Report - www.ivanchors.co.za/

Report Overview

Submitted URL
www.ivanchors.co.za/
IP
35.246.229.114
ASN
#396982 GOOGLE-CLOUD-PLATFORM
Submitted
2022-11-22 14:02:55
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
64

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	52 kB	34.120.237.76
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	479 B	24 kB	216.58.207.195
use.fontawesome.com	942	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	400 B	862 B	172.64.132.15
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.1 kB	4.2 kB	142.250.74.3
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	387 B	79 kB	142.250.74.168
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	420 B	1.6 kB	142.250.74.10
ornalcap.sirv.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	846 B	286 kB	162.55.133.149
www.ivanchors.co.za	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	15 kB	7.9 MB	35.246.229.114
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.13.173.34
region1.google-analytics.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	671 B	566 B	216.239.32.36
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	7.1 kB	23.36.77.32
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.7 kB	93.184.220.29

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-11-22	medium	ivanchors.co.za	Sinkholed
2022-11-22	medium	ivanchors.co.za	Sinkholed
2022-11-22	medium	ivanchors.co.za	Sinkholed
2022-11-22	medium	ivanchors.co.za	Sinkholed
2022-11-22	medium	ivanchors.co.za	Sinkholed
2022-11-22	medium	ivanchors.co.za	Sinkholed
2022-11-22	medium	ivanchors.co.za	Sinkholed
2022-11-22	medium	ivanchors.co.za	Sinkholed
2022-11-22	medium	ivanchors.co.za	Sinkholed
2022-11-22	medium	ivanchors.co.za	Sinkholed
2022-11-22	medium	ivanchors.co.za	Sinkholed
2022-11-22	medium	ivanchors.co.za	Sinkholed
2022-11-22	medium	ivanchors.co.za	Sinkholed
2022-11-22	medium	ivanchors.co.za	Sinkholed
2022-11-22	medium	ivanchors.co.za	Sinkholed
2022-11-22	medium	ivanchors.co.za	Sinkholed
2022-11-22	medium	ivanchors.co.za	Sinkholed
2022-11-22	medium	ivanchors.co.za	Sinkholed
2022-11-22	medium	ivanchors.co.za	Sinkholed
2022-11-22	medium	ivanchors.co.za	Sinkholed
2022-11-22	medium	ivanchors.co.za	Sinkholed
2022-11-22	medium	ivanchors.co.za	Sinkholed
2022-11-22	medium	ivanchors.co.za	Sinkholed
2022-11-22	medium	ivanchors.co.za	Sinkholed
2022-11-22	medium	ivanchors.co.za	Sinkholed
2022-11-22	medium	ivanchors.co.za	Sinkholed
2022-11-22	medium	ivanchors.co.za	Sinkholed
2022-11-22	medium	ivanchors.co.za	Sinkholed
2022-11-22	medium	ivanchors.co.za	Sinkholed
2022-11-22	medium	ivanchors.co.za	Sinkholed
2022-11-22	medium	ivanchors.co.za	Sinkholed
2022-11-22	medium	ivanchors.co.za	Sinkholed

JavaScript (14)

	URL	Size	First Seen	Last Seen
	www.ivanchors.co.za/wp-content/themes/chef/assets/js/project.js	123 kB	2023-03-11	2023-03-11
Pretty URL www.ivanchors.co.za/wp-content/themes/chef/assets/js/project.js IP 3.72.140.173 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:43:20 Last Seen2023-03-11 15:43:20 Times Seen1 Hash d414c811b6cacc5940db3fdb07464a30 09f7f1d05afe86b46efd60a4faf1410e45e43a57 3bebd0354d1f3d95be8f6e0e588d11eb56b17976def3f7830fb311e5b1cf5b1f Loading...

	www.ivanchors.co.za/	342 B	2023-03-11	2023-03-11
Pretty URL www.ivanchors.co.za/ IP 35.246.229.114 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:43:20 Last Seen2023-03-11 15:43:20 Times Seen1 Hash b6f7cd757d1aa1b55368160b4fc19bde 4cbb2451e8479bee3cd3f1dbf91d6e1b5dfc7ac7 69e780be201f6386a8f34385c9dad5523e4d2d2e2f978a07380eb6d1639d65bb Loading...

	www.ivanchors.co.za/wp-content/plugins/contact-form-7/includes/js/indexd96d.js?ver=5.6.1	22 kB	2023-03-07	2024-04-16
Pretty URL www.ivanchors.co.za/wp-content/plugins/contact-form-7/includes/js/indexd96d.js?ver=5.6.1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:28 Last Seen2024-04-16 08:13:03 Times Seen1041 Hash e7334b0f16895605c1234c69ad86fd4a 6da3372e63cabe2d3c6b0dfecc70770c2f69921b e89d7526092c671c0a01bd02152a595271fb97f87bbd3ba379b5e8b1071f6b2d Loading...

	www.ivanchors.co.za/	213 B	2023-03-11	2023-03-11
Pretty URL www.ivanchors.co.za/ IP 35.246.229.114 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:43:20 Last Seen2023-03-11 15:43:20 Times Seen1 Hash 0e699f85afb4d4bd54506bcf08da2fe4 0448208d14f9fbe132bb3e6a4c774272af48c177 e71d49b369d8895221c46eb01af8eb3460b3c6ce57c8edf85c82eebf8d68c0fc Loading...

	www.googletagmanager.com/gtag/js?id=G-YHERDYLDKG	228 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtag/js?id=G-YHERDYLDKG IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:43:21 Last Seen2023-03-11 15:43:21 Times Seen1 Hash 076051140d2245ca25d13ba02dfb7ddf 7380fc83551a74851bc9b48f38866c90c0b04590 6e718498acbda939c73a90315c6a6cc3815b5a0ac6cd23abf732ddce90814d97 Loading...

	www.ivanchors.co.za/wp-includes/js/dist/vendor/regenerator-runtime.min3937.js?ver=0.13.9	6.5 kB	2023-03-07	2024-04-25
Pretty URL www.ivanchors.co.za/wp-includes/js/dist/vendor/regenerator-runtime.min3937.js?ver=0.13.9 IP 3.72.140.173 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-25 21:53:57 Times Seen15501 Hash 61449413a42d2daaa79dbe7298b40e21 d86c474164c603084397bdc50fb0e469d28b5772 f30769ea0b80a5d900c5f0de30b1aad1ab461195e69223d5ef63c2c5de8b6c1a Loading...

	www.ivanchors.co.za/	239 B	2023-03-11	2023-03-11
Pretty URL www.ivanchors.co.za/ IP 35.246.229.114 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:43:21 Last Seen2023-03-11 15:43:21 Times Seen1 Hash de2f5aa27d92425fa50dc9ac6f486af5 22f82cd459c9c20fcbd74f3045546baaf0eaf901 1fbff77cc40446cb8cade2855248ce4602ecd028946e284d7ea9a31e5a366641 Loading...

	www.ivanchors.co.za/wp-content/plugins/contact-form-7/modules/recaptcha/indexd96d.js?ver=5.6.1	999 B	2023-03-07	2024-04-26
Pretty URL www.ivanchors.co.za/wp-content/plugins/contact-form-7/modules/recaptcha/indexd96d.js?ver=5.6.1 IP 3.72.140.173 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:28 Last Seen2024-04-26 02:50:50 Times Seen11041 Hash 6a0e8318d42803736d2fafcc12238026 c955314a7e0a9a9871329b0f042c8f0b5df49a78 2648a1333fa24d383fd73a6beaac17156ae78f4267ff7407ad60e05a788df44c Loading...

