195.154.50.35302 Found 0 B URL User Request GET HTTP/2 IP 195.154.50.35:443
Certificate IssuerLet's Encrypt
Subjectdav-beut.com
FingerprintF3:B0:4F:72:3C:AE:A1:3D:A8:DE:2D:C6:4C:22:21:D4:79:98:0D:E9
ValidityThu, 01 Jun 2023 03:37:38 GMT - Wed, 30 Aug 2023 03:37:37 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /gate.php HTTP/1.1
Host: dav-beut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Fri, 09 Jun 2023 19:40:35 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://dav-beut.com/
expires: Fri, 16 Jun 2023 19:40:35 GMT
cache-control: public, stale-while-revalidate=86400, stale-if-error=86400
x-cache: MISS
X-Firefox-Spdy: h2
195.154.50.35200 OK 14 kB URL User Request GET HTTP/2 IP 195.154.50.35:443
Certificate IssuerLet's Encrypt
Subjectdav-beut.com
FingerprintF3:B0:4F:72:3C:AE:A1:3D:A8:DE:2D:C6:4C:22:21:D4:79:98:0D:E9
ValidityThu, 01 Jun 2023 03:37:38 GMT - Wed, 30 Aug 2023 03:37:37 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9397)
Hash a5816e23dca7a8300702088338e4adde
cd6ad3ba2cd9711e1871150d42361144bed10970
24b70914d87d3ca5e3572d411e88a5e58a359a3a90ca16626b5211799a204744
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET / HTTP/1.1
Host: dav-beut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 19:40:35 GMT
content-type: text/html; charset=UTF-8
content-length: 14297
link: <https://dav-beut.com/wp-json/>; rel="https://api.w.org/", <https://dav-beut.com/wp-json/wp/v2/pages/1415>; rel="alternate"; type="application/json", <https://dav-beut.com/>; rel=shortlink
x-mod-pagespeed: 1.13.35.2-0
vary: Accept-Encoding
content-encoding: gzip
cache-control: public, stale-while-revalidate=86400, stale-if-error=86400
x-cache: HIT
X-Firefox-Spdy: h2
dav-beut.com/wp-includes/css/dist/block-library/A.style.min.css,qver=6.2.2.pagespeed.cf.1qpRdvAQUt.css
195.154.50.35200 OK 13 kB URL GET HTTP/2 dav-beut.com/wp-includes/css/dist/block-library/A.style.min.css,qver=6.2.2.pagespeed.cf.1qpRdvAQUt.css
IP 195.154.50.35:443
Certificate IssuerLet's Encrypt
Subjectdav-beut.com
FingerprintF3:B0:4F:72:3C:AE:A1:3D:A8:DE:2D:C6:4C:22:21:D4:79:98:0D:E9
ValidityThu, 01 Jun 2023 03:37:38 GMT - Wed, 30 Aug 2023 03:37:37 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash d6aa5176f01052d23898809c75aee9ea
cc7786d5c8f7631b932ad3ccb778df7b7c690e05
e3a29f46e4f3e922853073af4af1b4e8f44d4a544fdd3fcb0e635701d69f61c9
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/css/dist/block-library/A.style.min.css,qver=6.2.2.pagespeed.cf.1qpRdvAQUt.css HTTP/1.1
Host: dav-beut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dav-beut.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 19:40:36 GMT
content-type: text/css
content-length: 12685
expires: Thu, 31 Dec 2037 23:55:55 GMT
etag: W/"0-gzip"
last-modified: Thu, 08 Jun 2023 00:21:02 GMT
x-original-content-length: 97517
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=315360000, public, stale-while-revalidate=86400, stale-if-error=86400
accept-ranges: bytes
X-Firefox-Spdy: h2
dav-beut.com/wp-includes/css/A.classic-themes.min.css,qver=6.2.2.pagespeed.cf.ILQxq27NYr.css
195.154.50.35200 OK 181 B URL GET HTTP/2 dav-beut.com/wp-includes/css/A.classic-themes.min.css,qver=6.2.2.pagespeed.cf.ILQxq27NYr.css
IP 195.154.50.35:443
Certificate IssuerLet's Encrypt
Subjectdav-beut.com
FingerprintF3:B0:4F:72:3C:AE:A1:3D:A8:DE:2D:C6:4C:22:21:D4:79:98:0D:E9
ValidityThu, 01 Jun 2023 03:37:38 GMT - Wed, 30 Aug 2023 03:37:37 GMT
File type ASCII text, with no line terminators
Hash 20b431ab6ecd62bdb35135b32eb9456a
3e29632d6e9b1ac96cb78a6516cc1c0bd62801ab
e4bcd94be0915aef192ceddc43670dd8c0e0ce48d1dfe92ac93fc7c445796613
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/css/A.classic-themes.min.css,qver=6.2.2.pagespeed.cf.ILQxq27NYr.css HTTP/1.1
Host: dav-beut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dav-beut.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 19:40:36 GMT
content-type: text/css
content-length: 181
expires: Thu, 31 Dec 2037 23:55:55 GMT
etag: W/"0-gzip"
last-modified: Thu, 08 Jun 2023 00:21:02 GMT
x-original-content-length: 291
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=315360000, public, stale-while-revalidate=86400, stale-if-error=86400
accept-ranges: bytes
X-Firefox-Spdy: h2
dav-beut.com/wp-content/themes/onepress/assets/css/A.animate.min.css,qver=2.3.4.pagespeed.cf.hLERmlwEp2.css
195.154.50.35200 OK 3.7 kB URL GET HTTP/2 dav-beut.com/wp-content/themes/onepress/assets/css/A.animate.min.css,qver=2.3.4.pagespeed.cf.hLERmlwEp2.css
IP 195.154.50.35:443
Certificate IssuerLet's Encrypt
Subjectdav-beut.com
FingerprintF3:B0:4F:72:3C:AE:A1:3D:A8:DE:2D:C6:4C:22:21:D4:79:98:0D:E9
