www.clarkscoza.com/
165.231.65.159301 Moved Permanently 235 B IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c151c33f748dfa3d1275374d7944761c
80a03f3d6219c7400db6aa5ab7b9348c8dd2f76a
84a25015684630e2ac03fb15b469d79aba328d2dd99e95ab3d02588b403d61b2
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET / HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 05 Dec 2022 14:31:33 GMT
Server: Apache
Location: https://www.clarkscoza.com/
Content-Length: 235
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9853
Expires: Mon, 05 Dec 2022 17:15:47 GMT
Date: Mon, 05 Dec 2022 14:31:34 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ee088fab9b287e174cfd1f2c735a909f
25c3335b514a36ad1a24d00413d60c3d394f5161
494e96358ff12366213d7cc0f9197648c6c62ec14fa0d2c78732a683fa26b192
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6574
Cache-Control: max-age=164959
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 14:31:34 GMT
Etag: "638dc877-1d7"
Expires: Wed, 07 Dec 2022 12:20:53 GMT
Last-Modified: Mon, 05 Dec 2022 10:31:19 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8734
Expires: Mon, 05 Dec 2022 16:57:08 GMT
Date: Mon, 05 Dec 2022 14:31:34 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 05 Dec 2022 14:18:29 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 785
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: vK2sfWn9/XpIoL0IA6cKQ960kUe0qtB4QgNpXzjILRT92Lvu6PEiILEXYEarV70N7tAMT3uzyDo=
x-amz-request-id: Y8SAZ3NM4B33FA4K
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 05 Dec 2022 13:48:00 GMT
age: 2614
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 14:31:34 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 05 Dec 2022 14:11:19 GMT
cache-control: public,max-age=3600
age: 1215
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2b9d6a686aa3c4ea24568425e43a5221
d53bb4c9579bd1db78a0520619e888aec79f750f
c38734a8dbe51217d73896c0bf7f5c38c107fd79e0dee24b717f130377e9b5f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6560
Cache-Control: max-age=159878
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 14:31:34 GMT
Etag: "638db4ac-1d7"
Expires: Wed, 07 Dec 2022 10:56:12 GMT
Last-Modified: Mon, 05 Dec 2022 09:06:52 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.39.62.124101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.62.124:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: zZnRvLcw7UjBq0BETCEl5w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: S76qwQ5XuxWBCcQarQae8OMCSU0=
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3260
Expires: Mon, 05 Dec 2022 15:25:56 GMT
Date: Mon, 05 Dec 2022 14:31:36 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3260
Expires: Mon, 05 Dec 2022 15:25:56 GMT
Date: Mon, 05 Dec 2022 14:31:36 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3260
Expires: Mon, 05 Dec 2022 15:25:56 GMT
Date: Mon, 05 Dec 2022 14:31:36 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3260
Expires: Mon, 05 Dec 2022 15:25:56 GMT
Date: Mon, 05 Dec 2022 14:31:36 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 43309032a892c486f9985ef520df696e
36f4682ca6a33ff80ee02129c77e6f27e996ede0
24225ff504f30405d9ec3feb2555c738fcca0d6b265f285aa9c73a64c78a496e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5681
x-amzn-requestid: 8f0d66b8-d532-48d9-9a29-74540cd6ab3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cltXnEotIAMFqkA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc296-27349a376ff819ab63b04a81;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:41:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Uz-wJTZjej3sjP-O68BQ4hB_kkAecG0o7GkeZUan90ZgV87g0Cg_ZA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:49:44 GMT
age: 60112
etag: "36f4682ca6a33ff80ee02129c77e6f27e996ede0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c01fe1cccdb3b672bbade6d98217ffe9
a9a529dc9894827f6243a1bf57f81caa4fe88fc2
c43da6212c79a08e22e78e04e99e8f5422e64b4b0a87f30b7907f1b4bc675c71
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4666
x-amzn-requestid: 850d341f-5ccb-453c-8adf-a8194f8fbdad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clr_-GiboAMFwww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc066-766293f2526e637235067aca;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kmki-SBINSx1kbiIkaSGebdCLrnDeHVhYeotAWzE__CevkNDdfzRGg==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:44:05 GMT
age: 60451
etag: "a9a529dc9894827f6243a1bf57f81caa4fe88fc2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7663e5fc-37de-4be8-9be7-49805622f85d.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7663e5fc-37de-4be8-9be7-49805622f85d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 99d1ff8fa2e095dcf2bda3d1e1af1221
f914f04a0e1fb45a221d31d2105bfc73015b03e6
90325d4299a44dbd213857ada6f6880db8c33ad61685cfcb60c4a2455a84cf87
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7663e5fc-37de-4be8-9be7-49805622f85d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10183
x-amzn-requestid: 0cdea572-aab4-4d52-948b-976170a787a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_uLHQZoAMF4hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d1327-7948052f39c4f6071b4a0e0d;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WDqUFMBT59kulx4WLxNh5XTsHzr4_u524juvZJnGMYBH-mUaJclnTg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:49:03 GMT
age: 60153
etag: "f914f04a0e1fb45a221d31d2105bfc73015b03e6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash db1701b7b9d161a0c935bb6e10b17893
22a8c4bd58c729c1abcf794466e8f3231dfb034b
b495524a33e5b1d3ba34cfbe867ada0da956c061370b1fcde06b23a6194a9787
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8315
x-amzn-requestid: f1bcc33b-aad9-4d3b-b1f9-49282f2d4fb9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clsAMGVboAMFfxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc067-13472a097177d4751c8f7a8c;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JuY0xcLDiERwrVhq33d4PP64liDqFfk9bc9xX1H62o0tOwrt1ek7Pg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:42:39 GMT