	www.ivanchors.co.za/wp-includes/js/jquery/jquery.minaf6c.js?ver=3.6.0	90 kB	2023-03-07	2024-04-26
Pretty URL www.ivanchors.co.za/wp-includes/js/jquery/jquery.minaf6c.js?ver=3.6.0 IP 3.72.140.173 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-26 08:44:47 Times Seen31838 Hash 02dd5d04add4759122013c5ab4dc5cc2 a45a56e396ac549b4ff39b696ce9e0c16a7612de bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea Loading...

	www.ivanchors.co.za/	205 B	2023-03-11	2023-03-11
Pretty URL www.ivanchors.co.za/ IP 35.246.229.114 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:43:21 Last Seen2023-03-11 15:43:21 Times Seen1 Hash 357189c9aacd0c341805cda45782d77a 199b645e993279a61b9ff0f6fd99b7f165d2b55c f0d6411e039655359abb895db0f059d08c340dadae50f9c8506a41815f0e7693 Loading...

	www.ivanchors.co.za/wp-content/plugins/add-to-any/addtoany.min4963.js?ver=1.1	129 B	2023-03-07	2024-04-26
Pretty URL www.ivanchors.co.za/wp-content/plugins/add-to-any/addtoany.min4963.js?ver=1.1 IP 3.72.140.173 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:19 Last Seen2024-04-26 07:08:22 Times Seen5003 Hash 5ef26b5e47e6951f43ecf2b1fc645222 081afb52577f6f3bb044fdea6d34a632c3cce7e8 50679e0e3933c945348a2db0cc128bb14b57a60a74fabf8cae13acc14efbb2e1 Loading...

	www.ivanchors.co.za/	585 B	2023-03-11	2023-03-11
Pretty URL www.ivanchors.co.za/ IP 35.246.229.114 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:43:21 Last Seen2023-03-11 15:43:21 Times Seen1 Hash 9662e556724132c0c9404b760bf2919d 44d3c714224aad471e440b9e0f0136a05d0afddd be1523a7033aa87ff635df4dac6d99d29321b1d490d44242cf55dc191f806c0f Loading...

	www.ivanchors.co.za/wp-content/themes/chef/js/lazyload.min.js	7.5 kB	2023-03-11	2023-03-11
Pretty URL www.ivanchors.co.za/wp-content/themes/chef/js/lazyload.min.js IP 3.72.140.173 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:43:21 Last Seen2023-03-11 15:43:21 Times Seen1 Hash 2c8e6bb9c915b841d1b824a0b81c9ce1 5e768c8f8f8c09b5166e53e1c9964cf6282beaec b3a069e0d8327743cd4951085ad86fe0691a1481313ec4ab8d6d79118309d486 Loading...

	www.ivanchors.co.za/	205 B	2023-03-11	2023-03-11
Pretty URL www.ivanchors.co.za/ IP 35.246.229.114 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:43:21 Last Seen2023-03-11 15:43:21 Times Seen1 Hash eb0b48fae20bc8d8cf1cf0ab7854eab2 aeb183058363c53bab634ffc06e588d0fd4201fa 337b6ff24eabd791aae31cfb992d0e4fd889fe0c6c6e4e58c99f44ca434141ac Loading...

HTTP Transactions (68)

URL IP Response Size

www.ivanchors.co.za/

35.246.229.114

301 Moved Permanently

43 B

URL HTTP/1.1
www.ivanchors.co.za/
IP
35.246.229.114:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
ASCII text, with no line terminators
Size
43 B (43 bytes)
Hash
19bf12447e3af6f675f2768e8c2b54ee
5f4191e940178e0abe697bbab9726a837364ce74
ca813356d809735053bc492e8e359e22d047344fdd13fb3b64eddbebc197f1af

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: www.ivanchors.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Location: https://www.ivanchors.co.za/
Server: Netlify
X-Nf-Request-Id: 01GJFTBW419EEBJHSSJ5J1TJ3B
Date: Tue, 22 Nov 2022 14:02:43 GMT
Content-Length: 43
Content-Type: text/plain; charset=utf-8

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1456357aecbd23f21ad98da57e0127eb
7074815b39fa8da9013883971d665e4c1b0797ea
f3eba265ee64870b2f822f1511b36c747d763c382557789cdad8be1d3b52d1f5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F3EBA265EE64870B2F822F1511B36C747D763C382557789CDAD8BE1D3B52D1F5"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12126
Expires: Tue, 22 Nov 2022 17:24:49 GMT
Date: Tue, 22 Nov 2022 14:02:43 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
b59d95402dfb464c176610284ba13f65
1a6c62fb0d48654dd204b66161bb03fefe60f71a
40cfd59b890ec5a3570603d28d90bd7e5c506babd52c2ece93e09f1c7b2a6880

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4637
Cache-Control: max-age=164749
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 14:02:43 GMT
Etag: "637ca4f3-1d7"
Expires: Thu, 24 Nov 2022 11:48:32 GMT
Last-Modified: Tue, 22 Nov 2022 10:31:15 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8a6c553d89cb6fd1de4787fee2a0e0dc
b974e022ea8675c0a09f58864cc99df05b5b1241
a62ecedcb0953814f982237818a3d902fdca501f82b675629d28b5d476e0fbfa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A62ECEDCB0953814F982237818A3D902FDCA501F82B675629D28B5D476E0FBFA"
Last-Modified: Mon, 21 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9264
Expires: Tue, 22 Nov 2022 16:37:07 GMT
Date: Tue, 22 Nov 2022 14:02:43 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 22 Nov 2022 13:09:19 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3204
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: QwAph9+4VRTNlQjrVDnsi+xCejRcWq0CypElos6+z2iKxKqGoKBUcU31vARlqkvi1af5dMSV87I=
x-amz-request-id: 9BKVQZV17GT4MR7C
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 22 Nov 2022 13:39:34 GMT
age: 1389
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 22 Nov 2022 14:02:43 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 22 Nov 2022 13:08:53 GMT
cache-control: public,max-age=3600
age: 3230
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8c319af2ac12928a411aa25ca55c6236
0506b326abc9d464cbc4beb035ab0549c2f9010d
ba391c537542fcd69964c29ff3ebfc9dadcac3871cd233f8a9ecd6b6e6d48e7d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BA391C537542FCD69964C29FF3EBFC9DADCAC3871CD233F8A9ECD6B6E6D48E7D"
Last-Modified: Tue, 22 Nov 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 22 Nov 2022 20:02:43 GMT
Date: Tue, 22 Nov 2022 14:02:43 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
8a181d95550cfdf3b1fc4deb71631e40
37866f7293c41fbfb817e321754cae5c5bf59f93
6aa3d2763181cc48d2ad0ce7d227f3cb3324045c3f7858ccdbae675768dcec55

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6486
Cache-Control: max-age=161537
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 14:02:44 GMT
Etag: "637c912f-1d7"
Expires: Thu, 24 Nov 2022 10:55:01 GMT
Last-Modified: Tue, 22 Nov 2022 09:06:55 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
ad60897e149f308b98f935dde0fee5ad
99a41856983b57f3c1065d5848309c51bb9acefd
dcca1e5b84e06d345dcc3f713b2c03b33daff6ec2fd906a1cfb6b6eeaf534e79

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5696
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 14:02:44 GMT
Last-Modified: Tue, 22 Nov 2022 12:27:48 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 280

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
eb526d16fc4a304286cf261dc5d8abea
0aed946d28abc21cb11657e6f864b561a0c68fba
551520b0344d58c1b4ddc9dfb452da2acf43080871a7037f4530eec48fb86362

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 14:02:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
585eab785e44953b9e6d7c389024ff3e
57582825e9a285177f38cd2fa868ad3a8eab85d1
f1c62af1e27c8510576adcb62b28be35f290d2ee71e873f7000c194980522e80