ValidityThu, 01 Jun 2023 03:37:38 GMT - Wed, 30 Aug 2023 03:37:37 GMT
File type ASCII text, with very long lines (55154), with no line terminators
Hash 84b1119a5c04a763bb28034a19ac6874
e9841847433e30618aa1bb0758f2737c06053de4
e2bdf6b0eb6bb102b9e0f3aef76ce39449f9a97d67291307602e039754c61df5
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/onepress/assets/css/A.animate.min.css,qver=2.3.4.pagespeed.cf.hLERmlwEp2.css HTTP/1.1
Host: dav-beut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dav-beut.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 19:40:36 GMT
content-type: text/css
content-length: 3735
expires: Thu, 31 Dec 2037 23:55:55 GMT
etag: W/"0-gzip"
last-modified: Thu, 08 Jun 2023 00:21:02 GMT
x-original-content-length: 55317
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=315360000, public, stale-while-revalidate=86400, stale-if-error=86400
accept-ranges: bytes
X-Firefox-Spdy: h2
dav-beut.com/wp-content/themes/onepress/assets/css/A.font-awesome.min.css,qver=4.7.0.pagespeed.cf.eLXJs2iETU.css
195.154.50.35200 OK 7.0 kB URL GET HTTP/2 dav-beut.com/wp-content/themes/onepress/assets/css/A.font-awesome.min.css,qver=4.7.0.pagespeed.cf.eLXJs2iETU.css
IP 195.154.50.35:443
Certificate IssuerLet's Encrypt
Subjectdav-beut.com
FingerprintF3:B0:4F:72:3C:AE:A1:3D:A8:DE:2D:C6:4C:22:21:D4:79:98:0D:E9
ValidityThu, 01 Jun 2023 03:37:38 GMT - Wed, 30 Aug 2023 03:37:37 GMT
File type ASCII text, with very long lines (30820), with no line terminators
Hash 78b5c9b368844d4b2b9bcf45eca63c20
1019df40227441bd8e76ba6203ad4efa911b76ed
82c89e06f442ffabd087ea33b10122c30b307b8692e6e42b25a536ce9116bd39
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/onepress/assets/css/A.font-awesome.min.css,qver=4.7.0.pagespeed.cf.eLXJs2iETU.css HTTP/1.1
Host: dav-beut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dav-beut.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 19:40:36 GMT
content-type: text/css
content-length: 6952
expires: Thu, 31 Dec 2037 23:55:55 GMT
etag: W/"0-gzip"
last-modified: Thu, 08 Jun 2023 00:21:02 GMT
x-original-content-length: 31020
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=315360000, public, stale-while-revalidate=86400, stale-if-error=86400
accept-ranges: bytes
X-Firefox-Spdy: h2
dav-beut.com/wp-content/themes/onepress/assets/css/A.bootstrap.min.css,qver=2.3.4.pagespeed.cf.hQUtPwC8Js.css
195.154.50.35200 OK 19 kB URL GET HTTP/2 dav-beut.com/wp-content/themes/onepress/assets/css/A.bootstrap.min.css,qver=2.3.4.pagespeed.cf.hQUtPwC8Js.css
IP 195.154.50.35:443
Certificate IssuerLet's Encrypt
Subjectdav-beut.com
FingerprintF3:B0:4F:72:3C:AE:A1:3D:A8:DE:2D:C6:4C:22:21:D4:79:98:0D:E9
ValidityThu, 01 Jun 2023 03:37:38 GMT - Wed, 30 Aug 2023 03:37:37 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 85052d3f00bc26cad314300bd2ffb048
0851c7e2e8d0989027af19dcc3a7c78e3d6adbfc
971d909409e3e1fa6fdeb0029ae9d5601fc600e43a5a69a9601f0b06c7e6259c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/onepress/assets/css/A.bootstrap.min.css,qver=2.3.4.pagespeed.cf.hQUtPwC8Js.css HTTP/1.1
Host: dav-beut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dav-beut.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 19:40:36 GMT
content-type: text/css
content-length: 19023
expires: Thu, 31 Dec 2037 23:55:55 GMT
etag: W/"0-gzip"
last-modified: Thu, 08 Jun 2023 00:21:02 GMT
x-original-content-length: 129301
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=315360000, public, stale-while-revalidate=86400, stale-if-error=86400
accept-ranges: bytes
X-Firefox-Spdy: h2
dav-beut.com/wp-content/themes/onepress/style.css?ver=6.2.2
195.154.50.35200 OK 17 kB URL GET HTTP/2 dav-beut.com/wp-content/themes/onepress/style.css?ver=6.2.2
IP 195.154.50.35:443
Certificate IssuerLet's Encrypt
Subjectdav-beut.com
FingerprintF3:B0:4F:72:3C:AE:A1:3D:A8:DE:2D:C6:4C:22:21:D4:79:98:0D:E9
ValidityThu, 01 Jun 2023 03:37:38 GMT - Wed, 30 Aug 2023 03:37:37 GMT
File type Unicode text, UTF-8 text, with very long lines (429)
Hash 97e96eaf5b8a77f7cbbd4f1c60f2f461
7ca13409777e01003a9b82d275926798069a4e17
0c897e0c60d43dfdb5c1b1066306a78daa5bfb5793ccdbabe0a9832a2e600a21
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/onepress/style.css?ver=6.2.2 HTTP/1.1
Host: dav-beut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dav-beut.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 19:40:36 GMT
content-type: text/css
content-length: 17357
last-modified: Wed, 24 May 2023 19:01:30 GMT
etag: "1894d-5fc7521b4563a-gzip"
vary: Accept-Encoding
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-content-type-options: nosniff
content-encoding: gzip
