Report - africanarguments.org/about-african-arguments/

Report Overview

Submitted URL
africanarguments.org/about-african-arguments/
IP
188.114.97.1
ASN
#13335 CLOUDFLARENET
Submitted
2022-12-02 20:50:16
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
70

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	388 B	44 kB	142.250.74.168
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	50 kB	34.120.237.76
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	337 B	1.4 kB	34.102.187.140
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
code.jquery.com	634	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	238 kB	69.16.175.10
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.8 kB	10 kB	142.250.74.131
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	636 B	746 B	142.250.74.74
translate.google.com	1156	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	840 B	1.6 kB	142.250.74.174
africanarguments.org	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	850 B	2.2 kB	188.114.96.1
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	4.4 kB	23.36.76.226
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.5 kB	167 kB	142.250.74.35
js.chargebee.com	23733	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	743 B	1.3 kB	108.157.229.6
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.8 kB	93.184.220.29
cfb.rabbitloader.xyz	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	26 kB	150 kB	104.26.12.183
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	34.216.88.5
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	426 B	1.2 kB	142.250.74.132

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-02	medium	cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-content/themes/gloria-child/style.css?ver=6.1.1	Malware
2022-12-02	medium	cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-content/plugins/add-cookie-notice/css/add-cookie-notice.css?ver=1.0.0	Malware
2022-12-02	medium	cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/plugins/cookie-bar/js/cookie-bar.js?ver=1669976811	Malware
2022-12-02	medium	cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/onviewport.js?ver=6.1.1	Malware
2022-12-02	medium	cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-content/themes/gloria/framework/bootstrap/css/bootstrap.css?ver=6.1.1	Malware
2022-12-02	medium	cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/theme_plugins.js?ver=6.1.1	Malware
2022-12-02	medium	cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	Malware
2022-12-02	medium	cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/module-load-post.js?ver=6.1.1	Malware
2022-12-02	medium	cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-content/themes/gloria/plugins/login-with-ajax/widget.css?ver=4.1	Malware
2022-12-02	medium	cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	Malware
2022-12-02	medium	cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-content/plugins/gtranslate/gtranslate-style24.css?ver=6.1.1	Malware
2022-12-02	medium	cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/comment-reply.min.js?ver=6.1.1	Malware
2022-12-02	medium	cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/comment-reply.min.js?ver=6.1.1	Malware
2022-12-02	medium	cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/onviewport.js?ver=6.1.1	Malware
2022-12-02	medium	cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/menu.js?ver=6.1.1	Malware
2022-12-02	medium	cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/retina.min.js?ver=6.1.1	Malware
2022-12-02	medium	cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/plugins/login-with-ajax/login-with-ajax.js?ver=4.1	Malware
2022-12-02	medium	cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/menu.js?ver=6.1.1	Malware
2022-12-02	medium	cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/module-load-post.js?ver=6.1.1	Malware
2022-12-02	medium	cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4	Malware
2022-12-02	medium	cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	Malware
2022-12-02	medium	cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-content/plugins/short-code/css/shortcode.css?ver=6.1.1	Malware
2022-12-02	medium	cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-content/themes/gloria/css/bkstyle.css?ver=6.1.1	Malware
2022-12-02	medium	cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	Malware
2022-12-02	medium	cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	Malware
2022-12-02	medium	cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4	Malware
2022-12-02	medium	cfb.rabbitloader.xyz/4qrhn31s/rl_p1_2a_min.js?v=ri0qo0	Malware
2022-12-02	medium	cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.2	Malware
2022-12-02	medium	cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/retina.min.js?ver=6.1.1	Malware
2022-12-02	medium	cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.2	Malware
2022-12-02	medium	cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-includes/css/classic-themes.min.css?ver=1	Malware
2022-12-02	medium	cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	Malware
2022-12-02	medium	cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-content/themes/gloria/css/theme_plugins.css?ver=6.1.1	Malware
2022-12-02	medium	cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-content/themes/gloria/css/responsive.css?ver=6.1.1	Malware
2022-12-02	medium	cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/theme_plugins.js?ver=6.1.1	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (7)

	URL	Size	First Seen	Last Seen
	africanarguments.org/about-african-arguments/	1.4 kB	2023-03-08	2023-03-08
Pretty URL africanarguments.org/about-african-arguments/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:45:46 Last Seen2023-03-08 14:45:46 Times Seen1 Hash 516a8c66d1a297c5016eb2633c6b484e 379e13e49025773fb223da6ecdd7d04c3c7914a7 7946224b7c0ec321b190807a80ffd205c864e1f7811498978ef0d84456deb047 Loading...

	http:blank	600 B	2023-03-08	2023-03-08
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:45:46 Last Seen2023-03-08 14:45:46 Times Seen1 Hash de70d5fab33e3ed86e140e1a731a3504 e7fe642e88abe5e07e1c40bd20170743a7aa44a0 bf4eaf41429f07d3ccbe7a3cfa4a73ce42782a4416c2b97b3f9e679cc8234dd3 Loading...

	http:https://africanarguments.org/6206ff87-dd71-40c7-8758-1ac8adb9cb8e	2.2 kB	2023-03-08	2023-03-08
Pretty URL http:https://africanarguments.org/6206ff87-dd71-40c7-8758-1ac8adb9cb8e IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:45:46 Last Seen2023-03-08 14:45:46 Times Seen1 Hash 5f64a90b9256467d237c8553b79f3175 e229e7d91ba383211ff6019d6ea3c5ea0997cc81 8f2ea36f2295df99b1b198e0973890f8df106a26cace63de2c6f541b96a52f54 Loading...

	africanarguments.org/about-african-arguments/	34 B	2023-03-08	2023-06-15
Pretty URL africanarguments.org/about-african-arguments/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:18:13 Last Seen2023-06-15 05:27:27 Times Seen8 Hash 9991d82c145bd87e02afeea802a2a084 1872a04e75a17994ecc5bb487b1c321eee4f11db c71f3f03594bf49cfe964fa41f0f4caaade1c39596f7b54f865c2e9376d2fafd Loading...

	africanarguments.org/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js	1.2 kB	2023-03-07	2024-04-25
Pretty URL africanarguments.org/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-25 09:30:42 Times Seen54909 Hash 9e8f56e8e1806253ba01a95cfc3d392c a8af90d7482e1e99d03de6bf88fed2315c5dd728 2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8 Loading...

	africanarguments.org/about-african-arguments/	154 B	2023-03-08	2023-10-14
Pretty URL africanarguments.org/about-african-arguments/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:18:13 Last Seen2023-10-14 05:02:26 Times Seen14 Hash 0b30f0e2a4168e71e3a112f1d281b004 2afbf0e63c547d38d0582c571fe4a2a83173e8ca d2a8f8dc05e5dd4cb3bbb009582126566eecde0957ce24496469d82bc18339cf Loading...

	cfb.rabbitloader.xyz/4qrhn31s/rl_p1_2a_min.js?v=ri0qo0	13 kB	2023-03-07	2023-05-30
Pretty URL cfb.rabbitloader.xyz/4qrhn31s/rl_p1_2a_min.js?v=ri0qo0 IP 104.26.12.183 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:42:14 Last Seen2023-05-30 05:32:00 Times Seen13 Hash e3991f6f624662949a33484a6d581228 13e735103271115040def89e016a8861f7dd2bf0 e9d07773836b825d70d60d4212c24b13d14e26d4723a0f203d233acd47ef87ab Loading...

HTTP Transactions (106)

URL IP Response Size

africanarguments.org/about-african-arguments/

188.114.96.1

301 Moved Permanently

0 B

URL HTTP/1.1
africanarguments.org/about-african-arguments/
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /about-african-arguments/ HTTP/1.1
Host: africanarguments.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Fri, 02 Dec 2022 20:50:05 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-rl-cache: miss/fallback
X-Pingback: http://africanarguments.org/xmlrpc.php
X-Redirect-By: WordPress
Location: https://africanarguments.org/about-african-arguments/
X-Cache-Status: HIT
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BpMPerE9%2Fp3%2B71LACB3uhOIUn4ctghpNgYUgGwkFN%2BzEWFFOqQ4eZOS2KqFS5%2BBbhbUaFaGIwk1X5nB%2B9Wq3tIDOrdoTBIQkGtzGj8ZY5autBkr0fqRPRuNHHqPUHA2IAlDypsPvrg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7736eecfbcab1c0e-OSL
alt-svc: h2=":443"; ma=60

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
7439fb99a444b66db1e68ffbfaa38451
4b7742d7956485906f1c392c478515ff89a46184
636327ce88f733e5a1d39af212f97242717a39ce20edaef330fafea238e3a309

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1083
Cache-Control: max-age=136753
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 20:50:05 GMT
Etag: "6389d3f3-1d7"
Expires: Sun, 04 Dec 2022 10:49:18 GMT
Last-Modified: Fri, 02 Dec 2022 10:31:15 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13717
Expires: Sat, 03 Dec 2022 00:38:42 GMT
Date: Fri, 02 Dec 2022 20:50:05 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11341
Expires: Fri, 02 Dec 2022 23:59:06 GMT
Date: Fri, 02 Dec 2022 20:50:05 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 20:19:57 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1808
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: SxSqd15e5pWSg4eUrepHoNAwqPUC86ix0znRDCfWxjkdJc+OXaUjS79CLO+86LNan6DelLT6PTE=
x-amz-request-id: 6YXD1FQQVP6FA075
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 02 Dec 2022 20:46:15 GMT
age: 230
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
73d0da2f91ffa8b60638630e4eccf552
9f832348db6a30410f7dc18b08bca8f85f287a15
252ba4855054119d4bf67df3697b44b37dc517013771d178a87fd447cf1bef98

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=129902
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 20:50:05 GMT
Etag: "6389bd6b-118"
Expires: Sun, 04 Dec 2022 08:55:07 GMT
Last-Modified: Fri, 02 Dec 2022 08:55:07 GMT
Server: nginx
Content-Length: 280

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 20:50:05 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
73d0da2f91ffa8b60638630e4eccf552
9f832348db6a30410f7dc18b08bca8f85f287a15
252ba4855054119d4bf67df3697b44b37dc517013771d178a87fd447cf1bef98

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=129902
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 20:50:05 GMT
Etag: "6389bd6b-118"
Expires: Sun, 04 Dec 2022 08:55:07 GMT
Last-Modified: Fri, 02 Dec 2022 08:55:07 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 280

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-content/themes/gloria-child/style.css?ver=6.1.1

104.26.12.183

200 OK

29 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-content/themes/gloria-child/style.css?ver=6.1.1
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with no line terminators
Size
29 B (29 bytes)
Hash
1244a1f013fa8f8a91619c9b5a9c840a
0fc1c31a509b69822ca2d35c960ce1dd1b3a563c
1aba496160611781bab9e6743901da52b0175d5d86499e52745137309073c29f