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 14:02:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=G-YHERDYLDKG

142.250.74.168

200 OK

79 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=G-YHERDYLDKG
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (25492)
Size
79 kB (78664 bytes)
Hash
a1a2bbab52a478a356025a836cc12ff9
a88c94bca276fb4b28849539162309778d07cf82
1a889dab6f35c187b77e548f83d350efbd15b61f6876f9034d6b5fd78df8d0df

HTTP Headers

GET /gtag/js?id=G-YHERDYLDKG HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ivanchors.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 14:02:44 GMT
expires: Tue, 22 Nov 2022 14:02:44 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78664
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Lato:wght@300;400;700&display=swap

142.250.74.10

200 OK

872 B

URL HTTP/2
fonts.googleapis.com/css2?family=Lato:wght@300;400;700&display=swap
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
872 B (872 bytes)
Hash
a6b2566ea759bcd58881ddc54f39afed
ff7e17f3a1758420c0f61171cf068b851b472e0c
4ce262148aba664aed41822a97034093521f4ba11f563fadaea23973261ac754

HTTP Headers

GET /css2?family=Lato:wght@300;400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ivanchors.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 22 Nov 2022 14:02:44 GMT
date: Tue, 22 Nov 2022 14:02:44 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
ad60897e149f308b98f935dde0fee5ad
99a41856983b57f3c1065d5848309c51bb9acefd
dcca1e5b84e06d345dcc3f713b2c03b33daff6ec2fd906a1cfb6b6eeaf534e79

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5696
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 14:02:44 GMT
Last-Modified: Tue, 22 Nov 2022 12:27:48 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 280

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
585eab785e44953b9e6d7c389024ff3e
57582825e9a285177f38cd2fa868ad3a8eab85d1
f1c62af1e27c8510576adcb62b28be35f290d2ee71e873f7000c194980522e80

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 14:02:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.ivanchors.co.za/wp-content/plugins/add-to-any/addtoany.mind47c.css?ver=1.16

3.72.140.173

200 OK

402 B

URL HTTP/2
www.ivanchors.co.za/wp-content/plugins/add-to-any/addtoany.mind47c.css?ver=1.16
IP
3.72.140.173:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (1519), with no line terminators
Size
402 B (402 bytes)
Hash
f9970ca05ea0a4714cb90be2d50d756d
1c34d0360bef56b0ca56c25c449e75345bf77f27
4432f43b177fd433db2325f26d91389e71aa3c7d0171e781e79b8330423c3d04

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/add-to-any/addtoany.mind47c.css?ver=1.16 HTTP/1.1
Host: www.ivanchors.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ivanchors.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: text/css; charset=UTF-8
date: Tue, 22 Nov 2022 14:02:44 GMT
etag: "54680a7557f730f8d59bab4acc86a389-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GJFTBX2K1A37V3YB12FJXW45
content-length: 402
X-Firefox-Spdy: h2

www.ivanchors.co.za/wp-content/plugins/contact-form-7/includes/css/stylesd96d.css?ver=5.6.1

3.72.140.173

200 OK

848 B

URL HTTP/2
www.ivanchors.co.za/wp-content/plugins/contact-form-7/includes/css/stylesd96d.css?ver=5.6.1
IP
3.72.140.173:0
ASN
#16509 AMAZON-02

File type
ASCII text
Size
848 B (848 bytes)
Hash
c962ba8e7d42ff9da18392b41dad5151
7b89bc5e6ad161df2e6d7f7fb3ad894aa04b827f
322a4949c5bdd82eb80c13bbbd407ce30a7ad226685c54270d246cb6960e524e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/stylesd96d.css?ver=5.6.1 HTTP/1.1
Host: www.ivanchors.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ivanchors.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: text/css; charset=UTF-8
date: Tue, 22 Nov 2022 14:02:44 GMT
etag: "9b6a23ff5f660e759faf84dce1a6bf74-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GJFTBX2G8CMHJT6EJ206F2FH
content-length: 848
X-Firefox-Spdy: h2

www.ivanchors.co.za/wp-content/plugins/add-to-any/addtoany.min4963.js?ver=1.1

3.72.140.173

200 OK

129 B

URL HTTP/2
www.ivanchors.co.za/wp-content/plugins/add-to-any/addtoany.min4963.js?ver=1.1
IP
3.72.140.173:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
129 B (129 bytes)
Hash
5ef26b5e47e6951f43ecf2b1fc645222
081afb52577f6f3bb044fdea6d34a632c3cce7e8
50679e0e3933c945348a2db0cc128bb14b57a60a74fabf8cae13acc14efbb2e1

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/add-to-any/addtoany.min4963.js?ver=1.1 HTTP/1.1
Host: www.ivanchors.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ivanchors.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-type: application/javascript; charset=UTF-8
date: Tue, 22 Nov 2022 14:02:44 GMT
etag: "32d6792e6c2c63917d77e42855846acf-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJFTBX2Q2KCF8H02VNYEW5NQ
content-length: 129
X-Firefox-Spdy: h2

www.ivanchors.co.za/use.fontawesome.com/releases/v5.15.4/css/all.css

3.72.140.173

404 Not Found

2.5 kB

URL HTTP/2
www.ivanchors.co.za/use.fontawesome.com/releases/v5.15.4/css/all.css
IP
3.72.140.173:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (331)
Size
2.5 kB (2490 bytes)
Hash
0012d07003c84858a199664f2ae94452
fc08ed1994c1ef64d5e8c92374602d493cdc8f66
fd981895175a96abdda4d097dee5cf505c86a51021bf2ac8bfdbb5acebb30709

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /use.fontawesome.com/releases/v5.15.4/css/all.css HTTP/1.1
Host: www.ivanchors.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ivanchors.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: text/html; charset=utf-8
date: Tue, 22 Nov 2022 14:02:44 GMT
etag: 1663932372-ssl-df
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GJFTBX2HWQJTFJNPF1F5G3JW
X-Firefox-Spdy: h2

push.services.mozilla.com/

52.13.173.34

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.13.173.34:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Qh7pKqICnwfBYPqLZXcfTw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: NtaA2aYf3iCACRMsapPWUkEBYJU=

www.ivanchors.co.za/wp-content/uploads/2022/01/chef-photo1.jpg

3.72.140.173

200 OK

786 kB

URL HTTP/2
www.ivanchors.co.za/wp-content/uploads/2022/01/chef-photo1.jpg
IP
3.72.140.173:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 650x1463, components 3\012- data
Size
786 kB (786137 bytes)
Hash
53ccde09668bbae6de08918b348cf288
5cc6e1f55bea6b9666558eccb3413e4b2d54aef8
38ab8ea9af6915f00e2132c2b123216df40f93abc08c7cc4edfa1872bc9709a9

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/01/chef-photo1.jpg HTTP/1.1
Host: www.ivanchors.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ivanchors.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-type: image/jpeg
date: Tue, 22 Nov 2022 14:02:44 GMT
etag: "4170f45be01658636a8f82fc9fac03a5-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJFTBX398QA7TD0Q6H9ECTCB
content-length: 786137
X-Firefox-Spdy: h2

www.ivanchors.co.za/wp-content/uploads/2022/01/chef-photo4.jpg

3.72.140.173

200 OK

390 kB

URL HTTP/2
www.ivanchors.co.za/wp-content/uploads/2022/01/chef-photo4.jpg
IP
3.72.140.173:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 650x1463, components 3\012- data
Size
390 kB (389517 bytes)
Hash
fc47e9764e9968cee4d903c260064a6e
18fa228c7f5125cb20db8ca3593593abeecc4932
b07b6fcfdca57aadd72604e916699e04d2d0e303276003c8d0e51fa34ef9b309