cache-control: max-age=315360000, public, stale-while-revalidate=86400, stale-if-error=86400
accept-ranges: bytes
X-Firefox-Spdy: h2
dav-beut.com/wp-content/themes/onepress/assets/css/lightgallery.css?ver=6.2.2
195.154.50.35200 OK 4.0 kB URL GET HTTP/2 dav-beut.com/wp-content/themes/onepress/assets/css/lightgallery.css?ver=6.2.2
IP 195.154.50.35:443
Certificate IssuerLet's Encrypt
Subjectdav-beut.com
FingerprintF3:B0:4F:72:3C:AE:A1:3D:A8:DE:2D:C6:4C:22:21:D4:79:98:0D:E9
ValidityThu, 01 Jun 2023 03:37:38 GMT - Wed, 30 Aug 2023 03:37:37 GMT
Hash 276c525e0fed9c5df9e9958cf2d5fbd5
9a68f7d223c46b000d681e1f8dde9a6a73328380
7bb167b25d3bbae5246019df9d374fc0663a67a7adf5f74cb9a62c85d6b1493d
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/onepress/assets/css/lightgallery.css?ver=6.2.2 HTTP/1.1
Host: dav-beut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dav-beut.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 19:40:36 GMT
content-type: text/css
content-length: 3962
last-modified: Wed, 24 May 2023 19:01:30 GMT
etag: "5970-5fc7521b3aa5a-gzip"
vary: Accept-Encoding
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-content-type-options: nosniff
content-encoding: gzip
cache-control: max-age=315360000, public, stale-while-revalidate=86400, stale-if-error=86400
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash df893f12f5cf31daedf4910ffcc872c8
bbd271b0e76cd11d6a00327914b74882c95655fb
134d16adfc51baecc40c9fba86cc6c2d37b489435c99878912d1948543a0337b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 19:40:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dav-beut.com/wp-content/plugins/wpforms-lite/assets/css/frontend/modern/wpforms-full.min.css?ver=1.8.2.1
195.154.50.35200 OK 10 kB URL GET HTTP/2 dav-beut.com/wp-content/plugins/wpforms-lite/assets/css/frontend/modern/wpforms-full.min.css?ver=1.8.2.1
IP 195.154.50.35:443
Certificate IssuerLet's Encrypt
Subjectdav-beut.com
FingerprintF3:B0:4F:72:3C:AE:A1:3D:A8:DE:2D:C6:4C:22:21:D4:79:98:0D:E9
ValidityThu, 01 Jun 2023 03:37:38 GMT - Wed, 30 Aug 2023 03:37:37 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash f8e9f87ef3ee53d963afd70b92b67260
2bcb1654f182d85341e9ad6a52ac661fd6299abe
4716b55501f54219d1bb29dd606a1a59645b58b8e75a0325a4edd5bc43159eee
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/wpforms-lite/assets/css/frontend/modern/wpforms-full.min.css?ver=1.8.2.1 HTTP/1.1
Host: dav-beut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dav-beut.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 19:40:36 GMT
content-type: text/css
content-length: 10267
last-modified: Thu, 08 Jun 2023 06:15:57 GMT
etag: "16bd6-5fd982f7dde78-gzip"
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=315360000, public, stale-while-revalidate=86400, stale-if-error=86400
accept-ranges: bytes
X-Firefox-Spdy: h2
dav-beut.com/pagespeed_static/js_defer.I4cHjq6EEP.js
195.154.50.35200 OK 4.2 kB URL GET HTTP/2 dav-beut.com/pagespeed_static/js_defer.I4cHjq6EEP.js
IP 195.154.50.35:443
Certificate IssuerLet's Encrypt
Subjectdav-beut.com
FingerprintF3:B0:4F:72:3C:AE:A1:3D:A8:DE:2D:C6:4C:22:21:D4:79:98:0D:E9
ValidityThu, 01 Jun 2023 03:37:38 GMT - Wed, 30 Aug 2023 03:37:37 GMT
File type ASCII text, with very long lines (534)
Hash 2387078eae8410f7e540e3866bcb2fda
324d38dcb7f7bcb16b355b6afdbbc87bd089422d
59dbda86041a5f394b83391ffe0b939341aabb817fa60a6ea78c80f5835596b5
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /pagespeed_static/js_defer.I4cHjq6EEP.js HTTP/1.1
Host: dav-beut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dav-beut.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 19:40:36 GMT
content-type: application/javascript
content-length: 4204
x-content-type-options: nosniff
last-modified: Fri, 09 Jun 2023 19:40:33 GMT
vary: Accept-Encoding
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public, stale-while-revalidate=86400, stale-if-error=86400
X-Firefox-Spdy: h2
dav-beut.com/wp-content/themes/onepress/assets/images/placholder2.png
195.154.50.35200 OK 4.1 kB URL GET HTTP/2 dav-beut.com/wp-content/themes/onepress/assets/images/placholder2.png
IP 195.154.50.35:443
Certificate IssuerLet's Encrypt
Subjectdav-beut.com
FingerprintF3:B0:4F:72:3C:AE:A1:3D:A8:DE:2D:C6:4C:22:21:D4:79:98:0D:E9
ValidityThu, 01 Jun 2023 03:37:38 GMT - Wed, 30 Aug 2023 03:37:37 GMT
File type PNG image data, 300 x 150, 8-bit colormap, non-interlaced\012- data
Hash 2baf0affdabbeee4bc69a41580cf99fc
18f2478f37cbe4e5d3cb6058e529fa820b281921
754d947c599947092d668cc223249c7c527f1869d57f48b3d874121ede99bf67
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/onepress/assets/images/placholder2.png HTTP/1.1
