-256x256-1-32x32.png
IP 51.91.236.193:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 3d0a689a764ea0fa063db11b1899e7df
8acaa7e1ff2f8c4b81fb3306735d1bc3d6b86a03
a4598ae9c57df76dcc0f444930534575be8d093a0bc345c91882c072e887f1bd
GET /wp-content/uploads/2021/07/cropped-favicon-256x256-1-32x32.png HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:22 GMT
content-type: image/png
content-length: 1202
server: Apache
last-modified: Tue, 08 Nov 2022 00:55:52 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:22 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3991
Expires: Fri, 18 Nov 2022 15:01:53 GMT
Date: Fri, 18 Nov 2022 13:55:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3991
Expires: Fri, 18 Nov 2022 15:01:53 GMT
Date: Fri, 18 Nov 2022 13:55:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3991
Expires: Fri, 18 Nov 2022 15:01:53 GMT
Date: Fri, 18 Nov 2022 13:55:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3991
Expires: Fri, 18 Nov 2022 15:01:53 GMT
Date: Fri, 18 Nov 2022 13:55:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3991
Expires: Fri, 18 Nov 2022 15:01:53 GMT
Date: Fri, 18 Nov 2022 13:55:22 GMT
Connection: keep-alive
www.youtube.com/embed/F6VpZrlsegE?feature=oembed
142.250.74.46200 OK 35 kB URL HTTP/2 www.youtube.com/embed/F6VpZrlsegE?feature=oembed
IP 142.250.74.46:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (58643)
Hash 065df6ced190456b9892e80a8106c2ad
1c853934a8818e402b14382886e7bd5fab02b747
2a34b6c2516727236cde3769d03dbcd4976ee2171bed91bcef673462f5b609f1
GET /embed/F6VpZrlsegE?feature=oembed HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 18 Nov 2022 13:55:22 GMT
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=YwTdlpzBOKk; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=kV77CFbYjS8; Domain=.youtube.com; Expires=Wed, 17-May-2023 13:55:22 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+412; expires=Sun, 17-Nov-2024 13:55:22 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38915691-004a-4ae6-a5c6-fd071040ffba.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38915691-004a-4ae6-a5c6-fd071040ffba.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4998f097d23ee5f19cae27d5b938e5fc
4369c8ebe61b9944e639bb2731feb51c5a758fe7
5691c66766c9578e9c4aa71240608653821162c668abc63ee40e553ede2450e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38915691-004a-4ae6-a5c6-fd071040ffba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6339
x-amzn-requestid: 0be5dee5-272d-4577-ba55-5cdb7935ea60
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-MCExBoAMFz6Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376aa4c-15fd613336aa6fcb165d0b26;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:40:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: NYs-Nf0PzWqhXP5nkvanTjhJ6vfwRIU--YD06RFIGPEuwDCu6fvEPg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:52:40 GMT
age: 57762
etag: "4369c8ebe61b9944e639bb2731feb51c5a758fe7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f1b43b0-5ba1-4c6c-9a53-bfae9befdd7d.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f1b43b0-5ba1-4c6c-9a53-bfae9befdd7d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a9d32fa3866dd741de610a61a93ad893
4cb2141b1ef1e5bf19a3b355995dcd8fa36f695e
4492338de536cfae6fb42fd37170c60f4fbc281a2a924efe6d2b5af352cd102c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f1b43b0-5ba1-4c6c-9a53-bfae9befdd7d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6344
x-amzn-requestid: cac35b04-be3b-4ae1-bb5e-8cedcd7a7db4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: btqOVFCXIAMFcOg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63755728-45c28fa333b748520be29b57;Sampled=0
x-amzn-remapped-date: Wed, 16 Nov 2022 21:33:28 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: mhgNSp1_LsVmn00ULm116flMHpnfE6G6JABrJwXH5i4q-isv_W1-Ig==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 f313d3df80c4dab8f5399614116801cc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:34:18 GMT
age: 58864
etag: "4cb2141b1ef1e5bf19a3b355995dcd8fa36f695e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9672fb80-baaa-4ab8-b080-dc8c1ce94400.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9672fb80-baaa-4ab8-b080-dc8c1ce94400.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 05289172c1455c4134e496c6f4606efd