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/01/chef-photo4.jpg HTTP/1.1
Host: www.ivanchors.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ivanchors.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-type: image/jpeg
date: Tue, 22 Nov 2022 14:02:44 GMT
etag: "427c2e2767ea16ab519917c2196f0c62-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJFTBX3A1RZT0RV6MBMGEYGT
content-length: 389517
X-Firefox-Spdy: h2

www.ivanchors.co.za/wp-content/uploads/2022/01/chef-photo3.jpg

3.72.140.173

200 OK

977 kB

URL HTTP/2
www.ivanchors.co.za/wp-content/uploads/2022/01/chef-photo3.jpg
IP
3.72.140.173:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 650x1463, components 3\012- data
Size
977 kB (977174 bytes)
Hash
0bfeb0c5b77b84005d22e7c3d14d3804
dbfcf461ed2535f36fe4662834a65943852e37e3
689b65aebf51e767dfe9f1b9817cd8fa62ed0115dbf3b70c2b5a309c962ce5d4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/01/chef-photo3.jpg HTTP/1.1
Host: www.ivanchors.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ivanchors.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-type: image/jpeg
date: Tue, 22 Nov 2022 14:02:44 GMT
etag: "51050fe051a0d5bb00b33679ea55a736-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJFTBX39E0K3BG3CMFDT77WP
content-length: 977174
X-Firefox-Spdy: h2

www.ivanchors.co.za/wp-content/uploads/2022/01/chef-photo_light-1.jpg

3.72.140.173

200 OK

1.1 MB

URL HTTP/2
www.ivanchors.co.za/wp-content/uploads/2022/01/chef-photo_light-1.jpg
IP
3.72.140.173:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 650x1463, components 3\012- data
Size
1.1 MB (1076140 bytes)
Hash
2e5c33a5e859b2313c5d725e1eb32504
b383f99d4fa108cec44e6cd0892abeed13862e18
89a5420dd0335f09c66b2768cf96c2d35a217477b1606018b8fd529ecf82c7f2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/01/chef-photo_light-1.jpg HTTP/1.1
Host: www.ivanchors.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ivanchors.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-type: image/jpeg
date: Tue, 22 Nov 2022 14:02:44 GMT
etag: "5f3d779243d55dfd333f1b47aa507a3d-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJFTBX39HAM7XE3FS62DZAA6
content-length: 1076140
X-Firefox-Spdy: h2

www.ivanchors.co.za/wp-content/uploads/2022/01/chef-photo2.jpg

3.72.140.173

200 OK

386 kB

URL HTTP/2
www.ivanchors.co.za/wp-content/uploads/2022/01/chef-photo2.jpg
IP
3.72.140.173:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 650x1463, components 3\012- data
Size
386 kB (385965 bytes)
Hash
9f1f655fe337fd1329fd3a67da659ae3
6e908f42c797aac53396b5999e66b1f572dadc3e
acad7b1ad8d39cedeb15cc786cd1279be3dd69c2df496c1982fcef3112c5a529

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/01/chef-photo2.jpg HTTP/1.1
Host: www.ivanchors.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ivanchors.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-type: image/jpeg
date: Tue, 22 Nov 2022 14:02:44 GMT
etag: "738bdc45b918013a5ff5496318f9391e-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJFTBX39FRAJ46BDATZ9Z5B8
content-length: 385965
X-Firefox-Spdy: h2

www.ivanchors.co.za/wp-content/uploads/2022/01/chef-photo_light-4.jpg

3.72.140.173

200 OK

487 kB

URL HTTP/2
www.ivanchors.co.za/wp-content/uploads/2022/01/chef-photo_light-4.jpg
IP
3.72.140.173:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 650x1463, components 3\012- Linux rev -1149902513.29372 ext2 filesystem data, UUID=04c51b46-c5a3-db63-65a7-3ff5fd7c8d3f, volume name "\263\251]=_\227\365\362\350L\372_\202\254\344\314Z\010k\210A.\036\3027\377" (errors)\012- data
Size
487 kB (486753 bytes)
Hash
701fd088f6855b7d4657a86a77365005
ca8ab9c3a56d6303630af922b2d1333f416b6a17
9c6d97c975abc29370c58c4a59c5a4dcff56529751b8734dac764471b0bcb6ed

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/01/chef-photo_light-4.jpg HTTP/1.1
Host: www.ivanchors.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ivanchors.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-type: image/jpeg
date: Tue, 22 Nov 2022 14:02:44 GMT
etag: "99e6f865f1cf0599da0517a0436e941e-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJFTBX3BT2S862WD1KMWB8A5
content-length: 486753
X-Firefox-Spdy: h2

www.ivanchors.co.za/wp-content/uploads/2022/01/chef-photo_light-2.jpg

3.72.140.173

200 OK

576 kB

URL HTTP/2
www.ivanchors.co.za/wp-content/uploads/2022/01/chef-photo_light-2.jpg
IP
3.72.140.173:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 650x1463, components 3\012- data
Size
576 kB (576375 bytes)
Hash
21ac0355e92f923b060ff29adb9b06be
818d8867872a9413bbb5b28dfa67a071e6e63da3
0cd7c1516f87c84911313ac8334f3aee16dc6dc81950d944b559be6e2507959b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/01/chef-photo_light-2.jpg HTTP/1.1
Host: www.ivanchors.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ivanchors.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-type: image/jpeg
date: Tue, 22 Nov 2022 14:02:44 GMT
etag: "b57f1a03d947a3e1add312cb4a03ab52-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJFTBX39J2NMT9HDSHXYT51S
content-length: 576375
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ed3ae8e878b9c8c9c5fc3ab22d8547d6
e4d08dc74fa84a3bcc9d442e225e8f7a6c124822
e135b6fb23500cb2edbf836719ed450cdb6b1e86b7c8491289cb4e1ccbd9ce84

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 14:02:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ed3ae8e878b9c8c9c5fc3ab22d8547d6
e4d08dc74fa84a3bcc9d442e225e8f7a6c124822
e135b6fb23500cb2edbf836719ed450cdb6b1e86b7c8491289cb4e1ccbd9ce84

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 14:02:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2

216.58.207.195

200 OK

24 kB

URL HTTP/2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Size
24 kB (23580 bytes)
Hash
e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537

HTTP Headers

GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.ivanchors.co.za
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 15 Nov 2022 17:10:21 GMT
expires: Wed, 15 Nov 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 593543
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.ivanchors.co.za/wp-content/plugins/contact-form-7/modules/recaptcha/indexd96d.js?ver=5.6.1

3.72.140.173

200 OK

999 B

URL HTTP/2
www.ivanchors.co.za/wp-content/plugins/contact-form-7/modules/recaptcha/indexd96d.js?ver=5.6.1
IP
3.72.140.173:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (999), with no line terminators
Size
999 B (999 bytes)
Hash
6a0e8318d42803736d2fafcc12238026
c955314a7e0a9a9871329b0f042c8f0b5df49a78
2648a1333fa24d383fd73a6beaac17156ae78f4267ff7407ad60e05a788df44c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/contact-form-7/modules/recaptcha/indexd96d.js?ver=5.6.1 HTTP/1.1
Host: www.ivanchors.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ivanchors.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-type: application/javascript; charset=UTF-8
date: Tue, 22 Nov 2022 14:02:44 GMT
etag: "84ccaaaba92cbd3af824f0b1cb23da46-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJFTBX9EZZNCY6APBDVP603Z
content-length: 999
X-Firefox-Spdy: h2

www.ivanchors.co.za/wp-content/themes/chef/assets/css/style.css

3.72.140.173

200 OK

44 kB

URL HTTP/2
www.ivanchors.co.za/wp-content/themes/chef/assets/css/style.css
IP
3.72.140.173:0
ASN
#16509 AMAZON-02

