deborahholland.net/
35.208.188.125301 Moved Permanently 162 B IP 35.208.188.125:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 30 Aug 2022 22:40:02 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://deborahholland.net/
Host-Header: 8441280b0c35cbc1147f8ba998a563a7
X-HTTPS-Enforce: 1
X-Proxy-Cache-Info: DT:1
firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 30 Aug 2022 22:26:08 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: jE_3BWmVXNnf9gi4ku89b2mjm1pMwlov_U8jGky-LAR0FGHzYI43yQ==
Age: 834
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 517693963cc46e7a35a054296d0edfd5
11dfcd7e118e5f8d31e664e56ac29c57f973b8b3
ece269e8b9be8a5839d75c1343823d68b96930c593c2e3e8d522999176ee3149
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ECE269E8B9BE8A5839D75C1343823D68B96930C593C2E3E8D522999176EE3149"
Last-Modified: Mon, 29 Aug 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4227
Expires: Tue, 30 Aug 2022 23:50:29 GMT
Date: Tue, 30 Aug 2022 22:40:02 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
date: Tue, 30 Aug 2022 02:27:04 GMT
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
etag: "742edb4038f38bc533514982f3d2e861"
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: DXdiVGxfgkvBrYW33lh2WQToFt55Qp8_S4Q7CQXzZJj5ifVCRxK99w==
age: 72779
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:03 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Tue, 30 Aug 2022 22:17:12 GMT
Expires: Tue, 30 Aug 2022 22:28:47 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: jvnh1OpYAsh18unspNWG_RM77dR-mNal236OmC0rL0CwSqo9ssarPA==
Age: 1371
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f67e41cdd7e5f2aa8f93d031979c9109
5f4c0093f9bf8f8e48e0d7f56ed31aba0c6f43f6
608e2b7d208977f18da12165c9eb1539656d7754dc49f3f687736151a4810e06
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5342
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 30 Aug 2022 22:40:03 GMT
Last-Modified: Tue, 30 Aug 2022 21:11:01 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0982b9e784a0a990d6318c92e33860a1
764377c393017e86d98a696da455509cba1806ac
27a19ec4ca0a052faface8ad45dca4d9a4a739c658d10f0e693aea065bdc607f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Aug 2022 22:40:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6f224ef158512bc5645638f13441e0a8
e0cafad7385ed5a66e742e52dee197dc5d88a0ba
b78601e937cf216daf09f4cec33af8d81311f8aeba73e00bbb44d483140ec66e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B78601E937CF216DAF09F4CEC33AF8D81311F8AEBA73E00BBB44D483140EC66E"
Last-Modified: Tue, 30 Aug 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6816
Expires: Wed, 31 Aug 2022 00:33:39 GMT
Date: Tue, 30 Aug 2022 22:40:03 GMT
Connection: keep-alive
www.googletagmanager.com/gtag/js?id=UA-4315068-40
142.250.74.72200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-4315068-40
IP 142.250.74.72:0
File type ASCII text, with very long lines (1615)
Hash 303fa5979777e863cc105f2781835a39
4313ff647444abc508445b3d9fbb050a546c64cd
f78a70fe73a447d8c178712acab81a2cdd18773ee40f295c0d95b547631669f1
GET /gtag/js?id=UA-4315068-40 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 30 Aug 2022 22:40:03 GMT
expires: Tue, 30 Aug 2022 22:40:03 GMT
cache-control: private, max-age=900
last-modified: Tue, 30 Aug 2022 21:56:33 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41955
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
geniuslinkcdn.com/snippet.min.js
209.250.233.142200 OK 5.7 kB URL HTTP/1.1 geniuslinkcdn.com/snippet.min.js
IP 209.250.233.142:0
File type ASCII text, with very long lines (5652), with no line terminators
Hash 2dabbc12b750404456d8f4498d2730fc
1d0d026fccc3cef376a0244932c2747aa628e944
52a81cc44904eac8d8d3d8aa4d66fa18c2ed0c537a2a170547d94534476cd188
GET /snippet.min.js HTTP/1.1
Host: geniuslinkcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:03 GMT
content-type: application/javascript
content-length: 5652
last-modified: Mon, 24 May 2021 12:29:48 GMT
etag: "60ab9c3c-1614"
expires: Wed, 31 Aug 2022 22:40:03 GMT
cache-control: max-age=86400
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-max-age: 1728000
accept-ranges: bytes
ratelimit-limit: 15
ratelimit-observed: 0
ratelimit-remaining: 15
ratelimit-reset: 1661899263
ratelimit-resettime: Tue, 30 Aug 2022 22:41:03 GMT
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0982b9e784a0a990d6318c92e33860a1
764377c393017e86d98a696da455509cba1806ac
27a19ec4ca0a052faface8ad45dca4d9a4a739c658d10f0e693aea065bdc607f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Aug 2022 22:40:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
34.208.34.131101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.208.34.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: jrquO3cKLJD6FklY8915vQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Ceynr6tvWAAA+TTblsMztMqhmQk=
deborahholland.net/wp-content/plugins/revslider/public/assets/assets/dummy.png
35.208.188.125200 OK 68 B URL HTTP/2 deborahholland.net/wp-content/plugins/revslider/public/assets/assets/dummy.png
IP 35.208.188.125:0
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash 2a637d3d825673c0e3462fa4ed9a1c5c
81668d396da22832d75a986407ff10035e0d5899
69539b5b3777cffda28a66d7f2aa9b17c91ee1ec8fd50c00c442af91753a60f7
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/assets/dummy.png HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:03 GMT
content-type: image/png
content-length: 68
last-modified: Wed, 20 Oct 2021 20:13:11 GMT
etag: "61707857-44"
expires: Wed, 30 Aug 2023 22:40:03 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
deborahholland.net/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16
35.208.188.125200 OK 36 kB URL HTTP/2 deborahholland.net/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16
IP 35.208.188.125:0
File type ASCII text, with very long lines (65266)
Hash a02a68c43cc641d1aea90254ea5af9fe
dbb8ca8f6955c685d38eb56ae6f61d8d13476a3a
abb7b8e4a2690c5a9219186acf33601b7e20669a35c1e66f9f1fbdf96db1e680
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16 HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:03 GMT
content-type: application/javascript
last-modified: Wed, 06 Oct 2021 20:32:41 GMT
vary: Accept-Encoding
etag: W/"615e07e9-267aa"
expires: Wed, 30 Aug 2023 22:40:03 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/josefinsans/v23/Qw3PZQNVED7rKGKxtqIqX5E-AVSJrOCfjY46_N_XbMhhKg.ttf