Host: dav-beut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dav-beut.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 19:40:36 GMT
content-type: image/png
content-length: 4118
last-modified: Wed, 24 May 2023 19:01:30 GMT
etag: "1016-5fc7521b3f87a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public, stale-while-revalidate=86400, stale-if-error=86400
accept-ranges: bytes
X-Firefox-Spdy: h2
dav-beut.com/wp-content/uploads/2023/05/videointro.jpg
195.154.50.35200 OK 134 kB URL GET HTTP/2 dav-beut.com/wp-content/uploads/2023/05/videointro.jpg
IP 195.154.50.35:443
Certificate IssuerLet's Encrypt
Subjectdav-beut.com
FingerprintF3:B0:4F:72:3C:AE:A1:3D:A8:DE:2D:C6:4C:22:21:D4:79:98:0D:E9
ValidityThu, 01 Jun 2023 03:37:38 GMT - Wed, 30 Aug 2023 03:37:37 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 900x626, components 3\012- data
Size 134 kB (133511 bytes)
Hash 4a79adbfee8f5f927550892635a1879b
e3f67689aa4f3ed65ab5d4666ee0f33767e8daa6
1554bf6ce05f579603e496e4f216034db1e35fe4ffb8334e7efe2b68f209f7cf
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2023/05/videointro.jpg HTTP/1.1
Host: dav-beut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dav-beut.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 19:40:36 GMT
content-type: image/jpeg
content-length: 133511
last-modified: Fri, 26 May 2023 11:08:32 GMT
etag: "20987-5fc96c1f0e4ba"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public, stale-while-revalidate=86400, stale-if-error=86400
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash df893f12f5cf31daedf4910ffcc872c8
bbd271b0e76cd11d6a00327914b74882c95655fb
134d16adfc51baecc40c9fba86cc6c2d37b489435c99878912d1948543a0337b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 19:40:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash cfa2f4faaa3c178ca36297b0c4264e37
7a77047e893a983873f15a67f94b2be4b114be43
faebb1831224e4843915d60cdc5f707ea6de1fd82d1e3b9620bc5c9b611729b6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 19:40:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data
Hash 31a8297826cdcea344698ff952694a7f
4fa1ee4c471d1c05e9141855eec5ee09b898d594
7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5
GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dav-beut.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Jun 2023 11:49:35 GMT
expires: Fri, 07 Jun 2024 11:49:35 GMT
cache-control: public, max-age=31536000
age: 114661
last-modified: Tue, 02 May 2023 15:08:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
216.58.207.227200 OK 46 kB URL GET HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
IP 216.58.207.227:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Hash c1fd378f54921c75e4ae1821e7b8fff6
2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826
GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dav-beut.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Jun 2023 10:39:52 GMT
expires: Wed, 05 Jun 2024 10:39:52 GMT
cache-control: public, max-age=31536000
age: 291644
last-modified: Mon, 18 Jul 2022 19:58:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
216.58.207.227200 OK 46 kB URL GET HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
IP 216.58.207.227:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Hash c1fd378f54921c75e4ae1821e7b8fff6
2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826
GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dav-beut.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Jun 2023 10:39:52 GMT
expires: Wed, 05 Jun 2024 10:39:52 GMT
cache-control: public, max-age=31536000
age: 291644
last-modified: Mon, 18 Jul 2022 19:58:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash cfa2f4faaa3c178ca36297b0c4264e37
7a77047e893a983873f15a67f94b2be4b114be43
faebb1831224e4843915d60cdc5f707ea6de1fd82d1e3b9620bc5c9b611729b6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 19:40:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data
Hash 31a8297826cdcea344698ff952694a7f
4fa1ee4c471d1c05e9141855eec5ee09b898d594
7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5
GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dav-beut.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Jun 2023 11:49:35 GMT
expires: Fri, 07 Jun 2024 11:49:35 GMT
cache-control: public, max-age=31536000
age: 114661
last-modified: Tue, 02 May 2023 15:08:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data
Hash 31a8297826cdcea344698ff952694a7f
4fa1ee4c471d1c05e9141855eec5ee09b898d594
7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5
GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dav-beut.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Jun 2023 11:49:35 GMT