File type
ASCII text
Size
44 kB (43559 bytes)
Hash
6a467134e5fc519ffec352d6943fdee6
9da6685a340cf240ec68136f6afa88e9ca7f8481
316013306d4b61febcc6f3bd7477d1b0c0aa00b66fcb687a42bb3e5724662a7b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/chef/assets/css/style.css HTTP/1.1
Host: www.ivanchors.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ivanchors.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: text/css; charset=UTF-8
date: Tue, 22 Nov 2022 14:02:44 GMT
etag: "20b9af1c47ecb709631cfc2088ae586c-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GJFTBX2TFGW30JE696C6QMQJ
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ed3ae8e878b9c8c9c5fc3ab22d8547d6
e4d08dc74fa84a3bcc9d442e225e8f7a6c124822
e135b6fb23500cb2edbf836719ed450cdb6b1e86b7c8491289cb4e1ccbd9ce84

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 14:02:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.ivanchors.co.za/wp-includes/css/dist/block-library/style.min37ad.css?ver=6.0.1

3.72.140.173

200 OK

696 kB

URL HTTP/2
www.ivanchors.co.za/wp-includes/css/dist/block-library/style.min37ad.css?ver=6.0.1
IP
3.72.140.173:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (43771)
Size
696 kB (695791 bytes)
Hash
fdbc85392d62a65b0557d1f7acb3747c
dc6ec910d5ec37086a57e8d0fdfa1dcedeb4d427
874bccba5c40b43dcfb51af3b3a15d4ee08e5b421a789bbf58dba35fceb16919

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min37ad.css?ver=6.0.1 HTTP/1.1
Host: www.ivanchors.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ivanchors.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: text/css; charset=UTF-8
date: Tue, 22 Nov 2022 14:02:44 GMT
etag: "9ba66540187109e7e7a2d61e86c45945-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GJFTBX2FKBG89ETSMMT9FQG3
X-Firefox-Spdy: h2

www.ivanchors.co.za/wp-content/themes/chef/assets/js/project.js

3.72.140.173

200 OK

53 kB

URL HTTP/2
www.ivanchors.co.za/wp-content/themes/chef/assets/js/project.js
IP
3.72.140.173:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (42862), with CRLF line terminators
Size
53 kB (52952 bytes)
Hash
7e97415f4757e389610898d2176246d3
2d34648891f687a8b8dd93687611aeca5f39019a
e076eaaa8f21d45743e712ec8e1e89d77653db5331d3ccd569dce9ceaf364c16

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/chef/assets/js/project.js HTTP/1.1
Host: www.ivanchors.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ivanchors.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 22 Nov 2022 14:02:44 GMT
etag: "a96a6d912bd465611f888d66fe67d824-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GJFTBX2VXYJ6B9V3AK0K33A5
X-Firefox-Spdy: h2

www.ivanchors.co.za/wp-content/themes/chef/assets/fonts/BonVivantSerifBold.woff2

3.72.140.173

200 OK

22 kB

URL HTTP/2
www.ivanchors.co.za/wp-content/themes/chef/assets/fonts/BonVivantSerifBold.woff2
IP
3.72.140.173:0
ASN
#16509 AMAZON-02

File type
Web Open Font Format (Version 2), TrueType, length 22420, version 1.0\012- data
Size
22 kB (22420 bytes)
Hash
ac8a3e3bb8d8243453d57a89aff4e40a
5e3f429fbaf377cbda17196bf27d97e762f707a5
2a0b062f31c90fbc442ab080dc73381c34871d31bf1e8b77133d7fc394f5ae65

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/chef/assets/fonts/BonVivantSerifBold.woff2 HTTP/1.1
Host: www.ivanchors.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.ivanchors.co.za/wp-content/themes/chef/assets/css/style.css
Cookie: _ga_YHERDYLDKG=GS1.1.1669125764.1.0.1669125764.0.0.0; _ga=GA1.1.709488899.1669125765
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-type: font/woff2
date: Tue, 22 Nov 2022 14:02:44 GMT
etag: "08b0231321fe3d0b8da6a03aca197e18-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJFTBXT2W4DTKMDDJTKTJQAT
content-length: 22420
X-Firefox-Spdy: h2

www.ivanchors.co.za/static.addtoany.com/menu/page.js

3.72.140.173

404 Not Found

8.7 kB

URL HTTP/2
www.ivanchors.co.za/static.addtoany.com/menu/page.js
IP
3.72.140.173:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (331)
Size
8.7 kB (8713 bytes)
Hash
32f35b7c3dc3c5efaa43679ea155f1bd
8a3514c209bfdc7ab585039176fb8a25f63b0e18
cc10b5f09edb3bf0a985cf06c69fe40155a3c4032024733955c3a83c74f5b86e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /static.addtoany.com/menu/page.js HTTP/1.1
Host: www.ivanchors.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ivanchors.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: text/html; charset=utf-8
date: Tue, 22 Nov 2022 14:02:44 GMT
etag: 1663932372-ssl-df
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GJFTBX2PFDGFKM9413YZX92T
X-Firefox-Spdy: h2

www.ivanchors.co.za/wp-content/themes/chef/assets/fonts/BonVivantSerif.woff2

3.72.140.173

200 OK

22 kB

URL HTTP/2
www.ivanchors.co.za/wp-content/themes/chef/assets/fonts/BonVivantSerif.woff2
IP
3.72.140.173:0
ASN
#16509 AMAZON-02

File type
Web Open Font Format (Version 2), TrueType, length 22032, version 1.0\012- data
Size
22 kB (22032 bytes)
Hash
ed4cdd495bf9508a520d2c296d8a6707
261791b17890f85466e953a65e3cb484a78337c0
9d15525b88a63763031d3e2e7775021b08d1f7c198ff335ccd9efc0ae188a3bd

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/chef/assets/fonts/BonVivantSerif.woff2 HTTP/1.1
Host: www.ivanchors.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.ivanchors.co.za/wp-content/themes/chef/assets/css/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-type: font/woff2
date: Tue, 22 Nov 2022 14:02:44 GMT
etag: "2ec57dedb099096bd7c29363496abf5c-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJFTBXJ021WZQGKWW3Z7DC37
content-length: 22032
X-Firefox-Spdy: h2

www.ivanchors.co.za/wp-content/themes/chef/assets/fonts/BonVivantSerif.woff2

3.72.140.173

200 OK

22 kB

URL HTTP/2
www.ivanchors.co.za/wp-content/themes/chef/assets/fonts/BonVivantSerif.woff2
IP
3.72.140.173:0
ASN
#16509 AMAZON-02

File type
Web Open Font Format (Version 2), TrueType, length 22032, version 1.0\012- data
Size
22 kB (22032 bytes)
Hash
ed4cdd495bf9508a520d2c296d8a6707
261791b17890f85466e953a65e3cb484a78337c0
9d15525b88a63763031d3e2e7775021b08d1f7c198ff335ccd9efc0ae188a3bd

