r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b3537658770790ad6cf0d727f0c0acd2
8365cadda05ef27b2ebd627d545e31886b512bde
df992311f130f15459739841de925c7eec2604d5a68ca6b2a67b6dc8d229212c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DF992311F130F15459739841DE925C7EEC2604D5A68CA6B2A67B6DC8D229212C"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4897
Expires: Wed, 26 Oct 2022 04:55:40 GMT
Date: Wed, 26 Oct 2022 03:34:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a39eea1096852891690eaee02a64383e
c273000f799fc3676e8e3ef3617611a31252cffc
d9d95319013d64bc2ef6d9870f4adba902ee970b6f9e96279c9ed86f556e0001
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D9D95319013D64BC2EF6D9870F4ADBA902EE970B6F9E96279C9ED86F556E0001"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11375
Expires: Wed, 26 Oct 2022 06:43:38 GMT
Date: Wed, 26 Oct 2022 03:34:03 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c2bba4cad162918b17858b60e909e4d9
d9a1d4f7fb7635ab233ebbf776e6de1a2857032b
3a1d27ec3d034d6326b32f6054b6be46079a86a33e75d5a2a3796a0c4c5eadab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4764
Cache-Control: max-age=112592
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:34:03 GMT
Etag: "6357acdf-1d7"
Expires: Thu, 27 Oct 2022 10:50:35 GMT
Last-Modified: Tue, 25 Oct 2022 09:31:11 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: cLqVg43nNcR0cG80Kqi+Pplhqxf0anP9P2BadA/hAJWMyC49geGdPRfpTjYuBqp+HW8Pp975/xI=
x-amz-request-id: 4D28GN083CYBHFYW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 26 Oct 2022 03:09:12 GMT
age: 1491
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 03:34:03 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
plussizewomensa.co.za/wp-includes/js/jquery/ui/x0x/v2/0f248290dff592c/login.php
129.232.146.42301 Moved Permanently 20 B URL HTTP/1.1 plussizewomensa.co.za/wp-includes/js/jquery/ui/x0x/v2/0f248290dff592c/login.php
IP 129.232.146.42:0
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/x0x/v2/0f248290dff592c/login.php HTTP/1.1
Host: plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 26 Oct 2022 03:34:03 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Content-Encoding: gzip
Vary: Accept-Encoding
Location: http://www.plussizewomensa.co.za/wp-includes/js/jquery/ui/x0x/v2/0f248290dff592c/login.php
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 518ff04fd536958e285cf07aaf4a2786
fa5dad2391c2a9957340bd629f0462db4f412a5c
608c78964412d5dc7025e9cbfaef345d448a29eae0f11257c49a41f274917b9a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3758
Cache-Control: max-age=106522
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:34:04 GMT
Etag: "63579918-1d7"
Expires: Thu, 27 Oct 2022 09:09:26 GMT
Last-Modified: Tue, 25 Oct 2022 08:06:48 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.215.107.141101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.215.107.141:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: UUnPC5t6UYepK87ym09jhA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: I5jG2NGRZFJlj0aEXRWRR0SP38M=
www.plussizewomensa.co.za/wp-includes/js/jquery/ui/x0x/v2/0f248290dff592c/login.php
129.232.146.42404 Not Found 8.6 kB URL HTTP/1.1 www.plussizewomensa.co.za/wp-includes/js/jquery/ui/x0x/v2/0f248290dff592c/login.php
IP 129.232.146.42:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (8047), with CRLF, LF line terminators
Hash fb0d90f2fefce295d1d70cc59e0ac5c0
70dc42510b46c92c79be3e8d3d8f1b29dcf69d10
f342ef61f7fcb17032221f19c56b19aba2728ae719abfdf60c0ffed2fd6b6196
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/x0x/v2/0f248290dff592c/login.php HTTP/1.1
Host: www.plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 404 Not Found
Date: Wed, 26 Oct 2022 03:34:04 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.plussizewomensa.co.za/wp-json/>; rel="https://api.w.org/"
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 19132f29a8811a10f90eca2d81e5deb8
3b9e0bbf9f40f46b57dad5567b008e58b5770565
708aeab241760b108d60c1462b1979e59cf473242222e9270705ba70642b04f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:34:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f1ae675435a8f16bc0b04ec012c41979
182f87a81464c80b0b25fb524c59592cd40b0ef4
9191ced121d8740b4ed3af75db3033e72c0c44c0b45004abd714583deaa749a4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:34:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 19132f29a8811a10f90eca2d81e5deb8
3b9e0bbf9f40f46b57dad5567b008e58b5770565
708aeab241760b108d60c1462b1979e59cf473242222e9270705ba70642b04f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:34:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 19132f29a8811a10f90eca2d81e5deb8
3b9e0bbf9f40f46b57dad5567b008e58b5770565
708aeab241760b108d60c1462b1979e59cf473242222e9270705ba70642b04f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:34:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-7TP5BCH4ZY
142.250.74.168200 OK 76 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-7TP5BCH4ZY
IP 142.250.74.168:0
File type ASCII text, with very long lines (18991)
Hash a49b80ebb680ccceca4249d35a6695f9
7e6756673a3378c12015c3b593bee3e764b9ec84
91ef78394934f8fea419e820c0cf07b08799bb216e14600c1e3676237df68db8
GET /gtag/js?id=G-7TP5BCH4ZY HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 26 Oct 2022 03:34:05 GMT
expires: Wed, 26 Oct 2022 03:34:05 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76047
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f1ae675435a8f16bc0b04ec012c41979
182f87a81464c80b0b25fb524c59592cd40b0ef4
9191ced121d8740b4ed3af75db3033e72c0c44c0b45004abd714583deaa749a4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:34:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.plussizewomensa.co.za/wp-content/plugins/wp-blog-post-layouts/includes/assets/css/build.css?ver=1.1.1
129.232.146.42200 OK 10 kB URL HTTP/1.1 www.plussizewomensa.co.za/wp-content/plugins/wp-blog-post-layouts/includes/assets/css/build.css?ver=1.1.1
IP 129.232.146.42:0
File type ASCII text, with CRLF line terminators
Hash 89235f00447de2f2ccdb832681329fa4
e2a140411de802335a987743e1c83552d7e23478
bb074470335c51ce340226d0cd210450874e73fe2ab2ea1577f97cda61018742
GET /wp-content/plugins/wp-blog-post-layouts/includes/assets/css/build.css?ver=1.1.1 HTTP/1.1
Host: www.plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/wp-includes/js/jquery/ui/x0x/v2/0f248290dff592c/login.php
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 03:34:05 GMT
Server: Apache
Last-Modified: Fri, 25 Mar 2022 00:09:41 GMT