expires: Fri, 07 Jun 2024 11:49:35 GMT
cache-control: public, max-age=31536000
age: 114661
last-modified: Tue, 02 May 2023 15:08:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v35/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
216.58.207.227200 OK 50 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v35/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP 216.58.207.227:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 50440, version 1.0\012- data
Hash 8d73136b592a1ac8169d957e49e381e8
9fef34759e0c807db6e6456b6eff648ba4692bf3
3642c7e774562f7483d7b0de93dd1759fc6928e85eebd7e62ddae72e9d46c9cb
GET /s/opensans/v35/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dav-beut.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 50440
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Jun 2023 17:35:18 GMT
expires: Wed, 05 Jun 2024 17:35:18 GMT
cache-control: public, max-age=31536000
age: 266718
last-modified: Tue, 02 May 2023 15:13:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
216.58.207.227200 OK 46 kB URL GET HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
IP 216.58.207.227:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Hash c1fd378f54921c75e4ae1821e7b8fff6
2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826
GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dav-beut.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Jun 2023 10:39:52 GMT
expires: Wed, 05 Jun 2024 10:39:52 GMT
cache-control: public, max-age=31536000
age: 291644
last-modified: Mon, 18 Jul 2022 19:58:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
216.58.207.227200 OK 46 kB URL GET HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
IP 216.58.207.227:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Hash c1fd378f54921c75e4ae1821e7b8fff6
2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826
GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dav-beut.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Jun 2023 10:39:52 GMT
expires: Wed, 05 Jun 2024 10:39:52 GMT
cache-control: public, max-age=31536000
age: 291644
last-modified: Mon, 18 Jul 2022 19:58:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data
Hash 31a8297826cdcea344698ff952694a7f
4fa1ee4c471d1c05e9141855eec5ee09b898d594
7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5
GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dav-beut.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Jun 2023 11:49:35 GMT
expires: Fri, 07 Jun 2024 11:49:35 GMT
cache-control: public, max-age=31536000
age: 114661
last-modified: Tue, 02 May 2023 15:08:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dav-beut.com/wp-content/themes/onepress/assets/fonts/fontawesome-webfont.woff2?v=4.7.0
195.154.50.35200 OK 77 kB URL GET HTTP/2 dav-beut.com/wp-content/themes/onepress/assets/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 195.154.50.35:443
Certificate IssuerLet's Encrypt
Subjectdav-beut.com
FingerprintF3:B0:4F:72:3C:AE:A1:3D:A8:DE:2D:C6:4C:22:21:D4:79:98:0D:E9
ValidityThu, 01 Jun 2023 03:37:38 GMT - Wed, 30 Aug 2023 03:37:37 GMT
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/onepress/assets/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: dav-beut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://dav-beut.com/wp-content/themes/onepress/assets/css/A.font-awesome.min.css,qver=4.7.0.pagespeed.cf.eLXJs2iETU.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 19:40:36 GMT
content-type: application/font-woff2
content-length: 77160
last-modified: Wed, 24 May 2023 19:01:30 GMT
etag: "12d68-5fc7521b3e8da"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public, stale-while-revalidate=86400, stale-if-error=86400
accept-ranges: bytes
X-Firefox-Spdy: h2
dav-beut.com/wp-content/uploads/2023/05/logo-1.png
195.154.50.35200 OK 4.4 kB URL GET HTTP/2 dav-beut.com/wp-content/uploads/2023/05/logo-1.png
IP 195.154.50.35:443
Certificate IssuerLet's Encrypt
Subjectdav-beut.com
FingerprintF3:B0:4F:72:3C:AE:A1:3D:A8:DE:2D:C6:4C:22:21:D4:79:98:0D:E9
ValidityThu, 01 Jun 2023 03:37:38 GMT - Wed, 30 Aug 2023 03:37:37 GMT
File type PNG image data, 200 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 0f7880ba155bfbe27253a54605d742f6
7a157859f58032fe3b689b1eef0ced60c7615d63
039a568e462d54869f53f12c495eef878a4eadc909ae8c8ec47beb3d4d7f6e2f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2023/05/logo-1.png HTTP/1.1
Host: dav-beut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dav-beut.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 19:40:36 GMT
content-type: image/png
content-length: 4449