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/chef/assets/fonts/BonVivantSerif.woff2 HTTP/1.1
Host: www.ivanchors.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.ivanchors.co.za/wp-content/themes/chef/assets/css/style.css
Cookie: _ga_YHERDYLDKG=GS1.1.1669125764.1.0.1669125764.0.0.0; _ga=GA1.1.709488899.1669125765
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-type: font/woff2
date: Tue, 22 Nov 2022 14:02:44 GMT
etag: "2ec57dedb099096bd7c29363496abf5c-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJFTBXT2RVKEAREE29CQGK9W
content-length: 22032
X-Firefox-Spdy: h2

www.ivanchors.co.za/wp-content/uploads/2022/01/chef-photo_light-3.jpg

3.72.140.173

200 OK

1.2 MB

URL HTTP/2
www.ivanchors.co.za/wp-content/uploads/2022/01/chef-photo_light-3.jpg
IP
3.72.140.173:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 650x1463, components 3\012- data
Size
1.2 MB (1181340 bytes)
Hash
de8edd85affe96340f16f876b110a7ff
f857b4f460c5d688dbf7b4aa698fc351711ba25e
cc512b9e64070c918f2fcd007468b7a4d40ff20781347142e4ead8413a622011

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/01/chef-photo_light-3.jpg HTTP/1.1
Host: www.ivanchors.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ivanchors.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-type: image/jpeg
date: Tue, 22 Nov 2022 14:02:44 GMT
etag: "f2f9807c188d9aa014152a4463f1070d-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJFTBX39BQK4132R94G9SFB4
content-length: 1181340
X-Firefox-Spdy: h2

www.ivanchors.co.za/wp-content/themes/chef/assets/fonts/BonVivant-Regular.woff

3.72.140.173

200 OK

421 kB

URL HTTP/2
www.ivanchors.co.za/wp-content/themes/chef/assets/fonts/BonVivant-Regular.woff
IP
3.72.140.173:0
ASN
#16509 AMAZON-02

File type
Web Open Font Format, TrueType, length 420624, version 0.0\012- data
Size
421 kB (420624 bytes)
Hash
40a5d7136f5e56cf89d4ea974c50f465
de020e4b4066cb1acfcdd5141b7c7441d108f64b
46c7f12e11451be7ab6681f0492af78a36be07654d36d284d54cb7b6b1fe7336

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/chef/assets/fonts/BonVivant-Regular.woff HTTP/1.1
Host: www.ivanchors.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.ivanchors.co.za/wp-content/themes/chef/assets/css/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-type: application/font-woff
date: Tue, 22 Nov 2022 14:02:44 GMT
etag: "cf82fae3132dcfe97aeb15fd964c4bbd-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJFTBXJ36M1KVJ8NQMBG8XAW
content-length: 420624
X-Firefox-Spdy: h2

www.ivanchors.co.za/wp-content/themes/chef/assets/fonts/BonVivant-Regular.woff

3.72.140.173

200 OK

421 kB

URL HTTP/2
www.ivanchors.co.za/wp-content/themes/chef/assets/fonts/BonVivant-Regular.woff
IP
3.72.140.173:0
ASN
#16509 AMAZON-02

File type
Web Open Font Format, TrueType, length 420624, version 0.0\012- data
Size
421 kB (420624 bytes)
Hash
40a5d7136f5e56cf89d4ea974c50f465
de020e4b4066cb1acfcdd5141b7c7441d108f64b
46c7f12e11451be7ab6681f0492af78a36be07654d36d284d54cb7b6b1fe7336

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/chef/assets/fonts/BonVivant-Regular.woff HTTP/1.1
Host: www.ivanchors.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.ivanchors.co.za/wp-content/themes/chef/assets/css/style.css
Cookie: _ga_YHERDYLDKG=GS1.1.1669125764.1.0.1669125764.0.0.0; _ga=GA1.1.709488899.1669125765
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 1
cache-control: public, max-age=0, must-revalidate
content-type: application/font-woff
date: Tue, 22 Nov 2022 14:02:44 GMT
etag: "cf82fae3132dcfe97aeb15fd964c4bbd-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJFTBXYDWG4YYGMN7Z6PRRGY
content-length: 420624
X-Firefox-Spdy: h2

www.ivanchors.co.za/favicon-16x16.png

3.72.140.173

200 OK

661 B

URL HTTP/2
www.ivanchors.co.za/favicon-16x16.png
IP
3.72.140.173:0
ASN
#16509 AMAZON-02

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
661 B (661 bytes)
Hash
afa72fafe46628de7a881bf7582919a9
d22c54025e2e7fce269239af9a9a9201ed8b4620
a4a99a3dc058fd3cd3481dadc773d316f945c99c77c8d047a650b2142ce82811

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /favicon-16x16.png HTTP/1.1
Host: www.ivanchors.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ivanchors.co.za/
Cookie: _ga_YHERDYLDKG=GS1.1.1669125764.1.0.1669125764.0.0.0; _ga=GA1.1.709488899.1669125765
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Tue, 22 Nov 2022 14:02:45 GMT
etag: "e565fd50d07acd8fee5e0eb40a6b96dd-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJFTBY5FPQA6AYWSP30PKV22
content-length: 661
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10350
Expires: Tue, 22 Nov 2022 16:55:15 GMT
Date: Tue, 22 Nov 2022 14:02:45 GMT
Connection: keep-alive

region1.google-analytics.com/g/collect?v=2&tid=G-YHERDYLDKG&gtm=2oeb90&_p=2021689532&cid=709488899.1669125765&ul=en-us&sr=1280x1024&_s=1&sid=1669125764&sct=1&seg=0&dl=https%3A%2F%2Fwww.ivanchors.co.za%2F&dt=Home%20%7C%20The%20IV%20Anchors&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1

216.239.32.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-YHERDYLDKG&gtm=2oeb90&_p=2021689532&cid=709488899.1669125765&ul=en-us&sr=1280x1024&_s=1&sid=1669125764&sct=1&seg=0&dl=https%3A%2F%2Fwww.ivanchors.co.za%2F&dt=Home%20%7C%20The%20IV%20Anchors&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP
216.239.32.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-YHERDYLDKG&gtm=2oeb90&_p=2021689532&cid=709488899.1669125765&ul=en-us&sr=1280x1024&_s=1&sid=1669125764&sct=1&seg=0&dl=https%3A%2F%2Fwww.ivanchors.co.za%2F&dt=Home%20%7C%20The%20IV%20Anchors&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ivanchors.co.za
Connection: keep-alive
Referer: https://www.ivanchors.co.za/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://www.ivanchors.co.za
date: Tue, 22 Nov 2022 14:02:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10350
Expires: Tue, 22 Nov 2022 16:55:15 GMT
Date: Tue, 22 Nov 2022 14:02:45 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10350
Expires: Tue, 22 Nov 2022 16:55:15 GMT
Date: Tue, 22 Nov 2022 14:02:45 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10350
Expires: Tue, 22 Nov 2022 16:55:15 GMT
Date: Tue, 22 Nov 2022 14:02:45 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10350
Expires: Tue, 22 Nov 2022 16:55:15 GMT
Date: Tue, 22 Nov 2022 14:02:45 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c73cec7-245a-480e-8dfe-cc11a12b2656.jpeg

34.120.237.76

200 OK

4.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c73cec7-245a-480e-8dfe-cc11a12b2656.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.6 kB (4639 bytes)
Hash
dafd9e17dc0023e71ae513c6025e4b80
12e2654db1f384bb04f5c5042848b25dda86b710
e9c885a102dc811648cec4ac292db63564e81a48d7a3611cb31fba73b37286dd