age: 60537
etag: "22a8c4bd58c729c1abcf794466e8f3231dfb034b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3af2e495-85ff-410f-8418-e683c7f84bcd.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3af2e495-85ff-410f-8418-e683c7f84bcd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 027480c06cd67621f373c6765dafee4d
9f80bb7ca6f699d88eaec2248dec508c589fe994
f69a0d6bd6e79d8fa7f2f15df11237c0a8b04d45af3cd5870eeef86d18f553bf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3af2e495-85ff-410f-8418-e683c7f84bcd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7728
x-amzn-requestid: 9f37e7a6-1f00-4a81-9b14-962fd0b6cdf4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clsAMEJxoAMFchQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc067-4a4cce217327b44525ea1e98;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ztC4S0WeA3ft_9JafrL6fInXo4jwkb0cTWUx4Z8L2uz3EWQS-d6F5A==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 22:09:54 GMT
age: 58902
etag: "9f80bb7ca6f699d88eaec2248dec508c589fe994"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61cc2744-b517-4404-bfa2-25fadadfa3f3.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61cc2744-b517-4404-bfa2-25fadadfa3f3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2636f91bb8fa4d9bb7bef114c248a9ae
8637105f41058bc0d2b259d462b560881928adb6
3d93fd8fcf1af31d00ccbd453142dbea5f2b91d7f58373095943ed40a31ed1f7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61cc2744-b517-4404-bfa2-25fadadfa3f3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10431
x-amzn-requestid: f79ab5e7-8c1b-4827-a531-aaa19c1d80aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clsCGEwxIAMF34g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc073-6358d2950955884c470c0a89;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: J5nMfQKgT-FYVTurkqi_1CM7gu_aDiAN9NLP7hocqQ10UixVzQcq5w==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:47:08 GMT
age: 60268
etag: "8637105f41058bc0d2b259d462b560881928adb6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.clarkscoza.com/
165.231.65.159200 OK 45 kB IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4517), with CRLF, LF line terminators
Hash b0d00f2f8e21d19131e85e7b8dd7ae22
24cd62c3caf0b7e5cd79915cf1c1941d6864f7bf
f0f4156d580e6fd8a0439b9505c00b0ce779dfdafe6c4d4d8ddce8d96f63e697
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET / HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:36 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993; path=/; HttpOnly
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
www.clarkscoza.com/includes/templates/clarks-southafrica/css/stylesheet.css
165.231.65.159200 OK 0 B URL HTTP/1.1 www.clarkscoza.com/includes/templates/clarks-southafrica/css/stylesheet.css
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/clarks-southafrica/css/stylesheet.css HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:37 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:59 GMT
Accept-Ranges: bytes
Content-Length: 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.clarkscoza.com/includes/templates/clarks-southafrica/css/stylesheet3Cb6d.css
165.231.65.159200 OK 16 kB URL HTTP/1.1 www.clarkscoza.com/includes/templates/clarks-southafrica/css/stylesheet3Cb6d.css
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type ASCII text, with very long lines (876), with CRLF line terminators
Hash 0821246c0cdbb336684cd4936584838a
200f3d6711552814d36f8b018e1e1db1c42685ba
c4d954314efbc7b07776a2696fc3365bc69268435492fcfda01dc23d22aa1040
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/clarks-southafrica/css/stylesheet3Cb6d.css HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:37 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:59 GMT
Accept-Ranges: bytes
Content-Length: 16225
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.clarkscoza.com/includes/templates/clarks-southafrica/css/stylesheethvcqo.css
165.231.65.159200 OK 93 kB URL HTTP/1.1 www.clarkscoza.com/includes/templates/clarks-southafrica/css/stylesheethvcqo.css
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type ASCII text, with CRLF line terminators
Hash c189b0d7a17a3760651c0c39ec64568b
e61973457cbf704529d8591152182a2bfa2c0e73
f10f4f7c47b308fa6073e785c0c5b67a6776c49f7b773425b4307fdc79aa3b93
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/clarks-southafrica/css/stylesheethvcqo.css HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:37 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:59 GMT
Accept-Ranges: bytes
Content-Length: 92941
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.clarkscoza.com/includes/templates/clarks-southafrica/css/stylesheetoPkxv.css
165.231.65.159200 OK 2.3 kB URL HTTP/1.1 www.clarkscoza.com/includes/templates/clarks-southafrica/css/stylesheetoPkxv.css
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
Hash 77ac4aa1fc1b80426aa7ad8033dcb40c
fa30830acbbe5458aa445be97ecd00be2e1d60fa
93a60cfc2924d4c2d193bd12bd2ccd8d54b433b975bf842d9c2547a95efabdf0
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/clarks-southafrica/css/stylesheetoPkxv.css HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:37 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:59 GMT
Accept-Ranges: bytes
Content-Length: 2341
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
www.clarkscoza.com/includes/templates/clarks-southafrica/css/stylesheetsUdbp.css
165.231.65.159200 OK 0 B URL HTTP/1.1 www.clarkscoza.com/includes/templates/clarks-southafrica/css/stylesheetsUdbp.css
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/clarks-southafrica/css/stylesheetsUdbp.css HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:38 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:59 GMT
Accept-Ranges: bytes