last-modified: Thu, 25 May 2023 10:19:20 GMT
etag: "1161-5fc81f427adf4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public, stale-while-revalidate=86400, stale-if-error=86400
accept-ranges: bytes
X-Firefox-Spdy: h2
dav-beut.com/wp-content/uploads/2023/05/cropped-minicon-192x192.png
195.154.50.35200 OK 10 kB URL GET HTTP/2 dav-beut.com/wp-content/uploads/2023/05/cropped-minicon-192x192.png
IP 195.154.50.35:443
Certificate IssuerLet's Encrypt
Subjectdav-beut.com
FingerprintF3:B0:4F:72:3C:AE:A1:3D:A8:DE:2D:C6:4C:22:21:D4:79:98:0D:E9
ValidityThu, 01 Jun 2023 03:37:38 GMT - Wed, 30 Aug 2023 03:37:37 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 770cffb8333f53135b6cb2b2209b5c89
de02772ecdd93f9465dd08af8d0fb75fcd78049e
54f20aeee580670933d4bf91fb0f8cc0ba656f8f198620d59bbfcdb752df52b3
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2023/05/cropped-minicon-192x192.png HTTP/1.1
Host: dav-beut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dav-beut.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 19:40:36 GMT
content-type: image/png
content-length: 10134
last-modified: Thu, 25 May 2023 15:24:47 GMT
etag: "2796-5fc86387df7c6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-content-type-options: nosniff
cache-control: max-age=315360000, public, stale-while-revalidate=86400, stale-if-error=86400
accept-ranges: bytes
X-Firefox-Spdy: h2
dav-beut.com/wp-content/uploads/2023/05/cropped-minicon-32x32.png
195.154.50.35200 OK 2.3 kB URL GET HTTP/2 dav-beut.com/wp-content/uploads/2023/05/cropped-minicon-32x32.png
IP 195.154.50.35:443
Certificate IssuerLet's Encrypt
Subjectdav-beut.com
FingerprintF3:B0:4F:72:3C:AE:A1:3D:A8:DE:2D:C6:4C:22:21:D4:79:98:0D:E9
ValidityThu, 01 Jun 2023 03:37:38 GMT - Wed, 30 Aug 2023 03:37:37 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 8727707cfa8001bded58523e32036521
d48bd920a95127e808afed9f4c027a30dc310987
4da5895f389a2d59dab607ca3fcf97ff6565e4d9b31d9c8ad9ae008f16d58a70
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2023/05/cropped-minicon-32x32.png HTTP/1.1
Host: dav-beut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dav-beut.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 19:40:36 GMT
content-type: image/png
content-length: 2270
last-modified: Thu, 25 May 2023 15:24:47 GMT
etag: "8de-5fc86387e45e6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public, stale-while-revalidate=86400, stale-if-error=86400
accept-ranges: bytes
X-Firefox-Spdy: h2
dav-beut.com/wp-includes/js/jquery/jquery.min.js,qver=3.6.4.pagespeed.jm.eeevgC5Itb.js
195.154.50.35200 OK 31 kB URL GET HTTP/2 dav-beut.com/wp-includes/js/jquery/jquery.min.js,qver=3.6.4.pagespeed.jm.eeevgC5Itb.js
IP 195.154.50.35:443
Certificate IssuerLet's Encrypt
Subjectdav-beut.com
FingerprintF3:B0:4F:72:3C:AE:A1:3D:A8:DE:2D:C6:4C:22:21:D4:79:98:0D:E9
ValidityThu, 01 Jun 2023 03:37:38 GMT - Wed, 30 Aug 2023 03:37:37 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 79e7af802e48b5b881b7900681ef04c7
0fbeb7adc914af74f50d10fcaff1e13acf358820
d2aae4ca60bd21e6558dff1e09b6d299ffeb57171315d299ad3270ed43c00a99
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.min.js,qver=3.6.4.pagespeed.jm.eeevgC5Itb.js HTTP/1.1
Host: dav-beut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dav-beut.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 19:40:36 GMT
content-type: application/javascript
content-length: 30986
expires: Thu, 31 Dec 2037 23:55:55 GMT
etag: W/"0-gzip"
last-modified: Mon, 29 May 2023 08:25:28 GMT
x-original-content-length: 89815
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=315360000, public, stale-while-revalidate=86400, stale-if-error=86400
accept-ranges: bytes
X-Firefox-Spdy: h2
dav-beut.com/wp-includes/js/jquery/jquery-migrate.min.js,qver=3.4.0.pagespeed.jm.0-q49MfDi2.js
195.154.50.35200 OK 4.7 kB URL GET HTTP/2 dav-beut.com/wp-includes/js/jquery/jquery-migrate.min.js,qver=3.4.0.pagespeed.jm.0-q49MfDi2.js
IP 195.154.50.35:443
Certificate IssuerLet's Encrypt
Subjectdav-beut.com
FingerprintF3:B0:4F:72:3C:AE:A1:3D:A8:DE:2D:C6:4C:22:21:D4:79:98:0D:E9
ValidityThu, 01 Jun 2023 03:37:38 GMT - Wed, 30 Aug 2023 03:37:37 GMT
File type ASCII text, with very long lines (13326), with no line terminators
Hash d3eab8f4c7c38b6d44e30f40e67fddfb
9b0eb1793cfd969930bc1719611b508363a38f9c
e30920a8784663f889b11589f9464c690e7c6b14aaf59677bf04408054213469
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js,qver=3.4.0.pagespeed.jm.0-q49MfDi2.js HTTP/1.1
Host: dav-beut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dav-beut.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 19:40:36 GMT