ce1bb33256b0754f9acc01e7e9f3e5dc85f89244
a8b4411a0310cc376efe2aec7c0830b8d3b63b8827631b0ff43ec092f1f80f82
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9672fb80-baaa-4ab8-b080-dc8c1ce94400.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12065
x-amzn-requestid: 45c97153-71c7-4985-a1ad-fc21a509d153
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-K5FyVIAMFtDg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376aa45-0f9d22dd544a4580570f3089;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:40:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: dxT2WJB7m5tUhgBn2PwTIN4Zskzm3X7CW-29hl1nCyNPbKt5j6q5iA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:55:27 GMT
age: 57595
etag: "ce1bb33256b0754f9acc01e7e9f3e5dc85f89244"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 032386e5c9dffff1ba1ee5e8a322d438
dd4fd6c803a9b333bace9a541c6bd183d0c56bb9
0e9f559a0aa7e114c5810a27ba243c0da7b44dc0bf7aec2b7ab32b8f0e2b536c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11667
x-amzn-requestid: ae092a0a-1709-4497-9f07-0348a28d2491
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bqZOIEN7oAMFlaA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637408c0-5ac595df302a8f1d3703ad8d;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 21:46:40 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: c_SJMaV3uYSUysTSOFV--jQqDUxw-fBp8cXWWUZw9vUjt0d6PsOpxA==
via: 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 18:45:44 GMT
age: 68978
etag: "dd4fd6c803a9b333bace9a541c6bd183d0c56bb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20ddb38f-d459-45e6-9351-068a5306b3a1.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20ddb38f-d459-45e6-9351-068a5306b3a1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7d16e5ff718353c095d266b080fe547f
fa7c5c9a1d16355859196271f3d13f3850931888
9a94d8eb20cc56d0898b1e2b80c0006ebbef75c15ad94e907050c5be4e19a960
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20ddb38f-d459-45e6-9351-068a5306b3a1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10349
x-amzn-requestid: fc85e078-a81a-4fed-899e-15249961f59c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-7tHGLIAMF00Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab7d-4224d193517794684fcdc0ad;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:45:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UK-XD_8EcfPwfLb-QVwfLr8aG-sqVBoUJcbPb5hKAlQS68eOxdgM5g==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:03:27 GMT
age: 57115
etag: "fa7c5c9a1d16355859196271f3d13f3850931888"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg
34.120.237.76200 OK 3.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5d0b6106f00f9fd8b89c2d484a559a1a
399ac393209dcdac7d2188d7aa8d95f04570ef7c
5d8151c9eb558f4a2b8bd2952c6845606ddb0c27e36f6e49aca7e60908cd9fe4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3759
x-amzn-requestid: 8c91ac59-89dc-4218-b69f-0cebb29f301b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-wJHgxoAMF-hQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab33-4dac305614a92bc52c038222;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:44:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Mb2-PTjNmt06Wd5jOjQ5WoLY-0NgI80CKPXtwgzBt4n5km8Pu_WN0Q==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:50:49 GMT
age: 57873
etag: "399ac393209dcdac7d2188d7aa8d95f04570ef7c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 71250781bedbbb1b14ab5da15b71ac66
57fc77825f07c67870c41717fced0bc26ad46ea8
a9f1e31b50ed4bbc20e12a49ee08d62ee30364a45aa2cb5e9248cd0811ea956a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 13:55:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4ec62279c2b0171ab1d12d11e38a8bb1
a95c73a838695ebad74025f9841f44c67af18454
0582eb214cb1fe089cb4b5e5ba41545fe7e15212282588bf711494d165e88506
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 13:55:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.166200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.166:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 18 Nov 2022 13:44:05 GMT
expires: Fri, 18 Nov 2022 13:59:05 GMT
cache-control: public, max-age=900
age: 678
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