Content-Length: 0
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
www.clarkscoza.com/includes/templates/clarks-southafrica/jscript/jscript_1.11.1.min.js
165.231.65.159200 OK 86 kB URL HTTP/1.1 www.clarkscoza.com/includes/templates/clarks-southafrica/jscript/jscript_1.11.1.min.js
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type ASCII text, with very long lines (32069)
Hash 93c4b563622d278b1065690a3d93709e
f00d128cf399f17322b1d4ee02fa8cd892e081bd
601c06474a16936670a0477da2a777ccfca3301e3857204ec9b55dfa2c45287e
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /includes/templates/clarks-southafrica/jscript/jscript_1.11.1.min.js HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:38 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:59 GMT
Accept-Ranges: bytes
Content-Length: 85588
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.clarkscoza.com/includes/templates/clarks-southafrica/jscript/jscript_2.2.0.min.js
165.231.65.159200 OK 143 kB URL HTTP/1.1 www.clarkscoza.com/includes/templates/clarks-southafrica/jscript/jscript_2.2.0.min.js
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type Unicode text, UTF-8 text, with very long lines (522)
Size 143 kB (142713 bytes)
Hash 674b896ffae27a70571b1fc5bd65919d
63c8c73c7e5ba15aa940aba8f1c43b6150a9f941
a7c32e459eae73c136b6eb07711a69b2cc7b557c085fc232dd42db7fb50e9374
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /includes/templates/clarks-southafrica/jscript/jscript_2.2.0.min.js HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:38 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:59 GMT
Accept-Ranges: bytes
Content-Length: 142713
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
www.clarkscoza.com/includes/templates/clarks-southafrica/jscript/jscript_jquery.js
165.231.65.159200 OK 86 kB URL HTTP/1.1 www.clarkscoza.com/includes/templates/clarks-southafrica/jscript/jscript_jquery.js
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type Unicode text, UTF-8 text, with very long lines (65168)
Hash e85aed5c30d734f1e30646e030d7a817
b8dcaa1c866905c0bdb0b70c8e564ff1c3fe27ad
8f0a19ee8c606b35a10904951e0a27da1896eafe33c6e88cb7bcbe455f05a24a
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /includes/templates/clarks-southafrica/jscript/jscript_jquery.js HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:38 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:59 GMT
Accept-Ranges: bytes
Content-Length: 85925
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
www.clarkscoza.com/includes/templates/clarks-southafrica/jscript/jscript_jquery_kinSlideshow.js
165.231.65.159200 OK 9.7 kB URL HTTP/1.1 www.clarkscoza.com/includes/templates/clarks-southafrica/jscript/jscript_jquery_kinSlideshow.js
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type ISO-8859 text, with very long lines (8513), with CRLF line terminators
Hash 08a763acea723e1d88cbce2f1c9b3317
ea20687e4f773bf67907b0edb029ebafbc110fc1
c17caeebb94b90d9aae3dc3142cda848f67e8b9425a6d25e434af74d2978aba4
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /includes/templates/clarks-southafrica/jscript/jscript_jquery_kinSlideshow.js HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:38 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:59 GMT
Accept-Ranges: bytes
Content-Length: 9674
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
www.clarkscoza.com/includes/templates/clarks-southafrica/jscript/jscript_lightbox.js
165.231.65.159200 OK 20 kB URL HTTP/1.1 www.clarkscoza.com/includes/templates/clarks-southafrica/jscript/jscript_lightbox.js
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type ISO-8859 text, with very long lines (797), with CRLF line terminators
Hash 3d79a6c53803295ef00c052546d76500
f1481ce4f6f2aaefd7a5b6af19be42c7b1606dcc
93acbf26510bd264764a43d220a984b78270cd37536e0aa6bf8deb1fb28338f8
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /includes/templates/clarks-southafrica/jscript/jscript_lightbox.js HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:38 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:59 GMT
Accept-Ranges: bytes
Content-Length: 20417
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
www.clarkscoza.com/includes/templates/clarks-southafrica/jscript/jscript_slick.js
165.231.65.159200 OK 89 kB URL HTTP/1.1 www.clarkscoza.com/includes/templates/clarks-southafrica/jscript/jscript_slick.js
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
Hash 5f8f4aed010e1afe499184d8197309f9
097f6a1b4f115e9b6ebefa70d76d830733bcc9ba
0aaa4cf927b0e3631cffbe62f6786810aa65348483cd950e49f634a0881b16b4
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /includes/templates/clarks-southafrica/jscript/jscript_slick.js HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:38 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:59 GMT
Accept-Ranges: bytes
Content-Length: 88955
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
www.clarkscoza.com/facebox/css/font-awesome.min.css
165.231.65.159200 OK 32 kB URL HTTP/1.1 www.clarkscoza.com/facebox/css/font-awesome.min.css
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type ASCII text, with very long lines (402)
Hash 0557ee20cbec5ddc14ba0481a4ae9ca8
b95de7bc2822aebad9564b64fd10ed69c60f611c
c6d652d309878c531875964ca66aa28c95a80204df250b89ef04d90be6c4f50d
Analyzer Verdict Alert quad9 Sinkholed
GET /facebox/css/font-awesome.min.css HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:38 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:39:01 GMT
Accept-Ranges: bytes
Content-Length: 31725
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: text/css
www.clarkscoza.com/js/jquery-1.7.2.min.js
165.231.65.159200 OK 158 kB URL HTTP/1.1 www.clarkscoza.com/js/jquery-1.7.2.min.js
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type ASCII text, with very long lines (749)
Size 158 kB (157648 bytes)
Hash 6f3d61313966fcd43b0334aa5fad66b9