Accept-Ranges: bytes
Content-Length: 10417
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.plussizewomensa.co.za/wp-content/plugins/wp-magazine-modules-lite/includes/assets/library/slick-slider/css/slick.css?ver=1.8.0
129.232.146.42200 OK 1.9 kB URL HTTP/1.1 www.plussizewomensa.co.za/wp-content/plugins/wp-magazine-modules-lite/includes/assets/library/slick-slider/css/slick.css?ver=1.8.0
IP 129.232.146.42:0
File type ASCII text, with CRLF line terminators
Hash b06073c5a23326dcc332b78d42c7290c
64e6c5ff99f14c65752e0322234160f8e83fc6c2
f0b722c48c52082cd77261574e22a5251fe37ea4b291b1441134145bab9b2063
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-magazine-modules-lite/includes/assets/library/slick-slider/css/slick.css?ver=1.8.0 HTTP/1.1
Host: www.plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/wp-includes/js/jquery/ui/x0x/v2/0f248290dff592c/login.php
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 03:34:05 GMT
Server: Apache
Last-Modified: Sat, 16 Apr 2022 00:01:07 GMT
Accept-Ranges: bytes
Content-Length: 1895
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.plussizewomensa.co.za/wp-content/plugins/wp-magazine-modules-lite/includes/assets/library/slick-slider/css/slick-theme.css?ver=1.8.0
129.232.146.42200 OK 3.3 kB URL HTTP/1.1 www.plussizewomensa.co.za/wp-content/plugins/wp-magazine-modules-lite/includes/assets/library/slick-slider/css/slick-theme.css?ver=1.8.0
IP 129.232.146.42:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 6871ac955afccdaed362066d02944c08
cb8c9b34cd41a591db5368b2d45548c5e4692985
fdd9cbba3bf008781e612f203bbe8674b395685abc0691fcc03a571aeb140d29
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-magazine-modules-lite/includes/assets/library/slick-slider/css/slick-theme.css?ver=1.8.0 HTTP/1.1
Host: www.plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/wp-includes/js/jquery/ui/x0x/v2/0f248290dff592c/login.php
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 03:34:05 GMT
Server: Apache
Last-Modified: Sat, 16 Apr 2022 00:01:07 GMT
Accept-Ranges: bytes
Content-Length: 3347
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.plussizewomensa.co.za/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
129.232.146.42200 OK 89 kB URL HTTP/1.1 www.plussizewomensa.co.za/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
IP 129.232.146.42:0
File type ASCII text, with very long lines (43771)
Hash b7915926fe42d76e9c802353ab01dae4
3a8192a4312f25f53de25b100d62829c0f14d67c
d7705700d24d5919255576642ad2c28bfc790390b7183a369038ff5c1e814d51
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 HTTP/1.1
Host: www.plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/wp-includes/js/jquery/ui/x0x/v2/0f248290dff592c/login.php
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 03:34:04 GMT
Server: Apache
Last-Modified: Tue, 02 Aug 2022 06:47:31 GMT
Accept-Ranges: bytes
Content-Length: 88932
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.plussizewomensa.co.za/wp-content/plugins/wp-magazine-modules-lite/includes/assets/css/build.css?ver=1.0.8
129.232.146.42200 OK 43 kB URL HTTP/1.1 www.plussizewomensa.co.za/wp-content/plugins/wp-magazine-modules-lite/includes/assets/css/build.css?ver=1.0.8
IP 129.232.146.42:0
File type ASCII text, with CRLF line terminators
Hash 4d778128cb6551971688e37cf7f514f8
260e3d822c3448725cf090734be08ec10b7b6763
817dcbe2aa92a904d48ef231f3391ae34c65427c74cfd4678fafcfb63608ee54
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-magazine-modules-lite/includes/assets/css/build.css?ver=1.0.8 HTTP/1.1
Host: www.plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/wp-includes/js/jquery/ui/x0x/v2/0f248290dff592c/login.php
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 03:34:05 GMT
Server: Apache
Last-Modified: Sat, 16 Apr 2022 00:01:11 GMT
Accept-Ranges: bytes
Content-Length: 43136
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.plussizewomensa.co.za/wp-content/themes/news-portal/assets/library/lightslider/css/lightslider.min.css?ver=1.1.6
129.232.146.42200 OK 5.5 kB URL HTTP/1.1 www.plussizewomensa.co.za/wp-content/themes/news-portal/assets/library/lightslider/css/lightslider.min.css?ver=1.1.6
IP 129.232.146.42:0
File type ASCII text, with very long lines (5449), with CRLF line terminators
Hash 06ccfca7808db5080d7c3a1f1c549e3f
c6e531e4bcbc7777d16c0763e9cf922f81990b40
5cf0d589127ea8b98dac129f74506b8a199d7b613cab0cf586ae95ee69428a4b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/news-portal/assets/library/lightslider/css/lightslider.min.css?ver=1.1.6 HTTP/1.1
Host: www.plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/wp-includes/js/jquery/ui/x0x/v2/0f248290dff592c/login.php
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 03:34:05 GMT
Server: Apache
Last-Modified: Mon, 18 Apr 2022 19:54:10 GMT
Accept-Ranges: bytes
Content-Length: 5536
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.plussizewomensa.co.za/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
129.232.146.42200 OK 31 kB URL HTTP/1.1 www.plussizewomensa.co.za/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP 129.232.146.42:0
File type ASCII text, with very long lines (30837)
Hash 008e0bb5ebfa7bc298a042f95944df25
93897ebc560b38a1d2bff43c22dd6a3b7ee90c0c
c4047043368afb4baf1aed25d358a5c2a333842a3b436b58491ab36aeee65b9d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: www.plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/wp-includes/js/jquery/ui/x0x/v2/0f248290dff592c/login.php
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 03:34:05 GMT
Server: Apache
Last-Modified: Sun, 02 Oct 2022 23:59:59 GMT
Accept-Ranges: bytes
Content-Length: 30999
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.plussizewomensa.co.za/wp-content/plugins/wp-blog-post-layouts/includes/assets/fontawesome/css/all.min.css?ver=5.12.1
129.232.146.42200 OK 57 kB URL HTTP/1.1 www.plussizewomensa.co.za/wp-content/plugins/wp-blog-post-layouts/includes/assets/fontawesome/css/all.min.css?ver=5.12.1
IP 129.232.146.42:0
File type ASCII text, with very long lines (57147)
Hash 2a0e11a7655cf7af50d9152727c134ef
136e6626dc83d228b50416249fe05864ab065e40
9a680b90260b5106d79f4075491ab31daafa7429eff686453c40b58357309649
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-blog-post-layouts/includes/assets/fontawesome/css/all.min.css?ver=5.12.1 HTTP/1.1
Host: www.plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/wp-includes/js/jquery/ui/x0x/v2/0f248290dff592c/login.php