142.250.74.34302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Fri, 18 Nov 2022 13:55:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.202200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.202:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 18 Nov 2022 13:55:23 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4ec62279c2b0171ab1d12d11e38a8bb1
a95c73a838695ebad74025f9841f44c67af18454
0582eb214cb1fe089cb4b5e5ba41545fe7e15212282588bf711494d165e88506
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 13:55:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 71250781bedbbb1b14ab5da15b71ac66
57fc77825f07c67870c41717fced0bc26ad46ea8
a9f1e31b50ed4bbc20e12a49ee08d62ee30364a45aa2cb5e9248cd0811ea956a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 13:55:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d3ba0eba720a8e5904bee6e804873c24
df1f9c79e39f777ab12225af0af60b9f26af6485
76500b32cbac4ad40e3f42c7dfd46832f3854ba88c3a6d5a9d2b5633e8e1f27b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 13:55:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.202200 OK 38 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.202:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 2be8213ec2dad4689e01086bbcd6d956
83b9d2decb73ecfa4d866227b89c7656f9e1b84a
c960dd9b496ecbf32d7fd12704e2d5d98c0f477095a6150c19a6a59cb283b6c8
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 18 Nov 2022 13:55:23 GMT
server: ESF
cache-control: private
content-length: 37699
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/js/th/98eZ1SvQKncrIy_uxRv1pSvbmSGZ50EV24E3eut_s2o.js
142.250.74.164200 OK 14 kB URL HTTP/2 www.google.com/js/th/98eZ1SvQKncrIy_uxRv1pSvbmSGZ50EV24E3eut_s2o.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (35818)
Hash 511a3814cb1663e9d9286015da587ae2
a9ef6e40f17b2659c823195354e912a8979cc1a0
a2e4a4711f28ea423fdcadcced71bdf38e190b285fdde3fc9f11868ad8730375
GET /js/th/98eZ1SvQKncrIy_uxRv1pSvbmSGZ50EV24E3eut_s2o.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14262
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 06:09:08 GMT
expires: Thu, 16 Nov 2023 06:09:08 GMT
cache-control: public, max-age=31536000
age: 200775
last-modified: Thu, 03 Nov 2022 10:00:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 34cdecc86a01fc135cb8a5c4618c3a55
1bfffa5028efbc1c5bf766c50cbf58b9ee1f4e86
4786dbae246f44e3944a1db922a464327ef498da3345670e967ac1b7db827b36
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 13:55:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 88be8943ccad2689061a8a1bca86b230
60713ee6a4e3c03f0c0a5cbe8ffeb68fbfc733f8
7d46e3598dee0d57857441f4f294881b40aa169177e4d4ef2e268fc0adaaf5b4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 13:55:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/Q0nqDyQv53EmHrp7xsNB2YVx_IyZVYvoFYXlWfJh-2NAt58wAwos1Fe4wTsHb_pQ0hJy69LOVg=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 2.4 kB URL HTTP/2 yt3.ggpht.com/Q0nqDyQv53EmHrp7xsNB2YVx_IyZVYvoFYXlWfJh-2NAt58wAwos1Fe4wTsHb_pQ0hJy69LOVg=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data
Hash 634b480d763269b1eb857deae871ab51
6c0bd3297ef1ad760f430fc19073a82cc2ca12b2
fee23a76f8db675b60f3101626583349f0778bcdaf74f98b46c4fe1e0eca70d3
GET /Q0nqDyQv53EmHrp7xsNB2YVx_IyZVYvoFYXlWfJh-2NAt58wAwos1Fe4wTsHb_pQ0hJy69LOVg=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2373
x-xss-protection: 0
date: Fri, 18 Nov 2022 13:55:23 GMT
expires: Sat, 19 Nov 2022 08:06:39 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.ytimg.com/vi/F6VpZrlsegE/sddefault.jpg?sqp=-oaymwEmCIAFEOAD8quKqQMa8AEB-AH-CYAC0AWKAgwIABABGCYgRih_MA8=&rs=AOn4CLApOK-wkcDdLdz18g4glVLcxj6lDw
142.250.74.118200 OK 26 kB URL HTTP/2 i.ytimg.com/vi/F6VpZrlsegE/sddefault.jpg?sqp=-oaymwEmCIAFEOAD8quKqQMa8AEB-AH-CYAC0AWKAgwIABABGCYgRih_MA8=&rs=AOn4CLApOK-wkcDdLdz18g4glVLcxj6lDw
IP 142.250.74.118:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 640x480, components 3\012- data
Hash 16571ddbe8d29b8c4bee1deff9c08d7b
cff1df2fe3febaecc6c078ddb219ef3399f4fc73
744503e5e0a5d742e397efdeb387d10677643948278051e45446975f5ae8188f
GET /vi/F6VpZrlsegE/sddefault.jpg?sqp=-oaymwEmCIAFEOAD8quKqQMa8AEB-AH-CYAC0AWKAgwIABABGCYgRih_MA8=&rs=AOn4CLApOK-wkcDdLdz18g4glVLcxj6lDw HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 26413
date: Fri, 18 Nov 2022 13:55:23 GMT
expires: Fri, 18 Nov 2022 15:55:23 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c15be7bf1c6987951ddd348d6f6b4db1