142.250.74.163200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/josefinsans/v23/Qw3PZQNVED7rKGKxtqIqX5E-AVSJrOCfjY46_N_XbMhhKg.ttf
IP 142.250.74.163:0
File type TrueType Font data, 16 tables, 1st "GDEF", 12 names, Microsoft, language 0x409, Copyright 2010 The Josefin Sans Project Authors (https://github.com/ThomasJockin/JosefinSansFont\012- data
Hash 93f9e894142877b463fcd4af0aecd6c1
dd1402ffe204d535338d6ffa306739e783fda7db
a2e2210834a3678f53a66bea42b0e525dc2dcef882c8e472b163077efdf25423
GET /s/josefinsans/v23/Qw3PZQNVED7rKGKxtqIqX5E-AVSJrOCfjY46_N_XbMhhKg.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://deborahholland.net
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20341
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 27 Aug 2022 13:22:46 GMT
expires: Sun, 27 Aug 2023 13:22:46 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 03 Feb 2022 01:35:39 GMT
content-type: font/ttf
age: 292638
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
deborahholland.net/wp-content/plugins/youtube-embed-plus/scripts/fitvids.min.js?ver=14.1.3
35.208.188.125200 OK 1.4 kB URL HTTP/2 deborahholland.net/wp-content/plugins/youtube-embed-plus/scripts/fitvids.min.js?ver=14.1.3
IP 35.208.188.125:0
File type HTML document, ASCII text, with very long lines (3102)
Hash 09af1fb4b58ba4006411b364d74f1cbe
31249a0945467821380b88657c098302a0448dda
07961f627948b916d8599d736bf03d771c87f397c7a0cac9dfd7b8e1d29f0062
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/youtube-embed-plus/scripts/fitvids.min.js?ver=14.1.3 HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:03 GMT
content-type: application/javascript
last-modified: Tue, 19 Jul 2022 11:08:53 GMT
vary: Accept-Encoding
etag: W/"62d690c5-c1f"
expires: Wed, 30 Aug 2023 22:40:03 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
deborahholland.net/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.1
35.208.188.125200 OK 6.7 kB URL HTTP/2 deborahholland.net/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.1
IP 35.208.188.125:0
File type ASCII text, with very long lines (21904), with no line terminators
Hash 771c0efa60e612502e252a966a28fa04
4980cffb91b10bd0d5540837be498049d2b00ddb
8a3e062e8462dca9c250efcf1ac582a74b99044ec1816720fd3aad66c357041a
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.1 HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:03 GMT
content-type: application/javascript
last-modified: Tue, 19 Jul 2022 11:09:01 GMT
vary: Accept-Encoding
etag: W/"62d690cd-5590"
expires: Wed, 30 Aug 2023 22:40:03 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v28/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4uaVc.ttf
142.250.74.163200 OK 44 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v28/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4uaVc.ttf
IP 142.250.74.163:0
File type TrueType Font data, 18 tables, 1st "GDEF", 16 names, Microsoft, language 0x409, Copyright 2020 The Open Sans Project Authors (https://github.com/googlefonts/opensans)Open Sans \012- data
Hash b518fe7e2570b04455f4ac401b46fabb
990fca04f98863cae27028fbd45ecda0e6cecbb0
51c8fee092b6a637b429ef302c004e62cbf3aa996e76beb76b122076b45b438b
GET /s/opensans/v28/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4uaVc.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://deborahholland.net
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44068
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Aug 2022 11:58:01 GMT
expires: Fri, 25 Aug 2023 11:58:01 GMT
cache-control: public, max-age=31536000
age: 470523
last-modified: Tue, 01 Mar 2022 22:04:47 GMT
content-type: font/ttf
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
deborahholland.net/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
35.208.188.125200 OK 38 kB URL HTTP/2 deborahholland.net/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 35.208.188.125:0
File type ASCII text, with very long lines (11126)
Hash 0a8e1e4c6e99878a587b38458d96b709
40c6bff2b9e74f6b549f1afc23e5ca8bf134552e
28333ee4ff5c46b582fe9a5e790e10cfdf4826632f1fd3255a04e65e2cf58ecf
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:03 GMT
content-type: application/javascript
last-modified: Wed, 06 Oct 2021 20:32:41 GMT
vary: Accept-Encoding
etag: W/"615e07e9-2bd8"
expires: Wed, 30 Aug 2023 22:40:03 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9829f3ffea1f304be0e54c722f9d5d40
f9609aa9bc142c1cff0788772b2bb1f9abc1dd70
1dcac98963add83d0646205786f56cc701574b69208cce02bb3ba1b080f8db73
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Aug 2022 22:40:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
deborahholland.net/wp-content/plugins/gigpress/scripts/gigpress.js?ver=f9675f24474b8e2ef88c50d8dcc9d35d
35.208.188.125200 OK 21 kB URL HTTP/2 deborahholland.net/wp-content/plugins/gigpress/scripts/gigpress.js?ver=f9675f24474b8e2ef88c50d8dcc9d35d
IP 35.208.188.125:0
Hash 14ed8d185171b54263f763ef9b416494
8503ad3c005fad34b9e443250326e19afb747486
ced38f1df6e2dccfbed5c676fc4f70f11066686a156c8586db325efeaf2ce0b1
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/gigpress/scripts/gigpress.js?ver=f9675f24474b8e2ef88c50d8dcc9d35d HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:03 GMT
content-type: application/javascript
last-modified: Fri, 07 Jan 2022 12:53:18 GMT
vary: Accept-Encoding
etag: W/"61d837be-1d3"
expires: Wed, 30 Aug 2023 22:40:03 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
deborahholland.net/wp-content/plugins/email-encoder-bundle/core/includes/assets/js/custom.js?ver=220224-03453
35.208.188.125200 OK 31 kB URL HTTP/2 deborahholland.net/wp-content/plugins/email-encoder-bundle/core/includes/assets/js/custom.js?ver=220224-03453
IP 35.208.188.125:0
Hash 07d6b3295309e4858096187fbc247558
c146954d382398dca69e39b98761086cc97535f4
baab3d6acab962b984a803438acc2ecb54e0dd6759c8e0dbbc5d212e8d727460
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/email-encoder-bundle/core/includes/assets/js/custom.js?ver=220224-03453 HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:03 GMT
content-type: application/javascript
last-modified: Thu, 24 Feb 2022 00:34:53 GMT
vary: Accept-Encoding
etag: W/"6216d2ad-8d5"
expires: Wed, 30 Aug 2023 22:40:03 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
deborahholland.net/wp-content/uploads/sponsor-Daddario_logo.png
35.208.188.125200 OK 58 kB URL HTTP/2 deborahholland.net/wp-content/uploads/sponsor-Daddario_logo.png
IP 35.208.188.125:0
File type PNG image data, 1600 x 443, 8-bit/color RGBA, non-interlaced\012- data