22b2b120da5b405a348e4abdd865c496625d87ab
f2374ffefd903e49bfa1772a042c1b593e52cd862e6553f538128ab4a58fe5b5
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /js/jquery-1.7.2.min.js HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:38 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:39:01 GMT
Accept-Ranges: bytes
Content-Length: 157648
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/javascript
www.clarkscoza.com/js/jquery.mmenu.min.all.js
165.231.65.159200 OK 39 kB URL HTTP/1.1 www.clarkscoza.com/js/jquery.mmenu.min.all.js
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type ASCII text, with very long lines (401)
Hash 5b2edbe2f95659b625a0b919ebf98286
1c5722696e849953fccdf41e0f0a01e3f37a80da
a83065a45e7248c11ae228cab8da5d6bfcfa4791be255e2a78e81dbc456a4637
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /js/jquery.mmenu.min.all.js HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:38 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:39:01 GMT
Accept-Ranges: bytes
Content-Length: 38800
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: application/javascript
www.clarkscoza.com/js/slick.js
165.231.65.159200 OK 89 kB URL HTTP/1.1 www.clarkscoza.com/js/slick.js
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
Hash 493a1d269b62f30405ad038906f655b8
834c0f32e56f702a155d1cf93f8f9f1705280332
d3d8e6eaf0d3e8496d8a84910412e581c2a44992055e923762fa65e4e3e1ae07
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /js/slick.js HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:38 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:39:01 GMT
Accept-Ranges: bytes
Content-Length: 89008
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: application/javascript
www.clarkscoza.com/js/jquery.jxa.js
165.231.65.159200 OK 2.7 kB URL HTTP/1.1 www.clarkscoza.com/js/jquery.jxa.js
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type ASCII text, with CRLF line terminators
Hash ca643ec9e974f881e4c904db35bc40c7
759df5ef14b4e2c0c46770b5e408f600972294ca
a1e3d7d98e8e9886c1181e7d53ddd4a6ff424a0fff640d1dc4b06757f096e0e2
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /js/jquery.jxa.js HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:38 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:39:01 GMT
Accept-Ranges: bytes
Content-Length: 2658
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: application/javascript
www.clarkscoza.com/js/jquery.jxb.js
165.231.65.159200 OK 158 kB URL HTTP/1.1 www.clarkscoza.com/js/jquery.jxb.js
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type ASCII text, with very long lines (749)
Size 158 kB (157648 bytes)
Hash 6f3d61313966fcd43b0334aa5fad66b9
22b2b120da5b405a348e4abdd865c496625d87ab
f2374ffefd903e49bfa1772a042c1b593e52cd862e6553f538128ab4a58fe5b5
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /js/jquery.jxb.js HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:38 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:39:01 GMT
Accept-Ranges: bytes
Content-Length: 157648
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: application/javascript
www.clarkscoza.com/includes/templates/clarks-southafrica/css/stylesheetEfNWt.css
165.231.65.159200 OK 2.4 kB URL HTTP/1.1 www.clarkscoza.com/includes/templates/clarks-southafrica/css/stylesheetEfNWt.css
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type ASCII text, with CRLF line terminators
Hash 4156c4f3b3e8eb75b3f0ffc31b9b3c48
d2e2362789756890af0cd16178e7dc00b66a2032
9b1778227a7dc12daa8be9254e2f90de342d38c9c26140ffd85c82de5a1f70cd
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/clarks-southafrica/css/stylesheetEfNWt.css HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:39 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:59 GMT
Accept-Ranges: bytes
Content-Length: 2370
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.clarkscoza.com/includes/templates/clarks-southafrica/css/stylesheetMrgc4.css
165.231.65.159200 OK 178 B URL HTTP/1.1 www.clarkscoza.com/includes/templates/clarks-southafrica/css/stylesheetMrgc4.css
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
Hash 3d372a1cb4a5c596147ea4123ced27d7
c77116d60116e0cbad041002a2afb14420be6d68
b356396cc5563c1983f4297821b0e8bddacc94ae2bc45ecc0dcda90cbf9e91c3
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/clarks-southafrica/css/stylesheetMrgc4.css HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:39 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:59 GMT
Accept-Ranges: bytes
Content-Length: 178
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.clarkscoza.com/includes/templates/clarks-southafrica/css/stylesheetX5iUP.css
165.231.65.159200 OK 4.2 kB URL HTTP/1.1 www.clarkscoza.com/includes/templates/clarks-southafrica/css/stylesheetX5iUP.css
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type ASCII text, with CRLF line terminators
Hash aa06ecb31c568ab3273adbd4dfa1d375
2266ed894f0b18574c70fdb891ec120a9f77ea35
40c68d93bf334ab78439cf3ad92c21de1e710e8b347a9c37a2e82cc643409f24
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/clarks-southafrica/css/stylesheetX5iUP.css HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:39 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:59 GMT
Accept-Ranges: bytes
Content-Length: 4158
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.clarkscoza.com/includes/templates/clarks-southafrica/css/stylesheetZwxOs.css
165.231.65.159200 OK 4.1 kB URL HTTP/1.1 www.clarkscoza.com/includes/templates/clarks-southafrica/css/stylesheetZwxOs.css
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type ASCII text, with CRLF line terminators
Hash 66349406981b74ba97bd263970a8ceb9
6c7b35923d056662c905374b85b1c65a982bf035
1cebd4666fc1e6be9730c1e0d41613167d13bcef847bac2c3c570bac6443f7b2
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/clarks-southafrica/css/stylesheetZwxOs.css HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:39 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:59 GMT