9faac1fb81abc8fce6d4ae81777c76b8bc11e9b0
7f1d01e3fc0b69e331fd30326ea8fd9b1e3e06a0a93ae4768e7addd03a121025
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 13:55:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 88be8943ccad2689061a8a1bca86b230
60713ee6a4e3c03f0c0a5cbe8ffeb68fbfc733f8
7d46e3598dee0d57857441f4f294881b40aa169177e4d4ef2e268fc0adaaf5b4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 13:55:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 34cdecc86a01fc135cb8a5c4618c3a55
1bfffa5028efbc1c5bf766c50cbf58b9ee1f4e86
4786dbae246f44e3944a1db922a464327ef498da3345670e967ac1b7db827b36
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 13:55:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.207.202200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.207.202:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 18 Nov 2022 13:55:23 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.207.202200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.207.202:0
File type JSON data\012- , ASCII text, with no line terminators
Hash ccebb808d7f23c65f7c05e859731c1ad
7ea4c0c7142f39ed78b75dd90d734c59bc02d71e
69b94782eb778c50907e23b7ebe7ca53b68f25feb609783bc6d8248aeba23e45
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 840
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 18 Nov 2022 13:55:23 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b2b393e36ee2c9649d90db136aa49542
e88c5832ff0c49bab181d948c3a510d88343bb6f
8b524701df43bff56ac52a021ff0fbd964e06f00e84b4861aa557ec6ae6b4ffd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7631
x-amzn-requestid: b47e545d-1fb6-4a62-ab45-28cdb9d3f0b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-vQE0XoAMFS3w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab2e-56365eed3d4c082c53b172b3;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:44:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qpoQa1Lhe-h27dGooXDCtujesSTg7Tb0Ov-PNLnUP0288ZofwHxkhQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:52:40 GMT
age: 57769
etag: "e88c5832ff0c49bab181d948c3a510d88343bb6f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=PT+Serif%3Aregular%2Citalic%2C700%2C700italic&ver=6.1.1
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=PT+Serif%3Aregular%2Citalic%2C700%2C700italic&ver=6.1.1
IP 142.250.74.10:0
GET /css?family=PT+Serif%3Aregular%2Citalic%2C700%2C700italic&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 18 Nov 2022 13:55:21 GMT
date: Fri, 18 Nov 2022 13:55:21 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat%3Aregular%2C700&ver=6.1.1
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Montserrat%3Aregular%2C700&ver=6.1.1
IP 142.250.74.10:0
GET /css?family=Montserrat%3Aregular%2C700&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 18 Nov 2022 13:55:21 GMT
date: Fri, 18 Nov 2022 13:55:21 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/uploads/2020/04/rig-2251648-1920.jpg
51.91.236.193200 OK 0 B URL HTTP/2 www.anbg-ga.com/wp-content/uploads/2020/04/rig-2251648-1920.jpg
IP 51.91.236.193:0
GET /wp-content/uploads/2020/04/rig-2251648-1920.jpg HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:22 GMT
content-type: image/jpeg
content-length: 660202
server: Apache
last-modified: Tue, 08 Nov 2022 00:52:05 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:22 GMT
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:400%2C500%7CPT+Serif:700
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:400%2C500%7CPT+Serif:700
IP 142.250.74.10:0
GET /css?family=Roboto:400%2C500%7CPT+Serif:700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 18 Nov 2022 13:55:21 GMT
date: Fri, 18 Nov 2022 13:55:21 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.anbg-ga.com/wp-content/uploads/2020/02/aninf.png
51.91.236.193200 OK 0 B URL HTTP/2 www.anbg-ga.com/wp-content/uploads/2020/02/aninf.png
IP 51.91.236.193:0
GET /wp-content/uploads/2020/02/aninf.png HTTP/1.1
Host: www.anbg-ga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.anbg-ga.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 13:55:21 GMT
content-type: image/png
content-length: 112165
server: Apache
last-modified: Tue, 08 Nov 2022 00:54:33 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 18 Nov 2022 14:10:21 GMT
X-Firefox-Spdy: h2