content-type: application/javascript
content-length: 4737
expires: Thu, 31 Dec 2037 23:55:55 GMT
etag: W/"0-gzip"
last-modified: Mon, 29 May 2023 08:25:28 GMT
x-original-content-length: 13424
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=315360000, public, stale-while-revalidate=86400, stale-if-error=86400
accept-ranges: bytes
X-Firefox-Spdy: h2
dav-beut.com/wp-content/themes/onepress/assets/js/theme-all.min.js,qver=2.3.4.pagespeed.ce.mq60avY-6N.js
195.154.50.35200 OK 43 kB URL GET HTTP/2 dav-beut.com/wp-content/themes/onepress/assets/js/theme-all.min.js,qver=2.3.4.pagespeed.ce.mq60avY-6N.js
IP 195.154.50.35:443
Certificate IssuerLet's Encrypt
Subjectdav-beut.com
FingerprintF3:B0:4F:72:3C:AE:A1:3D:A8:DE:2D:C6:4C:22:21:D4:79:98:0D:E9
ValidityThu, 01 Jun 2023 03:37:38 GMT - Wed, 30 Aug 2023 03:37:37 GMT
File type HTML document, ASCII text, with very long lines (65536), with no line terminators
Hash 9aaeb46af63ee8d4d45082dd8d810512
9a65eb8d2466f32ecd02ed57146101aadca593cd
998ee801593bda96deb363ae0e760aae04f26f1f6dafd0b5f7d4debbd804f4c7
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/onepress/assets/js/theme-all.min.js,qver=2.3.4.pagespeed.ce.mq60avY-6N.js HTTP/1.1
Host: dav-beut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dav-beut.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 19:40:36 GMT
content-type: application/javascript
content-length: 42838
last-modified: Wed, 24 May 2023 19:01:30 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
etag: W/"0-gzip"
x-original-content-length: 156790
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=315360000, public, stale-while-revalidate=86400, stale-if-error=86400
accept-ranges: bytes
X-Firefox-Spdy: h2
dav-beut.com/wp-content/themes/onepress/assets/js/jquery.bully.js,qver=6.2.2.pagespeed.jm.S31KsnRHex.js
195.154.50.35200 OK 1.5 kB URL GET HTTP/2 dav-beut.com/wp-content/themes/onepress/assets/js/jquery.bully.js,qver=6.2.2.pagespeed.jm.S31KsnRHex.js
IP 195.154.50.35:443
Certificate IssuerLet's Encrypt
Subjectdav-beut.com
FingerprintF3:B0:4F:72:3C:AE:A1:3D:A8:DE:2D:C6:4C:22:21:D4:79:98:0D:E9
ValidityThu, 01 Jun 2023 03:37:38 GMT - Wed, 30 Aug 2023 03:37:37 GMT
File type ASCII text, with very long lines (4292), with no line terminators
Hash 4b7d4ab274477b1b0a5523387f61ee18
46b5014a5c9fa2948e31ad5023891d91609b8f1b
ce2c73e92f753d410d9b4eb3f2773d0c1b36117c49e50772bb854d5c62970c8e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/onepress/assets/js/jquery.bully.js,qver=6.2.2.pagespeed.jm.S31KsnRHex.js HTTP/1.1
Host: dav-beut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dav-beut.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 19:40:36 GMT
content-type: application/javascript
content-length: 1498
expires: Thu, 31 Dec 2037 23:55:55 GMT
etag: W/"0-gzip"
last-modified: Mon, 29 May 2023 08:25:28 GMT
x-original-content-length: 5849
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=315360000, public, stale-while-revalidate=86400, stale-if-error=86400
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Raleway%3A400%2C500%2C600%2C700%2C300%2C100%2C800%2C900%7COpen+Sans%3A400%2C300%2C300italic%2C400italic%2C600%2C600italic%2C700%2C700italic&subset=latin%2Clatin-ext&display=swap&ver=2.3.4
142.250.74.106200 OK 9.1 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Raleway%3A400%2C500%2C600%2C700%2C300%2C100%2C800%2C900%7COpen+Sans%3A400%2C300%2C300italic%2C400italic%2C600%2C600italic%2C700%2C700italic&subset=latin%2Clatin-ext&display=swap&ver=2.3.4
IP 142.250.74.106:443
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type ASCII text, with very long lines (24463)
Hash 264c153250a90ee8232724176b1dd6ff
ea66b7e169f9436243f4e2f5bf7360705440d259
55ef94a40f5e8ab71f26d4c54676c1c6f59e03362764d88b3120481a159fd182
GET /css?family=Raleway%3A400%2C500%2C600%2C700%2C300%2C100%2C800%2C900%7COpen+Sans%3A400%2C300%2C300italic%2C400italic%2C600%2C600italic%2C700%2C700italic&subset=latin%2Clatin-ext&display=swap&ver=2.3.4 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dav-beut.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 09 Jun 2023 19:40:36 GMT
date: Fri, 09 Jun 2023 19:40:36 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dav-beut.com/wp-content/plugins/wpforms-lite/assets/lib/mailcheck.min.js,qver=1.1.2.pagespeed.jm.yKRa3jBR2k.js
195.154.50.35200 OK 1.7 kB URL GET HTTP/2 dav-beut.com/wp-content/plugins/wpforms-lite/assets/lib/mailcheck.min.js,qver=1.1.2.pagespeed.jm.yKRa3jBR2k.js
IP 195.154.50.35:443
Certificate IssuerLet's Encrypt
Subjectdav-beut.com
FingerprintF3:B0:4F:72:3C:AE:A1:3D:A8:DE:2D:C6:4C:22:21:D4:79:98:0D:E9