Accept-Ranges: bytes
Content-Length: 4083
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.clarkscoza.com/includes/templates/clarks-southafrica/css/stylesheetbOn9l.css
165.231.65.159200 OK 12 kB URL HTTP/1.1 www.clarkscoza.com/includes/templates/clarks-southafrica/css/stylesheetbOn9l.css
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type ASCII text, with CRLF line terminators
Hash 3ff8b255bf36fa9b567feb2c64344d27
67d041d6e76077ca504d3257b7d1bd4a379487d1
2222c7a2796f62ec967b61d0b122e967c4a631b50566e6dc8d4e6e682a55e5ca
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/clarks-southafrica/css/stylesheetbOn9l.css HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:39 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:59 GMT
Accept-Ranges: bytes
Content-Length: 11539
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.clarkscoza.com/includes/templates/clarks-southafrica/images/flag/ZAR.gif
165.231.65.159200 OK 1.1 kB URL HTTP/1.1 www.clarkscoza.com/includes/templates/clarks-southafrica/images/flag/ZAR.gif
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 25x17, components 3\012- data
Hash 218c09392e0f0dde9522ef22c8e1d13b
56b4da299c90b3f0462be457b860f0612fe87560
fba9d0a14a76cdf99fa06e6688cf5fb16840aab3c121c5f98c02a4e50d4b34f1
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/clarks-southafrica/images/flag/ZAR.gif HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:39 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:59 GMT
Accept-Ranges: bytes
Content-Length: 1061
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/gif
www.clarkscoza.com/includes/templates/clarks-southafrica/images/logo.png
165.231.65.159200 OK 3.7 kB URL HTTP/1.1 www.clarkscoza.com/includes/templates/clarks-southafrica/images/logo.png
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type PNG image data, 222 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 72471a4e5849bae885d57b68007be040
7477e117f47e1e8791c53737e5a7a0dff869caad
9350a8b2a0a68c1b20cfdf4b722ee2278cd94d4ae266198153603ba2faebb9ea
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/clarks-southafrica/images/logo.png HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:39 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:59 GMT
Accept-Ranges: bytes
Content-Length: 3729
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
www.clarkscoza.com/includes/templates/clarks-southafrica/css/print_stylesheetEoGMr.css
165.231.65.159200 OK 773 B URL HTTP/1.1 www.clarkscoza.com/includes/templates/clarks-southafrica/css/print_stylesheetEoGMr.css
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
Hash bbd38cb1b3b2298d98121752e951e872
f18e1df8b85734180dbe990473e12b9854913ed1
5ec0e5addd6014a7f05030ad5de266ee15d8d5192ea2efcaccafc3e235a0bd29
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/clarks-southafrica/css/print_stylesheetEoGMr.css HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:39 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:59 GMT
Accept-Ranges: bytes
Content-Length: 773
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.clarkscoza.com/includes/templates/clarks-southafrica/images/shopping.png
165.231.65.159200 OK 372 B URL HTTP/1.1 www.clarkscoza.com/includes/templates/clarks-southafrica/images/shopping.png
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type PNG image data, 27 x 27, 8-bit/color RGBA, non-interlaced\012- data
Hash 40a892520a1f269d0299e69374e9af5c
cc5739f6aa3c2fb1dd75d352490775b8a12a7b16
e6b44ff3cc2991b145130987d745928d2c327c2c0f1a4b6ab6dff5496e3d18a4
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/clarks-southafrica/images/shopping.png HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:39 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:59 GMT
Accept-Ranges: bytes
Content-Length: 372
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
www.clarkscoza.com/includes/templates/clarks-southafrica/images/search.png
165.231.65.159200 OK 556 B URL HTTP/1.1 www.clarkscoza.com/includes/templates/clarks-southafrica/images/search.png
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type PNG image data, 26 x 26, 8-bit/color RGB, non-interlaced\012- data
Hash 341d055446adfd6a15d0e390fd53dba6
3846dee6a5e5e0f2c06e686e90f7f0de0eac895a
9c21830752bd294cdf9f733743f58fb1447c2d67ac79a4453e3b7132d3b9adc4
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/clarks-southafrica/images/search.png HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:39 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:59 GMT
Accept-Ranges: bytes
Content-Length: 556
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
www.clarkscoza.com/images/Women.jpg
165.231.65.159200 OK 180 kB URL HTTP/1.1 www.clarkscoza.com/images/Women.jpg
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 2000x2000, components 3\012- data
Size 180 kB (180166 bytes)
Hash e95628253588e3ccff743b527d4748ee
474b2bc6770464838bb931770d187368817cff0f
94a3fbea1b8cbe526f600461ff932b7152911a5b959110a722194a7a8ecbac23
Analyzer Verdict Alert quad9 Sinkholed
GET /images/Women.jpg HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:39 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:52 GMT
Accept-Ranges: bytes
Content-Length: 180166
Keep-Alive: timeout=5, max=82
Connection: Keep-Alive
Content-Type: image/jpeg
www.clarkscoza.com/images/cate_img_2.jpg
165.231.65.159200 OK 54 kB URL HTTP/1.1 www.clarkscoza.com/images/cate_img_2.jpg
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 852x852, components 3\012- data
Hash f9343d9bafffbb1c84bcc26e10dabcb8
2f85cd042218401f130da86c15591b2a16f6a044
53b19e93f0ef262b58cee54f31da4efbeb21e911d57ffbe82e46213fa9dc5e17
Analyzer Verdict Alert quad9 Sinkholed
GET /images/cate_img_2.jpg HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:39 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:58 GMT
Accept-Ranges: bytes
Content-Length: 54227
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
www.clarkscoza.com/images/girls.jpg
165.231.65.159200 OK 204 kB URL HTTP/1.1 www.clarkscoza.com/images/girls.jpg
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 2000x2000, components 3\012- data
Size 204 kB (204292 bytes)
Hash 6d338e854abe5b95dd06c0bbee664d1b
c50dc8957092be864ad41319d4d6dc6541fcd11a
62577ceffdf3b87437bb553662ffcd37de13cb8e6f5533e74ec49a8e12d141e4
Analyzer Verdict Alert quad9 Sinkholed
GET /images/girls.jpg HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:39 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:58 GMT
Accept-Ranges: bytes
Content-Length: 204292
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
www.clarkscoza.com/images/Men.jpg
165.231.65.159200 OK 166 kB URL HTTP/1.1 www.clarkscoza.com/images/Men.jpg
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 2000x2000, components 3\012- data
Size 166 kB (165968 bytes)
Hash 10a70226919b75a87d954d8fd92e9980
95c5eb0994b2e086f58d2ed7d922b49ed9c45f18
c771a57892566cf7510a3c7eadae7bc408ad59832417eaa03bd1bd4b5226971f
Analyzer Verdict Alert quad9 Sinkholed
GET /images/Men.jpg HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:39 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:43 GMT
Accept-Ranges: bytes
Content-Length: 165968
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
www.clarkscoza.com/images/boys.jpg
165.231.65.159200 OK 201 kB URL HTTP/1.1 www.clarkscoza.com/images/boys.jpg
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 2000x2000, components 3\012- data
Size 201 kB (201123 bytes)
Hash 5c1595e0b082fdc3508c55d1b70e6b40
6b3bef88e917112d841a58767e52141f16833552
a5f5cc31593dd0f38a8b6f8b782e421e4e8ba7d62ad737386e89464848186cae
Analyzer Verdict Alert quad9 Sinkholed
GET /images/boys.jpg HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:39 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:43 GMT
Accept-Ranges: bytes
Content-Length: 201123
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
www.clarkscoza.com/images/cate_img_21.jpg
165.231.65.159200 OK 73 kB URL HTTP/1.1 www.clarkscoza.com/images/cate_img_21.jpg
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1000x1000, components 3\012- data
Hash d5ab3ce91101f8ec1d2bdb0f9c896378
b73509db102e0643cef09f4d406514e1f11d1387
5a049b40c93e33fc39757fb332f3b5d5ecd22f63e19b0172733bb1485bcc86ea
Analyzer Verdict Alert quad9 Sinkholed
GET /images/cate_img_21.jpg HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:39 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:47 GMT
Accept-Ranges: bytes
Content-Length: 73056
Keep-Alive: timeout=5, max=81
Connection: Keep-Alive
Content-Type: image/jpeg
www.clarkscoza.com/facebox/fonts/fontawesome-webfont.woff2?v=4.7.0
165.231.65.159200 OK 77 kB URL HTTP/1.1 www.clarkscoza.com/facebox/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /facebox/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.clarkscoza.com/facebox/css/font-awesome.min.css
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:39 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:39:01 GMT
Accept-Ranges: bytes
Content-Length: 77160
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: font/woff2
www.clarkscoza.com/images/cate_img_34.jpg
165.231.65.159200 OK 152 kB URL HTTP/1.1 www.clarkscoza.com/images/cate_img_34.jpg
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1000x1000, components 3\012- data
Size 152 kB (151800 bytes)
Hash 60a40ff625dbbc906c59513cf63df6e7
f8d72351898523056172b6e7f9424c1aa043dfd1
764bfc4dcaa1e9f62bb6c7082d225bd339e57f16d64315b0fe2c4eb0dc9496ed
Analyzer Verdict Alert quad9 Sinkholed
GET /images/cate_img_34.jpg HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:39 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:52 GMT
Accept-Ranges: bytes
Content-Length: 151800
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
www.clarkscoza.com/includes/templates/clarks-southafrica/images/small_delete.png
165.231.65.159200 OK 210 B URL HTTP/1.1 www.clarkscoza.com/includes/templates/clarks-southafrica/images/small_delete.png
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type PNG image data, 25 x 25, 8-bit/color RGBA, non-interlaced\012- data
Hash 237085bb6f72cf692a72d3b8494ef593
3d811a076406fd116910160d793607257843892a
e603c4d596de5cb8ba469a3600c08aa950e99c8cdf649d0efb3c9d0428964133
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/clarks-southafrica/images/small_delete.png HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:39 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:59 GMT
Accept-Ranges: bytes
Content-Length: 210
Keep-Alive: timeout=5, max=80
Connection: Keep-Alive
Content-Type: image/png
www.clarkscoza.com/images/large/clarks-southafrica/Clarks%20Margee%20Beth%20Black%20Wedge%20Sanda%2020_ZOOM.jpg
165.231.65.159200 OK 69 kB URL HTTP/1.1 www.clarkscoza.com/images/large/clarks-southafrica/Clarks%20Margee%20Beth%20Black%20Wedge%20Sanda%2020_ZOOM.jpg
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1000x1000, components 3\012- data
Hash 83727c0b1811c9753f81b32f7fbea382
90e4952981267d52a31fb1fe01d24d6bed80434a
483e9ce71e8708793be7063819d6a22bea102a3db2d0f6cdcebb3f0cc73af0fe
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/clarks-southafrica/Clarks%20Margee%20Beth%20Black%20Wedge%20Sanda%2020_ZOOM.jpg HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:39 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:56 GMT
Accept-Ranges: bytes
Content-Length: 69085
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
www.clarkscoza.com/images/cate_img_41.jpg
165.231.65.159200 OK 155 kB URL HTTP/1.1 www.clarkscoza.com/images/cate_img_41.jpg
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1000x1000, components 3\012- data
Size 155 kB (155174 bytes)
Hash 27343b1c92596b7fbccb5534decf0e5a