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 03:34:05 GMT
Server: Apache
Last-Modified: Fri, 25 Mar 2022 00:09:41 GMT
Accept-Ranges: bytes
Content-Length: 57333
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.plussizewomensa.co.za/wp-content/themes/news-portal/assets/css/np-responsive.css?ver=1.3.0
129.232.146.42200 OK 9.3 kB URL HTTP/1.1 www.plussizewomensa.co.za/wp-content/themes/news-portal/assets/css/np-responsive.css?ver=1.3.0
IP 129.232.146.42:0
File type ASCII text, with CRLF line terminators
Hash 28dc05ce548e6847c7199778b07d6cbb
d2d5adae9239f360d7207c1c90220be39643ca9f
bf6aaa53ea17568c5f17a3b7bfe041de14b65821fff0c5e0a3f01372f9ebe4ff
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/news-portal/assets/css/np-responsive.css?ver=1.3.0 HTTP/1.1
Host: www.plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/wp-includes/js/jquery/ui/x0x/v2/0f248290dff592c/login.php
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 03:34:05 GMT
Server: Apache
Last-Modified: Mon, 18 Apr 2022 19:54:10 GMT
Accept-Ranges: bytes
Content-Length: 9314
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.plussizewomensa.co.za/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
129.232.146.42200 OK 11 kB URL HTTP/1.1 www.plussizewomensa.co.za/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 129.232.146.42:0
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/wp-includes/js/jquery/ui/x0x/v2/0f248290dff592c/login.php
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 03:34:05 GMT
Server: Apache
Last-Modified: Tue, 30 Nov 2021 15:48:31 GMT
Accept-Ranges: bytes
Content-Length: 11224
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.plussizewomensa.co.za/wp-includes/js/imagesloaded.min.js?ver=4.1.4
129.232.146.42200 OK 5.6 kB URL HTTP/1.1 www.plussizewomensa.co.za/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 129.232.146.42:0
File type ASCII text, with very long lines (5477)
Hash 3a56752b736635bf69cb069b8818cbfd
42e0951fe74bb3f56a30f51291823bcd4a84d76e
ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: www.plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/wp-includes/js/jquery/ui/x0x/v2/0f248290dff592c/login.php
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 03:34:05 GMT
Server: Apache
Last-Modified: Tue, 30 Nov 2021 15:48:31 GMT
Accept-Ranges: bytes
Content-Length: 5629
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.plussizewomensa.co.za/wp-includes/js/masonry.min.js?ver=4.2.2
129.232.146.42200 OK 24 kB URL HTTP/1.1 www.plussizewomensa.co.za/wp-includes/js/masonry.min.js?ver=4.2.2
IP 129.232.146.42:0
File type ASCII text, with very long lines (23966)
Hash 3b3fc826e58fc554108e4a651c9c7848
76778fd446e2ff2377588a7b4ac4d79f258427c9
e00add38134eac2fb8e8e9c09cbfff7bbe57952b210322eb2eecb0a21fc055eb
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/masonry.min.js?ver=4.2.2 HTTP/1.1
Host: www.plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/wp-includes/js/jquery/ui/x0x/v2/0f248290dff592c/login.php
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 03:34:05 GMT
Server: Apache
Last-Modified: Tue, 30 Nov 2021 15:48:31 GMT
Accept-Ranges: bytes
Content-Length: 24138
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.plussizewomensa.co.za/wp-content/plugins/wp-blog-post-layouts/includes/assets/js/frontend.js?ver=1.1.1
129.232.146.42200 OK 786 B URL HTTP/1.1 www.plussizewomensa.co.za/wp-content/plugins/wp-blog-post-layouts/includes/assets/js/frontend.js?ver=1.1.1
IP 129.232.146.42:0
File type ASCII text, with CRLF line terminators
Hash 6811b8c35571b3bdeb4cb860803f2ef7
334647220511ba1a2fafd7977bc252f04f0f340d
eb861e3c0220c94296bbdeb8deb876054e90e7d60dd27b7b8eb04be54d94b5d8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-blog-post-layouts/includes/assets/js/frontend.js?ver=1.1.1 HTTP/1.1
Host: www.plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/wp-includes/js/jquery/ui/x0x/v2/0f248290dff592c/login.php
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 03:34:05 GMT
Server: Apache
Last-Modified: Fri, 25 Mar 2022 00:09:41 GMT
Accept-Ranges: bytes
Content-Length: 786
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.plussizewomensa.co.za/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
129.232.146.42200 OK 90 kB URL HTTP/1.1 www.plussizewomensa.co.za/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 129.232.146.42:0
File type ASCII text, with very long lines (65447)
Hash 02dd5d04add4759122013c5ab4dc5cc2
a45a56e396ac549b4ff39b696ce9e0c16a7612de
bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/wp-includes/js/jquery/ui/x0x/v2/0f248290dff592c/login.php
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 03:34:05 GMT
Server: Apache
Last-Modified: Tue, 30 Nov 2021 15:48:31 GMT
Accept-Ranges: bytes
Content-Length: 89521
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.plussizewomensa.co.za/wp-content/plugins/wp-magazine-modules-lite/includes/assets/js/frontend.js?ver=1.0.8
129.232.146.42200 OK 7.3 kB URL HTTP/1.1 www.plussizewomensa.co.za/wp-content/plugins/wp-magazine-modules-lite/includes/assets/js/frontend.js?ver=1.0.8
IP 129.232.146.42:0
File type ASCII text, with CRLF line terminators
Hash d40206cce7583155ac6fc617e051a315
986d599a75c840dd567a5b5ef58dedf9d58f3808
04a8bde8aeb87047442e029f58cfefa6d7361144fa414fde3b4a92a0b092abb6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-magazine-modules-lite/includes/assets/js/frontend.js?ver=1.0.8 HTTP/1.1
Host: www.plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/wp-includes/js/jquery/ui/x0x/v2/0f248290dff592c/login.php
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 03:34:05 GMT
Server: Apache
Last-Modified: Sat, 16 Apr 2022 00:01:11 GMT
Accept-Ranges: bytes
Content-Length: 7322
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.plussizewomensa.co.za/wp-content/themes/news-portal/style.css?ver=1.3.0
129.232.146.42200 OK 61 kB URL HTTP/1.1 www.plussizewomensa.co.za/wp-content/themes/news-portal/style.css?ver=1.3.0
IP 129.232.146.42:0
File type ASCII text, with very long lines (720), with CRLF line terminators
Hash ebeae4330c268083cd988c3f29d33621
10282db593cdf9d7e27007a7494b28d4d267526c
82ebcad7539b8168621428d5d38eba0ca1fa868f0f8c0470e7ee08ac35c5817a
GET /wp-content/themes/news-portal/style.css?ver=1.3.0 HTTP/1.1
Host: www.plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/wp-includes/js/jquery/ui/x0x/v2/0f248290dff592c/login.php
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 03:34:05 GMT
Server: Apache
Last-Modified: Mon, 18 Apr 2022 19:54:10 GMT
Accept-Ranges: bytes
Content-Length: 60672
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
region1.google-analytics.com/g/collect?v=2&tid=G-7TP5BCH4ZY>m=2oeao0&_p=1328208341&cid=1636425074.1666755242&ul=en-us&sr=1280x1024&_s=1&sid=1666755242&sct=1&seg=0&dl=http%3A%2F%2Fwww.plussizewomensa.co.za%2Fwp-includes%2Fjs%2Fjquery%2Fui%2Fx0x%2Fv2%2F0f248290dff592c%2Flogin.php&dt=Page%20not%20found%20-%20PLUS%20SIZE&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-7TP5BCH4ZY>m=2oeao0&_p=1328208341&cid=1636425074.1666755242&ul=en-us&sr=1280x1024&_s=1&sid=1666755242&sct=1&seg=0&dl=http%3A%2F%2Fwww.plussizewomensa.co.za%2Fwp-includes%2Fjs%2Fjquery%2Fui%2Fx0x%2Fv2%2F0f248290dff592c%2Flogin.php&dt=Page%20not%20found%20-%20PLUS%20SIZE&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-7TP5BCH4ZY>m=2oeao0&_p=1328208341&cid=1636425074.1666755242&ul=en-us&sr=1280x1024&_s=1&sid=1666755242&sct=1&seg=0&dl=http%3A%2F%2Fwww.plussizewomensa.co.za%2Fwp-includes%2Fjs%2Fjquery%2Fui%2Fx0x%2Fv2%2F0f248290dff592c%2Flogin.php&dt=Page%20not%20found%20-%20PLUS%20SIZE&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.plussizewomensa.co.za
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: http://www.plussizewomensa.co.za
date: Wed, 26 Oct 2022 03:34:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto+Condensed%3A300italic%2C400italic%2C700italic%2C400%2C300%2C700%7CRoboto%3A300%2C400%2C400i%2C500%2C700%7CTitillium+Web%3A400%2C600%2C700%2C300&subset=latin%2Clatin-ext
142.250.74.10200 OK 1.9 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto+Condensed%3A300italic%2C400italic%2C700italic%2C400%2C300%2C700%7CRoboto%3A300%2C400%2C400i%2C500%2C700%7CTitillium+Web%3A400%2C600%2C700%2C300&subset=latin%2Clatin-ext
IP 142.250.74.10:0
Hash 4ed12e2fad769a5d4e01b4b8646f3972
51ad69b4ccad7866a472267b67fc5cc8f18bf5a8
34dfcb5569e76bf435d0559af2db31bd15f39720159f41805ee410f8c0a0de46
GET /css?family=Roboto+Condensed%3A300italic%2C400italic%2C700italic%2C400%2C300%2C700%7CRoboto%3A300%2C400%2C400i%2C500%2C700%7CTitillium+Web%3A400%2C600%2C700%2C300&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 26 Oct 2022 03:34:04 GMT
date: Wed, 26 Oct 2022 03:34:04 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.plussizewomensa.co.za/wp-content/plugins/wp-magazine-modules-lite/includes/assets/library/slick-slider/js/slick.min.js?ver=1.8.0
129.232.146.42200 OK 43 kB URL HTTP/1.1 www.plussizewomensa.co.za/wp-content/plugins/wp-magazine-modules-lite/includes/assets/library/slick-slider/js/slick.min.js?ver=1.8.0
IP 129.232.146.42:0
File type ASCII text, with very long lines (42862), with CRLF line terminators
Hash 777da4aaf5b960636dec0fd4e50ba489
9a94038ccae90e6d2a0f9cb61f79ae7c70320287
e1a52c0a06fa9f65e015b02e7ec463fd621211a9d2ae44b6660597900e927fbb
GET /wp-content/plugins/wp-magazine-modules-lite/includes/assets/library/slick-slider/js/slick.min.js?ver=1.8.0 HTTP/1.1
Host: www.plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/wp-includes/js/jquery/ui/x0x/v2/0f248290dff592c/login.php
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 03:34:05 GMT
Server: Apache
Last-Modified: Sat, 16 Apr 2022 00:01:07 GMT
Accept-Ranges: bytes
Content-Length: 42864
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5356
Expires: Wed, 26 Oct 2022 05:03:22 GMT
Date: Wed, 26 Oct 2022 03:34:06 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fadc5382d-fbb1-4d8e-8ee0-d7dcda16508e.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fadc5382d-fbb1-4d8e-8ee0-d7dcda16508e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 91ee720c15dc69de45080d0c951353af
5292b31a99d90bcb7071f327b93d52034bdf9dcb
7fbe9f0f6db08fd539f2e8d4ac22e3b4d5ca14f7cde69f8424cce8b361d026e6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fadc5382d-fbb1-4d8e-8ee0-d7dcda16508e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4524
x-amzn-requestid: a493efe7-11c7-4032-b36b-7f838f8180bc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aljicH_6IAMFqpQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63587fa9-0f15eae7680ea7b15e5e47ec;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 00:30:33 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: NQJHFIbLMzw0aGwCkVGIEIHOMHprTpvLkLQRKgrGeVj35sk7sW4IUg==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 00:36:34 GMT
age: 10652
etag: "5292b31a99d90bcb7071f327b93d52034bdf9dcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e4f7139b125683bac76c2b5638a1a643
2f84ea7104d659754e5962f88f504a7189f6f914
c9c550489201a92e8bbe162bca49d4aa6b21fa22b254a6a29502186423b3b579
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:34:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7feebb27-e9c6-46cc-a15e-dfe7e14961be.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7feebb27-e9c6-46cc-a15e-dfe7e14961be.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6908328a8d186075fa9e59a172c12913
73771b4bb2eb936ee8efd4039ee4913a51f94f3e
6d1e1ec3b1a3eec27056c711f5f2b957247c7d1e3be6d99c65bb96df74715446
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7feebb27-e9c6-46cc-a15e-dfe7e14961be.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8187
x-amzn-requestid: 9f706dbe-6f9a-4839-9576-fcd45af05ccc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alLLKGUAoAMFiEQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635858ad-1fdc6b1b07249d8501117cf1;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:44:13 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: cxM0T_HLsSl-rXU-lmzlflC66GyChydnPjlAhnKJ4fFzysuyEI0rMQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 22:34:42 GMT
etag: "73771b4bb2eb936ee8efd4039ee4913a51f94f3e"
content-type: image/jpeg
age: 17964
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdb59802-0d15-47b0-9824-34102fa77aeb.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdb59802-0d15-47b0-9824-34102fa77aeb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ffefed59982fc01dd8df2f14cea499ca
abab3e94679d0c3e2cbecbda2e9a789a7fe17873
0c9e876f3f638aa4148aecdd77722e5091a2bb47ac30e4367505a1ebe39535d2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdb59802-0d15-47b0-9824-34102fa77aeb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9355
x-amzn-requestid: eb558ca7-8a59-4135-85c8-f0fd5afd30fe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alJ35EV2oAMF_4g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63585698-0ea5ca6a1f03dd6174ac208c;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:35:20 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: ffqlvVBIZ_66jDf_4KtvieiOvJVgrlGqOY6VRWwf9iOi_KgcxbP5FA==
via: 1.1 6a63e853422f3197776fb098fab5a416.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 21:53:43 GMT
age: 20423
etag: "abab3e94679d0c3e2cbecbda2e9a789a7fe17873"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5356
Expires: Wed, 26 Oct 2022 05:03:22 GMT
Date: Wed, 26 Oct 2022 03:34:06 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F391c9e5f-b9b0-4854-b481-769430b76afa.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F391c9e5f-b9b0-4854-b481-769430b76afa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 237f766bae92a9812e7600207b95c632
bfa4bfc84e8fa8bd421e21123e04477538639981
100442fa760bf0b9e9a07a1e68d9321b53a32dd73a9cfbfcc8399f5041db35eb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F391c9e5f-b9b0-4854-b481-769430b76afa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11124
x-amzn-requestid: 1bd056c4-37cd-4f45-b94a-cdad9a8b85c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aNnWVFayIAMFqOA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634eec28-28116f7063b2a9e235a00b09;Sampled=0
x-amzn-remapped-date: Tue, 18 Oct 2022 18:10:48 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8ak7dKvSkqDEZRGtevSbZ9O9T4zOLdM1nx1geGOP9MNNTV75MAc7lA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 22:07:56 GMT
age: 19570
etag: "bfa4bfc84e8fa8bd421e21123e04477538639981"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.plussizewomensa.co.za
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:34:08 GMT
expires: Thu, 19 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 547198
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e4f7139b125683bac76c2b5638a1a643
2f84ea7104d659754e5962f88f504a7189f6f914
c9c550489201a92e8bbe162bca49d4aa6b21fa22b254a6a29502186423b3b579
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:34:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.plussizewomensa.co.za
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 14:07:32 GMT
expires: Thu, 19 Oct 2023 14:07:32 GMT
cache-control: public, max-age=31536000
age: 566794
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.plussizewomensa.co.za/wp-content/themes/news-portal/assets/js/navigation.js?ver=1.3.0
129.232.146.42200 OK 3.1 kB URL HTTP/1.1 www.plussizewomensa.co.za/wp-content/themes/news-portal/assets/js/navigation.js?ver=1.3.0
IP 129.232.146.42:0
File type ASCII text, with CRLF line terminators
Hash d8d8a1edf98d742670be4e1416432bc8
68ff5288dab07e7854ed6de4e93ac70aca2aa871
b8f76f98505a3d8a161055f180c9f0302ffe29f66037aff8f1c3f600d17b5bb7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/news-portal/assets/js/navigation.js?ver=1.3.0 HTTP/1.1
Host: www.plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/wp-includes/js/jquery/ui/x0x/v2/0f248290dff592c/login.php
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 03:34:05 GMT
Server: Apache
Last-Modified: Mon, 18 Apr 2022 19:54:10 GMT
Accept-Ranges: bytes
Content-Length: 3085
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.plussizewomensa.co.za/wp-content/plugins/wp-magazine-modules-lite/includes/assets/library/jQuery.Marquee/jquery.marquee.min.js?ver=1.0.0
129.232.146.42200 OK 9.1 kB URL HTTP/1.1 www.plussizewomensa.co.za/wp-content/plugins/wp-magazine-modules-lite/includes/assets/library/jQuery.Marquee/jquery.marquee.min.js?ver=1.0.0
IP 129.232.146.42:0
File type ASCII text, with very long lines (1219), with CRLF line terminators
Hash dc86bf044375a27156d9f42772de3e02
98cc2719daacdd6d85ab3a8a4d097b2450bc6420
f7ec795d6ca0df8d0083c41b1a57aed9a3500897442639a0c24999a749eed08a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-magazine-modules-lite/includes/assets/library/jQuery.Marquee/jquery.marquee.min.js?ver=1.0.0 HTTP/1.1
Host: www.plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/wp-includes/js/jquery/ui/x0x/v2/0f248290dff592c/login.php
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 03:34:05 GMT
Server: Apache
Last-Modified: Sat, 16 Apr 2022 00:01:11 GMT
Accept-Ranges: bytes
Content-Length: 9091
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5356
Expires: Wed, 26 Oct 2022 05:03:22 GMT
Date: Wed, 26 Oct 2022 03:34:06 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2792ca2-a8f4-4e81-bcd4-6622a0af2bb5.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2792ca2-a8f4-4e81-bcd4-6622a0af2bb5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 09cb7bc8ddfe92c1130dbabd27512fc4
b8eec3e24a3960e1a65b8ae69a0e9648275d7af7
cd6b9cc817d8ce64a8a8f51cbee96343fc26b51d9f2dc8f905303c3c28f5b6da
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2792ca2-a8f4-4e81-bcd4-6622a0af2bb5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6737
x-amzn-requestid: 7cc81b57-158b-4304-95dc-c0373f710537
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alL-kFQPoAMFt7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635859f6-5b43711d2040d32f7a7cfcbd;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:49:42 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: v7QWR9jPfLG67Woq6TFAFpG2j82t7l2RCYtg_WXBZcgEIR7WuLrwuQ==
via: 1.1 94be61e339880d0097634de6934f7710.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 22:05:09 GMT
etag: "b8eec3e24a3960e1a65b8ae69a0e9648275d7af7"
content-type: image/jpeg
age: 19737
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.plussizewomensa.co.za
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:34:08 GMT
expires: Thu, 19 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 547198
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.plussizewomensa.co.za/wp-content/themes/news-portal/assets/library/sticky/jquery.sticky.js?ver=20150416
129.232.146.42200 OK 7.4 kB URL HTTP/1.1 www.plussizewomensa.co.za/wp-content/themes/news-portal/assets/library/sticky/jquery.sticky.js?ver=20150416
IP 129.232.146.42:0
File type ASCII text, with CRLF line terminators
Hash df5375f96ba10f79b785b111f6281931
66d903c92952cbef54d3ba47ffd5590fac7be68d
43a24608e742c8adc12bc142cdbe6c8838100b1b507e954ab9965c8059896cf7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/news-portal/assets/library/sticky/jquery.sticky.js?ver=20150416 HTTP/1.1
Host: www.plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/wp-includes/js/jquery/ui/x0x/v2/0f248290dff592c/login.php
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 03:34:05 GMT
Server: Apache
Last-Modified: Mon, 18 Apr 2022 19:54:10 GMT
Accept-Ranges: bytes
Content-Length: 7389
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.plussizewomensa.co.za/wp-content/themes/news-portal/assets/js/skip-link-focus-fix.js?ver=1.3.0
129.232.146.42200 OK 714 B URL HTTP/1.1 www.plussizewomensa.co.za/wp-content/themes/news-portal/assets/js/skip-link-focus-fix.js?ver=1.3.0
IP 129.232.146.42:0
File type ASCII text, with CRLF line terminators
Hash 961e5e9a667a0344a28587fc4aea0f98
261c7321d7eb81194fbab3f734ab92ab517099fd
ee30de0a826081966aa58bd563d92e80a28a2af7415ad440889ddc1c0a3b5ef5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/news-portal/assets/js/skip-link-focus-fix.js?ver=1.3.0 HTTP/1.1
Host: www.plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/wp-includes/js/jquery/ui/x0x/v2/0f248290dff592c/login.php
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 03:34:05 GMT
Server: Apache
Last-Modified: Mon, 18 Apr 2022 19:54:10 GMT
Accept-Ranges: bytes
Content-Length: 714
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc635673e-499c-4d9c-8bc5-a713fb19e221.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc635673e-499c-4d9c-8bc5-a713fb19e221.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b946c4f2f177828cf7b76c5764e97157
c3856686b98e1883133aa1824c496d34512769a0
be818a015fc9c745ea561a0b9c2aca6ba25ade24acd696fa651163d47b195371
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc635673e-499c-4d9c-8bc5-a713fb19e221.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13796
x-amzn-requestid: 90b1e032-78c6-499d-b564-f25c15e20304
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alJ2OG0SoAMFx-w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6358568e-599d0f526fc6a01f77b67dcf;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:35:10 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: sVS9nFgRyVconkkFTOrCO2zA0cICFNQFB2E1q7SQcVQm5_Dm6khvrA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 21:48:40 GMT
age: 20726
etag: "c3856686b98e1883133aa1824c496d34512769a0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.plussizewomensa.co.za/wp-content/themes/news-portal/assets/library/lightslider/js/lightslider.min.js?ver=1.1.6
129.232.146.42200 OK 16 kB URL HTTP/1.1 www.plussizewomensa.co.za/wp-content/themes/news-portal/assets/library/lightslider/js/lightslider.min.js?ver=1.1.6
IP 129.232.146.42:0
File type ASCII text, with very long lines (15891), with CRLF line terminators
Hash c38b071b6014a39d369dbbc7af2b663e
6623fc1ded87f5cae0c636954d452c3461ae2430
5f86fbe6f9cda69add588670bf8a9781f83e7ed2fe7b1b07c4172fa6eb080bc9
GET /wp-content/themes/news-portal/assets/library/lightslider/js/lightslider.min.js?ver=1.1.6 HTTP/1.1
Host: www.plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/wp-includes/js/jquery/ui/x0x/v2/0f248290dff592c/login.php
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 03:34:05 GMT
Server: Apache
Last-Modified: Mon, 18 Apr 2022 19:54:10 GMT
Accept-Ranges: bytes
Content-Length: 16026
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e4f7139b125683bac76c2b5638a1a643
2f84ea7104d659754e5962f88f504a7189f6f914
c9c550489201a92e8bbe162bca49d4aa6b21fa22b254a6a29502186423b3b579
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:34:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.plussizewomensa.co.za/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
129.232.146.42200 OK 21 kB URL HTTP/1.1 www.plussizewomensa.co.za/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 129.232.146.42:0
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 6aaf0a4e8eac131defea126f5b1b5fbf
24da0326af36303e5a1e9799a3c26f7a1077928c
240b702419d6c39ecc4896f0132ccfc9bc517e9aef0c782d99580e0c678b47d5
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: www.plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/wp-includes/js/jquery/ui/x0x/v2/0f248290dff592c/login.php
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 03:34:06 GMT
Server: Apache
Last-Modified: Tue, 02 Aug 2022 06:47:26 GMT
Accept-Ranges: bytes
Content-Length: 20715
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.plussizewomensa.co.za/wp-content/themes/news-portal/assets/library/sticky/theia-sticky-sidebar.min.js?ver=1.7.0
129.232.146.42200 OK 5.4 kB URL HTTP/1.1 www.plussizewomensa.co.za/wp-content/themes/news-portal/assets/library/sticky/theia-sticky-sidebar.min.js?ver=1.7.0
IP 129.232.146.42:0
File type HTML document, ASCII text, with very long lines (5370), with CRLF line terminators
Hash 9b7664fe260d1a57a13ca71507b43499
d07064a9d012bae3f256adfa7d021c40793c962c
fb242b5f299cd08ee579ad1b46e13cb235bb595dd10b03fab7dfadfc61103be6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/news-portal/assets/library/sticky/theia-sticky-sidebar.min.js?ver=1.7.0 HTTP/1.1
Host: www.plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/wp-includes/js/jquery/ui/x0x/v2/0f248290dff592c/login.php
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 03:34:06 GMT
Server: Apache
Last-Modified: Mon, 18 Apr 2022 19:54:10 GMT
Accept-Ranges: bytes
Content-Length: 5431
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.plussizewomensa.co.za/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.1
129.232.146.42200 OK 12 kB URL HTTP/1.1 www.plussizewomensa.co.za/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.1
IP 129.232.146.42:0
File type ASCII text, with very long lines (11760)
Hash 1d376be55e51aea00d432f6659d3e0d1
cc5b9f6fa12d0a90b38d3d6e918401c9ad26332b
34934dc0d2652647955344d4d53218860096f14217c81c1eb5b02e54526835b6
GET /wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.1 HTTP/1.1
Host: www.plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/wp-includes/js/jquery/ui/x0x/v2/0f248290dff592c/login.php
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 03:34:06 GMT
Server: Apache
Last-Modified: Tue, 02 Aug 2022 06:47:26 GMT
Accept-Ranges: bytes
Content-Length: 11937
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.plussizewomensa.co.za/wp-content/themes/news-portal/assets/js/np-custom-scripts.js?ver=1.3.0
129.232.146.42200 OK 7.2 kB URL HTTP/1.1 www.plussizewomensa.co.za/wp-content/themes/news-portal/assets/js/np-custom-scripts.js?ver=1.3.0
IP 129.232.146.42:0
File type ASCII text, with CRLF line terminators
Hash 6e82ac1cece9c4b8f5959da33b92d1ee
80e7220afc31a5b002c4224f254a9bcfc4d861fd
633c4d068a2439e7892410fade3e249dc130ff7b7147830640e350044fd5e3b8
GET /wp-content/themes/news-portal/assets/js/np-custom-scripts.js?ver=1.3.0 HTTP/1.1
Host: www.plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/wp-includes/js/jquery/ui/x0x/v2/0f248290dff592c/login.php
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 03:34:06 GMT
Server: Apache