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c73cec7-245a-480e-8dfe-cc11a12b2656.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4639
x-amzn-requestid: 8a93fa29-158b-4402-aac4-85ad29a74ae1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-I6oELooAMFWFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637beeaa-5a85509b26d9aeef7ae59b4c;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:33:30 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bmrDryUp_4bvIikGkppa36e9isEfvK0gjunV6xmU5ApJtxlLR_GYkA==
via: 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 22:05:18 GMT
age: 57447
etag: "12e2654db1f384bb04f5c5042848b25dda86b710"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe35a8d1-e974-48d4-a8b7-1add4aa5d251.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8685 bytes)
Hash
2ed6b76d15fc8d6295acdb6fb47461d3
b8c928f93a8d82b48491448d811a95ad99dc6aef
de326836a9de677438b9ae724198e94348b0900c62817ff10de3677ce93fdae0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe35a8d1-e974-48d4-a8b7-1add4aa5d251.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8685
x-amzn-requestid: 66455cc7-83d7-4570-99f9-5fa838da947f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-IrAHwKoAMFUHQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637bee46-354d65e9609bc05647556a5a;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:31:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: -9tZPsMl7i5hr0N1rwJdQBLiOImuEO12RDL0pcPNjf6t-LkRbPaN2A==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:58:29 GMT
age: 57856
etag: "b8c928f93a8d82b48491448d811a95ad99dc6aef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9029340f-28c3-4004-9012-9a24977dfd45.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.0 kB (6031 bytes)
Hash
4f3fad7453f45dfa617243c8beac64e1
56414a905340e1b1478a0a40a52b25365a724524
7befcfbedac5652eb04bc675b67f7b642631d4e918f7aaee17b0b594e26854d0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9029340f-28c3-4004-9012-9a24977dfd45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6031
x-amzn-requestid: f59b04c5-4955-4847-9a7f-d9d53b47ca52
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b3cV0GC-oAMF5hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637940f1-0425b3cf6a4650b60936feba;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 20:47:45 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: VabInML1mfcQLIp29OWRNsixwfSWt0Wv9l7I-Ak7TdUHlNt2ZEVtPg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 15:21:36 GMT
age: 81669
etag: "56414a905340e1b1478a0a40a52b25365a724524"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d50a0d2-05bc-4c0c-8961-2b8cc49ccc8f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10556 bytes)
Hash
0ab62c5a7c3296600de924eb0b283bc1
bc4a2dc43898e3fb78ba7301d8b09b280991d221
f2a4c0829a4fb9a585113ed358832d16470ec391035a302a8f3c4666172f02bd

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d50a0d2-05bc-4c0c-8961-2b8cc49ccc8f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10556
x-amzn-requestid: d2426c6d-5e78-496c-8649-0496a872b380
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-Iq0GPVoAMF9bg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637bee45-1ee6dc09394731cc4dbfc38a;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:31:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: sBNLrVAl4G6pJ-OBZ6aJZC64MrkkGQdsuZKITQwcqgYgP6-GJiblfA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:59:20 GMT
age: 57805
etag: "bc4a2dc43898e3fb78ba7301d8b09b280991d221"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.ivanchors.co.za/apple-touch-icon.png

3.72.140.173

200 OK

30 kB

URL HTTP/2
www.ivanchors.co.za/apple-touch-icon.png
IP
3.72.140.173:0
ASN
#16509 AMAZON-02

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Size
30 kB (29616 bytes)
Hash
bea7433253e91dc34ef53487a1d42aba
824122d8e335a40405c4ada2c40417868c5572a5
0d0252ac3a561f2bb35a1e339de49ef0a7d545142e150a5ad0c198f9b7985d96

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /apple-touch-icon.png HTTP/1.1
Host: www.ivanchors.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ivanchors.co.za/
Cookie: _ga_YHERDYLDKG=GS1.1.1669125764.1.0.1669125764.0.0.0; _ga=GA1.1.709488899.1669125765
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Tue, 22 Nov 2022 14:02:45 GMT
etag: "9dc30c66c2670d2a91e22613e7b4998e-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJFTBY5F6VDP5EQZEZE2FVCJ
content-length: 29616
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20f7461d-18d1-4343-9ecb-d68d44ce1ee4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7589 bytes)
Hash
06c6e720bc9900b38e88cd72f739603e
22884cbc78622d6f78c1c3397c9b440946144a99
8675d08e6d8ae5bdedbc7c7ce647f8c6e72cc457917b4ed1856c50b11c2fe88b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20f7461d-18d1-4343-9ecb-d68d44ce1ee4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7589
x-amzn-requestid: 533d7650-cb21-4090-a50a-e205adad316d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: brr5zH4qoAMF79Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63748d0b-017f7bf4390eb124097af648;Sampled=0
x-amzn-remapped-date: Wed, 16 Nov 2022 07:11:07 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 34I3ZsWcHKNvx-MctWUIyOgHOm8vjDMxuHtcGZmykKvEtbs4JziNqA==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 15:03:51 GMT
age: 82734
etag: "22884cbc78622d6f78c1c3397c9b440946144a99"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55f882f4-a410-42f1-919d-e59d9058875d.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.8 kB (7751 bytes)
Hash
472ceca597feefba355fbd65998977b7
f3f2e5a8d14e009d0eaa3d7637730c4c525e3a9a
e201f706ba38f04ef07d74a67eec187ad8b882027b96b0e4e700162f96da422f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55f882f4-a410-42f1-919d-e59d9058875d.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7751
x-amzn-requestid: 577947ab-4fbe-4b07-944a-2b65cf5ed6d7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b4UE9GJ9IAMFVtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63799a1f-1a26961e20c88cd54a613ddb;Sampled=0
x-amzn-remapped-date: Sun, 20 Nov 2022 03:08:15 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: QB2RJo7NR7FMDRC7fC9eLMW99KR7andopIeu4qi0yp_tihE0vtpkXw==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 7545e37b10b5fcf5e3df98185c85194a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 04:49:03 GMT
age: 33222
etag: "f3f2e5a8d14e009d0eaa3d7637730c4c525e3a9a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ornalcap.sirv.com/RampsCon/IV%20Anchors/menu%20photo%20one.jpg

162.55.133.149

200 OK

204 kB

URL HTTP/2
ornalcap.sirv.com/RampsCon/IV%20Anchors/menu%20photo%20one.jpg
IP
162.55.133.149:0
ASN
#24940 Hetzner Online GmbH

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1040x1463, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
204 kB (203858 bytes)
Hash
8bff354193bb441a047b84f12aa4fa37
0aaf0da54522ccd8c382ace1ca500f97c5b6a5e7
018731045462133cc017772741beba9377957a361667e8600588eb989ded21e8

HTTP Headers

GET /RampsCon/IV%20Anchors/menu%20photo%20one.jpg HTTP/1.1
Host: ornalcap.sirv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ivanchors.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 22 Nov 2022 14:02:46 GMT
content-type: image/webp
content-length: 203858
last-modified: Thu, 13 Oct 2022 03:17:46 GMT
etag: "6347835a-31c52"
server: Sirv.Imagination
x-sirv-server: c1-extra2-fireball-7
x-sirv-cache: HIT
access-control-allow-origin: *
access-control-allow-headers: *
expires: Tue, 29 Nov 2022 14:17:46 GMT
cache-control: max-age=605700
x-sirv-meta-width: 1040
x-sirv-meta-height: 1463
x-sirv-shard: c1-riak5
x-account-id: odlrf3ka825l6xjjm68q9cocmdjvvogq
x-file-versionid: fFsoGrzyuWnBPzyL0Kfmrp8FZWXiAuxa:0
x-account-serial: 2022-09-11T07:11:17.615Z
accept-ranges: bytes
X-Firefox-Spdy: h2

ornalcap.sirv.com/RampsCon/IV%20Anchors/menu%20photo%20three.jpg

162.55.133.149

200 OK

81 kB

URL HTTP/2
ornalcap.sirv.com/RampsCon/IV%20Anchors/menu%20photo%20three.jpg
IP
162.55.133.149:0
ASN
#24940 Hetzner Online GmbH