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /4qrhn31s/rls.s-nw-a/wp-content/themes/gloria-child/style.css?ver=6.1.1 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:06 GMT
content-type: text/css
content-length: 29
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
etag: "58e3af37-b7"
expires: Wed, 22 Nov 2023 02:47:42 GMT
last-modified: Tue, 04 Apr 2017 14:35:35 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/themes/gloria-child/style.css?ver=6.1.1>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: success
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/22/2022 02:47:43
cdn-edgestorageid: 1054
cdn-status: 200
cdn-requestid: e819d3f502bae204ef5f35229c4b2f45
cdn-cache: HIT
cf-cache-status: HIT
age: 908542
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KB31YCoFlF%2BA072a%2B%2FSDVUZiwh4qvpjo2MPLAtqPJTuFdfqdAm3%2FZcEMcJMcuUi93D8DiCRmltkVXD%2FWj5KhZADBYdVHLkKdosN4hiWBscBS9ZR88mCEh1VyK%2BbBtBAXKVaNbJ4e"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7736eed3f967fab8-OSL
X-Firefox-Spdy: h2

code.jquery.com/ui/1.11.4/themes/smoothness/jquery-ui.css?ver=6.1.1

69.16.175.10

200 OK

8.1 kB

URL HTTP/2
code.jquery.com/ui/1.11.4/themes/smoothness/jquery-ui.css?ver=6.1.1
IP
69.16.175.10:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (2363)
Size
8.1 kB (8056 bytes)
Hash
6c82a49e7983d483c0d8a2693d66a17b
6d6deea9c1f9d0b1ded69cc2b82b07d4e8e60952
763ce5616013ac40d27502cb40d92589c5ce9e2a8034692666734ece10671326

HTTP Headers

GET /ui/1.11.4/themes/smoothness/jquery-ui.css?ver=6.1.1 HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:06 GMT
content-encoding: gzip
content-length: 8056
content-type: text/css
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
accept-ranges: bytes
server: nginx
etag: W/"28feccc0-898c"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1670014206.dop214.sk1.t,1670014206.cds201.sk1.hn,1670014206.cds262.sk1.c
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

1.1 kB

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
gzip compressed data, from Unix\012- data
Size
1.1 kB (1127 bytes)
Hash
bc89b137ad2242a7760201f86bd4d65d
a2afd0e1b12c4a17891a5bad33915df5031ab147
86d12c3823b806c8654be6fd91d37a001785039aac415eca8cba499e1903b743

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 20:50:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-content/plugins/add-cookie-notice/css/add-cookie-notice.css?ver=1.0.0

104.26.12.183

200 OK

671 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-content/plugins/add-cookie-notice/css/add-cookie-notice.css?ver=1.0.0
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (2402), with no line terminators
Size
671 B (671 bytes)
Hash
df00600ab541e06d8a4de5e7f7d51ac6
bed6c60ad0bd0f46a9868cde1c05db6e1b51920e
d84011d8bdd28f89bbd819d4e16b4fd089e43336d3da99f1c24245fd31948d10

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /4qrhn31s/rls.s-nw-a/wp-content/plugins/add-cookie-notice/css/add-cookie-notice.css?ver=1.0.0 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:06 GMT
content-type: text/css
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
etag: W/"58e3aa19-b73"
expires: Fri, 10 Nov 2023 17:44:22 GMT
last-modified: Tue, 04 Apr 2017 14:13:45 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/plugins/add-cookie-notice/css/add-cookie-notice.css?ver=1.0.0>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: success
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/10/2022 17:44:22
cdn-edgestorageid: 755
cdn-status: 200
cdn-requestid: 8029faa9db28b8b9f77942cef7fdc6b5
cdn-cache: HIT
cf-cache-status: HIT
age: 1895665
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DRZ17Z3hwOWYzZCI2EMlKRs1NfbJ2fAPJ4dEBWILb33rsPIAgCRP6aTVfiUC7PaMxRuk%2BNpZtv64%2FcwMjcxCNAEXLKPr%2Foet6rt18wZV6CUVFlTzIqX8j79M6S1l0YLOsh%2Bzp%2Fq0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eed41984fab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 20:50:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-content/plugins/page-backgroundcolor-changer/assets/css/styles.php?ver=6.1.1

104.26.12.183

307 Temporary Redirect

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-content/plugins/page-backgroundcolor-changer/assets/css/styles.php?ver=6.1.1
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /4qrhn31s/rls.s-nw-a/wp-content/plugins/page-backgroundcolor-changer/assets/css/styles.php?ver=6.1.1 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 307 Temporary Redirect
date: Fri, 02 Dec 2022 20:50:06 GMT
content-length: 0
location: https://africanarguments.org/wp-content/plugins/page-backgroundcolor-changer/assets/css/styles.php?ver=6.1.1
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
referrer-policy: no-referrer-when-downgrade
x-rl-redirect: timeout
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 307
cdn-cachedat: 12/02/2022 20:50:06
cdn-edgestorageid: 1054
cdn-status: 307
cdn-requestid: 9b1fbbb39ac0886223c31ced61eaed73
cdn-cache: MISS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4Ze4uOR5jLF1ElyfC04y1Z5RsKt%2BlCO64zthkucw6ghypLLz%2FnYVoLUtw%2BZrr0k151JKUsrBAZIW3wKYSmV4pJ9sWDG92cQW48k8elH3jii2aKluE7VLhndEa5Nc6X62f%2F9V9Rr2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eed3e942fab8-OSL
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4

104.26.12.183

200 OK

1.1 kB

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (2221), with no line terminators
Size
1.1 kB (1101 bytes)
Hash
3a4d0b818b63ccc241a14122d5313a10
a0a8276bfed20c0c814f0492e863fe0e1fea25e9
cc304145815d8d8030d501f635306aaecb50b4cc68454e4a2e89fa3b4d81f72d

HTTP Headers

GET /4qrhn31s/rls.s-nw-a/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:06 GMT
content-type: text/css
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
etag: W/"63517f53-aab"
expires: Sat, 18 Nov 2023 22:22:11 GMT
last-modified: Thu, 20 Oct 2022 17:03:15 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: success
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/18/2022 22:22:12
cdn-edgestorageid: 1054
cdn-status: 200
cdn-requestid: 0dfd03068d2571066c500614461abcc2
cdn-cache: HIT
cf-cache-status: HIT
age: 45298
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LDegSV9wDt%2FNZ82rJ3ScSDYNtvckut%2FgGAlIegopAjotfZLMLLvItbiHQncXRFV5RrbPXf441fPn4uXCKvAMzccVdqHL0OFX8HqUM5Ypw31VDd2J2jnqs4kWFCc8IdaumKiC9%2Byx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eed4198cfab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
7f1f8fc556d1f7e0aea3e1208ee2fd1c
09c341a56ff876479cfc8a0505a5fef4a5d110f1
65adcf58887bcc23f73379f74ab19a61cfbb93285c95c64b44a6716eeacc1482

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1080
Cache-Control: max-age=131688
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 20:50:06 GMT
Etag: "6389c02e-1d7"
Expires: Sun, 04 Dec 2022 09:24:54 GMT
Last-Modified: Fri, 02 Dec 2022 09:06:54 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

cfb.rabbitloader.xyz/4qrhn31s/rls.t-nw-a28/wp-content/plugins/gtranslate/flags/24/en.png

104.26.12.183

200 OK

914 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.t-nw-a28/wp-content/plugins/gtranslate/flags/24/en.png
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
914 B (914 bytes)
Hash
f3d1f98e7bf1136685240b347bcd5cc3
97b39093caeeca31abcffe77fea476e1f0a8b9b4
d47c43bfcefbbca7e7f49caf87ed495cde434d33631dab9f803cdb1a574eb01f

HTTP Headers

GET /4qrhn31s/rls.t-nw-a28/wp-content/plugins/gtranslate/flags/24/en.png HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:06 GMT
content-type: image/webp
content-length: 914
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
etag: "6360352e-6e7"
expires: Mon, 13 Nov 2023 20:04:34 GMT
last-modified: Mon, 31 Oct 2022 20:50:54 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/plugins/gtranslate/flags/24/en.png>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: success, png/lossless
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/13/2022 20:04:35
cdn-edgestorageid: 1048
cdn-status: 200
cdn-requestid: ddda2fa9ca1d430f9de9eb87bc858f33
cdn-cache: HIT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
age: 45297
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6cg%2B%2BgENHKgs4%2Bl%2FmNiP%2Fs%2FiKXO2IpDHdfJcepBSW0yiVP6RRK0Rl864YPB0b6ZPALRg%2B4fP8Z0l07H0nhb8qxpkmheDTOTpaIw1TVWRXb0NhbiK5q0VZTOj1V5kq6U1UEGnXoY7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eed89cb9fab8-OSL
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.t-nw-a28/wp-content/uploads/2022/05/AA-logo-e1652963861535.png

104.26.12.183

200 OK

4.4 kB

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.t-nw-a28/wp-content/uploads/2022/05/AA-logo-e1652963861535.png
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
4.4 kB (4394 bytes)
Hash
40855a09daf5412959ec754debcc79d8
97e78a1cd1b9853115aa960ef6b30f4c68ea446d
0a4d9799e2e1ace7d342046862cd70b3b60fdbada657c5ab8c5e81ed681e896c

HTTP Headers

GET /4qrhn31s/rls.t-nw-a28/wp-content/uploads/2022/05/AA-logo-e1652963861535.png HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:06 GMT
content-type: image/webp
content-length: 4394
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
etag: "62863a15-1948"
expires: Wed, 25 Oct 2023 12:19:03 GMT
last-modified: Thu, 19 May 2022 12:37:41 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/uploads/2022/05/AA-logo-e1652963861535.png>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: success, png/lossless
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/25/2022 12:19:03
cdn-edgestorageid: 860
cdn-status: 200
cdn-requestid: f18efd4a53797e9d5d5ffa6956a3e1fb
cdn-cache: HIT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
age: 2986098
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rDO4Yd%2BYQ8E1h4uPytr%2F9ria11sw2bsM%2FRaOH8W5V%2FaGjZnhfSyGeHP7WzQwo8Yl66mwaZwYQxKHQTiq1vpDtzWx66XWlQORlWx7TlfRFVqZ5Sss2CDw2BKHQXdRIjXrSCcfh0Ia"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eed89cb8fab8-OSL
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.t-nw-a28/wp-content/uploads/2018/10/african-elections.png

104.26.12.183

200 OK

53 kB

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.t-nw-a28/wp-content/uploads/2018/10/african-elections.png
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 917x793, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
53 kB (52738 bytes)
Hash
5e8740cd335e0062d57c103c6e933064
0630f2fe367291b0ac73311a204c9ee049505662
2ef27adec66fda285c33eb9d89d3cb5a099da3d3ffd705a5e419b507a242a55c

HTTP Headers

GET /4qrhn31s/rls.t-nw-a28/wp-content/uploads/2018/10/african-elections.png HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:06 GMT
content-type: image/webp
content-length: 52738
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
etag: "5bbc942f-c1229"
expires: Sun, 19 Nov 2023 10:46:31 GMT
last-modified: Tue, 09 Oct 2018 11:42:39 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/uploads/2018/10/african-elections.png>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: success, png80
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/19/2022 10:46:33
cdn-edgestorageid: 863
cdn-status: 200
cdn-requestid: 43cd54bacee0dc3b73fe2ffd6b75d6db
cdn-cache: HIT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
age: 27543
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XtDM8bcXayH5y1ecS62OE%2B31iYIO233%2Bepfsy7WvQKliYZZN4d0zRk8NaR40KpHUUHKk21c7w%2FRbewg0x8ePkrQ4uSkfFNP5v9Qpub4pXtRJVcVJeTbO3%2BnohhZY9i20gwi0Oswd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eed8acc3fab8-OSL
X-Firefox-Spdy: h2

push.services.mozilla.com/

34.216.88.5

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.216.88.5:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: J39KdV95xMiNkys07YYXHw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: rPUHWZeTAv1pMjucpIjoUpNy1EY=