Last-Modified: Mon, 18 Apr 2022 19:54:10 GMT
Accept-Ranges: bytes
Content-Length: 7246
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.plussizewomensa.co.za/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
129.232.146.42200 OK 19 kB URL HTTP/1.1 www.plussizewomensa.co.za/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
IP 129.232.146.42:0
File type ASCII text, with very long lines (15660)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1
Host: www.plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/wp-includes/js/jquery/ui/x0x/v2/0f248290dff592c/login.php
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 03:34:06 GMT
Server: Apache
Last-Modified: Tue, 02 Aug 2022 06:47:26 GMT
Accept-Ranges: bytes
Content-Length: 18617
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.plussizewomensa.co.za/wp-content/themes/news-portal/assets/images/menu-shadow.png
129.232.146.42200 OK 6.9 kB URL HTTP/1.1 www.plussizewomensa.co.za/wp-content/themes/news-portal/assets/images/menu-shadow.png
IP 129.232.146.42:0
File type PNG image data, 960 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash e8364c76f14f944c406c5749fab6c4c7
355d01afb0afbafec668a9f598bbd019c5915d54
f97f50780895cb200405df8c7bd49cf19ff8b443e2273064aeb1608b55b43e18
GET /wp-content/themes/news-portal/assets/images/menu-shadow.png HTTP/1.1
Host: www.plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/wp-content/themes/news-portal/style.css?ver=1.3.0
Cookie: _ga_7TP5BCH4ZY=GS1.1.1666755242.1.0.1666755242.0.0.0; _ga=GA1.1.1636425074.1666755242
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 03:34:06 GMT
Server: Apache
Last-Modified: Mon, 18 Apr 2022 19:54:10 GMT
Accept-Ranges: bytes
Content-Length: 6925
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
www.plussizewomensa.co.za/wp-content/uploads/2022/01/cropped-Screenshot_143.png
129.232.146.42200 OK 1.4 kB URL HTTP/1.1 www.plussizewomensa.co.za/wp-content/uploads/2022/01/cropped-Screenshot_143.png
IP 129.232.146.42:0
File type PNG image data, 238 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash 29d273d4b2822ec15f6320c2f6c322d8
90a0783f25e53c4ebf93b1e86407003e96d3183d
03b780db7c5c729f391660169db161b4b16f55f4a3be0f75dd456c7c9c1e634b
GET /wp-content/uploads/2022/01/cropped-Screenshot_143.png HTTP/1.1
Host: www.plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 03:34:06 GMT
Server: Apache
Last-Modified: Sun, 30 Jan 2022 10:37:33 GMT
Accept-Ranges: bytes
Content-Length: 1390
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
www.plussizewomensa.co.za/wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
129.232.146.42200 OK 77 kB URL HTTP/1.1 www.plussizewomensa.co.za/wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 129.232.146.42:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
Cookie: _ga_7TP5BCH4ZY=GS1.1.1666755242.1.0.1666755242.0.0.0; _ga=GA1.1.1636425074.1666755242
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 03:34:06 GMT
Server: Apache
Last-Modified: Sun, 02 Oct 2022 23:59:57 GMT
Accept-Ranges: bytes
Content-Length: 77160
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: font/woff2
www.plussizewomensa.co.za/wp-content/uploads/2022/04/image-1-136x102.jpeg
129.232.146.42200 OK 4.3 kB URL HTTP/1.1 www.plussizewomensa.co.za/wp-content/uploads/2022/04/image-1-136x102.jpeg
IP 129.232.146.42:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 136x102, components 3\012- data
Hash fa5152ed37c0e99f3aec32163c3e31a6
40105f8fd692a35366965777fd05da7534147113
691440e1500cc9e42feb5a8995431b6da7db52b5aab686b6b62f7eb647d374e2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/04/image-1-136x102.jpeg HTTP/1.1
Host: www.plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 03:34:06 GMT
Server: Apache
Last-Modified: Tue, 19 Apr 2022 11:30:31 GMT
Accept-Ranges: bytes
Content-Length: 4264
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d68830f33c12f2aa839ecd5c96146bb2
c4eca00dde1d737943bc2980b58a7288c06f808c
0b8dd5b33360dae55b75de1bb81fc9404103824c8d987372d1c44f425052f0d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:34:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d68830f33c12f2aa839ecd5c96146bb2
c4eca00dde1d737943bc2980b58a7288c06f808c
0b8dd5b33360dae55b75de1bb81fc9404103824c8d987372d1c44f425052f0d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:34:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-3306874365644860
142.250.74.98200 OK 55 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-3306874365644860
IP 142.250.74.98:0
File type ASCII text, with very long lines (2776)
Hash 8451d0d8669defdecb72b9964e563bdc
1bbd1b98531dcdd9862a45eb6abebd5f8a32dcbb
1c4bc15447baade3dbea0883ce94a2deee49e59459181d9cc6f7c47e4b0c64b6
GET /pagead/js/adsbygoogle.js?client=ca-pub-3306874365644860 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.plussizewomensa.co.za
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Wed, 26 Oct 2022 03:34:06 GMT
expires: Wed, 26 Oct 2022 03:34:06 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 6589634085138979470
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 55280
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-8972730081622058
142.250.74.98200 OK 55 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-8972730081622058
IP 142.250.74.98:0
File type ASCII text, with very long lines (2776)
Hash 863989bf2b5bc180ecb25b86d5d20f9f
52d7cf2b807241fd55005bdd354f858c1f6a3501
31ffe933aa6ac11a15980e66b4abafc6bee069cf63b613ea5efc0a84c401b310
GET /pagead/js/adsbygoogle.js?client=ca-pub-8972730081622058 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.plussizewomensa.co.za
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Wed, 26 Oct 2022 03:34:06 GMT
expires: Wed, 26 Oct 2022 03:34:06 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 13833668615839224048
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 55340
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.plussizewomensa.co.za/wp-content/uploads/2022/04/manufacturing-companies-in-south-africa-136x102.png
129.232.146.42200 OK 37 kB URL HTTP/1.1 www.plussizewomensa.co.za/wp-content/uploads/2022/04/manufacturing-companies-in-south-africa-136x102.png
IP 129.232.146.42:0
File type PNG image data, 136 x 102, 8-bit/color RGBA, non-interlaced\012- data
Hash bfc499ba97339b8206f4331c783ab372
ca3950ff66bfd3892e9cf76ac95e374ea5d75be2
6b13c01f57282fe582e10bcd8443fe2bbb7d7a8f766f973eb98221968580c002
GET /wp-content/uploads/2022/04/manufacturing-companies-in-south-africa-136x102.png HTTP/1.1