dd136391a4fefc05b6852ff8527624668560c4ae
130a2b872133db745b3a404b7b5afa1aa244af89e07d1f368f6090515245e138
Analyzer Verdict Alert quad9 Sinkholed
GET /images/cate_img_41.jpg HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:39 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:58 GMT
Accept-Ranges: bytes
Content-Length: 155174
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
www.clarkscoza.com/images/large/clarks-southafrica/Clarks%20Un%20Rio%20Tie%20White%20Leather%20Snea%2040_ZOOM.jpg
165.231.65.159200 OK 40 kB URL HTTP/1.1 www.clarkscoza.com/images/large/clarks-southafrica/Clarks%20Un%20Rio%20Tie%20White%20Leather%20Snea%2040_ZOOM.jpg
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1000x1000, components 3\012- data
Hash ad6c1f466ffafbfdb063029d93a38198
3c47c6c15a210fa165341efa99ecc76b5cefcade
01ed0d70e25335f6e4d315aaa61c359a75f7843b4f1d019d5e5022805a9c415c
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/clarks-southafrica/Clarks%20Un%20Rio%20Tie%20White%20Leather%20Snea%2040_ZOOM.jpg HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:40 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:57 GMT
Accept-Ranges: bytes
Content-Length: 40482
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
www.clarkscoza.com/images/large/clarks-southafrica/Clarks%20Orianna%20Cross%20White%20Leather%20F%20391_ZOOM.jpg
165.231.65.159200 OK 37 kB URL HTTP/1.1 www.clarkscoza.com/images/large/clarks-southafrica/Clarks%20Orianna%20Cross%20White%20Leather%20F%20391_ZOOM.jpg
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1000x1000, components 3\012- data
Hash eb1d8da16857cf0be753a7e155aaae92
b6ee1d60912824420085b754b9fafc8046a430b2
5af59f7ff2929c552d331922268817f222e30ca08b4c0837d5506e2a4e9813eb
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/clarks-southafrica/Clarks%20Orianna%20Cross%20White%20Leather%20F%20391_ZOOM.jpg HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:40 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:52 GMT
Accept-Ranges: bytes
Content-Length: 37196
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
www.clarkscoza.com/images/large/clarks-southafrica/Clarks%20Un%20Rio%20Tie%20Blue%20Leather%20Sneak%2044_ZOOM.jpg
165.231.65.159200 OK 42 kB URL HTTP/1.1 www.clarkscoza.com/images/large/clarks-southafrica/Clarks%20Un%20Rio%20Tie%20Blue%20Leather%20Sneak%2044_ZOOM.jpg
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1000x1000, components 3\012- data
Hash 293fc73edc744d94e480df90b219632e
1d851bbea50e2d424404d9c353ffe18cb65eb71a
e0de7511571f6ecccaae8eb7b6e3e85b763862293b0f5a06a293b6d5b23940e3
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/clarks-southafrica/Clarks%20Un%20Rio%20Tie%20Blue%20Leather%20Sneak%2044_ZOOM.jpg HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:40 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:57 GMT
Accept-Ranges: bytes
Content-Length: 42043
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
www.clarkscoza.com/images/large/clarks-southafrica/Clarks%20Sprint%20Lite%20Lace%20Light%20Pink%20S%2071_ZOOM.jpg
165.231.65.159200 OK 50 kB URL HTTP/1.1 www.clarkscoza.com/images/large/clarks-southafrica/Clarks%20Sprint%20Lite%20Lace%20Light%20Pink%20S%2071_ZOOM.jpg
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1000x1000, components 3\012- data
Hash 048d004d8fce1f3804db8453b00982d5
8387c3ff5131c202ed792733f2c804c4f538a504
701f844c8ef52d376d8dde0198c92845295ae0496886bd3ea2bbdea2ec86fc4d
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/clarks-southafrica/Clarks%20Sprint%20Lite%20Lace%20Light%20Pink%20S%2071_ZOOM.jpg HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:40 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:58 GMT
Accept-Ranges: bytes
Content-Length: 49524
Keep-Alive: timeout=5, max=79
Connection: Keep-Alive
Content-Type: image/jpeg
www.clarkscoza.com/images/large/clarks-southafrica/Clarks%20Aceley%20Lace%20Blue%20Sneakers%20Wom%20102_ZOOM.jpg
165.231.65.159200 OK 53 kB URL HTTP/1.1 www.clarkscoza.com/images/large/clarks-southafrica/Clarks%20Aceley%20Lace%20Blue%20Sneakers%20Wom%20102_ZOOM.jpg
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1000x1000, components 3\012- data
Hash 16f31ec4a213f9d8c94a1360fdfc38da
78602cf7f47651be43dd3dad94d70617777bb440
261b104793fc1773619a3b9635ef2745d0238b6f7c4019f658e571c15dd318d3
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/clarks-southafrica/Clarks%20Aceley%20Lace%20Blue%20Sneakers%20Wom%20102_ZOOM.jpg HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:40 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:57 GMT
Accept-Ranges: bytes
Content-Length: 53185
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
www.clarkscoza.com/images/large/clarks-southafrica/Clarks%20Bay%20Rosie%20Grey%20Snake%20Flat%20San%20432_ZOOM.jpg
165.231.65.159200 OK 41 kB URL HTTP/1.1 www.clarkscoza.com/images/large/clarks-southafrica/Clarks%20Bay%20Rosie%20Grey%20Snake%20Flat%20San%20432_ZOOM.jpg
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1000x1000, components 3\012- data
Hash ae002164489d395e031daa1626dcd7ca
c00479187fead7883d41e9d6a7ecbeb129ca27e1
701381ad8325236518ed47351fd25e4c1a42bfe461146d6d4a24cfce530579c5
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/clarks-southafrica/Clarks%20Bay%20Rosie%20Grey%20Snake%20Flat%20San%20432_ZOOM.jpg HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:40 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:53 GMT
Accept-Ranges: bytes
Content-Length: 40691
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
www.clarkscoza.com/images/large/clarks-southafrica/Clarks%20Tri%20Path%20Trek%20GORE%20TEX%20Dark%20O%20725_ZOOM.jpg
165.231.65.159200 OK 68 kB URL HTTP/1.1 www.clarkscoza.com/images/large/clarks-southafrica/Clarks%20Tri%20Path%20Trek%20GORE%20TEX%20Dark%20O%20725_ZOOM.jpg
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1000x1000, components 3\012- data