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8cd876589951719c94a6d49d1494bdbd
01600c8bb95fac543696e509b3e452b90d844572
e03942321526a2303220b1abd51f82f1d4cf80e0dd22a2582cf809b8bd729521

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 20:50:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

code.jquery.com/ui/1.11.4/jquery-ui.js?ver=1

69.16.175.10

200 OK

114 kB

URL HTTP/2
code.jquery.com/ui/1.11.4/jquery-ui.js?ver=1
IP
69.16.175.10:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (547)
Size
114 kB (114093 bytes)
Hash
0e45b665669abd2d0dd45fed0e5f0199
d4167d336e4cd359a99daaf01006f59a5e8bc062
cec192e20cf22c995517ee84d3b5a4715f4ad3affb902436b3ee32456e309978

HTTP Headers

GET /ui/1.11.4/jquery-ui.js?ver=1 HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://africanarguments.org/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:07 GMT
content-encoding: gzip
content-length: 114093
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
accept-ranges: bytes
server: nginx
etag: W/"28feccc0-72e44"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1670014207.dop012.sk1.t,1670014207.cds258.sk1.hn,1670014207.cds247.sk1.c
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 20:50:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 20:50:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 20:50:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

142.250.74.35

200 OK

45 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size
45 kB (44856 bytes)
Hash
565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://africanarguments.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:52:41 GMT
expires: Tue, 28 Nov 2023 18:52:41 GMT
cache-control: public, max-age=31536000
age: 352646
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-23479789-1

142.250.74.168

200 OK

44 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-23479789-1
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1921)
Size
44 kB (43654 bytes)
Hash
cb29657309740671eab877021282b05c
f20fca7e1eca948b2656e4df123d3c2e21c43ab9
05d4bf19867e446fe051e8b837530753b86a77c74bfabc3a89d486b8cf38291e

HTTP Headers

GET /gtag/js?id=UA-23479789-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://africanarguments.org/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 02 Dec 2022 20:50:07 GMT
expires: Fri, 02 Dec 2022 20:50:07 GMT
cache-control: private, max-age=900
last-modified: Fri, 02 Dec 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43654
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 20:50:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 20:50:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2

142.250.74.35

200 OK

48 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Size
48 kB (47952 bytes)
Hash
17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd

HTTP Headers

GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://africanarguments.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:56:13 GMT
expires: Tue, 28 Nov 2023 18:56:13 GMT
cache-control: public, max-age=31536000
age: 352434
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/archivonarrow/v24/tss0ApVBdCYD5Q7hcxTE1ArZ0bbwiXw.woff2

142.250.74.35

200 OK

18 kB

URL HTTP/2
fonts.gstatic.com/s/archivonarrow/v24/tss0ApVBdCYD5Q7hcxTE1ArZ0bbwiXw.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 17476, version 1.0\012- data
Size
18 kB (17476 bytes)
Hash
a29628db6fb6a393f2ef0fa27dc94843
77e94c1ee676c6a2c864deb4b0300152f59bcc63
7a69966e231b5c43975333cc2f63360e39dcd1515744489f37690b21b58e4bb9

HTTP Headers

GET /s/archivonarrow/v24/tss0ApVBdCYD5Q7hcxTE1ArZ0bbwiXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://africanarguments.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17476
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 17:23:29 GMT
expires: Wed, 29 Nov 2023 17:23:29 GMT
cache-control: public, max-age=31536000
age: 271598
last-modified: Fri, 24 Jun 2022 19:03:14 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
315873c315af2be891e63f8b421bae65
5277bb0c4fea2b036c6faf28d66395c96166ffd2
3f6657d352a42f8257409f2ed365a3fb928ac3eb74a34a2c74a433290182cc92

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 20:50:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2

142.250.74.35

200 OK

33 kB

URL HTTP/2
fonts.gstatic.com/s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 32860, version 1.0\012- data
Size
33 kB (32860 bytes)
Hash
d010a9f2d5c7a0374b3b84706a43d2ec
c1fe465db08785c3f115555d39db23838960cb66
9a3993918629dfd6a59c4563e9b4d464152b51d4113957ab8ebfbdcbcdc7f536

HTTP Headers

GET /s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://africanarguments.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 32860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 27 Nov 2022 01:48:55 GMT
expires: Mon, 27 Nov 2023 01:48:55 GMT
cache-control: public, max-age=31536000
age: 500472
last-modified: Mon, 11 Jul 2022 19:12:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/archivonarrow/v24/tss2ApVBdCYD5Q7hcxTE1ArZ0bb1uX563g.woff2

142.250.74.35

200 OK

20 kB

URL HTTP/2
fonts.gstatic.com/s/archivonarrow/v24/tss2ApVBdCYD5Q7hcxTE1ArZ0bb1uX563g.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 19512, version 1.0\012- data
Size
20 kB (19512 bytes)
Hash
9401270ba5140104b1f234fe23c5cf13
46673b90edaa0bdff82047b57dc829135356eeb6
596e9c2c133953f7c5e53254342d0eda28851fbd075f1802a53171f38cb3e23f

HTTP Headers

GET /s/archivonarrow/v24/tss2ApVBdCYD5Q7hcxTE1ArZ0bb1uX563g.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://africanarguments.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19512
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 13:36:12 GMT
expires: Tue, 28 Nov 2023 13:36:12 GMT
cache-control: public, max-age=31536000
age: 371635
last-modified: Fri, 24 Jun 2022 18:56:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/recaptcha/api.js?render=6Lex0B8eAAAAAN3F1bu8jkVzDESaI3fFJWzGlHSO&ver=3.0

142.250.74.132

200 OK

585 B

URL HTTP/2
www.google.com/recaptcha/api.js?render=6Lex0B8eAAAAAN3F1bu8jkVzDESaI3fFJWzGlHSO&ver=3.0
IP
142.250.74.132:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (884), with no line terminators
Size
585 B (585 bytes)
Hash
81c7674ec56334abdf23befb3f137b58
73af1a3972d29c2154b5861947284333bfaba6db
a6d3881f4577f038e794bb8a5c905ce77c154db0382da61f0f11c1fae9170873

HTTP Headers

GET /recaptcha/api.js?render=6Lex0B8eAAAAAN3F1bu8jkVzDESaI3fFJWzGlHSO&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://africanarguments.org/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
expires: Fri, 02 Dec 2022 20:50:07 GMT
date: Fri, 02 Dec 2022 20:50:07 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 585
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 20:50:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8cd876589951719c94a6d49d1494bdbd
01600c8bb95fac543696e509b3e452b90d844572
e03942321526a2303220b1abd51f82f1d4cf80e0dd22a2582cf809b8bd729521

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 20:50:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a6ad57d839c4b452d7118cf2052f9d35
50afdbe46f04c7611c1a0111bce3a76775e50272
4c5c20573601bde0f5c3567e02d02d74ab22d4ffe12f632e1def1b87dc86ad3d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 20:50:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/plugins/cookie-bar/js/cookie-bar.js?ver=1669976811

104.26.12.183

307 Temporary Redirect

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/plugins/cookie-bar/js/cookie-bar.js?ver=1669976811
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-content/plugins/cookie-bar/js/cookie-bar.js?ver=1669976811 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://africanarguments.org/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 307 Temporary Redirect
date: Fri, 02 Dec 2022 20:50:07 GMT
content-length: 0
location: https://africanarguments.org/wp-content/plugins/cookie-bar/js/cookie-bar.js?ver=1669976811
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
referrer-policy: no-referrer-when-downgrade
x-rl-redirect: timeout
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 307
cdn-cachedat: 12/02/2022 20:50:07
cdn-edgestorageid: 1054
cdn-status: 307
cdn-requestid: 139aceddc514916c604213f2bb0509fe
cdn-cache: MISS
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lkelb0J5C9V4UhnTMZjQXTWAvRztW1pzwTdRBv0hMkq1oHHL%2FwRQiJXglK3Rkd05gVPTnuWqvsvpCh4vivmLbjgjS4WK6T3iLWevDjMmtTznqvuHxzyAbPrS7emRrgliDb%2FvwRVx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7736eed97d53fab8-OSL
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a6ad57d839c4b452d7118cf2052f9d35
50afdbe46f04c7611c1a0111bce3a76775e50272
4c5c20573601bde0f5c3567e02d02d74ab22d4ffe12f632e1def1b87dc86ad3d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 20:50:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a6ad57d839c4b452d7118cf2052f9d35
50afdbe46f04c7611c1a0111bce3a76775e50272
4c5c20573601bde0f5c3567e02d02d74ab22d4ffe12f632e1def1b87dc86ad3d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 20:50:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8600
Expires: Fri, 02 Dec 2022 23:13:28 GMT
Date: Fri, 02 Dec 2022 20:50:08 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8600
Expires: Fri, 02 Dec 2022 23:13:28 GMT
Date: Fri, 02 Dec 2022 20:50:08 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8600
Expires: Fri, 02 Dec 2022 23:13:28 GMT
Date: Fri, 02 Dec 2022 20:50:08 GMT
Connection: keep-alive

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/onviewport.js?ver=6.1.1

104.26.12.183

200 OK

6.0 kB

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/onviewport.js?ver=6.1.1
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
6.0 kB (5967 bytes)
Hash
8ffdd1b09f2ac683bc1dfbb93fca45c1
32163ea7074e051db02d53d098d24be09d270073
e1aeec4966e4fb29e20bd36039fb33615d8f876e487f8de186cf7213557bba7f

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/onviewport.js?ver=6.1.1 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://africanarguments.org/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:07 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"62fd236f-12b8"
expires: Wed, 22 Nov 2023 14:57:27 GMT
last-modified: Wed, 17 Aug 2022 17:20:47 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/themes/gloria/js/onviewport.js?ver=6.1.1>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/22/2022 14:57:27
cdn-edgestorageid: 1049
cdn-status: 200
cdn-requestid: b2184d4b1cf77ebed973be2f8f5b5eca
cdn-cache: HIT
cf-cache-status: HIT
age: 882579
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9kxvhPWtY%2F5pb%2BORhQP4ytiKAYRZn%2BsSCWmQO23%2BZH6xXpCel7eBqW8Msa3QrC7Xs0wzqzNHB6cqi2rWBgic6fnCce2uqBnGoh%2FsP%2BOMBSU4oZ06Tqjjt%2Bm%2BLVMc6lFRlfSOdPIH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eed9edb2fab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8863 bytes)
Hash
156e9ea97b774cbd8361072e4041b6c8
fc71ae3cae92ed6011904bb2367f23bf4e69fab4
58d953c19ebbbdfc3965bbe3f52308d4702deaf4d0c029f4674bcb862da138af