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1040x1463, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
81 kB (81214 bytes)
Hash
cd6794c7259a341eb32a7a43323b7b08
2074319f0ae4a87d56c4d4218f1653ad77cb06d5
688aa9c5aefa4d11cdccd8a88fe1722b3a24c5247ef30c21bedbd4149fd8c494

HTTP Headers

GET /RampsCon/IV%20Anchors/menu%20photo%20three.jpg HTTP/1.1
Host: ornalcap.sirv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ivanchors.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 22 Nov 2022 14:02:46 GMT
content-type: image/webp
content-length: 81214
last-modified: Thu, 13 Oct 2022 03:17:46 GMT
etag: "6347835a-13d3e"
server: Sirv.Imagination
x-sirv-server: c1-extra2-fireball-11
x-sirv-cache: HIT
access-control-allow-origin: *
access-control-allow-headers: *
expires: Tue, 29 Nov 2022 14:17:46 GMT
cache-control: max-age=605700
x-sirv-meta-width: 1040
x-sirv-meta-height: 1463
x-sirv-shard: c1-riak5
x-account-id: odlrf3ka825l6xjjm68q9cocmdjvvogq
x-file-versionid: iNzOOq4lNuYuv8BnNoGG68NzONoBD6u5:0
x-account-serial: 2022-09-11T07:11:17.615Z
accept-ranges: bytes
X-Firefox-Spdy: h2

www.ivanchors.co.za/wp-content/uploads/2022/01/header_map.jpg

3.72.140.173

200 OK

262 kB

URL HTTP/2
www.ivanchors.co.za/wp-content/uploads/2022/01/header_map.jpg
IP
3.72.140.173:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 727x711, components 3\012- data
Size
262 kB (262151 bytes)
Hash
7ef2a1c17f9d6aee745fa0ad9665821a
2a45a600eb668eff65a2ca417e834e6fb4bf1065
633e829095b50bbdea4a6d2527a3b8fc658319138e760927f6b6026a3eb31346

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/01/header_map.jpg HTTP/1.1
Host: www.ivanchors.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ivanchors.co.za/
Cookie: _ga_YHERDYLDKG=GS1.1.1669125764.1.0.1669125764.0.0.0; _ga=GA1.1.709488899.1669125765
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 1
cache-control: public, max-age=0, must-revalidate
content-type: image/jpeg
date: Tue, 22 Nov 2022 14:02:47 GMT
etag: "3cbb5093889ace39f202a4905d892d56-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJFTBZE9KR0N56D8F55NCZP0
content-length: 262151
X-Firefox-Spdy: h2

www.ivanchors.co.za/wp-content/themes/chef/js/lazyload.min.js

3.72.140.173

200 OK

0 B

URL HTTP/2
www.ivanchors.co.za/wp-content/themes/chef/js/lazyload.min.js
IP
3.72.140.173:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/chef/js/lazyload.min.js HTTP/1.1
Host: www.ivanchors.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ivanchors.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 22 Nov 2022 14:02:44 GMT
etag: "3a9c9f692b72b6b599bd9d3889758b28-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GJFTBX396M5XKBRVV885630T
X-Firefox-Spdy: h2

www.ivanchors.co.za/wp-includes/js/dist/vendor/regenerator-runtime.min3937.js?ver=0.13.9

3.72.140.173

200 OK

0 B

URL HTTP/2
www.ivanchors.co.za/wp-includes/js/dist/vendor/regenerator-runtime.min3937.js?ver=0.13.9
IP
3.72.140.173:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/vendor/regenerator-runtime.min3937.js?ver=0.13.9 HTTP/1.1
Host: www.ivanchors.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ivanchors.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 22 Nov 2022 14:02:44 GMT
etag: "6ce199259a842ff7cf82050b684dac30-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GJFTBX99A1162CWV1APP4635
X-Firefox-Spdy: h2

use.fontawesome.com/releases/v5.0.8/css/all.css

172.64.132.15

200 OK

0 B

URL HTTP/2
use.fontawesome.com/releases/v5.0.8/css/all.css
IP
172.64.132.15:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v5.0.8/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ivanchors.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 22 Nov 2022 14:02:44 GMT
content-type: text/css
x-amz-id-2: 5jQIYAzcCUIIcYr0uDyAebZNvPnAQCAcPTu/FRydBY9AUAPFBpUfVKTxILIgpzOpAavYE6s/cq4=
x-amz-request-id: 0S6C3STCEQ43E62D
last-modified: Wed, 30 Jun 2021 15:28:03 GMT
etag: W/"265a36ec650d63e307e611cdf14d9b89"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 27848807
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZpvAirKbDVgD%2BwTO1kzfP3%2Bmig9xqntGsm9VTqAtBIaoN%2BxRE9AcSliajpE7wzX86phIOgFV5NH5foYekweUZ%2BaHI5hKR2u7PbZ4nqK5LM42h4tj44AE0DLJtjE7B3M%2FNjU8n9Hm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76e2345a798672d2-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.ivanchors.co.za/use.fontawesome.com/releases/v5.15.4/css/v4-shims.css

3.72.140.173

404 Not Found

0 B

URL HTTP/2
www.ivanchors.co.za/use.fontawesome.com/releases/v5.15.4/css/v4-shims.css
IP
3.72.140.173:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /use.fontawesome.com/releases/v5.15.4/css/v4-shims.css HTTP/1.1
Host: www.ivanchors.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ivanchors.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: text/html; charset=utf-8
date: Tue, 22 Nov 2022 14:02:44 GMT
etag: 1663932372-ssl-df
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GJFTBX2NFX82NK5YKQYRMJFE
X-Firefox-Spdy: h2

www.ivanchors.co.za/wp-includes/js/jquery/jquery.minaf6c.js?ver=3.6.0

3.72.140.173

200 OK

0 B

URL HTTP/2
www.ivanchors.co.za/wp-includes/js/jquery/jquery.minaf6c.js?ver=3.6.0
IP
3.72.140.173:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery.minaf6c.js?ver=3.6.0 HTTP/1.1
Host: www.ivanchors.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ivanchors.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 22 Nov 2022 14:02:44 GMT
etag: "24c98a1ebb4e890dbfb5efe9244009bb-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GJFTBX2QEY32K6Q7M9EJY8HF
X-Firefox-Spdy: h2

www.ivanchors.co.za/

3.72.140.173

200 OK

0 B

URL HTTP/2
www.ivanchors.co.za/
IP
3.72.140.173:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: www.ivanchors.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
age: 2
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: text/html; charset=UTF-8
date: Tue, 22 Nov 2022 14:02:43 GMT
etag: "198c5e7110841c571161ceeb49410a81-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GJFTBWSHA1N42W66HG9SH0PR
X-Firefox-Spdy: h2

www.ivanchors.co.za/www.google.com/recaptcha/api234c.js?render=6LecDXgUAAAAAEvI5y3riqTuwsANQmQo9Y7B55Jf&ver=3.0

3.72.140.173

404 Not Found

0 B

URL HTTP/2
www.ivanchors.co.za/www.google.com/recaptcha/api234c.js?render=6LecDXgUAAAAAEvI5y3riqTuwsANQmQo9Y7B55Jf&ver=3.0
IP
3.72.140.173:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /www.google.com/recaptcha/api234c.js?render=6LecDXgUAAAAAEvI5y3riqTuwsANQmQo9Y7B55Jf&ver=3.0 HTTP/1.1
Host: www.ivanchors.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ivanchors.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: text/html; charset=utf-8
date: Tue, 22 Nov 2022 14:02:44 GMT
etag: 1663932372-ssl-df
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GJFTBX9D836HWHCHNDW4QAYW
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (14)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations