travelbeyond.com/
64.225.58.36301 Moved Permanently 233 B IP 64.225.58.36:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8fe7d46b2c41d6274dde78badddfa7f3
af10e4f80a536a48e96166842f4f504770d1eff8
79101bb87493a007a2266798ab88d11972d91fc738515af6d5d6efd951e2a501
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: travelbeyond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 03 Feb 2023 23:46:38 GMT
Server: Apache
Location: https://travelbeyond.com/
Content-Length: 233
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21248
Expires: Sat, 04 Feb 2023 05:40:46 GMT
Date: Fri, 03 Feb 2023 23:46:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3737
Expires: Sat, 04 Feb 2023 00:48:55 GMT
Date: Fri, 03 Feb 2023 23:46:38 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 03 Feb 2023 23:36:12 GMT
content-type: application/json
age: 626
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 7d2222d41721947297aaeb5a6e3d0714
04cc1ee417c8bf6338657fd4c2e4e1c1ddfd3065
de0e45969a2ad95e52f7e2fbd0d021d9075dd7b14666c929346efe111f648f7c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DE0E45969A2AD95E52F7E2FBD0D021D9075DD7B14666C929346EFE111F648F7C"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7227
Expires: Sat, 04 Feb 2023 01:47:05 GMT
Date: Fri, 03 Feb 2023 23:46:38 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: EwTuatLste48p74vvSwt7caNRdn7HLLfsGQZ0FldyIdhMg69TOGAsCifD7tpaM9IofgKCaZwjsb6DA7QoBmEtw==
x-amz-request-id: 3YMXW34AJ66DASTZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 03 Feb 2023 22:52:35 GMT
age: 3243
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 23:46:38 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash eb82cdc7244886663ec6b63037cd30c4
bdd6a8c4ae160017f36fa411db2a51fb4dc6b94f
f8aaf713eedf22dba8a95d4594c48888c3667102995ed5a8b35085543ae80c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F8AAF713EEDF22DBA8A95D4594C48888C3667102995ED5A8B35085543AE80C0F"
Last-Modified: Wed, 01 Feb 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21567
Expires: Sat, 04 Feb 2023 05:46:05 GMT
Date: Fri, 03 Feb 2023 23:46:38 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 03 Feb 2023 23:07:19 GMT
age: 2359
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2188
Expires: Sat, 04 Feb 2023 00:23:07 GMT
Date: Fri, 03 Feb 2023 23:46:39 GMT
Connection: keep-alive
push.services.mozilla.com/
52.41.131.197101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.41.131.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: jR3TnWQOaOfwt1Csn9wYqA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: CPJP0r3iV5DOgDLI5hzUC4xUakc=
travelbeyond.com/
64.225.58.36200 OK 14 kB IP 64.225.58.36:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381)
Hash 8b61651d01bc63b3c5af99fb5f7b8c84
7bdea02ec4c61503021a6818a7a644d21b284ec3
f2eceb4028f19476ec4254ae978bddecc5edd58929085db0a9dcb55201b48819
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: travelbeyond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:46:38 GMT
server: Apache
x-pingback: https://travelbeyond.com/xmlrpc.php
link: <https://travelbeyond.com/wp-json/>; rel="https://api.w.org/", <https://travelbeyond.com/wp-json/wp/v2/pages/10>; rel="alternate"; type="application/json", <https://travelbeyond.com/>; rel=shortlink
vary: Accept-Encoding
content-encoding: gzip
content-length: 14191
content-type: text/html; charset=UTF-8
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 23:46:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
travelbeyond.com/wp-includes/css/classic-themes.min.css?ver=1
64.225.58.36200 OK 189 B URL HTTP/2 travelbeyond.com/wp-includes/css/classic-themes.min.css?ver=1
IP 64.225.58.36:0
ASN #14061 DIGITALOCEAN-ASN
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: travelbeyond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://travelbeyond.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:46:39 GMT
server: Apache
last-modified: Mon, 05 Dec 2022 18:09:44 GMT
etag: "d9-5ef18978ca473-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 189
content-type: text/css
X-Firefox-Spdy: h2
travelbeyond.com/wp-content/themes/travelbeyond/style.css?ver=0.11
64.225.58.36200 OK 248 B URL HTTP/2 travelbeyond.com/wp-content/themes/travelbeyond/style.css?ver=0.11
IP 64.225.58.36:0
ASN #14061 DIGITALOCEAN-ASN
Hash 72afefe52bacce8a70467583776ac6f2
b52af155caee6bdcab4a07f388d2ccf27b776606
4ae9c69a118f04e60c9832be63e63bae9574806803faa93a400800f30f5f1d29
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/travelbeyond/style.css?ver=0.11 HTTP/1.1
Host: travelbeyond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://travelbeyond.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:46:39 GMT
server: Apache
last-modified: Tue, 02 Aug 2022 21:50:44 GMT
etag: "17b-5e5491bbe3349-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 248
content-type: text/css
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/js?key=AIzaSyADdYotXeisu-JAKGhUB_EkVNE1UeIsmww
142.250.74.42200 OK 53 kB URL HTTP/2 maps.googleapis.com/maps/api/js?key=AIzaSyADdYotXeisu-JAKGhUB_EkVNE1UeIsmww
IP 142.250.74.42:0
File type ASCII text, with very long lines (2452)
Hash 657c0ac3157268a68872465d17dc8cc4
f8332487735971b35ccaf3b3474d8c6222076cfc
8a1e66761542276aab5ea36bf777cade9b3ac5fe80e2c17d10203d4e737fea24
GET /maps/api/js?key=AIzaSyADdYotXeisu-JAKGhUB_EkVNE1UeIsmww HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://travelbeyond.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Fri, 03 Feb 2023 23:46:40 GMT
expires: Sat, 04 Feb 2023 00:16:40 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 53191
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=45
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
travelbeyond.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
64.225.58.36200 OK 12 kB URL HTTP/2 travelbeyond.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 64.225.58.36:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (47826)
Hash 8fa87dd23394a22621248ec378d2af59
9305bc637a89b1700d7f56a19a80bd32b0feb2f7
c162f7de24fa2d4e93e0da254ef287ff72f4a3e03f42443265097968351388dc
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: travelbeyond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://travelbeyond.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:46:39 GMT
server: Apache
last-modified: Mon, 05 Dec 2022 18:09:44 GMT
etag: "172a9-5ef18978c7593-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12518
content-type: text/css
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 23:46:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
travelbeyond.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
64.225.58.36200 OK 4.2 kB URL HTTP/2 travelbeyond.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 64.225.58.36:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: travelbeyond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://travelbeyond.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:46:39 GMT
server: Apache
last-modified: Thu, 05 Jan 2023 16:30:02 GMT
etag: "2bd8-5f186d01b65c6-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4169
content-type: application/javascript
X-Firefox-Spdy: h2
travelbeyond.com/wp-includes/css/dashicons.min.css?ver=6.1.1
64.225.58.36200 OK 36 kB URL HTTP/2 travelbeyond.com/wp-includes/css/dashicons.min.css?ver=6.1.1
IP 64.225.58.36:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (58981)
Hash 00492d322e5572c7abc3e8701b6c52c1
0802ac2c8280ce7c98af881b1d49ec682acbf314
8bc01632cbc3ab834e04141d444ff82b05a4691444d70a9860477710e330b824
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/css/dashicons.min.css?ver=6.1.1 HTTP/1.1
Host: travelbeyond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://travelbeyond.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:46:39 GMT
server: Apache
last-modified: Thu, 26 May 2022 16:58:42 GMT
etag: "e688-5dfed1a28517b-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 35730
content-type: text/css
X-Firefox-Spdy: h2
travelbeyond.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
64.225.58.36200 OK 31 kB URL HTTP/2 travelbeyond.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 64.225.58.36:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (65447)
Hash 1b5264c989379b828aff60f65a518a24
98641237f14ccb33ac114f54329a33bd0aa17eb7
6c8e7b78c6dbc13426810c905572db7589cf3e00264e30ce797fddb0b1092237
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: travelbeyond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://travelbeyond.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:46:39 GMT
server: Apache
last-modified: Thu, 05 Jan 2023 16:30:02 GMT
etag: "15e54-5f186d01b7566-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 30995
content-type: application/javascript
X-Firefox-Spdy: h2
travelbeyond.com/wp-content/uploads/2015/08/tb-logo-white.svg
64.225.58.36200 OK 4.5 kB URL HTTP/2 travelbeyond.com/wp-content/uploads/2015/08/tb-logo-white.svg
IP 64.225.58.36:0
ASN #14061 DIGITALOCEAN-ASN
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 3359b616be712a57e13104b152395d73
85772c711daf7160199abe8faf471926716f22b1
f63a34ff209c8937395e959fe7c62e1bd600f3d0bf6cf6d49700532f5bfa5ead
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2015/08/tb-logo-white.svg HTTP/1.1
Host: travelbeyond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://travelbeyond.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:46:39 GMT
server: Apache
last-modified: Wed, 10 Apr 2019 22:39:40 GMT
etag: "1196-58634bebc8300"
accept-ranges: bytes
content-length: 4502
content-type: image/svg+xml
X-Firefox-Spdy: h2
travelbeyond.com/wp-content/themes/travelbeyond/assets/js/custom.js?ver=0.11