Hash 873124468de7a87db593b9d445da44a5
3c749db722550a75bf080aaba30e7ddaa5974266
cab11bdc02402e26eabb2d3fa4796834c80c5c2a943ff22c2d20a7926edbcf94
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/sponsor-Daddario_logo.png HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:03 GMT
content-type: image/png
content-length: 58138
last-modified: Wed, 20 Oct 2021 20:20:48 GMT
etag: "61707a20-e31a"
expires: Wed, 30 Aug 2023 22:40:03 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
deborahholland.net/wp-content/plugins/youtube-embed-plus/scripts/ytprefs.min.js?ver=14.1.3
35.208.188.125200 OK 39 kB URL HTTP/2 deborahholland.net/wp-content/plugins/youtube-embed-plus/scripts/ytprefs.min.js?ver=14.1.3
IP 35.208.188.125:0
File type ASCII text, with very long lines (719)
Hash 367aa92f7071b6e774049e1e4627e27c
e4ccb3a335690775784b4688deff7fb5735d7dc5
7cb840989bc895f01c61839fc70df11481379d2a697c4cc37f92968ad317f5da
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/youtube-embed-plus/scripts/ytprefs.min.js?ver=14.1.3 HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:03 GMT
content-type: application/javascript
last-modified: Tue, 19 Jul 2022 11:08:53 GMT
vary: Accept-Encoding
etag: W/"62d690c5-3562"
expires: Wed, 30 Aug 2023 22:40:03 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
deborahholland.net/wp-content/uploads/sponsor-Taylor_Guitars_Logo.png
35.208.188.125200 OK 36 kB URL HTTP/2 deborahholland.net/wp-content/uploads/sponsor-Taylor_Guitars_Logo.png
IP 35.208.188.125:0
File type PNG image data, 450 x 450, 8-bit/color RGBA, non-interlaced\012- data
Hash 9fc4916f7b5d7ad1e4e93514fe8d3e71
6383b4b55fa8502fdb56a76477a5530db5ad86c8
c5f0266e05b4c78447d084e72797d327d9cb57c7f3f2d80d2f0b63047122c612
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/sponsor-Taylor_Guitars_Logo.png HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:03 GMT
content-type: image/png
content-length: 35918
last-modified: Wed, 20 Oct 2021 20:20:48 GMT
etag: "61707a20-8c4e"
expires: Wed, 30 Aug 2023 22:40:03 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
deborahholland.net/wp-content/uploads/sponsor-KYSER-BLK.png
35.208.188.125200 OK 6.4 kB URL HTTP/2 deborahholland.net/wp-content/uploads/sponsor-KYSER-BLK.png
IP 35.208.188.125:0
File type PNG image data, 360 x 160, 8-bit colormap, non-interlaced\012- data
Hash ca23cf191da23c67559648b90b52f67f
cbe2dbff0fa1ea5529761780210d13c56445526b
1c2409127bf409f7f20584c6275b67efd482fcef19d223be8e3ff19e444b678f
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/sponsor-KYSER-BLK.png HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:03 GMT
content-type: image/png
content-length: 6380
last-modified: Wed, 20 Oct 2021 20:20:48 GMT
etag: "61707a20-18ec"
expires: Wed, 30 Aug 2023 22:40:03 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
deborahholland.net/wp-content/uploads/Deborah-Holland-Bad-Girl-Once-Soccer-Mom-Now.jpg
35.208.188.125200 OK 80 kB URL HTTP/2 deborahholland.net/wp-content/uploads/Deborah-Holland-Bad-Girl-Once-Soccer-Mom-Now.jpg
IP 35.208.188.125:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=375, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=375], baseline, precision 8, 250x250, components 3\012- data
Hash fca6a74a54f01ed9203c7d1d2c14e159
b6bd397c248fb4f8a5262110fc56c4da92d5a595
1a32d9fd135a18dfaf9f6aeb8c628d847840be5d6b861c34d2d1c2087296cf4f
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/Deborah-Holland-Bad-Girl-Once-Soccer-Mom-Now.jpg HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:03 GMT
content-type: image/jpeg
content-length: 80148
last-modified: Wed, 20 Oct 2021 20:20:48 GMT
etag: "61707a20-13914"
expires: Wed, 30 Aug 2023 22:40:03 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
deborahholland.net/wp-content/uploads/Deborah-Holland-The-Book-of-Survival.jpg
35.208.188.125200 OK 77 kB URL HTTP/2 deborahholland.net/wp-content/uploads/Deborah-Holland-The-Book-of-Survival.jpg
IP 35.208.188.125:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=300, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=300], progressive, precision 8, 250x250, components 3\012- data
Hash c24977bf2bb1f1af93f980772cb01db2
dab4e0df75a41180088f3c376c50cff7bf93db11
edeed11ce26ddc7dd7dbe5ddc3d83defabb0633b651f39a84acc7b5796fd4108
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/Deborah-Holland-The-Book-of-Survival.jpg HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:03 GMT
content-type: image/jpeg
content-length: 76833
last-modified: Wed, 20 Oct 2021 20:20:48 GMT
etag: "61707a20-12c21"
expires: Wed, 30 Aug 2023 22:40:03 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
deborahholland.net/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
35.208.188.125200 OK 171 kB URL HTTP/2 deborahholland.net/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 35.208.188.125:0
File type ASCII text, with very long lines (65447)
Size 171 kB (171115 bytes)
Hash a9ae0092a6843ec41a9566401fe7d80c
ebe17f471460b7b096ccd11ec6aa180e9efc2c30
07b211954358dc133d2d2df9c88b6ecbd8389a9808824c9185a809f2d97dfa2f
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:03 GMT
content-type: application/javascript
last-modified: Wed, 06 Oct 2021 20:32:41 GMT
vary: Accept-Encoding
etag: W/"615e07e9-15db1"
expires: Wed, 30 Aug 2023 22:40:03 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9829f3ffea1f304be0e54c722f9d5d40
f9609aa9bc142c1cff0788772b2bb1f9abc1dd70
1dcac98963add83d0646205786f56cc701574b69208cce02bb3ba1b080f8db73
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Aug 2022 22:40:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
deborahholland.net/wp-content/uploads/Fine-Bg2.jpg
35.208.188.125200 OK 42 kB URL HTTP/2 deborahholland.net/wp-content/uploads/Fine-Bg2.jpg
IP 35.208.188.125:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1200x1200, components 3\012- data
Hash fa651d1508fd005d08ccb59b1fac37c7
2e24770f3aab0c2d027381a92f65b7799f7cb713
2b57a0bab538cabbbf03f0651501cd555c3d0a924001e601c7e6abedc69b2f99
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/Fine-Bg2.jpg HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:04 GMT
content-type: image/jpeg
content-length: 42368
last-modified: Wed, 20 Oct 2021 20:20:48 GMT
etag: "61707a20-a580"
expires: Wed, 30 Aug 2023 22:40:04 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
deborahholland.net/wp-includes/js/comment-reply.min.js?ver=f9675f24474b8e2ef88c50d8dcc9d35d
35.208.188.125200 OK 67 kB URL HTTP/2 deborahholland.net/wp-includes/js/comment-reply.min.js?ver=f9675f24474b8e2ef88c50d8dcc9d35d
IP 35.208.188.125:0
File type ASCII text, with very long lines (2946)
Hash 2a21292279d71a12b4be588e95022ad9
f0d42c5d6ea6531be3c79824e3a561c99663b86b
df67b9cbfff3c7e16ecda66019c9eb920badc0f6b09d1f3944c4f71ef7ec0a00
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/comment-reply.min.js?ver=f9675f24474b8e2ef88c50d8dcc9d35d HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:03 GMT
content-type: application/javascript
last-modified: Thu, 26 May 2022 17:29:12 GMT
vary: Accept-Encoding
etag: W/"628fb8e8-ba5"
expires: Wed, 30 Aug 2023 22:40:03 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
deborahholland.net/wp-content/plugins/email-encoder-bundle/core/includes/assets/js/encoder-form.js?ver=220224-03453
35.208.188.125200 OK 64 kB URL HTTP/2 deborahholland.net/wp-content/plugins/email-encoder-bundle/core/includes/assets/js/encoder-form.js?ver=220224-03453
IP 35.208.188.125:0
File type HTML document, ASCII text
Hash df559a3bbfab510b1747d9bdce0935c0
77e8225d8df74a9b21df0178eb2edfa9d5ef45c1
e39d0d437bc23ca3aa575c8b649e115785365ebd3f53782fe8ed3be6b51e21f7
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/email-encoder-bundle/core/includes/assets/js/encoder-form.js?ver=220224-03453 HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:03 GMT
content-type: application/javascript
last-modified: Thu, 24 Feb 2022 00:34:53 GMT
vary: Accept-Encoding
etag: W/"6216d2ad-85d"
expires: Wed, 30 Aug 2023 22:40:03 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
deborahholland.net/wp-content/uploads/stefanieatkinson-caraluft-20-e1532058306909-750x375-1.jpg
35.208.188.125200 OK 74 kB URL HTTP/2 deborahholland.net/wp-content/uploads/stefanieatkinson-caraluft-20-e1532058306909-750x375-1.jpg
IP 35.208.188.125:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 750x375, components 3\012- data
Hash 45acf6f19c3ff50196f836ddd95bd459
22637fa6e27414d62547b480abd610c44457062e
bc72d73b372f503e6389fffe318cb883ee5f992149cd9e84c6cd0d3b6d9fb378
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/stefanieatkinson-caraluft-20-e1532058306909-750x375-1.jpg HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:04 GMT
content-type: image/jpeg
content-length: 73900
last-modified: Wed, 20 Oct 2021 20:20:48 GMT
etag: "61707a20-120ac"
expires: Wed, 30 Aug 2023 22:40:04 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
deborahholland.net/
35.208.188.125200 OK 48 kB IP 35.208.188.125:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (16968), with CRLF, LF line terminators
Hash c80db4df442b60f2032f7b2d24c76d1d
08c331d94e05f2857f79271240ad84cae82db3b9
cf8613e763878189eabe44c016588b7d653f347370e6e9603b1f79340fe85978
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET / HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:03 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
sg-f-cache: HIT
x-httpd-modphp: 1
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
deborahholland.net/wp-content/uploads/FineThankYou-cover.jpg
35.208.188.125200 OK 56 kB URL HTTP/2 deborahholland.net/wp-content/uploads/FineThankYou-cover.jpg
IP 35.208.188.125:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 450x406, components 3\012- data
Hash 6360ceab8464543bd09b10d8bea2a19a
1f4ad2a7a214122f78e01f71a56c6f36201f97d3
174d5173b957a8b4862d491060896789b749ef4a6de3291e00055f7427081a49
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/FineThankYou-cover.jpg HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:04 GMT
content-type: image/jpeg
content-length: 55744
last-modified: Wed, 20 Oct 2021 20:20:48 GMT
etag: "61707a20-d9c0"
expires: Wed, 30 Aug 2023 22:40:04 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d540bb36b9dd961eb542506943f01784
fc85b89327b75d3d6643766a70f343f6ea0b7a30
1bcfead20bfe1a9677f25dbcec756dbb3244f6e53069b2a830529fd991baabce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Aug 2022 22:40:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
deborahholland.net/wp-content/uploads/faviconheart-1.png
35.208.188.125200 OK 655 B URL HTTP/2 deborahholland.net/wp-content/uploads/faviconheart-1.png
IP 35.208.188.125:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 33631a70aa16a63dfaa6252dddaa129f
18f993baccbcde24ad8e29ade55220870e6a8be9
2e2e51d81fac54d62569ccc65939fef0bf634c02f11b2e6f837b3332ab46725a
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/faviconheart-1.png HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:04 GMT
content-type: image/png
content-length: 655
last-modified: Thu, 17 Mar 2022 20:16:31 GMT
etag: "6233971f-28f"
expires: Wed, 30 Aug 2023 22:40:04 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
deborahholland.net/wp-content/uploads/Deborah-Holland-Vancouver-Album.jpg
35.208.188.125200 OK 64 kB URL HTTP/2 deborahholland.net/wp-content/uploads/Deborah-Holland-Vancouver-Album.jpg
IP 35.208.188.125:0
Hash d2254c8b479a8b0ced32df5065eacf71
eb2dbe556e476b918a609ce5e5ea1cd45d17c859
01968b3f3dae04a58cd1159e2ee43bcbc8444d05c374d7d2723ed8379d36f1e8
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/Deborah-Holland-Vancouver-Album.jpg HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:03 GMT
content-type: image/jpeg
content-length: 71375
last-modified: Wed, 20 Oct 2021 20:20:48 GMT
etag: "61707a20-116cf"
expires: Wed, 30 Aug 2023 22:40:03 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
deborahholland.net/wp-content/uploads/siteground-optimizer-assets/siteground-optimizer-combined-css-df6fb7bd8f39fdd4653bdf1c21caa1e5.css
35.208.188.125200 OK 65 kB URL HTTP/2 deborahholland.net/wp-content/uploads/siteground-optimizer-assets/siteground-optimizer-combined-css-df6fb7bd8f39fdd4653bdf1c21caa1e5.css
IP 35.208.188.125:0
File type ASCII text, with very long lines (40965)
Hash 24a346019423d0d1e7aee2082f68e586
86b6b3a14c0ab7edb679cc89eae3b13e4564b3ac
47e5b355ca46afaae6bf0c8588e16918b7e5bb5df2e51bf0e87ee525e697c8e0
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/siteground-optimizer-assets/siteground-optimizer-combined-css-df6fb7bd8f39fdd4653bdf1c21caa1e5.css HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:03 GMT
content-type: text/css
last-modified: Tue, 19 Jul 2022 11:09:41 GMT
vary: Accept-Encoding
etag: W/"62d690f5-5f077"
expires: Wed, 30 Aug 2023 22:40:03 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
deborahholland.net/wp-content/plugins/revslider/public/assets/assets/loader.gif
35.208.188.125200 OK 2.5 kB URL HTTP/2 deborahholland.net/wp-content/plugins/revslider/public/assets/assets/loader.gif
IP 35.208.188.125:0
File type GIF image data, version 89a, 24 x 24\012- data
Hash 4b3afb84b2b71ef56df09997a350bd04
accdac8a7abeab0e21c49539aad0a973addb28ef
9034d5d34015e4b05d2c1d1a8dc9f6ec9d59bd96d305eb9e24e24e65c591a645
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/assets/loader.gif HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/wp-content/uploads/siteground-optimizer-assets/siteground-optimizer-combined-css-df6fb7bd8f39fdd4653bdf1c21caa1e5.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:04 GMT
content-type: image/gif
content-length: 2545
last-modified: Wed, 20 Oct 2021 20:13:11 GMT
etag: "61707857-9f1"
expires: Wed, 30 Aug 2023 22:40:04 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
www.youtube.com/s/player/113ca41c/www-widgetapi.vflset/www-widgetapi.js
142.250.74.46200 OK 53 kB URL HTTP/2 www.youtube.com/s/player/113ca41c/www-widgetapi.vflset/www-widgetapi.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (814)
Hash 01d642b42f8e76652e31f987f2f90511
e502357a1e877b25419fe1858471ecc618a41b7b
bb01b4dbc67c26013ff8c517cb854b0b6b443e1b1c83c7865810215955374c96
GET /s/player/113ca41c/www-widgetapi.vflset/www-widgetapi.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 53394
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 14:54:28 GMT
expires: Tue, 29 Aug 2023 14:54:28 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 29 Aug 2022 00:19:41 GMT
content-type: text/javascript
age: 114336
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 27 Aug 2022 12:31:58 GMT
expires: Sun, 27 Aug 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 295687
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
deborahholland.net/wp-content/plugins/revslider/public/assets/assets/transparent.png
35.208.188.125200 OK 122 B URL HTTP/2 deborahholland.net/wp-content/plugins/revslider/public/assets/assets/transparent.png
IP 35.208.188.125:0
File type PNG image data, 300 x 200, 1-bit grayscale, non-interlaced\012- data
Hash 86c58b484b48eac285e131e8b55d2ce7
3d3ee4c137a6f36e5fbee31e21a4d08f2c38d20e
9603ffeb6772f1cf745e0097d5d6c046eaf16151e5bc521f20764bba5ddb7713
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/assets/transparent.png HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Cookie: _ga_PJ3JJRS7QN=GS1.1.1661899205.1.0.1661899205.0.0.0; _ga=GA1.2.1937098544.1661899205; _gid=GA1.2.820718030.1661899205; _gat_gtag_UA_4315068_40=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:05 GMT
content-type: image/png
content-length: 122
last-modified: Wed, 20 Oct 2021 20:13:11 GMT
etag: "61707857-7a"
expires: Wed, 30 Aug 2023 22:40:05 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
deborahholland.net/wp-content/uploads/Deborah-Holland-Main2.jpg
35.208.188.125200 OK 61 kB URL HTTP/2 deborahholland.net/wp-content/uploads/Deborah-Holland-Main2.jpg
IP 35.208.188.125:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=1, copyright=Thomson House], baseline, precision 8, 700x866, components 3\012- data
Hash 2c19bc019e66356fcaa3bc3bb30ee0dd
8e460062aaa228e126d3653491a0639f3d8ac7b9
37b7ea32ecbdaf70811b677caf441ea27c0c38956817102f61eb6d22b9da40f2
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/Deborah-Holland-Main2.jpg HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Cookie: _ga_PJ3JJRS7QN=GS1.1.1661899205.1.0.1661899205.0.0.0; _ga=GA1.2.1937098544.1661899205; _gid=GA1.2.820718030.1661899205; _gat_gtag_UA_4315068_40=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:05 GMT
content-type: image/jpeg
content-length: 61131
last-modified: Wed, 20 Oct 2021 20:20:48 GMT
etag: "61707a20-eecb"
expires: Wed, 30 Aug 2023 22:40:05 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8483eb99dbd130593ed0072e2fbaccf9
fcb83f0b4a448f0b94b0bf9db431cc802413dacd
5e07e7bbf5dd7a48f9330dbc0248b7a1aa69dff7a9a913f493a384d2ec332f74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5E07E7BBF5DD7A48F9330DBC0248B7A1AA69DFF7A9A913F493A384D2EC332F74"
Last-Modified: Sun, 28 Aug 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6899
Expires: Wed, 31 Aug 2022 00:35:04 GMT
Date: Tue, 30 Aug 2022 22:40:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8483eb99dbd130593ed0072e2fbaccf9
fcb83f0b4a448f0b94b0bf9db431cc802413dacd
5e07e7bbf5dd7a48f9330dbc0248b7a1aa69dff7a9a913f493a384d2ec332f74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5E07E7BBF5DD7A48F9330DBC0248B7A1AA69DFF7A9A913F493A384D2EC332F74"
Last-Modified: Sun, 28 Aug 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6899
Expires: Wed, 31 Aug 2022 00:35:04 GMT
Date: Tue, 30 Aug 2022 22:40:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8483eb99dbd130593ed0072e2fbaccf9
fcb83f0b4a448f0b94b0bf9db431cc802413dacd
5e07e7bbf5dd7a48f9330dbc0248b7a1aa69dff7a9a913f493a384d2ec332f74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5E07E7BBF5DD7A48F9330DBC0248B7A1AA69DFF7A9A913F493A384D2EC332F74"
Last-Modified: Sun, 28 Aug 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6899
Expires: Wed, 31 Aug 2022 00:35:04 GMT
Date: Tue, 30 Aug 2022 22:40:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8483eb99dbd130593ed0072e2fbaccf9
fcb83f0b4a448f0b94b0bf9db431cc802413dacd
5e07e7bbf5dd7a48f9330dbc0248b7a1aa69dff7a9a913f493a384d2ec332f74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5E07E7BBF5DD7A48F9330DBC0248B7A1AA69DFF7A9A913F493A384D2EC332F74"
Last-Modified: Sun, 28 Aug 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6899
Expires: Wed, 31 Aug 2022 00:35:04 GMT
Date: Tue, 30 Aug 2022 22:40:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8483eb99dbd130593ed0072e2fbaccf9
fcb83f0b4a448f0b94b0bf9db431cc802413dacd
5e07e7bbf5dd7a48f9330dbc0248b7a1aa69dff7a9a913f493a384d2ec332f74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5E07E7BBF5DD7A48F9330DBC0248B7A1AA69DFF7A9A913F493A384D2EC332F74"
Last-Modified: Sun, 28 Aug 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6899
Expires: Wed, 31 Aug 2022 00:35:04 GMT
Date: Tue, 30 Aug 2022 22:40:05 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d294083-a431-468c-a1ef-4df4295be72a.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d294083-a431-468c-a1ef-4df4295be72a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5c96a8515aca08228b53a33becf0f79b
8609a382648785901de3ab9f474b7319601921ba
2b9307cfcacfc4c15ecdc67b8045d7f4ecafd6a94d710e040a7e0d6911548caf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d294083-a431-468c-a1ef-4df4295be72a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6173
x-amzn-requestid: d5d519c7-88e2-4faa-8cbd-c828d40a0698
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XelESE0MoAMFptQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6308e881-0f2a5fe86a7bc81610835e6c;Sampled=0
x-amzn-remapped-date: Fri, 26 Aug 2022 15:36:33 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: hAYsuuAnParaODBY0scpZ9hounVraQbSL7JnTeqSpkKJWm421xPm4A==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 21:59:37 GMT
age: 2428
etag: "8609a382648785901de3ab9f474b7319601921ba"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4282438a-7246-4014-9d12-db595704f575.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4282438a-7246-4014-9d12-db595704f575.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aa023f47ca473300ca7c7883c5e4b3b7
8603f0013527995b82ccb45405bc8007b758f708
8850f465c2908c0e720505577749f4cbe92fc7c2d1335444e3ee80e4534d4bd1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4282438a-7246-4014-9d12-db595704f575.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10044
x-amzn-requestid: b9d398e8-bffd-4ed7-b64c-ba1b8d766864
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XeEPuHzXIAMF4eQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6308b3fe-1f213d85781126554b866c0c;Sampled=0
x-amzn-remapped-date: Fri, 26 Aug 2022 11:52:30 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: p33TYOMh09wkktFvGwTmwk0S_LP9VJEe1H3wKuCfprvrmQ4bssL3Ww==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 21:46:22 GMT
age: 3223
etag: "8603f0013527995b82ccb45405bc8007b758f708"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab8959a7-d059-469e-b95c-b21c71ed8ab3.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab8959a7-d059-469e-b95c-b21c71ed8ab3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash edfa67cc65030e8c10882c845ae4b109
8cfbc8ce5f11f2ced44c220fa2b5c50cd4a29b68
ab1e493bb0174518b660b80004eb41760705e1e591c0ffcf36e9ce5cc80f3f1e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab8959a7-d059-469e-b95c-b21c71ed8ab3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9510
x-amzn-requestid: 2073d958-297e-421e-a8f8-297bfb537041
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XsmorEZ4IAMF1ug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630e849d-2deabea52b32caee7fa4a125;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 21:43:57 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Ru80TaJe4d5Vb2o4Yk7rDdnnEOReSVYENQnYaa4w4oQ8SuO1Roz3zw==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 22:05:43 GMT
age: 2062
etag: "8cfbc8ce5f11f2ced44c220fa2b5c50cd4a29b68"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c450216-750b-4f8d-975a-45a3b3d13887.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c450216-750b-4f8d-975a-45a3b3d13887.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba56d516a189f02cfb6ef7f973691523
9e8737c6cf8642edac735650325c7937172974ec
987b79904772e0f5c39d4c1e0656496b088d14a65943b4860dbe7619572c5d70
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c450216-750b-4f8d-975a-45a3b3d13887.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4327
x-amzn-requestid: 1f40c826-9a75-4dfb-9c23-e734d822b01b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XslOfHj7oAMFrQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630e825c-2bff8015737768db0f84223c;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 21:34:20 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: KgZFX9yTz_IALY2I2i304pLmCTmSfXYk3kpN8oeuBP7qNMu--AZzMQ==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 21:48:38 GMT
age: 3087
etag: "9e8737c6cf8642edac735650325c7937172974ec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb358d56b-1529-49fb-acad-abce67fe4e95.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb358d56b-1529-49fb-acad-abce67fe4e95.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e2d5547c8b8cf6288807524542d73c8e
05927ada9355556ab3911fb81f243d8649593cb9
af5f55648469bee39b7eb9cb35264298a14b3337a207897d0cb92efadfd5901e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb358d56b-1529-49fb-acad-abce67fe4e95.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10455
x-amzn-requestid: 2147cbab-47bd-4da9-9a75-5d2fe3e47db3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XdacVGG0oAMFs-w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6308711b-1f8b0c70557cc8e6394f3759;Sampled=0
x-amzn-remapped-date: Fri, 26 Aug 2022 07:07:07 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: quJpSwMvd3EWSwfprDUWQLPUXVXzRWGQJxAVCrG5jN7ezl1qiyUlPA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 13:36:01 GMT
age: 32644
etag: "05927ada9355556ab3911fb81f243d8649593cb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-PJ3JJRS7QN>m=2oe8t0&_p=1047053680&gdid=dZTNiMT&cid=1937098544.1661899205&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1661899205&sct=1&seg=0&dl=https%3A%2F%2Fdeborahholland.net%2F&dt=Deborah%20Holland%20%2F%2F%20Official%20Website&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-PJ3JJRS7QN>m=2oe8t0&_p=1047053680&gdid=dZTNiMT&cid=1937098544.1661899205&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1661899205&sct=1&seg=0&dl=https%3A%2F%2Fdeborahholland.net%2F&dt=Deborah%20Holland%20%2F%2F%20Official%20Website&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-PJ3JJRS7QN>m=2oe8t0&_p=1047053680&gdid=dZTNiMT&cid=1937098544.1661899205&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1661899205&sct=1&seg=0&dl=https%3A%2F%2Fdeborahholland.net%2F&dt=Deborah%20Holland%20%2F%2F%20Official%20Website&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://deborahholland.net
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://deborahholland.net
date: Tue, 30 Aug 2022 22:40:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ef80a390dc7608c27e29fe3516eb0565
5062143217d04ed6de8fa77555d9a83938391c87
373c43367776cfcbb9f69a45443f59dfb774eab11241928134a25bcb7d75e83b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Aug 2022 22:40:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ea8f135d0d9646f85d5f17dee7000297
4450bda2c50f8de9366bb33b372ce4d8cbbc5f28
577489ce192278f40054e285aaa614d3502f1507911c8098eabb68eead763395
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Aug 2022 22:40:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
216.58.207.230200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 216.58.207.230:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Aug 2022 22:29:23 GMT
expires: Tue, 30 Aug 2022 22:44:23 GMT
cache-control: public, max-age=900
age: 642
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fe244465a99d48f257a3dda7ab28c6b8
69c89374520ca54adda7fd15ccb069def5fb3663
8f9938ffef09d02563d617ac9ff1ce97b05c5bf52b64f6724b9f19a5e90965f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Aug 2022 22:40:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/id
172.217.21.162302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 172.217.21.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Tue, 30 Aug 2022 22:40:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fe244465a99d48f257a3dda7ab28c6b8
69c89374520ca54adda7fd15ccb069def5fb3663
8f9938ffef09d02563d617ac9ff1ce97b05c5bf52b64f6724b9f19a5e90965f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Aug 2022 22:40:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.42200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.42:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 30 Aug 2022 22:40:05 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a3174f909a7792a326742671bb6d3dde
fa4703fd1dc5829d61209aaf18407b4498f8a478
bc171d0c715235ad2ba48dbbb594a35ea1af13107fe7b54e988a63a61fa9fb22
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Aug 2022 22:40:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ea8f135d0d9646f85d5f17dee7000297
4450bda2c50f8de9366bb33b372ce4d8cbbc5f28
577489ce192278f40054e285aaa614d3502f1507911c8098eabb68eead763395
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Aug 2022 22:40:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ef80a390dc7608c27e29fe3516eb0565
5062143217d04ed6de8fa77555d9a83938391c87
373c43367776cfcbb9f69a45443f59dfb774eab11241928134a25bcb7d75e83b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Aug 2022 22:40:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/th/cM-6dGuF1_HojLLsGnw-s58AILd4o1jWOC-yz8KgLtU.js
142.250.74.164200 OK 14 kB URL HTTP/2 www.google.com/js/th/cM-6dGuF1_HojLLsGnw-s58AILd4o1jWOC-yz8KgLtU.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (35747)
Hash e2b00639c547f7392f1b48307911a88c
5450920c321d88ea1b7669a0f73afb6197c48c91
dd453bf0a6f10b45e88e884209a014fe23cb4b0dd6f46d8a3e7798a49a8cd89c
GET /js/th/cM-6dGuF1_HojLLsGnw-s58AILd4o1jWOC-yz8KgLtU.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14158
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Aug 2022 05:03:56 GMT
expires: Thu, 24 Aug 2023 05:03:56 GMT
cache-control: public, max-age=31536000
age: 581769
last-modified: Mon, 15 Aug 2022 09:00:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash e1716a9a0048f70524a7c9a0c30c97ea
cb8ab557558d4146fc0df6128a9e5c6f7d6b5a77
0e25ac180714ff4dafe3837d5b2384de575bc586244e95fd808a41f0617a6dac
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Aug 2022 22:40:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.42200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.42:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 285c8f5b450a4caaa6bdf1ea80154485
82f7b01d07554a22eae9fbb3a9643871a4dcd76a
5d4883c0409ea60b055c0ea8d144f44c796cecff2af69e398d315d3b1bc2a4b7
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 30 Aug 2022 22:40:05 GMT
server: ESF
cache-control: private
content-length: 30566
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fe244465a99d48f257a3dda7ab28c6b8
69c89374520ca54adda7fd15ccb069def5fb3663
8f9938ffef09d02563d617ac9ff1ce97b05c5bf52b64f6724b9f19a5e90965f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Aug 2022 22:40:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi/57UgLdcSS0M/maxresdefault.jpg
172.217.21.182200 OK 160 kB URL HTTP/2 i.ytimg.com/vi/57UgLdcSS0M/maxresdefault.jpg
IP 172.217.21.182:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3\012- data
Size 160 kB (160227 bytes)
Hash 8b647fb2e3673fe0efd5a46406dcf26b
590fe5a996d436c3c2609e404963c3fb69e5c7e0
e253b37bd8f554e8826d8c76c2dc08d68424ea95726c9fb06add5bc96a2e93f3
GET /vi/57UgLdcSS0M/maxresdefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 160227
date: Tue, 30 Aug 2022 22:40:05 GMT
expires: Wed, 31 Aug 2022 00:40:05 GMT
cache-control: public, max-age=7200
etag: "1606783889"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9d2a27e4f9893144b953aaa54d1cd3d1
06cbd771a4706a759c227a3adb0fc6fa675720c4
de30b81cb2daaeadbf72567ce3fac4baac793408e550ccecaae67c3f48e4ac9e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Aug 2022 22:40:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash e1716a9a0048f70524a7c9a0c30c97ea
cb8ab557558d4146fc0df6128a9e5c6f7d6b5a77
0e25ac180714ff4dafe3837d5b2384de575bc586244e95fd808a41f0617a6dac
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Aug 2022 22:40:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/ytc/AMLnZu9_C6KaVeNllXJIYkzIgohAHkTEszUNPJYEXHhkow=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 1.3 kB URL HTTP/2 yt3.ggpht.com/ytc/AMLnZu9_C6KaVeNllXJIYkzIgohAHkTEszUNPJYEXHhkow=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash 9d2809edd99c0aa3d204e8d7320cbd48
a43c18f902344afbc838a8b7d1512a5a52757b04
7366100ec94a42cf59d2095ed25bb40854e0987f2100d62c3ac15cc77c1ca283
GET /ytc/AMLnZu9_C6KaVeNllXJIYkzIgohAHkTEszUNPJYEXHhkow=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v84"
expires: Wed, 31 Aug 2022 22:40:06 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Tue, 30 Aug 2022 22:40:06 GMT
server: fife
content-length: 1346
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.42200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.42:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 30 Aug 2022 22:40:06 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.42200 OK 118 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.42:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 0a197a5f53275c8520b79658117ab402
0b4aea7edeee3d5c0b4a5920851cea77368976c9
0f8b99210ad6ea595582aacb4403caab13757c4062a17f0af833a469cebb8631
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 836
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 30 Aug 2022 22:40:06 GMT
server: ESF
cache-control: private
content-length: 118
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9d2a27e4f9893144b953aaa54d1cd3d1
06cbd771a4706a759c227a3adb0fc6fa675720c4
de30b81cb2daaeadbf72567ce3fac4baac793408e550ccecaae67c3f48e4ac9e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Aug 2022 22:40:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