Host: www.plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 03:34:06 GMT
Server: Apache
Last-Modified: Tue, 19 Apr 2022 11:48:48 GMT
Accept-Ranges: bytes
Content-Length: 37343
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d68830f33c12f2aa839ecd5c96146bb2
c4eca00dde1d737943bc2980b58a7288c06f808c
0b8dd5b33360dae55b75de1bb81fc9404103824c8d987372d1c44f425052f0d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:34:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.plussizewomensa.co.za/wp-content/uploads/2017/07/cropped-news-portal-150x150.png
129.232.146.42200 OK 13 kB URL HTTP/1.1 www.plussizewomensa.co.za/wp-content/uploads/2017/07/cropped-news-portal-150x150.png
IP 129.232.146.42:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 2c8f8668956aa8f9b9bd4e8d4e2a98d7
dd7daee5b3fdd4d172fbd290efe326e479661ee8
46d9ff17ee24b0708a606f64a63360f26b2b4e6ab05d7c9fdb9e7ddd79a9a7e4
GET /wp-content/uploads/2017/07/cropped-news-portal-150x150.png HTTP/1.1
Host: www.plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 03:34:06 GMT
Server: Apache
Last-Modified: Sun, 30 Jan 2022 10:33:26 GMT
Accept-Ranges: bytes
Content-Length: 12928
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
www.plussizewomensa.co.za/wp-content/uploads/2017/07/cropped-news-portal-300x300.png
129.232.146.42200 OK 33 kB URL HTTP/1.1 www.plussizewomensa.co.za/wp-content/uploads/2017/07/cropped-news-portal-300x300.png
IP 129.232.146.42:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 671cf5336e92015ebc30b85e5d0ef400
fcaa8c4086b90ef24264f9769068bef7d4ff67fa
ca20b1850cd57ab867df9efc126ffcb6fa715bb0da8c6d1ef38938c07bfc6579
GET /wp-content/uploads/2017/07/cropped-news-portal-300x300.png HTTP/1.1
Host: www.plussizewomensa.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 03:34:06 GMT
Server: Apache
Last-Modified: Sun, 30 Jan 2022 10:33:26 GMT
Accept-Ranges: bytes
Content-Length: 33111
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bf10f95d50c50dee2deaab1de5624867
d072afd2950f83002ca53588feed8a88fd2321ac
f639babdd513b2f0dd70687271d9a7ff827d334f67383cfa48bd2608ae9a3548
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:34:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 19c5719e45cfb53e9fdd342d81c046e0
d588591f72e278a8936e6fcaab8297f6c65b4904
b75e541f0f1468d70b4845424348e052fdde69d5334d88317c47414e18dbec2b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:34:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 130509513bc271340f20f1c556b2592a
6fd8b0623344d4c06ecf4e0708eb51a37d79ed9d
6a69bfbb5b21f5cfae366b21ab59426e78d51467926430c7bbf44d7f8ac704de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:34:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=www.plussizewomensa.co.za&callback=_gfp_s_&client=ca-pub-3306874365644860&gpid_exp=1
172.217.21.162200 OK 260 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=www.plussizewomensa.co.za&callback=_gfp_s_&client=ca-pub-3306874365644860&gpid_exp=1
IP 172.217.21.162:0
File type ASCII text, with very long lines (409), with no line terminators
Hash d9decffd12ecfefd2a193f5d12df15be
cbb37f384082d2029a648c787da0fe306797fa46
6b7e943c266f9077a351a732f37145bc349d898d2adec52635ab25c5e732fce0
GET /gampad/cookie.js?domain=www.plussizewomensa.co.za&callback=_gfp_s_&client=ca-pub-3306874365644860&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 26 Oct 2022 03:34:07 GMT
server: cafe
cache-control: private
content-length: 260
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=www.plussizewomensa.co.za
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.plussizewomensa.co.za
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.plussizewomensa.co.za HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 26 Oct 2022 03:34:07 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=www.plussizewomensa.co.za
216.58.211.2200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=www.plussizewomensa.co.za
IP 216.58.211.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.plussizewomensa.co.za HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 26 Oct 2022 03:34:07 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bf10f95d50c50dee2deaab1de5624867
d072afd2950f83002ca53588feed8a88fd2321ac
f639babdd513b2f0dd70687271d9a7ff827d334f67383cfa48bd2608ae9a3548
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:34:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 19c5719e45cfb53e9fdd342d81c046e0
d588591f72e278a8936e6fcaab8297f6c65b4904
b75e541f0f1468d70b4845424348e052fdde69d5334d88317c47414e18dbec2b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:34:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 130509513bc271340f20f1c556b2592a
6fd8b0623344d4c06ecf4e0708eb51a37d79ed9d
6a69bfbb5b21f5cfae366b21ab59426e78d51467926430c7bbf44d7f8ac704de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:34:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0f86bf1e2fc0e53635d6dbd436afffda
c38c19618afd2c203b53f07c71d07a31fc397353
5cba005b31289d4df7c6bfa9e0bdd27ce43ff8b7e6d91ea95ce24f690426fdc7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:34:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
142.250.74.33200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Wed, 26 Oct 2022 03:34:07 GMT
expires: Wed, 26 Oct 2022 03:34:07 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
142.250.74.33200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 24 Oct 2022 12:19:56 GMT
expires: Tue, 24 Oct 2023 12:19:56 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 141251
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 2.6 kB IP 142.250.74.3:0
File type gzip compressed data, max compression\012- data
Hash 855c4f5eeae8bad36e0aeb53f5dac0ec
1c479abe75236e6bef89a207d3df3224a17c28b4
2e47b416e8a1e7014cdd87032f9551e6c7ae9722a8dd166210404941a1b35d99
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:34:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
142.250.74.164200 OK 513 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash d2c55e5b512c35a6aa447f7919bd4fc7
7057186df64acd358fb6392d10992f9383cd9024
c84e244e90af749c1784301410acdd35cb65be60625baa9843a0bacaddbe1c6c
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.plussizewomensa.co.za/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Wed, 26 Oct 2022 03:34:07 GMT
date: Wed, 26 Oct 2022 03:34:07 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-c37OfTaG5JHA38FOf9-htQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 513
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2