64.225.58.36200 OK 1.0 kB URL HTTP/2 travelbeyond.com/wp-content/themes/travelbeyond/assets/js/custom.js?ver=0.11
IP 64.225.58.36:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with CRLF line terminators
Hash c031d96a2179d46fcc914a50d05c1a5d
7514e9c57c725fc2face06003fdcb8309506984b
7797f0b711f170bf447f03a36f8cefb2c71e80d70f90935685f3968819684a07
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/travelbeyond/assets/js/custom.js?ver=0.11 HTTP/1.1
Host: travelbeyond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://travelbeyond.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:46:40 GMT
server: Apache
last-modified: Thu, 05 Jan 2023 16:30:02 GMT
etag: "140b-5f186d0177dc9-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1035
content-type: application/javascript
X-Firefox-Spdy: h2
travelbeyond.com/wp-includes/js/comment-reply.min.js?ver=6.1.1
64.225.58.36200 OK 1.4 kB URL HTTP/2 travelbeyond.com/wp-includes/js/comment-reply.min.js?ver=6.1.1
IP 64.225.58.36:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (2946)
Hash 28214bc78b9edfcfbc9c7b651fb4f56c
fb0847abdb33dd943a2dcda4c4b905fb5cdd116c
11691bc1acc1f3a7ab8ef7c67fb720ca58fb72e52f510009f7b0cbc2589d45e0
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/comment-reply.min.js?ver=6.1.1 HTTP/1.1
Host: travelbeyond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://travelbeyond.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:46:40 GMT
server: Apache
last-modified: Thu, 05 Jan 2023 16:30:02 GMT
etag: "ba5-5f186d0181a08-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1351
content-type: application/javascript
X-Firefox-Spdy: h2
travelbeyond.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
64.225.58.36200 OK 5.0 kB URL HTTP/2 travelbeyond.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 64.225.58.36:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (15660)
Hash e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: travelbeyond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://travelbeyond.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:46:40 GMT
server: Apache
last-modified: Thu, 05 Jan 2023 16:30:03 GMT
etag: "48b9-5f186d01d7905-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5009
content-type: application/javascript
X-Firefox-Spdy: h2
travelbeyond.com/wp-content/uploads/2015/08/tb-logo.svg
64.225.58.36200 OK 6.8 kB URL HTTP/2 travelbeyond.com/wp-content/uploads/2015/08/tb-logo.svg
IP 64.225.58.36:0
ASN #14061 DIGITALOCEAN-ASN
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF, LF line terminators
Hash d4b79b00fbbf28d23f565749a59e7948
adadbfae347d4ae3fb0bebc133a1a69a6e446b81
add1bbf5f9bae97bebbfe26e8602dd647cb28fe7c0ef7a485a8eba66a3cd2b81
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2015/08/tb-logo.svg HTTP/1.1
Host: travelbeyond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://travelbeyond.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:46:40 GMT
server: Apache
last-modified: Wed, 10 Apr 2019 22:39:40 GMT
etag: "1ab5-58634bebc8300"
accept-ranges: bytes
content-length: 6837
content-type: image/svg+xml
X-Firefox-Spdy: h2
travelbeyond.com/wp-content/themes/travelbeyond/assets/js/theme.js?a=1675467999&ver=0.11
64.225.58.36200 OK 16 kB URL HTTP/2 travelbeyond.com/wp-content/themes/travelbeyond/assets/js/theme.js?a=1675467999&ver=0.11
IP 64.225.58.36:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (4168)
Hash 4f42959a32b07fafe0d8e8c93243a590
59707af914ad17dc8a2741ad0bf7ab6b625dea90
bb1a02c1a5e620104686c81476204baa4d7ec809fc5228f094bbb2548586be1e
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/travelbeyond/assets/js/theme.js?a=1675467999&ver=0.11 HTTP/1.1
Host: travelbeyond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://travelbeyond.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:46:40 GMT
server: Apache
last-modified: Thu, 05 Jan 2023 16:30:02 GMT
etag: "1507f-5f186d0178d69-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 15745
content-type: application/javascript
X-Firefox-Spdy: h2
travelbeyond.com/wp-content/themes/travelbeyond/assets/css/custom.css
64.225.58.36200 OK 2.6 kB URL HTTP/2 travelbeyond.com/wp-content/themes/travelbeyond/assets/css/custom.css
IP 64.225.58.36:0
ASN #14061 DIGITALOCEAN-ASN
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 078c7b1a360cb2632ed46ff06b38556b
d48b611122595a35157806ab03acfd7e2ddcd345
c3ab5e6a87cb0dee22fe390ea26d4296c5a5a41afd3f4627e6a5f2a815929ed3
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/travelbeyond/assets/css/custom.css HTTP/1.1
Host: travelbeyond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://travelbeyond.com/wp-content/themes/travelbeyond/style.css?ver=0.11
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:46:40 GMT
server: Apache
last-modified: Wed, 10 Apr 2019 22:39:56 GMT