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8863
x-amzn-requestid: 798d014b-0f9c-4787-a676-8f5e8fae3d11
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdG14HBNIAMFdWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851bf-7549feac6d476a8512676412;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: r_0F64VpyutAOJ9IcTWrs3Sv--fhKiwKsV1FW0fOMSRt1QLLPxvJzg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 10:51:17 GMT
age: 35931
etag: "fc71ae3cae92ed6011904bb2367f23bf4e69fab4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff41bace1-a7a5-42ae-b255-862c9cbac9de.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10437 bytes)
Hash
291127b670135b42b6e9687aa2a13237
99b5ef2d6a4d1a1251a06d9d9f989b01d089a8d1
49b082a738bcd15a0bb4e9f96a180797ffcfa368977ac1927df882a0343664d3

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff41bace1-a7a5-42ae-b255-862c9cbac9de.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10437
x-amzn-requestid: 2a8183c4-47ec-42bb-8e67-3e742dc3750c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb0YpEeooAMFfvg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cdd0-2014fd4d49dcd4087bf1db4d;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:40:32 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wQc8gdA6brp46QVd0ee9cBtnmA9q1j3nUO2ou9MDIhecNINtmphq0Q==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:50:54 GMT
age: 82754
etag: "99b5ef2d6a4d1a1251a06d9d9f989b01d089a8d1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7591 bytes)
Hash
d147ccb10bda82b153a596c3c967cd6a
ffd0763f997e71a8c1458523fc17cafe8849dfdf
1cfeb90a4ba027195f903d938d4a0aac418a1c2f0b52215ec023263f15905971

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7591
x-amzn-requestid: e179862e-f840-4e50-a9dc-09f325479b9a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGgMFRZIAMFl7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e01-676a1571459f2d83488f2765;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: oB5K_ZCWWwCltMx8FQSjDdXRMzSTSyRLSYSLAooQXuCrUxadLUiWkA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:48:51 GMT
age: 82877
etag: "ffd0763f997e71a8c1458523fc17cafe8849dfdf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11402 bytes)
Hash
1c80b8025242ddfcc816ec612456b99e
aa944d10fe4a44b790b01ef62edc0f85a6d558e3
a9f060bc15738a3fe257e0c81a29e4611a89c273bcbb2765ce856d4e854a5f1f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11402
x-amzn-requestid: 20c2c359-1e43-40c0-885d-1c90e76ea12b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGzJHu-IAMFbYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e7a-1d89722e767daa014b174a39;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: OJBnbjJB_kvPuJcePGnno3zI0CTWAzV-Osb2L1hPZZhlNYhFHWmLsA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:51:33 GMT
age: 82715
etag: "aa944d10fe4a44b790b01ef62edc0f85a6d558e3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.2 kB (6174 bytes)
Hash
b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 06:00:48 GMT
age: 53360
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

code.jquery.com/ui/1.11.4/jquery-ui.js?ver=1

69.16.175.10

200 OK

114 kB

URL HTTP/2
code.jquery.com/ui/1.11.4/jquery-ui.js?ver=1
IP
69.16.175.10:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (547)
Size
114 kB (114093 bytes)
Hash
0e45b665669abd2d0dd45fed0e5f0199
d4167d336e4cd359a99daaf01006f59a5e8bc062
cec192e20cf22c995517ee84d3b5a4715f4ad3affb902436b3ee32456e309978

HTTP Headers

GET /ui/1.11.4/jquery-ui.js?ver=1 HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:14 GMT
content-encoding: gzip
content-length: 114093
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
accept-ranges: bytes
server: nginx
etag: W/"28feccc0-72e44"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1670014214.dop214.sk1.t,1670014214.cds201.sk1.hn,1670014214.cds247.sk1.c
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-content/themes/gloria/framework/bootstrap/css/bootstrap.css?ver=6.1.1

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-content/themes/gloria/framework/bootstrap/css/bootstrap.css?ver=6.1.1
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /4qrhn31s/rls.s-nw-a/wp-content/themes/gloria/framework/bootstrap/css/bootstrap.css?ver=6.1.1 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:06 GMT
content-type: text/css
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
etag: W/"62fd23ae-91ab"
expires: Wed, 22 Nov 2023 02:47:42 GMT
last-modified: Wed, 17 Aug 2022 17:21:50 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/themes/gloria/framework/bootstrap/css/bootstrap.css?ver=6.1.1>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: success
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/22/2022 02:47:43
cdn-edgestorageid: 860
cdn-status: 200
cdn-requestid: 94b5bc8cca213d79a55b0ecd29a17822
cdn-cache: HIT
cf-cache-status: HIT
age: 908543
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BozTHNPlK9jVUhmZnnXS61KoQRrklkBPazim4cmD19DfRaL%2FaRU7xKs1mqGFcKGa2gcBHbeH2ZrSxgCehE48BmNxbQ00UbNlArRkkFVarjt%2BQ31BzVbHJNq065TRijAHhVqJkFDj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eed3e949fab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/plugins/short-code/js/shortcode.js?ver=6.1.1

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/plugins/short-code/js/shortcode.js?ver=6.1.1
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-content/plugins/short-code/js/shortcode.js?ver=6.1.1 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://africanarguments.org/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:07 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"58e3ac97-625"
expires: Wed, 22 Nov 2023 14:57:27 GMT
last-modified: Tue, 04 Apr 2017 14:24:23 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/plugins/short-code/js/shortcode.js?ver=6.1.1>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/22/2022 14:57:27
cdn-edgestorageid: 864
cdn-status: 200
cdn-requestid: 288350793c8ffde76a3de81539cff4d7
cdn-cache: HIT
cf-cache-status: HIT
age: 882579
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MiZJ73FzI%2FWJVg5FF3TvkeRhwvtvVggeSd5BmpcNYu9IgKq%2B%2BIQslwmyqGAD3KTqUC3HdPr3ujgRqJDi2nw5zx6uibfMuQrPPOMghJfVVgvZPWCdi8yFyGjSic9YkkKprKy1P29x"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eed9edabfab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.4

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.4
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.4 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://africanarguments.org/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:07 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"63517f53-3e7"
expires: Fri, 10 Nov 2023 17:54:03 GMT
last-modified: Thu, 20 Oct 2022 17:03:15 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.4>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/10/2022 17:54:04
cdn-edgestorageid: 865
cdn-status: 200
cdn-requestid: d865b1865280ea2a9af36b6c904437c2
cdn-cache: HIT
cf-cache-status: HIT
age: 1895664
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QqbGwXt6NU0Z8t5Jlk%2BU7lNgRlfimT9mu2Mv%2F8MnFWJMBKwyZBjTUOZsGP6uI4zByNgnBrqXnEf7NYpTzc2ZmUe8elLYSHn%2BwCevLrml5vvPix2JPCsGoTvQFkHkyrE1CXWVGp44"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eeda2de7fab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/theme_plugins.js?ver=6.1.1

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/theme_plugins.js?ver=6.1.1
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/theme_plugins.js?ver=6.1.1 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:14 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"62fd2370-2ec7a"
expires: Wed, 22 Nov 2023 14:57:27 GMT
last-modified: Wed, 17 Aug 2022 17:20:48 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/themes/gloria/js/theme_plugins.js?ver=6.1.1>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/22/2022 14:57:27
cdn-edgestorageid: 864
cdn-status: 200
cdn-requestid: 14ec5ba490dbf1cd1efdf4632642b039
cdn-cache: HIT
cf-cache-status: HIT
age: 882586
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IY%2F%2FA8lw%2F6c5lukbPWlabi1coRt0sgCJDpeDt8scZqLERFCXHtHflmm9c2d4agEXjlv5Rwvh1mv%2B%2Ffujo6BDRcTHk2xteFChauaT8w6uY8n0%2BaCWMIvQ6JirZGff4EU%2B1FgYR6hd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736ef084ecefab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:14 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"62cf3250-194b"
expires: Fri, 10 Nov 2023 17:44:24 GMT
last-modified: Wed, 13 Jul 2022 21:00:00 GMT
pragma: public
link: <https://africanarguments.org:443/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/10/2022 17:44:24
cdn-edgestorageid: 863
cdn-status: 200
cdn-requestid: 508c9a1f42df55758498aacfd5232eca
cdn-cache: HIT
cf-cache-status: HIT
age: 1895671
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dx7nTondETqdiD%2FO0PeeFfOEMw1pbjQ9CBpQUfexXhSZXEDt7wb1acD6DWLAHu0F1QOWl0KrDLUtCK4E89SBZvqBs6jWUR4zlrMCjOKuJL1XYxvCg%2F1CGtgsEI%2B9%2F9vZqGPI2cDK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736ef086ef1fab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

js.chargebee.com/v2/chargebee.js

108.157.229.6

200 OK

0 B

URL HTTP/2
js.chargebee.com/v2/chargebee.js
IP
108.157.229.6:0
ASN
#0

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /v2/chargebee.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Thu, 01 Dec 2022 09:41:55 GMT
x-amz-version-id: RveTiTmkpCH0fuNqoksSEaicPdWRNs_O
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Fri, 02 Dec 2022 20:47:29 GMT
cache-control: max-age=300,public
etag: W/"5d7e4b0b322d1f38131de5b8c8542a4e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 973ba1a14b3ee409c424730df6f1e51c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: a3FBvHb4y-ojEXRWQNCwxu081EzDjPILzaeKeQYpCieKA9xpyQb4Cg==
age: 167
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/plugins/short-code/js/shortcode.js?ver=6.1.1

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/plugins/short-code/js/shortcode.js?ver=6.1.1
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-content/plugins/short-code/js/shortcode.js?ver=6.1.1 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:14 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"58e3ac97-625"
expires: Wed, 22 Nov 2023 14:57:27 GMT
last-modified: Tue, 04 Apr 2017 14:24:23 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/plugins/short-code/js/shortcode.js?ver=6.1.1>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/22/2022 14:57:27
cdn-edgestorageid: 864
cdn-status: 200
cdn-requestid: 288350793c8ffde76a3de81539cff4d7
cdn-cache: HIT
cf-cache-status: HIT
age: 882586
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lFSVx3AtdrqVAYL6oOO2HxYK0Vfsa4%2Fc1BY4LOTAGBxhpnDX3hCnRQzLY3BWwMv0OtmczEyt0wGJvrRIiLB9qdwg%2FwS%2FbnmW%2F%2B9LPC5lNdOz0uQuHSZVDhihSMdRoKsgGckALy3a"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736ef084ec5fab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/module-load-post.js?ver=6.1.1