Hash 21948537d57ee88488777e669a213b97
db0e08db4bbec3427aceb1a7fb748e6c4ac76379
276155ef3b52ef2a2fb9140ceaad79de388ae4c6ec48e3852f38875165fb6fde
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/clarks-southafrica/Clarks%20Tri%20Path%20Trek%20GORE%20TEX%20Dark%20O%20725_ZOOM.jpg HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:40 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:58 GMT
Accept-Ranges: bytes
Content-Length: 67845
Keep-Alive: timeout=5, max=78
Connection: Keep-Alive
Content-Type: image/jpeg
www.clarkscoza.com/includes/templates/clarks-southafrica/images/banner.jpg
165.231.65.159200 OK 537 kB URL HTTP/1.1 www.clarkscoza.com/includes/templates/clarks-southafrica/images/banner.jpg
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 3040x1020, components 3\012- data
Size 537 kB (537331 bytes)
Hash 07d63124870230948ee5db6876672132
78a5684869c8cadf01bb1882c798cabbc81b549f
a3fca5b3098a320f58c2b6a4570b471fb3d9a0c9d6f845f8828c86b1b89e0884
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/clarks-southafrica/images/banner.jpg HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:39 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:59 GMT
Accept-Ranges: bytes
Content-Length: 537331
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
www.clarkscoza.com/images/large/clarks-southafrica/Clarks%20Wallabee%20Leopard%20Casual%20Shoes%20498_ZOOM.jpg
165.231.65.159200 OK 75 kB URL HTTP/1.1 www.clarkscoza.com/images/large/clarks-southafrica/Clarks%20Wallabee%20Leopard%20Casual%20Shoes%20498_ZOOM.jpg
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1000x1000, components 3\012- data
Hash 5d362ec440ee7982627b149a1c20c2ee
152ce8352f207053363151ed1dd84d89cbdecf51
f5175a99607e78f1f41d2ab0c773003b22d46ae68dbc38361fb2c5870988b61d
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/clarks-southafrica/Clarks%20Wallabee%20Leopard%20Casual%20Shoes%20498_ZOOM.jpg HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:40 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:55 GMT
Accept-Ranges: bytes
Content-Length: 74923
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
www.clarkscoza.com/images/large/clarks-southafrica/Clarks%20Orianna%20Hi%20Dark%20Brown%20Suede%20B%20607_ZOOM.jpg
165.231.65.159200 OK 75 kB URL HTTP/1.1 www.clarkscoza.com/images/large/clarks-southafrica/Clarks%20Orianna%20Hi%20Dark%20Brown%20Suede%20B%20607_ZOOM.jpg
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1000x1000, components 3\012- data
Hash 0162fbb496f36e07f7c84b0363ace5ca
73cdaf272fc0ea80bad64ea579df08084febed4e
4542cd0ef81c905739446e09356eb00409d95a9c24d37a3cc669b0ec1338a6b1
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/clarks-southafrica/Clarks%20Orianna%20Hi%20Dark%20Brown%20Suede%20B%20607_ZOOM.jpg HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:40 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:55 GMT
Accept-Ranges: bytes
Content-Length: 75105
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
www.clarkscoza.com/includes/templates/clarks-southafrica/images/2021-block2.jpg
165.231.65.159200 OK 95 kB URL HTTP/1.1 www.clarkscoza.com/includes/templates/clarks-southafrica/images/2021-block2.jpg
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 705x494, components 3\012- data
Hash 5d64415f4bcf3093461a149fc8b7e020
a3b5fadbb0b90bd89feabfb780a075f7edaa4a94
0e4c87bf3eb26538617d28d72fe5444b35791307f64e71bccc7b61671722d58f
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/clarks-southafrica/images/2021-block2.jpg HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:40 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:59 GMT
Accept-Ranges: bytes
Content-Length: 94748
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
www.clarkscoza.com/includes/templates/clarks-southafrica/images/2021-block1.jpg
165.231.65.159200 OK 135 kB URL HTTP/1.1 www.clarkscoza.com/includes/templates/clarks-southafrica/images/2021-block1.jpg
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 705x494, components 3\012- data
Size 135 kB (134718 bytes)
Hash 2c5233f8ac5d56757d965f776398b570
96d64281e8394a4e7e811794bd9c79a3f5b79ff4
3c3994215dfcd281a3f92c05c3f8d457367168175066f37aa7260be1569f7c7d
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/clarks-southafrica/images/2021-block1.jpg HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:40 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:38:59 GMT
Accept-Ranges: bytes
Content-Length: 134718
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
www.clarkscoza.com/favicon.ico
165.231.65.159200 OK 2.2 kB URL HTTP/1.1 www.clarkscoza.com/favicon.ico
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
File type MS Windows icon resource - 1 icon, 32x32\012- data
Hash 038f1b476c66fd891ee1f772366eabfa
386fa7ec687b7102f2131891372af65121bc3952
d797163d91d0a293203b592749d23c99e88296675b65161da3e95f7f3e50c0e1
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 14:31:40 GMT
Server: Apache
Last-Modified: Wed, 28 Sep 2022 08:39:01 GMT
Accept-Ranges: bytes
Content-Length: 2238
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/x-icon
www.clarkscoza.com/includes/templates/clarks-southafrica/css/ajax-loader.gif
165.231.65.159404 Not Found 0 B URL HTTP/1.1 www.clarkscoza.com/includes/templates/clarks-southafrica/css/ajax-loader.gif
IP 165.231.65.159:0
ASN #48950 Global Colocation Limited
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/clarks-southafrica/css/ajax-loader.gif HTTP/1.1
Host: www.clarkscoza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clarkscoza.com/includes/templates/clarks-southafrica/css/stylesheetZwxOs.css
Cookie: zenid=l1ionmnsjl7qcqt88tn8cag993
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Mon, 05 Dec 2022 14:31:40 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Keep-Alive: timeout=5, max=77
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8