deborahholland.net/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
35.208.188.125200 OK 0 B URL HTTP/2 deborahholland.net/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 35.208.188.125:0
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:03 GMT
content-type: application/javascript
last-modified: Thu, 26 May 2022 17:29:12 GMT
vary: Accept-Encoding
etag: W/"628fb8e8-4ac6"
expires: Wed, 30 Aug 2023 22:40:03 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
deborahholland.net/wp-content/plugins/easy-fancybox/js/jquery.easing.min.js?ver=1.4.1
35.208.188.125200 OK 0 B URL HTTP/2 deborahholland.net/wp-content/plugins/easy-fancybox/js/jquery.easing.min.js?ver=1.4.1
IP 35.208.188.125:0
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/easy-fancybox/js/jquery.easing.min.js?ver=1.4.1 HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:03 GMT
content-type: application/javascript
last-modified: Wed, 20 Oct 2021 19:36:15 GMT
vary: Accept-Encoding
etag: W/"61706faf-8fe"
expires: Wed, 30 Aug 2023 22:40:03 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
deborahholland.net/wp-content/uploads/artworks-n4cxqWRTUtVu8YyQ-OdUGVQ-t500x500.jpg
35.208.188.125200 OK 0 B URL HTTP/2 deborahholland.net/wp-content/uploads/artworks-n4cxqWRTUtVu8YyQ-OdUGVQ-t500x500.jpg
IP 35.208.188.125:0
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/artworks-n4cxqWRTUtVu8YyQ-OdUGVQ-t500x500.jpg HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:03 GMT
content-type: image/jpeg
content-length: 91910
last-modified: Wed, 20 Oct 2021 20:20:48 GMT
etag: "61707a20-16706"
expires: Wed, 30 Aug 2023 22:40:03 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
deborahholland.net/wp-content/plugins/easy-fancybox/js/jquery.fancybox.min.js?ver=1.3.24
35.208.188.125200 OK 0 B URL HTTP/2 deborahholland.net/wp-content/plugins/easy-fancybox/js/jquery.fancybox.min.js?ver=1.3.24
IP 35.208.188.125:0
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/easy-fancybox/js/jquery.fancybox.min.js?ver=1.3.24 HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:03 GMT
content-type: application/javascript
last-modified: Wed, 20 Oct 2021 19:36:15 GMT
vary: Accept-Encoding
etag: W/"61706faf-4d4f"
expires: Wed, 30 Aug 2023 22:40:03 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
www.youtube.com/player_api
142.250.74.46200 OK 0 B URL HTTP/2 www.youtube.com/player_api
IP 142.250.74.46:0
GET /player_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Tue, 30 Aug 2022 22:40:04 GMT
date: Tue, 30 Aug 2022 22:40:04 GMT
cache-control: private, max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=P9gnPYXd8Z0; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=oYYt2cbJ3o4; Domain=.youtube.com; Expires=Sun, 26-Feb-2023 22:40:04 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+011; expires=Thu, 29-Aug-2024 22:40:04 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
deborahholland.net/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.8
35.208.188.125200 OK 0 B URL HTTP/2 deborahholland.net/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.8
IP 35.208.188.125:0
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.8 HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:03 GMT
content-type: application/javascript
last-modified: Wed, 20 Oct 2021 20:13:11 GMT
vary: Accept-Encoding
etag: W/"61707857-5cbbc"
expires: Wed, 30 Aug 2023 22:40:03 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
deborahholland.net/wp-content/themes/x/framework/dist/js/site/x.js?ver=9.1.4
35.208.188.125200 OK 0 B URL HTTP/2 deborahholland.net/wp-content/themes/x/framework/dist/js/site/x.js?ver=9.1.4
IP 35.208.188.125:0
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/x/framework/dist/js/site/x.js?ver=9.1.4 HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:03 GMT
content-type: application/javascript
last-modified: Thu, 17 Mar 2022 20:08:47 GMT
vary: Accept-Encoding
etag: W/"6233954f-cd42"
expires: Wed, 30 Aug 2023 22:40:03 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
deborahholland.net/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
35.208.188.125200 OK 0 B URL HTTP/2 deborahholland.net/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 35.208.188.125:0
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:03 GMT
content-type: application/javascript
last-modified: Thu, 26 May 2022 17:29:12 GMT
vary: Accept-Encoding
etag: W/"628fb8e8-194b"
expires: Wed, 30 Aug 2023 22:40:03 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
deborahholland.net/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.8
35.208.188.125200 OK 0 B URL HTTP/2 deborahholland.net/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.8
IP 35.208.188.125:0
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.8 HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:03 GMT
content-type: application/javascript
last-modified: Wed, 20 Oct 2021 20:13:11 GMT
vary: Accept-Encoding
etag: W/"61707857-1e4e6"
expires: Wed, 30 Aug 2023 22:40:03 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
deborahholland.net/wp-content/plugins/cornerstone/assets/js/site/cs.6f62d0f.js
35.208.188.125200 OK 0 B URL HTTP/2 deborahholland.net/wp-content/plugins/cornerstone/assets/js/site/cs.6f62d0f.js
IP 35.208.188.125:0
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/cornerstone/assets/js/site/cs.6f62d0f.js HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:03 GMT
content-type: application/javascript
last-modified: Thu, 17 Mar 2022 20:09:55 GMT
vary: Accept-Encoding
etag: W/"62339593-22403"
expires: Wed, 30 Aug 2023 22:40:03 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
deborahholland.net/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=f9675f24474b8e2ef88c50d8dcc9d35d
35.208.188.125200 OK 0 B URL HTTP/2 deborahholland.net/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=f9675f24474b8e2ef88c50d8dcc9d35d
IP 35.208.188.125:0
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=f9675f24474b8e2ef88c50d8dcc9d35d HTTP/1.1
Host: deborahholland.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deborahholland.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 22:40:03 GMT
content-type: application/javascript
last-modified: Thu, 26 May 2022 17:29:12 GMT
vary: Accept-Encoding
etag: W/"628fb8e8-4a7"
expires: Wed, 30 Aug 2023 22:40:03 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2