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/module-load-post.js?ver=6.1.1
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/module-load-post.js?ver=6.1.1 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:14 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"62fd236e-6c0f"
expires: Wed, 22 Nov 2023 14:57:27 GMT
last-modified: Wed, 17 Aug 2022 17:20:46 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/themes/gloria/js/module-load-post.js?ver=6.1.1>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/22/2022 14:57:27
cdn-edgestorageid: 874
cdn-status: 200
cdn-requestid: 5ceaf1c8f13d65e8e9d3d021041d1be6
cdn-cache: HIT
cf-cache-status: HIT
age: 882586
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hcavMcjnJv0L4eS5ps%2Bv4BwPx2NvCvoUP1%2B7RuPFJwP3J5%2BIIqwMKOe3s%2ByYfg2ExAu3ngp95pLaSKP9MtGP2JZe%2BZvmPtBwWfffZBSDush4Kr68dZwXLR3WX1pjYy0ShEkzhH6f"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736ef085ed6fab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:14 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"63673c42-459f"
expires: Fri, 10 Nov 2023 17:44:24 GMT
last-modified: Sun, 06 Nov 2022 04:46:58 GMT
pragma: public
link: <https://africanarguments.org:443/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/10/2022 17:44:24
cdn-edgestorageid: 601
cdn-status: 200
cdn-requestid: 19bcd50fd05cb68921a6c9a039f5b910
cdn-cache: HIT
cf-cache-status: HIT
age: 1895671
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GA90NIQ4eBajypzqwLvmv3PCdeg4ffpoiiwvv%2BpdK8LQ4cfON6HpR%2FWbU5nW%2BR8M27vipCwWsmCmbcTs34G7dexHTkas3UcYTeDFYlNsZ0dUSGfz8lRQceT%2BNMeFE00PbWS%2F9jv7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736ef086ef2fab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-content/themes/gloria/plugins/login-with-ajax/widget.css?ver=4.1

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-content/themes/gloria/plugins/login-with-ajax/widget.css?ver=4.1
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /4qrhn31s/rls.s-nw-a/wp-content/themes/gloria/plugins/login-with-ajax/widget.css?ver=4.1 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:06 GMT
content-type: text/css
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
etag: W/"62fd239d-cd1"
expires: Fri, 10 Nov 2023 17:44:22 GMT
last-modified: Wed, 17 Aug 2022 17:21:33 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/themes/gloria/plugins/login-with-ajax/widget.css?ver=4.1>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: success
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/10/2022 17:44:22
cdn-edgestorageid: 723
cdn-status: 200
cdn-requestid: 4c2032252d2e03677ee39648105ea817
cdn-cache: HIT
cf-cache-status: HIT
age: 1895665
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TB5Sz4cs%2B%2Fmk4jh75Wq4BGONSjJV1YhkrXn5iVIO1ozazZgfybT%2BeNQuirzcyIr2s85%2F%2FHGDSfog%2B7D5TOvkoUtsmeEtaMpCEi%2B1SjaBomJaQXGg3ukD4HGq0Ro6WZ%2BMVOX3dDg5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eed3e947fab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://africanarguments.org/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:07 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"63673c42-459f"
expires: Fri, 10 Nov 2023 17:44:24 GMT
last-modified: Sun, 06 Nov 2022 04:46:58 GMT
pragma: public
link: <https://africanarguments.org:443/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/10/2022 17:44:24
cdn-edgestorageid: 601
cdn-status: 200
cdn-requestid: 19bcd50fd05cb68921a6c9a039f5b910
cdn-cache: HIT
cf-cache-status: HIT
age: 1895664
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E6s3AGYkgQ4aLSwIoUo1PofUXE8NbzGarBwcxcJPZFrlQ5opH1J%2FRjEvi62h5NHlMlrqXtxt9j5NVMf1uHNvjvExcSwspkVod182tQc0zH4WISSoQjcc%2FNfjQejxnQpaTX5bW87w"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eeda1dd5fab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:14 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"5fd763a8-2bd8"
expires: Fri, 10 Nov 2023 17:53:49 GMT
last-modified: Mon, 14 Dec 2020 13:07:52 GMT
pragma: public
link: <https://africanarguments.org:443/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/10/2022 17:53:50
cdn-edgestorageid: 752
cdn-status: 200
cdn-requestid: 981e9cfcd720a3d9cbf9e9ffda2d7f40
cdn-cache: HIT
cf-cache-status: HIT
age: 1895671
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5IhiqhLyodlDBz%2BA22SkRIQanMEFYKPisHp17p8ONovwaCRdi6vnm1b%2FQE4J1Gc6Dr2ug2d6zO9BFgNjFtz8lErVijGESSCvULiVZe%2BRtl2z3tehzeZy6uq3k4PATyWjfpR5pu5j"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736ef082ea9fab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-content/plugins/gtranslate/gtranslate-style24.css?ver=6.1.1

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-content/plugins/gtranslate/gtranslate-style24.css?ver=6.1.1
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /4qrhn31s/rls.s-nw-a/wp-content/plugins/gtranslate/gtranslate-style24.css?ver=6.1.1 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:06 GMT
content-type: text/css
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
etag: W/"6360352e-2b5"
expires: Wed, 22 Nov 2023 02:47:42 GMT
last-modified: Mon, 31 Oct 2022 20:50:54 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/plugins/gtranslate/gtranslate-style24.css?ver=6.1.1>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: success
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/22/2022 02:47:43
cdn-edgestorageid: 864
cdn-status: 200
cdn-requestid: 6dd8aa19e1407bba042a531577df5510
cdn-cache: HIT
cf-cache-status: HIT
age: 908543
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=71cZKFwuiEKri%2FJvt0EJHQkuUyJyCztK%2F9qV2nhj5yFChFBBvJhx2Ln0RF0UIvPowdd6lR%2BTqz3LvzNI8SMuIAB9KasHwLxHHwmMOQeTs6f9tKkSN6ICG3NOeDhcGJeYlfu%2FY%2Bsj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eed40981fab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/customjs.js?ver=6.1.1

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/customjs.js?ver=6.1.1
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/customjs.js?ver=6.1.1 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://africanarguments.org/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:07 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"62fd236f-a947"
expires: Wed, 22 Nov 2023 14:57:27 GMT
last-modified: Wed, 17 Aug 2022 17:20:47 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/themes/gloria/js/customjs.js?ver=6.1.1>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/22/2022 14:57:27
cdn-edgestorageid: 1054
cdn-status: 200
cdn-requestid: 33c94dc534b90106b2f3482f6d035fd4
cdn-cache: HIT
cf-cache-status: HIT
age: 882579
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gi6JhBCedFg5O6bAUhR8X4Ny5uNss9qHJHMwyhv7XNjFsLnvwNvCTOjm2%2B4LX21AAP4GVNqdFRBtlhuJ%2B9cPL266PFo5lxwxZLitGpFmtyYFKbq0F3sBykx04k%2F8fyPI7RwAZnT8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eeda0dc9fab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2

142.250.74.174

200 OK

0 B

URL HTTP/2
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /translate_a/element.js?cb=googleTranslateElementInit2 HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://africanarguments.org/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 02 Dec 2022 20:50:07 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+264; expires=Sun, 01-Dec-2024 20:50:07 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:14 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"63517f53-3016"
expires: Fri, 10 Nov 2023 17:44:24 GMT
last-modified: Thu, 20 Oct 2022 17:03:15 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/10/2022 17:44:24
cdn-edgestorageid: 752
cdn-status: 200
cdn-requestid: dff29966c7402d8b96caa74849e4f836
cdn-cache: HIT
cf-cache-status: HIT
age: 1895671
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=odbAHSSRrd4SA1SooEYDohN5unyXkZERb2BjauEk%2BgnmWrKUtGjqQmQ6GwFEfI9ZF%2B99IqhVXFmTJUXVsXMtSqPvu6XG%2Bek5Gce3SnDRKIOguzY1vAtEI5uFWVJsSOL9vdwlxJvG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736ef084ec3fab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

africanarguments.org/about-african-arguments/

188.114.97.1

200 OK

0 B

URL HTTP/2
africanarguments.org/about-african-arguments/
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /about-african-arguments/ HTTP/1.1
Host: africanarguments.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:05 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-pingback: https://africanarguments.org/xmlrpc.php
link: <https://africanarguments.org/wp-json/>; rel="https://api.w.org/", <https://africanarguments.org/wp-json/wp/v2/pages/6>; rel="alternate"; type="application/json", <https://africanarguments.org/?p=6>; rel=shortlink, <https://cfb.rabbitloader.xyz/4qrhn31s/rl_p1_2a_min.js?v=ri0qo0>; rel=preload; as=script
x-cache-status: MISS, HIT
x-encoded-content-encoding: gzip
x-rl-rule: 63136c30dca375aecd22bb0d
x-rl-modified: Fri, 02 Dec 2022 10:26:53 GMT
last-modified: Fri, 02 Dec 2022 10:26:53 GMT
x-rl-cache: hit
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x4vipn%2BCpWIlaT53CYPBMgmzSThzjHLagKXgqRgFvZk4bb6kKehNOuhUFuJ85WGWeCBT%2FH1tEJ%2FQhami0%2FPsomiUS9Yhe2I2JelwUA%2Bd4RiLtLGD3wTiu1gt1N%2BfSGo65eIQlLcYWA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eed23d3cb509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://africanarguments.org/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:07 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"63673c42-53c0"
expires: Fri, 10 Nov 2023 17:44:23 GMT
last-modified: Sun, 06 Nov 2022 04:46:58 GMT
pragma: public
link: <https://africanarguments.org:443/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/10/2022 17:44:23
cdn-edgestorageid: 752
cdn-status: 200
cdn-requestid: e03665fc697e91e042c075ce9a1bb679
cdn-cache: HIT
cf-cache-status: HIT
age: 1895664
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2n4d0XVOWvMkFWb7zyiCVizrd8Vm6Y4e9JGsAonlfXr4LE%2FG1G4FNVxtX%2BOzrMdT2yqDfSTqqWdhIxWJVX4dvGL5dg3ZLYzksLk%2BKviFW3JkTKIxuriDecPR43bvaGAH6EWd0ZXZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eed9edadfab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

js.chargebee.com/v2/chargebee.js

108.157.229.6

200 OK

0 B

URL HTTP/2
js.chargebee.com/v2/chargebee.js
IP
108.157.229.6:0
ASN
#0

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /v2/chargebee.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://africanarguments.org/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Thu, 01 Dec 2022 09:41:55 GMT
x-amz-version-id: RveTiTmkpCH0fuNqoksSEaicPdWRNs_O
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Fri, 02 Dec 2022 20:50:07 GMT
cache-control: max-age=300,public
etag: W/"5d7e4b0b322d1f38131de5b8c8542a4e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b7956d91cf1fe016b86fc209319f03ca.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: t0QGauzX7Gaf88FztXdfvZtCSfzP1Y2H7BJNRUL30H1OfLubfLK9gQ==
age: 160
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/comment-reply.min.js?ver=6.1.1

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/comment-reply.min.js?ver=6.1.1
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-includes/js/comment-reply.min.js?ver=6.1.1 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:14 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"62cf3250-ba5"
expires: Wed, 22 Nov 2023 14:57:27 GMT
last-modified: Wed, 13 Jul 2022 21:00:00 GMT
pragma: public
link: <https://africanarguments.org:443/wp-includes/js/comment-reply.min.js?ver=6.1.1>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/22/2022 14:57:27
cdn-edgestorageid: 723
cdn-status: 200
cdn-requestid: 68c6c3d95d3b6b5ce6276759451b147c
cdn-cache: HIT
cf-cache-status: HIT
age: 882586
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cMgJ1QeuJea%2FHhRD%2B8qfKSEYCHeRwuWlvA1j0iGDCvpNAn7V%2BzkRytkMnrUzy3N5GydqYSmT%2F3wXwM3dgZq2ox%2BB5ZZkQ5QcjYiP5VEwrWXUNTc7Nrd%2FQWKhCWLZwuWEJttxRtvj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736ef085edbfab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://africanarguments.org/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:07 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"63517f53-3016"
expires: Fri, 10 Nov 2023 17:44:24 GMT
last-modified: Thu, 20 Oct 2022 17:03:15 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/10/2022 17:44:24
cdn-edgestorageid: 752
cdn-status: 200
cdn-requestid: dff29966c7402d8b96caa74849e4f836
cdn-cache: HIT
cf-cache-status: HIT
age: 1895664
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fpiydF6B1zZ2AKdooS95wdKniX4K%2B64HP7mKtjMJqMQqbd6YGaeg6HyUD0LUNMSPyTj%2Bh6FElnDVwi9mXVjaqcRAn6DGwBvCuqwTiV%2FiXyblqfxbwTcybtuWqMEPsTXNHWF6IJ4E"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eed9dda6fab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/comment-reply.min.js?ver=6.1.1

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/comment-reply.min.js?ver=6.1.1
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-includes/js/comment-reply.min.js?ver=6.1.1 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://africanarguments.org/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:07 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"62cf3250-ba5"
expires: Wed, 22 Nov 2023 14:57:27 GMT
last-modified: Wed, 13 Jul 2022 21:00:00 GMT
pragma: public
link: <https://africanarguments.org:443/wp-includes/js/comment-reply.min.js?ver=6.1.1>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/22/2022 14:57:27
cdn-edgestorageid: 723
cdn-status: 200
cdn-requestid: 68c6c3d95d3b6b5ce6276759451b147c
cdn-cache: HIT
cf-cache-status: HIT
age: 882579
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8qxxnoz%2FlJs7QkAGm6zh%2F7r1PoItCpynCedTbO%2BNp2eCT9RpEDa36C5ZKnMmM%2BfyMpGVt3IpraHe4VxniS790xwPtp%2B%2FMcjiXVdmlZT7yC3dLfKvwhs39t5%2FUegGPibeCcSaFNti"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eeda0dccfab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/onviewport.js?ver=6.1.1

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/onviewport.js?ver=6.1.1
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/onviewport.js?ver=6.1.1 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:14 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"62fd236f-12b8"
expires: Wed, 22 Nov 2023 14:57:27 GMT
last-modified: Wed, 17 Aug 2022 17:20:47 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/themes/gloria/js/onviewport.js?ver=6.1.1>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/22/2022 14:57:27
cdn-edgestorageid: 1049
cdn-status: 200
cdn-requestid: b2184d4b1cf77ebed973be2f8f5b5eca
cdn-cache: HIT
cf-cache-status: HIT
age: 882586
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1Q7Ni6yOjtRC9bCAGH9tL3%2FXIGdWtmYOat7t4v3xi33YLfEmUmh9dbNQ4AJkaIymfaZxdADrqZflR3cHSpR6Bt5HR0xeszYZ2%2BCtj7CewdrFwtYA0Zz8aRrjlb3iLs94yVVquxKq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736ef085ed4fab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/menu.js?ver=6.1.1

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/menu.js?ver=6.1.1
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/menu.js?ver=6.1.1 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:14 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"62fd2371-a51"
expires: Wed, 22 Nov 2023 14:57:27 GMT
last-modified: Wed, 17 Aug 2022 17:20:49 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/themes/gloria/js/menu.js?ver=6.1.1>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/22/2022 14:57:28
cdn-edgestorageid: 723
cdn-status: 200
cdn-requestid: 97efb6f929442c9a5df4012364c14345
cdn-cache: HIT
cf-cache-status: HIT
age: 882586
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LhGxfUGxduAAWNCgzbnX%2FtVaZ3%2BoDG47iz8WSdCIdgWg5yzRK%2FlAbxxFaZpwEMs75AfZV3xvMF3POWdtsmdwV7usQ76JBKYyFR7yyZ3gJ9pQe3%2FW83%2F907E8wjQ0N71gWZsLL24d"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736ef085ed8fab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/customjs.js?ver=6.1.1

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/customjs.js?ver=6.1.1
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/customjs.js?ver=6.1.1 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:14 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"62fd236f-a947"
expires: Wed, 22 Nov 2023 14:57:27 GMT
last-modified: Wed, 17 Aug 2022 17:20:47 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/themes/gloria/js/customjs.js?ver=6.1.1>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/22/2022 14:57:27
cdn-edgestorageid: 1054
cdn-status: 200
cdn-requestid: 33c94dc534b90106b2f3482f6d035fd4
cdn-cache: HIT
cf-cache-status: HIT
age: 882586
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=znkytRF8un3zdJD80HcqMhB8uZBP7WsQA%2FHLoJ%2BcgkqDpNZs%2B3scAQq1s6xDMPEruLyx9CcKVkNu6vY32pUrO09%2F1R66ZPy8SM7ykH4iFnBSokmcTmRLDyr5Z0tiFZUaN2AVthZ9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736ef085ed9fab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/retina.min.js?ver=6.1.1

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/retina.min.js?ver=6.1.1
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/retina.min.js?ver=6.1.1 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:14 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"62fd236e-a0f"
expires: Wed, 22 Nov 2023 14:57:27 GMT
last-modified: Wed, 17 Aug 2022 17:20:46 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/themes/gloria/js/retina.min.js?ver=6.1.1>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/22/2022 14:57:27
cdn-edgestorageid: 1054
cdn-status: 200
cdn-requestid: 7c54737ee60e1145244458d6c2d7b88a
cdn-cache: HIT
cf-cache-status: HIT
age: 45307
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2wkqMOB9YGhHOn1Rtj0swHT4j95pN6r9oI0BVKo2l4xVQ8%2BuNBIre97Pyn886PjDxwZLk%2BOyEg4RNC6Jx3mFbuGESxMB38Wz4tO19xeSlVbQxnPnPoLO4S4nBjELdydWmxz6CWUF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736ef086eeefab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/plugins/login-with-ajax/login-with-ajax.js?ver=4.1

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/plugins/login-with-ajax/login-with-ajax.js?ver=4.1
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/plugins/login-with-ajax/login-with-ajax.js?ver=4.1 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://africanarguments.org/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:06 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"62fd239c-22d8"
expires: Fri, 10 Nov 2023 17:44:23 GMT
last-modified: Wed, 17 Aug 2022 17:21:32 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/themes/gloria/plugins/login-with-ajax/login-with-ajax.js?ver=4.1>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/10/2022 17:44:23
cdn-edgestorageid: 756
cdn-status: 200
cdn-requestid: f07c48126a9843181d81c79952871094
cdn-cache: HIT
cf-cache-status: HIT
age: 1895663
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DuiYroeMtOCMkHpKICLP%2Ba2QkpB30h%2F0rR8vVZXDsIWjx0Nfx6e6uqWmehRbKRCDiOdf8pHA99fwKNKuYO5Fu3R6LR%2Bu9rRYs6s3a93xrk%2BC1u2gatLn7%2FUW4mDbV2TBqZx%2BLPbn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eed97d56fab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/menu.js?ver=6.1.1

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/menu.js?ver=6.1.1
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/menu.js?ver=6.1.1 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://africanarguments.org/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:07 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"62fd2371-a51"
expires: Wed, 22 Nov 2023 14:57:27 GMT
last-modified: Wed, 17 Aug 2022 17:20:49 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/themes/gloria/js/menu.js?ver=6.1.1>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/22/2022 14:57:28
cdn-edgestorageid: 723
cdn-status: 200
cdn-requestid: 97efb6f929442c9a5df4012364c14345
cdn-cache: HIT
cf-cache-status: HIT
age: 882579
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Yt%2BQC%2BnNtgHdZ6ur5JhPfDejie07b6uTEFtcuSDRydoLFWlePj5ct78EuI3cdLX8HriQYxBz7Kfkv7cN9zzlZzmsjgzUtcSMqpTfYY0rkaOXd7jIWrYZqDAd3QHIOwNCV86QngJA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eed9fdbefab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/plugins/add-cookie-notice/js/add-cookie-notice.js?ver=1.0.0

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/plugins/add-cookie-notice/js/add-cookie-notice.js?ver=1.0.0
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-content/plugins/add-cookie-notice/js/add-cookie-notice.js?ver=1.0.0 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://africanarguments.org/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:07 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"58e3aa1b-109d"
expires: Fri, 10 Nov 2023 17:44:24 GMT
last-modified: Tue, 04 Apr 2017 14:13:47 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/plugins/add-cookie-notice/js/add-cookie-notice.js?ver=1.0.0>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/10/2022 17:44:24
cdn-edgestorageid: 723
cdn-status: 200
cdn-requestid: 4083e99ee3e2d3cd4f18b3fbc48af0fe
cdn-cache: HIT
cf-cache-status: HIT
age: 1895663
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CfRM82gtzY7vUczQhqkQgizBjr36218iKdCqmFwwiF9yV9YHJ9rbGod0P%2B3exqGDRWetBbDarXR%2BWj0RbXrOeAGNsFQoMbrQL37gxAf9CHPy953cLrowHdpzvuIG3kmAypgK6%2F%2Fm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eed9dda0fab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/module-load-post.js?ver=6.1.1

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/module-load-post.js?ver=6.1.1
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/module-load-post.js?ver=6.1.1 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://africanarguments.org/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:07 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"62fd236e-6c0f"
expires: Wed, 22 Nov 2023 14:57:27 GMT
last-modified: Wed, 17 Aug 2022 17:20:46 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/themes/gloria/js/module-load-post.js?ver=6.1.1>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/22/2022 14:57:27
cdn-edgestorageid: 874
cdn-status: 200
cdn-requestid: 5ceaf1c8f13d65e8e9d3d021041d1be6
cdn-cache: HIT
cf-cache-status: HIT
age: 882579
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gqLf%2FQte6K9Z7semuW%2BPRIqCjyoW5JOHTImnmU2Nm1cgbOTV1ov8a%2FMzndML8rTYvMX4EeH8bltT7kskq4KX2%2FyOg0HUl2XRXZStGsT3PqyD0spwxqmlSuE6%2ByKagpJFYy2eZ34O"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eed9fdbcfab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://africanarguments.org/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:07 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"63517f53-26d1"
expires: Fri, 10 Nov 2023 17:53:50 GMT
last-modified: Thu, 20 Oct 2022 17:03:15 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/10/2022 17:53:51
cdn-edgestorageid: 865
cdn-status: 200
cdn-requestid: 24609a9ea1f355d202242ec61c95b2b1
cdn-cache: HIT
cf-cache-status: HIT
age: 1895664
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vmBRey05fVx8BzCiA3M6Nv9G4PSA1rRYC24pI5Zzu1KAaogazOeyLDwVz9HlodK7WULbY0LSehCsrQPYyCzNrFTQWpMMxzgti1nflUKURppXq3y8%2B%2FsKEslvZitcNWW51DR0iCXf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eed9dda5fab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://africanarguments.org/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:07 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"62cf3250-194b"
expires: Fri, 10 Nov 2023 17:44:24 GMT
last-modified: Wed, 13 Jul 2022 21:00:00 GMT
pragma: public
link: <https://africanarguments.org:443/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/10/2022 17:44:24
cdn-edgestorageid: 863
cdn-status: 200
cdn-requestid: 508c9a1f42df55758498aacfd5232eca
cdn-cache: HIT
cf-cache-status: HIT
age: 1895664
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=p2T0%2BRxb1w%2FZZPEi%2FNawgllBON3qF8OMjyWoblNe4fH6BsfwFmSE5IhQpOvTDhGQGG28B%2Bcnr%2B8Qj%2F2vVFTtVCNP6toEobY5cpXSiPouCPK0i5VmQPr%2F3edHhECXsxZsSSYXjgNZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eeda0dcefab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:14 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"63673c42-53c0"
expires: Fri, 10 Nov 2023 17:44:23 GMT
last-modified: Sun, 06 Nov 2022 04:46:58 GMT
pragma: public
link: <https://africanarguments.org:443/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/10/2022 17:44:23
cdn-edgestorageid: 752
cdn-status: 200
cdn-requestid: e03665fc697e91e042c075ce9a1bb679
cdn-cache: HIT
cf-cache-status: HIT
age: 1895671
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UuVaI3RbZV%2F%2Bn14mxj8KvHbRpc8968MZsPnfarAYVBHKe1rxAH0EsJ9X806cvHRHeU2Fj52z0KPwlB4urePOG2xty8Yszmv1Gg9BgIpAkXoSSaHzAFyP1YcZzpJaTgCzANEFoXCX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736ef084ec9fab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-content/plugins/short-code/css/shortcode.css?ver=6.1.1