etag: "39c9-58634bfb0a700-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2577
content-type: text/css
X-Firefox-Spdy: h2
travelbeyond.com/wp-content/uploads/2015/06/africa-drawing1.png
64.225.58.36200 OK 67 kB URL HTTP/2 travelbeyond.com/wp-content/uploads/2015/06/africa-drawing1.png
IP 64.225.58.36:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash 71e952cca93517f85550318b91c49201
12eef5171183d607f2a3f278f64782d06a059d5b
e50c203b32b7e069d9e3e9303401a0d299660ef3713d0cc002a598f9c188c843
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2015/06/africa-drawing1.png HTTP/1.1
Host: travelbeyond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://travelbeyond.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:46:39 GMT
server: Apache
last-modified: Wed, 10 Apr 2019 22:39:45 GMT
etag: "105e9-58634bf08ce40"
accept-ranges: bytes
content-length: 67049
content-type: image/png
X-Firefox-Spdy: h2
travelbeyond.com/wp-content/themes/travelbeyond/assets/js/plugins.min.js?ver=0.11
64.225.58.36200 OK 38 kB URL HTTP/2 travelbeyond.com/wp-content/themes/travelbeyond/assets/js/plugins.min.js?ver=0.11
IP 64.225.58.36:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document, ASCII text, with very long lines (32014)
Hash dca3176a0871d82602ad1e83be8205b0
4aa5b6942cad135ac75a9a70a5e4389b49fc76aa
f3e0cb503e9132f95c7e818456b90ea9297b7ee1e5409fad316e502de72b6556
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/travelbeyond/assets/js/plugins.min.js?ver=0.11 HTTP/1.1
Host: travelbeyond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://travelbeyond.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:46:40 GMT
server: Apache
last-modified: Thu, 05 Jan 2023 16:30:02 GMT
etag: "20884-5f186d0177dc9-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 37876
content-type: application/javascript
X-Firefox-Spdy: h2
travelbeyond.com/wp-content/themes/travelbeyond/assets/css/style.css?v=1
64.225.58.36200 OK 20 kB URL HTTP/2 travelbeyond.com/wp-content/themes/travelbeyond/assets/css/style.css?v=1
IP 64.225.58.36:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (65536), with no line terminators
Hash 3f731a617329faf853f26875739c1921
ad171a7c997950f409e7efd68da8f5b579972958
0fcbe48a32dae417451d0354eb7c7a6ff78c73e1d1ab7dfbd681a1c88108e2be
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/travelbeyond/assets/css/style.css?v=1 HTTP/1.1
Host: travelbeyond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://travelbeyond.com/wp-content/themes/travelbeyond/style.css?ver=0.11
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:46:40 GMT
server: Apache
last-modified: Tue, 02 Aug 2022 21:20:44 GMT
etag: "1fe42-5e548b07185fc-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 19597
content-type: text/css
X-Firefox-Spdy: h2
travelbeyond.com/wp-content/uploads/2015/06/destination-southamerica.png
64.225.58.36200 OK 56 kB URL HTTP/2 travelbeyond.com/wp-content/uploads/2015/06/destination-southamerica.png
IP 64.225.58.36:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash 6abda14df27d0142c3c17e045f34666c
b505b60737118b8176ffecc7948ddf751248787d
298c1414f115c383b74b75f81338fb59a63a673f64b2b0a2fab6828dd96538f4
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2015/06/destination-southamerica.png HTTP/1.1
Host: travelbeyond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://travelbeyond.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:46:40 GMT
server: Apache
last-modified: Wed, 10 Apr 2019 22:39:45 GMT
etag: "d99e-58634bf08ce40"
accept-ranges: bytes
content-length: 55710
content-type: image/png
X-Firefox-Spdy: h2
travelbeyond.com/wp-content/uploads/2015/06/destination-africa.png
64.225.58.36200 OK 69 kB URL HTTP/2 travelbeyond.com/wp-content/uploads/2015/06/destination-africa.png
IP 64.225.58.36:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash 984ccb30b9775b791f2bddda72be16ce
29db8de6e68d909b91d6a65d4215d764f42577e3
0109ec31a460b39f60d0d2ea26aef828fe7b7335aed28e83b8a5947ede4f98c6
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2015/06/destination-africa.png HTTP/1.1
Host: travelbeyond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://travelbeyond.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:46:40 GMT
server: Apache
last-modified: Wed, 10 Apr 2019 22:39:45 GMT
etag: "10c1d-58634bf08ce40"
accept-ranges: bytes
content-length: 68637
content-type: image/png
X-Firefox-Spdy: h2
travelbeyond.com/wp-content/uploads/2015/06/destination-seasia-adjusted-1.png
64.225.58.36200 OK 69 kB URL HTTP/2 travelbeyond.com/wp-content/uploads/2015/06/destination-seasia-adjusted-1.png
IP 64.225.58.36:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash d031fba490cf2f644add8fa1b13992ca
b5324038ad5bc13107b290f409eee5b841b8c1ea
25670dbc3eab3d891192c7e8efae023d5a1a1affcdbd4858ac4fafaa8e19bca7