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-content/plugins/short-code/css/shortcode.css?ver=6.1.1
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /4qrhn31s/rls.s-nw-a/wp-content/plugins/short-code/css/shortcode.css?ver=6.1.1 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:06 GMT
content-type: text/css
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
etag: W/"58e3ac96-1d5d"
expires: Wed, 22 Nov 2023 02:47:42 GMT
last-modified: Tue, 04 Apr 2017 14:24:22 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/plugins/short-code/css/shortcode.css?ver=6.1.1>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: success
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/22/2022 02:47:43
cdn-edgestorageid: 863
cdn-status: 200
cdn-requestid: 56d6ab564afcfc9e7cc958452525a6d6
cdn-cache: HIT
cf-cache-status: HIT
age: 908543
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1udvdNO1uJpLBxVApmvKQ3ZPQ%2B3Kw4Aoi3teEt0iSO33ADhN5XhBmJbYOPl5zrHCDZGyw%2Bp3P73li%2Fd7J7LnZpptM26%2FkmpZ7xvBr9RSeREuxfIkHCiiVGpXur8Y1C3obbvl8E%2Bp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eed3e945fab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-content/themes/gloria/css/bkstyle.css?ver=6.1.1

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-content/themes/gloria/css/bkstyle.css?ver=6.1.1
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /4qrhn31s/rls.s-nw-a/wp-content/themes/gloria/css/bkstyle.css?ver=6.1.1 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:06 GMT
content-type: text/css
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
etag: W/"62fd235f-22777"
expires: Wed, 22 Nov 2023 02:47:42 GMT
last-modified: Wed, 17 Aug 2022 17:20:31 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/themes/gloria/css/bkstyle.css?ver=6.1.1>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: success
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/22/2022 02:47:43
cdn-edgestorageid: 723
cdn-status: 200
cdn-requestid: def05d387b4333a4af6005fc9ebc8b3a
cdn-cache: HIT
cf-cache-status: HIT
age: 908542
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AU%2BM3NyPIAg5S1%2Br4HXTaC85SlrbhY9bSGtagAbk5rR0CHCy0GFstW7xAKa8RIiNKBuSYgQDM%2F%2Bs4n3FKHvwQqEhR3xiXosxKUjVeUQxr1SxPmEnIX4b7IP8kD4k8kF3gBFSlpet"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eed3f95dfab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/jquery/jquery.min.js?ver=3.6.1

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://africanarguments.org/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:06 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"63673c42-15e54"
expires: Fri, 10 Nov 2023 17:53:50 GMT
last-modified: Sun, 06 Nov 2022 04:46:58 GMT
pragma: public
link: <https://africanarguments.org:443/wp-includes/js/jquery/jquery.min.js?ver=3.6.1>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/10/2022 17:53:51
cdn-edgestorageid: 722
cdn-status: 200
cdn-requestid: 74bf7abb10ec32539ebb83d807fadadf
cdn-cache: HIT
cf-cache-status: HIT
age: 94815
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L09WQ5yzvzmptOZaYo7aNpUw6f4wNBYH2ZFpMkJBlCV8JLJFcaczWw9xia1NxrN1ej8QvW1oR6Qz%2Be2i%2FskhmEdFyNARX3xQVkP4595Co9bIo4EfxergQ8t4tNH8boD2VMdzuvva"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eed96d4dfab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.2

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.2
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.2 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:14 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"63673c42-2ea1"
expires: Mon, 13 Nov 2023 20:04:39 GMT
last-modified: Sun, 06 Nov 2022 04:46:58 GMT
pragma: public
link: <https://africanarguments.org:443/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.2>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/13/2022 20:04:40
cdn-edgestorageid: 1049
cdn-status: 200
cdn-requestid: cd4755c0a3fca737be8981f112892c7e
cdn-cache: HIT
cf-cache-status: HIT
age: 45307
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y%2F4yYNVnXMXS0zx5YCpPOhZuuMmXhKReYGExulsbfsLdJ7QH%2By4wGJQsiz6K9VmVB9Bh%2FezPtZpyn60OFGvE0FOZWi1VwKo7jSfa43RptArE%2ByHp3RNPDI69%2F%2Bb4upOnEYMmjbkH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736ef084ecbfab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-content/plugins/cookie-bar/css/cookie-bar.css?ver=6.1.1

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-content/plugins/cookie-bar/css/cookie-bar.css?ver=6.1.1
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /4qrhn31s/rls.s-nw-a/wp-content/plugins/cookie-bar/css/cookie-bar.css?ver=6.1.1 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:06 GMT
content-type: text/css
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
etag: W/"63517f58-22c"
expires: Wed, 22 Nov 2023 02:47:42 GMT
last-modified: Thu, 20 Oct 2022 17:03:20 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/plugins/cookie-bar/css/cookie-bar.css?ver=6.1.1>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: success
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/22/2022 02:47:43
cdn-edgestorageid: 863
cdn-status: 200
cdn-requestid: b85a8b2f7c51ef41fbfc61cfc09eeaaa
cdn-cache: HIT
cf-cache-status: HIT
age: 908543
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TVlQ3hLSqaivJf43QkYFw1Avf601J11vO4KjmVXQ%2FjahRVrqR%2BV%2F%2FfVlhTojGYqyn1hlYz12W1jBkfvM7UTSg18f8ldRcd%2BXhg5p78pulnygoKpesMBOQgc%2FCX1BtXBFefC0Zi7n"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eed3e940fab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/jquery/jquery.min.js?ver=3.6.1

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:14 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"63673c42-15e54"
expires: Fri, 10 Nov 2023 17:53:50 GMT
last-modified: Sun, 06 Nov 2022 04:46:58 GMT
pragma: public
link: <https://africanarguments.org:443/wp-includes/js/jquery/jquery.min.js?ver=3.6.1>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/10/2022 17:53:51
cdn-edgestorageid: 722
cdn-status: 200
cdn-requestid: 74bf7abb10ec32539ebb83d807fadadf
cdn-cache: HIT
cf-cache-status: HIT
age: 94823
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QNp4wfheMZroIrQwOV%2Fxs4oliYrf%2BGYGEDj0ScK1h%2FJF5%2BJ9nOIU03j66BCNZPgjmuGymkEICLUy%2FkH2izbALn73sVveH0ejtGjpnz2KR7Y3sFZgPtUOQomYjHOF1Gzkn3Pq6ieR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736ef082ea8fab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:14 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"63517f53-26d1"
expires: Fri, 10 Nov 2023 17:53:50 GMT
last-modified: Thu, 20 Oct 2022 17:03:15 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/10/2022 17:53:51
cdn-edgestorageid: 865
cdn-status: 200
cdn-requestid: 24609a9ea1f355d202242ec61c95b2b1
cdn-cache: HIT
cf-cache-status: HIT
age: 1895671
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CQE7sSuiN2nlBE%2F2sykQEcSAU%2FOfgBJ%2B0n0hKrk2D%2BmTX%2FY9%2B21ercr70S9%2FBORvBZ2cfD9gTcqZ0UM0Ui7WbqnUXHm0Jw4nqLNt8Rs3dlrKw4G4dghJFwwaBAcPsA5CJBZCDPXK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736ef084ec2fab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Open%20Sans:300,400,500,600,700,800,300italic,400italic,500italic,600italic,700italic,800italic%7CArchivo%20Narrow:400,500,600,700,400italic,500italic,600italic,700italic%7CRoboto%20Slab:100,200,300,400,500,600,700,800,900&display=swap&ver=1662196007

142.250.74.74

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Open%20Sans:300,400,500,600,700,800,300italic,400italic,500italic,600italic,700italic,800italic%7CArchivo%20Narrow:400,500,600,700,400italic,500italic,600italic,700italic%7CRoboto%20Slab:100,200,300,400,500,600,700,800,900&display=swap&ver=1662196007
IP
142.250.74.74:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Open%20Sans:300,400,500,600,700,800,300italic,400italic,500italic,600italic,700italic,800italic%7CArchivo%20Narrow:400,500,600,700,400italic,500italic,600italic,700italic%7CRoboto%20Slab:100,200,300,400,500,600,700,800,900&display=swap&ver=1662196007 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Dec 2022 20:50:06 GMT
date: Fri, 02 Dec 2022 20:50:06 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.4

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.4
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.4 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:14 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"63517f53-3e7"
expires: Fri, 10 Nov 2023 17:54:03 GMT
last-modified: Thu, 20 Oct 2022 17:03:15 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.4>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/10/2022 17:54:04
cdn-edgestorageid: 865
cdn-status: 200
cdn-requestid: d865b1865280ea2a9af36b6c904437c2
cdn-cache: HIT
cf-cache-status: HIT
age: 1895671
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kvMwtMjAqcnarEbSr6ksoKURQCw2Xlq4nR73ADSIfKyajQn4bXbYz%2FFtmxgxwu%2BcZyrEvx%2BD3h4EiErQ7p82HQN%2B5HpcZby26qM1XC8R0b69duVAJAE94f9CtG%2B1KsrrYQyBHcE2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736ef087efcfab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rl_p1_2a_min.js?v=ri0qo0

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rl_p1_2a_min.js?v=ri0qo0
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /4qrhn31s/rl_p1_2a_min.js?v=ri0qo0 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:06 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
referrer-policy: no-referrer-when-downgrade
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 09/11/2022 05:58:32
cdn-edgestorageid: 755
cdn-status: 200
cdn-requestid: 65e1839392706a01e007b3c26293e929
cdn-cache: HIT
cf-cache-status: HIT
age: 5304463
last-modified: Sun, 02 Oct 2022 11:22:23 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ad1KfUgafcbTuIdEoWnszvPHwfUbu%2F%2BN%2FCsjtf9rGnDZiiKA%2BhPpjgmmYBbcJwSYAJgk5QNuILZCCG0zW5VNVWPHzSKtjfWtfIQ0QmnGq13AogmI1alblr6fLu8UFrj8j4J3ShQx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eed3e93cfab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.2