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2015/06/destination-seasia-adjusted-1.png HTTP/1.1
Host: travelbeyond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://travelbeyond.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:46:40 GMT
server: Apache
last-modified: Wed, 10 Apr 2019 22:39:45 GMT
etag: "10d84-58634bf08ce40"
accept-ranges: bytes
content-length: 68996
content-type: image/png
X-Firefox-Spdy: h2
travelbeyond.com/wp-content/uploads/2015/09/ThinkstockPhotos-476236463_sunset-in-kruger.jpg
64.225.58.36200 OK 345 kB URL HTTP/2 travelbeyond.com/wp-content/uploads/2015/09/ThinkstockPhotos-476236463_sunset-in-kruger.jpg
IP 64.225.58.36:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1800x1200, components 3\012- data
Size 345 kB (345249 bytes)
Hash fc63585cae0999c0cadeb2acc06618b3
2787c937b1d94da1f488b3c823ffad391a8a962f
3ce26c5f76425d84082afe88eb9f9c925fef524f1dc58033ca5272553f4ee44b
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2015/09/ThinkstockPhotos-476236463_sunset-in-kruger.jpg HTTP/1.1
Host: travelbeyond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://travelbeyond.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:46:39 GMT
server: Apache
last-modified: Wed, 10 Apr 2019 22:39:39 GMT
etag: "544a1-58634bead40c0"
accept-ranges: bytes
content-length: 345249
content-type: image/jpeg
X-Firefox-Spdy: h2
travelbeyond.com/wp-content/uploads/2016/01/Hoanib_Skeleton_Coast_2014-08-370e-1600x1065.jpg
64.225.58.36200 OK 972 kB URL HTTP/2 travelbeyond.com/wp-content/uploads/2016/01/Hoanib_Skeleton_Coast_2014-08-370e-1600x1065.jpg
IP 64.225.58.36:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=9, orientation=upper-left, xresolution=2182, yresolution=2190, resolutionunit=2, datetime=2016:01:05 13:05:47], baseline, precision 8, 1600x1065, components 3\012- data
Size 972 kB (972165 bytes)
Hash 35972a98ae91124c68b18401f73c94f0
d5f982ab069f2d73ab9cd282cb0f6b696d70d7ca
12aefd3e6853bc25dd4424cb32b48bea304454074c96d4626f015d629a9bdc9a
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2016/01/Hoanib_Skeleton_Coast_2014-08-370e-1600x1065.jpg HTTP/1.1
Host: travelbeyond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://travelbeyond.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:46:40 GMT
server: Apache
last-modified: Wed, 10 Apr 2019 22:39:13 GMT
etag: "ed585-58634bd208640"
accept-ranges: bytes
content-length: 972165
content-type: image/jpeg
X-Firefox-Spdy: h2
travelbeyond.com/wp-content/uploads/2022/09/New-Home-Page-Cover-Photo-scaled-e1664484900319.jpg
64.225.58.36200 OK 177 kB URL HTTP/2 travelbeyond.com/wp-content/uploads/2022/09/New-Home-Page-Cover-Photo-scaled-e1664484900319.jpg
IP 64.225.58.36:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1600x1067, components 3\012- data
Size 177 kB (177382 bytes)
Hash 334be7439fd78bb8ecfc8edd03c4fe9f
63adc8927cbdfe0ec728ecb3c49c38692292bcc8
a37a77311b5ac7282d1db1be0ae8eb11537dc016e62389853e7db9cd7b0f219d
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/09/New-Home-Page-Cover-Photo-scaled-e1664484900319.jpg HTTP/1.1
Host: travelbeyond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://travelbeyond.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:46:40 GMT
server: Apache
last-modified: Thu, 29 Sep 2022 20:55:00 GMT
etag: "2b4e6-5e9d7173f33a2"
accept-ranges: bytes
content-length: 177382
content-type: image/jpeg
X-Firefox-Spdy: h2
travelbeyond.com/wp-content/themes/travelbeyond/assets/images/canvas-bg.jpg
64.225.58.36200 OK 30 kB URL HTTP/2 travelbeyond.com/wp-content/themes/travelbeyond/assets/images/canvas-bg.jpg
IP 64.225.58.36:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 315x315, components 3\012- data
Hash ce35af631564971cb74eaa8dd7be1a7e
8052fc83c2b641363bd1bdb396dc5b67c71d41a6
d42aa776d16addf8946eb957e27576ad62d8526f7985de1a7b1bf103e5ee45b3
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/travelbeyond/assets/images/canvas-bg.jpg HTTP/1.1
Host: travelbeyond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://travelbeyond.com/wp-content/themes/travelbeyond/assets/css/style.css?v=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:46:40 GMT
server: Apache
last-modified: Wed, 10 Apr 2019 22:39:56 GMT
etag: "73a4-58634bfb0a700"
accept-ranges: bytes
content-length: 29604
content-type: image/jpeg
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6545
Expires: Sat, 04 Feb 2023 01:35:45 GMT
Date: Fri, 03 Feb 2023 23:46:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6545
Expires: Sat, 04 Feb 2023 01:35:45 GMT
Date: Fri, 03 Feb 2023 23:46:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6545
Expires: Sat, 04 Feb 2023 01:35:45 GMT
Date: Fri, 03 Feb 2023 23:46:40 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cf80667db0c35c9c6139eca4ba5d12fd
4c4cfdc2463e8704a7bf8e1477c43b6adf7c7590
d63e69f4b6ea16333d242bf33d4f02a4a6c96a739ca018d86afc5741d85b774d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13065
x-amzn-requestid: 54c06759-6fab-455c-be34-496ee42a2580
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSZLQEqroAMFyWA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0d57b-2237358a5cc22b8003af1852;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 07:08:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: oc3NhvAmcrO3msFYF2ITsEpq8a2wsOLkXtmZxRQpmse84yml0l9PNA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:46:57 GMT
age: 7183
etag: "4c4cfdc2463e8704a7bf8e1477c43b6adf7c7590"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
travelbeyond.com/wp-content/themes/travelbeyond/assets/images/bkg-why-tb.png
64.225.58.36200 OK 620 kB URL HTTP/2 travelbeyond.com/wp-content/themes/travelbeyond/assets/images/bkg-why-tb.png
IP 64.225.58.36:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 1200 x 477, 8-bit/color RGBA, non-interlaced\012- data
Size 620 kB (619516 bytes)
Hash abef98b287d7e39b265906d9964ce5df
3f98b482de72cddf723337cf8ca62b639a7aa2f9
4a75e2d18219f2476bff937a207a456efc8512411b884c4a0be4585aa04e24be
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/travelbeyond/assets/images/bkg-why-tb.png HTTP/1.1
Host: travelbeyond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://travelbeyond.com/wp-content/themes/travelbeyond/assets/css/style.css?v=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:46:40 GMT
server: Apache
last-modified: Wed, 10 Apr 2019 22:39:56 GMT
etag: "973fc-58634bfb0a700"
accept-ranges: bytes
content-length: 619516
content-type: image/png
X-Firefox-Spdy: h2
travelbeyond.com/wp-content/themes/travelbeyond/assets/webfonts/2EFFFE_4_0.woff2
64.225.58.36200 OK 40 kB URL HTTP/2 travelbeyond.com/wp-content/themes/travelbeyond/assets/webfonts/2EFFFE_4_0.woff2
IP 64.225.58.36:0
ASN #14061 DIGITALOCEAN-ASN
File type Web Open Font Format (Version 2), TrueType, length 39952, version 1.0\012- data
Hash a1375d45b014264cb1b03d00c2953d8b
4f81a4c5a930dca92f03c4478194196cd0014602
69ed6d0d661e03972b9732dd660125376fe4d9b2d38743f7bd8a95a6b149661e
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/travelbeyond/assets/webfonts/2EFFFE_4_0.woff2 HTTP/1.1
Host: travelbeyond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://travelbeyond.com/wp-content/themes/travelbeyond/assets/css/style.css?v=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:46:40 GMT
server: Apache
last-modified: Wed, 10 Apr 2019 22:39:56 GMT
etag: "9c10-58634bfb0a700"
accept-ranges: bytes
content-length: 39952
content-type: font/woff2
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0567732b-c9d0-4bac-89d8-3dc6a16e522c.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0567732b-c9d0-4bac-89d8-3dc6a16e522c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 99bf0073acf75f9e04b52a96bf47797b
fa68da2c92fa89ed3dafe9915e064fca022af21f
961b77616486483e5767f214d2417275b9c995614128acab3521b6cd2f8866e2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0567732b-c9d0-4bac-89d8-3dc6a16e522c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8267
x-amzn-requestid: 8bf1f9c3-4508-489e-9f45-3ce50df74b0b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEW0HM6IAMFXog=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd80f8-2e7c768d54981cf1634830db;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:47:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: slDJVVNZDwjopU0kXbAvAJw4A0I_hGKXbRf9O15sXxmvu0JXe8yuPA==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:17:59 GMT
etag: "fa68da2c92fa89ed3dafe9915e064fca022af21f"
content-type: image/jpeg
age: 5321
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
travelbeyond.com/wp-content/themes/travelbeyond/assets/webfonts/2EFFFE_5_0.woff2
64.225.58.36200 OK 89 kB URL HTTP/2 travelbeyond.com/wp-content/themes/travelbeyond/assets/webfonts/2EFFFE_5_0.woff2
IP 64.225.58.36:0
ASN #14061 DIGITALOCEAN-ASN
File type Web Open Font Format (Version 2), TrueType, length 88723, version 1.0\012- data
Hash cc67139004e7042058183ba0fe587c69
fed2f9387d7c4771e753df2729b320d2fc5cb536
33e8d36c94ddc19c8bcc333fcaa587003ee652f48b153501483f04dbc22268ec
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/travelbeyond/assets/webfonts/2EFFFE_5_0.woff2 HTTP/1.1
Host: travelbeyond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://travelbeyond.com/wp-content/themes/travelbeyond/assets/css/style.css?v=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:46:40 GMT
server: Apache
last-modified: Wed, 10 Apr 2019 22:39:56 GMT
etag: "15a93-58634bfb0a700"
accept-ranges: bytes
content-length: 88723
content-type: font/woff2
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b2d6920-2a79-45a8-b007-d36cc875c52f.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b2d6920-2a79-45a8-b007-d36cc875c52f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3ac51fd6789cbe19c2d484c9022b0e39
bcba22a7b7f5dd1f59fffd1027e5d7002cecb6e9
300b5e50cb910f9f4905ee7313d98763b68f85f5874db499cc94469fb14cabfe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b2d6920-2a79-45a8-b007-d36cc875c52f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9500
x-amzn-requestid: 8fe94388-e8d9-4329-b73a-e9a356df76bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD9QEA1IAMF3Ug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8054-51f954ac4bec16d1055e38f5;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FkTJ6wQ4eFYBPDyS0l5vLeWvHHiQIx-cYyFzT4ggHJ8M5Gg3dozFxQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:30:36 GMT
age: 4564
etag: "bcba22a7b7f5dd1f59fffd1027e5d7002cecb6e9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
travelbeyond.com/wp-content/themes/travelbeyond/assets/webfonts/2EFFFE_3_0.woff2
64.225.58.36200 OK 35 kB URL HTTP/2 travelbeyond.com/wp-content/themes/travelbeyond/assets/webfonts/2EFFFE_3_0.woff2
IP 64.225.58.36:0
ASN #14061 DIGITALOCEAN-ASN
File type Web Open Font Format (Version 2), TrueType, length 35179, version 1.0\012- data
Hash 1a52b5e3f4ea67d0912fdf212277e076
0d9a11dd5e6cd24c90d9a518c011a71f713463de
89a3e7accc1c657f50ee3892c7afa01c9c3d661973dcafb3029d1bcaba614f62
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/travelbeyond/assets/webfonts/2EFFFE_3_0.woff2 HTTP/1.1
Host: travelbeyond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://travelbeyond.com/wp-content/themes/travelbeyond/assets/css/style.css?v=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:46:40 GMT
server: Apache
last-modified: Wed, 10 Apr 2019 22:39:56 GMT
etag: "896b-58634bfb0a700"
accept-ranges: bytes
content-length: 35179
content-type: font/woff2
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe387e59d-188b-44a0-b94c-033d7d635117.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe387e59d-188b-44a0-b94c-033d7d635117.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 45c6a062f8637e689819f505b019dc0e
61665688f1039c4fad848853a68e28d057718ad1
c9b14113eba535a2e1a6cbbf121a818ad0204fc6dd7b2ea9b592830ab927d6d1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe387e59d-188b-44a0-b94c-033d7d635117.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6718
x-amzn-requestid: 662f889b-4c25-4dec-85d4-ea9dfa8b8974
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7DE5boAMF_cA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-33ca99fc7b6eac8d5486d6c1;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WvNs1hPPXHBJs5rTIBqH3DbqLLX6si9jHF46KrsuT9BFB2N2V3zeUA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:06:20 GMT
age: 6020
etag: "61665688f1039c4fad848853a68e28d057718ad1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
travelbeyond.com/wp-content/themes/travelbeyond/assets/webfonts/2EFFFE_1_0.woff2
64.225.58.36200 OK 44 kB URL HTTP/2 travelbeyond.com/wp-content/themes/travelbeyond/assets/webfonts/2EFFFE_1_0.woff2
IP 64.225.58.36:0
ASN #14061 DIGITALOCEAN-ASN
File type Web Open Font Format (Version 2), TrueType, length 44228, version 1.0\012- data
Hash 923e1c0d8810ecfbd62e17d42c73c019
2c9652111254ce08ccee87b38be7011654545cf6
24cdaba24ff77ee54bd65343f60ba1a4bc24964ae019dc25637acdff32ddc935
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/travelbeyond/assets/webfonts/2EFFFE_1_0.woff2 HTTP/1.1
Host: travelbeyond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://travelbeyond.com/wp-content/themes/travelbeyond/assets/css/style.css?v=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:46:40 GMT
server: Apache
last-modified: Wed, 10 Apr 2019 22:39:56 GMT
etag: "acc4-58634bfb0a700"
accept-ranges: bytes
content-length: 44228
content-type: font/woff2
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 392b61306c346508d3ac4a2f28218f9c
d2de32b52e0d3f4fc6acaf687b3521294b01dc03
018712a4d6734b84ac1777124f97dae4d93b1e5b297a5dcfe0955b52710b8a35
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10253
x-amzn-requestid: a90cb6b3-8a72-4b4b-b4f5-6dafc8c6752a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7GGv5IAMFu8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-3ca59e7c52800a4e44bda8fd;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: G8F3Fflod6HB4QFtjpD09xzi-2LKPw_DBJT0PKYKU3bs3pvOwO_LRw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:32 GMT
age: 5768
etag: "d2de32b52e0d3f4fc6acaf687b3521294b01dc03"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F650fe1e4-0f8a-4306-9cff-2ad3248d13b1.jpeg
34.120.237.76200 OK 3.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F650fe1e4-0f8a-4306-9cff-2ad3248d13b1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 77e225775154732b55c206faa6fce355
126bdaa18d9a1650b5e3a4e883d89188e8bbf136
af7fb0e6cfe7082af183bd2ba5ef43ab3ef3f9e6df2761ed4534bd48aa078798
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F650fe1e4-0f8a-4306-9cff-2ad3248d13b1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3868
x-amzn-requestid: f130379c-2ea2-43d6-a1b0-e3afd4811bc3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEwLFYgIAMFzwg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd819a-3d0199ab38a410ff7a78a675;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:50:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QrCYar2bxFJ_7bBH-5oJ4qdaS58NXDwNJxLI7ILxrBkzvzGV95PSFw==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:30:36 GMT
etag: "126bdaa18d9a1650b5e3a4e883d89188e8bbf136"
content-type: image/jpeg
age: 4564
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 7d482750bf7fdfcaa38c0efd583ef4dc
a4f68a124e4be130bc838e70f23fd4c6d2f4ef2d
5e6f1cadf4bc425664bb26fa2b384cf13900461b689c77d0916b1d2edd41337c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 23:46:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
216.239.36.178200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.239.36.178:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://travelbeyond.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Fri, 03 Feb 2023 23:44:08 GMT
expires: Sat, 04 Feb 2023 01:44:08 GMT
cache-control: public, max-age=7200
age: 152
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
travelbeyond.com/wp-content/themes/travelbeyond/assets/images/favicon.png
64.225.58.36200 OK 2.0 kB URL HTTP/2 travelbeyond.com/wp-content/themes/travelbeyond/assets/images/favicon.png
IP 64.225.58.36:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash 555bee21c349cc7471f10d132c0883bc
947118238740abec148921e4c89457b8e1bfb831
c357cd8fa060cd1d7d3f5756df4532e6a742ad3c90420c1036fcd95635e50771
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/travelbeyond/assets/images/favicon.png HTTP/1.1
Host: travelbeyond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://travelbeyond.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 23:46:40 GMT
server: Apache
last-modified: Wed, 10 Apr 2019 22:39:56 GMT
etag: "7f6-58634bfb0a700"
accept-ranges: bytes
content-length: 2038
content-type: image/png
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 7d482750bf7fdfcaa38c0efd583ef4dc
a4f68a124e4be130bc838e70f23fd4c6d2f4ef2d
5e6f1cadf4bc425664bb26fa2b384cf13900461b689c77d0916b1d2edd41337c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 23:46:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/j/collect?v=1&_v=j99&a=943109880&t=pageview&_s=1&dl=https%3A%2F%2Ftravelbeyond.com%2F&ul=en-us&de=UTF-8&dt=Travel%20Beyond%20%7C%C2%A0Luxury%20Experiences%20%26%20Custom%20Travel%20Planning&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=673030429&gjid=1894299207&cid=855823026.1675468034&tid=UA-5641318-1&_gid=499005203.1675468034&_r=1&_slc=1&z=1054055030
216.239.36.178200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=943109880&t=pageview&_s=1&dl=https%3A%2F%2Ftravelbeyond.com%2F&ul=en-us&de=UTF-8&dt=Travel%20Beyond%20%7C%C2%A0Luxury%20Experiences%20%26%20Custom%20Travel%20Planning&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=673030429&gjid=1894299207&cid=855823026.1675468034&tid=UA-5641318-1&_gid=499005203.1675468034&_r=1&_slc=1&z=1054055030
IP 216.239.36.178:0
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j99&a=943109880&t=pageview&_s=1&dl=https%3A%2F%2Ftravelbeyond.com%2F&ul=en-us&de=UTF-8&dt=Travel%20Beyond%20%7C%C2%A0Luxury%20Experiences%20%26%20Custom%20Travel%20Planning&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=673030429&gjid=1894299207&cid=855823026.1675468034&tid=UA-5641318-1&_gid=499005203.1675468034&_r=1&_slc=1&z=1054055030 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://travelbeyond.com
Connection: keep-alive
Referer: https://travelbeyond.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://travelbeyond.com
date: Fri, 03 Feb 2023 23:46:40 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e70636-fb7d-4a6e-9742-a039e4d7253d.jpeg
34.120.237.76200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e70636-fb7d-4a6e-9742-a039e4d7253d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 41580a501cc07c328e6ab6b167a110dc
a4dfa0f479b5f9a036b75b2eea6dffabd3a3486e
0fa45161e563101b3f1293f951a3edf84c88c9f3b29bed9b54f952ca325bf21d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e70636-fb7d-4a6e-9742-a039e4d7253d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7101
x-amzn-requestid: 479d8004-430a-45b9-99fa-11cbcc605a7c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7EHxqoAMFaug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-25ac3c54427748bc191fd1ba;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6h25M_XSVuTCF-9FkTtwujV0X-0-M9fvw4ouOBFmSnMWeApCSHmBsA==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:13:30 GMT
age: 5597
etag: "a4dfa0f479b5f9a036b75b2eea6dffabd3a3486e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2