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.2
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.2 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://africanarguments.org/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:07 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"63673c42-226e"
expires: Fri, 10 Nov 2023 17:44:23 GMT
last-modified: Sun, 06 Nov 2022 04:46:58 GMT
pragma: public
link: <https://africanarguments.org:443/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.2>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/10/2022 17:44:23
cdn-edgestorageid: 601
cdn-status: 200
cdn-requestid: 612b3a7479b7dea2a480abe7bef4e50c
cdn-cache: HIT
cf-cache-status: HIT
age: 1895664
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hcJ3m1E7N4%2Fi9nrdC4KB8XTgMhAQqcXMikkbIPFB44Lv%2BvXFXzuUxzU0DwTf%2Bvv%2FdQlfJKcndFPasukqTAuZ0cveWzZeW9S%2BDGWM0Zv%2FXtoIX6fwumUVw1OLS%2BHSkJmGywrZmLrS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eed9edb0fab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/plugins/add-cookie-notice/js/add-cookie-notice.js?ver=1.0.0

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/plugins/add-cookie-notice/js/add-cookie-notice.js?ver=1.0.0
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-content/plugins/add-cookie-notice/js/add-cookie-notice.js?ver=1.0.0 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:14 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"58e3aa1b-109d"
expires: Fri, 10 Nov 2023 17:44:24 GMT
last-modified: Tue, 04 Apr 2017 14:13:47 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/plugins/add-cookie-notice/js/add-cookie-notice.js?ver=1.0.0>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/10/2022 17:44:24
cdn-edgestorageid: 723
cdn-status: 200
cdn-requestid: 4083e99ee3e2d3cd4f18b3fbc48af0fe
cdn-cache: HIT
cf-cache-status: HIT
age: 1895670
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x6mCOzqd%2B7nZAdoXcQnAr5lGM4YTs9bgD67ONqNdGSCCBOu%2B9bX4cIsFH9t3W4WHv5DnYeLib8dzbh9w%2B6YmJOGELsxqsS4%2FEDRAI4WVzoNlUpz2xBlnGJU8rKxLTG8kkVT3VETd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736ef084ec0fab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/retina.min.js?ver=6.1.1

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/retina.min.js?ver=6.1.1
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/retina.min.js?ver=6.1.1 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://africanarguments.org/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:07 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"62fd236e-a0f"
expires: Wed, 22 Nov 2023 14:57:27 GMT
last-modified: Wed, 17 Aug 2022 17:20:46 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/themes/gloria/js/retina.min.js?ver=6.1.1>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/22/2022 14:57:27
cdn-edgestorageid: 1054
cdn-status: 200
cdn-requestid: 7c54737ee60e1145244458d6c2d7b88a
cdn-cache: HIT
cf-cache-status: HIT
age: 45300
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TQE39Cpnlt%2Bng2Q63BQFkgAKt0XqX7QFWFNYRjJDBsU4eVR0uLfJHrjy03yfNAeFjqiRkfSMKkmu%2F9HeXynbBxnmJ9HsjtyDv%2FPVf6gIFEpoHhqsbNPacixoEF7GzHbW5ssvvVbc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eeda0dcdfab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.2

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.2
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.2 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:14 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"63673c42-226e"
expires: Fri, 10 Nov 2023 17:44:23 GMT
last-modified: Sun, 06 Nov 2022 04:46:58 GMT
pragma: public
link: <https://africanarguments.org:443/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.2>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/10/2022 17:44:23
cdn-edgestorageid: 601
cdn-status: 200
cdn-requestid: 612b3a7479b7dea2a480abe7bef4e50c
cdn-cache: HIT
cf-cache-status: HIT
age: 1895671
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uUbs9Rucee%2FB9jrC2Sig61mfWK062bRTsz%2BXUuq7yyof9MSgjI%2Fb%2Bmdsg%2FHP9uT1aifwaqSrUcWqTff%2B7c3uXlxZqaMLeVA78QaukU4Hq4aHPEj79xKB%2F1qTNd5y7VTIU3EP9GDg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736ef084eccfab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-includes/css/classic-themes.min.css?ver=1

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-includes/css/classic-themes.min.css?ver=1
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /4qrhn31s/rls.s-nw-a/wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:06 GMT
content-type: text/css
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31536000
etag: W/"63673c43-d9"
expires: Fri, 10 Nov 2023 17:46:47 GMT
last-modified: Sun, 06 Nov 2022 04:46:59 GMT
pragma: public
link: <https://africanarguments.org:443/wp-includes/css/classic-themes.min.css?ver=1>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/10/2022 17:46:48
cdn-edgestorageid: 863
cdn-status: 200
cdn-requestid: c7d47a873001daece2612ffca3d9af44
cdn-cache: HIT
cf-cache-status: HIT
age: 1895665
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=o6IbFfrrjt7xYYiPM5VZ8fGXLrC3XUMWMgrIVAWCJqm6A1ibyj40%2FRYSL7A%2F6PQ%2Bl70Hscxm7MObCEE3Tz1kOvNGn3pmqrSDnYVf7o3zCf8NXzGTGLl89OJCDpJQ3FyZweR6DZqM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eed4198bfab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /4qrhn31s/rls.s-nw-a/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:06 GMT
content-type: text/css
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31536000
etag: W/"637ad0e5-172a9"
expires: Wed, 22 Nov 2023 02:47:42 GMT
last-modified: Mon, 21 Nov 2022 01:14:13 GMT
pragma: public
link: <https://africanarguments.org:443/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/22/2022 02:47:43
cdn-edgestorageid: 1054
cdn-status: 200
cdn-requestid: 24916b7320674953d7402ec3913bb320
cdn-cache: HIT
cf-cache-status: HIT
age: 908542
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9WNQcNGKNDpedGVIaZMPDLtjSFH7cwoYqq9tFKE8itPSiN271cP8iE8qk8HOusXd7n7E2FzYzGXIYJfdEdaMo4Y02UYXX9T27g2ZTKOXYGOYKcwKvlgdqfGa7eeG2reD%2FR6WNEkt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eed41988fab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://africanarguments.org/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:06 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"5fd763a8-2bd8"
expires: Fri, 10 Nov 2023 17:53:49 GMT
last-modified: Mon, 14 Dec 2020 13:07:52 GMT
pragma: public
link: <https://africanarguments.org:443/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/10/2022 17:53:50
cdn-edgestorageid: 752
cdn-status: 200
cdn-requestid: 981e9cfcd720a3d9cbf9e9ffda2d7f40
cdn-cache: HIT
cf-cache-status: HIT
age: 1895663
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Rji30nieKBiOXMogCg%2BU6S25dpija1xhGwZ6WXajQ9YynIIwD1cf30YhhSlTOyHPsODK%2FszhzLKahpR0aCzx8QD6rLSVcd%2Fo%2BSA4ZWjOYORq82K8lxAIKHMmlIfMjYmjshtMVkGu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eed96d50fab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-content/themes/gloria/css/theme_plugins.css?ver=6.1.1

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-content/themes/gloria/css/theme_plugins.css?ver=6.1.1
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /4qrhn31s/rls.s-nw-a/wp-content/themes/gloria/css/theme_plugins.css?ver=6.1.1 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:06 GMT
content-type: text/css
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
etag: W/"62fd2360-e889"
expires: Wed, 22 Nov 2023 02:47:42 GMT
last-modified: Wed, 17 Aug 2022 17:20:32 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/themes/gloria/css/theme_plugins.css?ver=6.1.1>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: success
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/22/2022 02:47:43
cdn-edgestorageid: 1053
cdn-status: 200
cdn-requestid: 370876123718e3c73d83c299f8fcba46
cdn-cache: HIT
cf-cache-status: HIT
age: 908543
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cRtPJroe3CWDmljjW6tSChX5XmzqvoNEbUCsBPuo3dVsRPdkvyI0uf4lp%2BSzNX3D5CXaZBzSQROBinqeF15gnflDMlNlc0jvdqHgkrDOcUT5VbWFEcf9g4xzXcQLF4BinuL7ruDq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eed3e94afab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-content/themes/gloria/css/responsive.css?ver=6.1.1

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-a/wp-content/themes/gloria/css/responsive.css?ver=6.1.1
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /4qrhn31s/rls.s-nw-a/wp-content/themes/gloria/css/responsive.css?ver=6.1.1 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://africanarguments.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:06 GMT
content-type: text/css
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
etag: W/"62fd2361-5c29"
expires: Wed, 22 Nov 2023 02:47:42 GMT
last-modified: Wed, 17 Aug 2022 17:20:33 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/themes/gloria/css/responsive.css?ver=6.1.1>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: success
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/22/2022 02:47:43
cdn-edgestorageid: 865
cdn-status: 200
cdn-requestid: 2e3673d3d1530ecfddf35b4935e208a1
cdn-cache: HIT
cf-cache-status: HIT
age: 908543
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jo9qef2m4KYSAhxu44Jvs6T4Z3zYwukxM1TUL%2BGj0hHjpdsJ2tdlUnOerPECsI17nyBei2TgA15pSSiNUr4lyw7lojo%2F32jGJdL8eV81b82eawGI6tVX%2Froa3sU9on3%2BICtMiV6s"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eed3f95ffab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/theme_plugins.js?ver=6.1.1

104.26.12.183

200 OK

0 B

URL HTTP/2
cfb.rabbitloader.xyz/4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/theme_plugins.js?ver=6.1.1
IP
104.26.12.183:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /4qrhn31s/rls.s-nw-i/wp-content/themes/gloria/js/theme_plugins.js?ver=6.1.1 HTTP/1.1
Host: cfb.rabbitloader.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://africanarguments.org/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 20:50:07 GMT
content-type: application/javascript
vary: Accept-Encoding
cdn-pullzone: 679510
cdn-uid: 1896b2ec-270e-4ff5-9215-88cf218c5219
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"62fd2370-2ec7a"
expires: Wed, 22 Nov 2023 14:57:27 GMT
last-modified: Wed, 17 Aug 2022 17:20:48 GMT
pragma: public
link: <https://africanarguments.org:443/wp-content/themes/gloria/js/theme_plugins.js?ver=6.1.1>; rel='canonical'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=86400; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-rl-compression: skipped
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/22/2022 14:57:27
cdn-edgestorageid: 864
cdn-status: 200
cdn-requestid: 14ec5ba490dbf1cd1efdf4632642b039
cdn-cache: HIT
cf-cache-status: HIT
age: 882579
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IMZbcczpdGGtLD0lfs49tlXT5XTSQLEyD11KlzbPddODBO6E9m3UWuFJyTAursaGzs1%2FzAmyYTR3Vp40HDN5P%2F8oePZvpePfWmdkIoRragAuXJ0%2FJdKJ9WdIF8EZg3fE8Cc%2BSAh%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7736eed9edb1fab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2

142.250.74.174

200 OK

0 B

URL HTTP/2
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /translate_a/element.js?cb=googleTranslateElementInit2 HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://africanarguments.org/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 02 Dec 2022 20:50:07 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+109; expires=Sun, 01-Dec-2024 20:50:07 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (7)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (106)

URL HTTP/1.1

IP

ASN

File type

Size