ValidityThu, 01 Jun 2023 03:37:38 GMT - Wed, 30 Aug 2023 03:37:37 GMT
File type C source, ASCII text, with very long lines (3978), with no line terminators
Hash c8a45ade3051da420608cda64b499e8d
69e6918b7efab3f2a6c2ac81dd9fab6111e84685
0c2967301658ee8d624f713f8c927db2939aaefe5f95f994f76a24cb62d368c4
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/wpforms-lite/assets/lib/mailcheck.min.js,qver=1.1.2.pagespeed.jm.yKRa3jBR2k.js HTTP/1.1
Host: dav-beut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dav-beut.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 19:40:36 GMT
content-type: application/javascript
content-length: 1658
expires: Thu, 31 Dec 2037 23:55:55 GMT
etag: W/"0-gzip"
last-modified: Mon, 29 May 2023 08:25:28 GMT
x-original-content-length: 4014
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=315360000, public, stale-while-revalidate=86400, stale-if-error=86400
accept-ranges: bytes
X-Firefox-Spdy: h2
dav-beut.com/wp-content/plugins/wpforms-lite/assets/lib/punycode.min.js,qver=1.0.0.pagespeed.ce.I7DZBReQtK.js
195.154.50.35200 OK 872 B URL GET HTTP/2 dav-beut.com/wp-content/plugins/wpforms-lite/assets/lib/punycode.min.js,qver=1.0.0.pagespeed.ce.I7DZBReQtK.js
IP 195.154.50.35:443
Certificate IssuerLet's Encrypt
Subjectdav-beut.com
FingerprintF3:B0:4F:72:3C:AE:A1:3D:A8:DE:2D:C6:4C:22:21:D4:79:98:0D:E9
ValidityThu, 01 Jun 2023 03:37:38 GMT - Wed, 30 Aug 2023 03:37:37 GMT
File type ASCII text, with very long lines (1713), with no line terminators
Hash 23b0d9051790b4a386f66ff1836815bc
0dc76a6bcad4bdce1b88ec6e68215733c97fc520
69a15ba379260f131f7dfa2a5414cbdc48db661ac21d696773c7e67259255ca1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/wpforms-lite/assets/lib/punycode.min.js,qver=1.0.0.pagespeed.ce.I7DZBReQtK.js HTTP/1.1
Host: dav-beut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dav-beut.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 19:40:36 GMT
content-type: application/javascript
content-length: 872
last-modified: Thu, 25 May 2023 12:12:31 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
etag: W/"0-gzip"
x-original-content-length: 1713
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=315360000, public, stale-while-revalidate=86400, stale-if-error=86400
accept-ranges: bytes
X-Firefox-Spdy: h2
dav-beut.com/wp-content/plugins/wpforms-lite/assets/js/utils.min.js,qver=1.8.2.1.pagespeed.ce.8qNR0Vl8yJ.js
195.154.50.35200 OK 230 B URL GET HTTP/2 dav-beut.com/wp-content/plugins/wpforms-lite/assets/js/utils.min.js,qver=1.8.2.1.pagespeed.ce.8qNR0Vl8yJ.js
IP 195.154.50.35:443
Certificate IssuerLet's Encrypt
Subjectdav-beut.com
FingerprintF3:B0:4F:72:3C:AE:A1:3D:A8:DE:2D:C6:4C:22:21:D4:79:98:0D:E9
ValidityThu, 01 Jun 2023 03:37:38 GMT - Wed, 30 Aug 2023 03:37:37 GMT
File type ASCII text, with very long lines (339), with no line terminators
Hash f2a351d1597cc89f92a145b82b461890
1ebdc6f91f82c6d01332e1a5e225ad27d6eda91e
b969721ef6fcca6918159844304aff2970cf511e07f17837c55e989876cd7a3b
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/wpforms-lite/assets/js/utils.min.js,qver=1.8.2.1.pagespeed.ce.8qNR0Vl8yJ.js HTTP/1.1
Host: dav-beut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dav-beut.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 19:40:36 GMT
content-type: application/javascript
content-length: 230
last-modified: Thu, 08 Jun 2023 06:15:57 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
etag: W/"0-gzip"
x-original-content-length: 339
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=315360000, public, stale-while-revalidate=86400, stale-if-error=86400
accept-ranges: bytes
X-Firefox-Spdy: h2
dav-beut.com/wp-content/plugins/wpforms-lite/assets/js/wpforms.min.js,qver=1.8.2.1.pagespeed.ce.ls5so1chfG.js
195.154.50.35200 OK 11 kB URL GET HTTP/2 dav-beut.com/wp-content/plugins/wpforms-lite/assets/js/wpforms.min.js,qver=1.8.2.1.pagespeed.ce.ls5so1chfG.js
IP 195.154.50.35:443
Certificate IssuerLet's Encrypt
Subjectdav-beut.com
FingerprintF3:B0:4F:72:3C:AE:A1:3D:A8:DE:2D:C6:4C:22:21:D4:79:98:0D:E9
ValidityThu, 01 Jun 2023 03:37:38 GMT - Wed, 30 Aug 2023 03:37:37 GMT
File type ASCII text, with very long lines (35587), with no line terminators
Hash 96ce6ca357217c61e7d24f2fb73c9982
ef3d2ce86780866007cbf1aee87b05b33e5b2ab7
44a7444bc94238db9798bd8ed2a30d574cc7f4f5b3acf029529705ef4a2e3eb3
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/wpforms-lite/assets/js/wpforms.min.js,qver=1.8.2.1.pagespeed.ce.ls5so1chfG.js HTTP/1.1
Host: dav-beut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dav-beut.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 19:40:36 GMT
content-type: application/javascript
content-length: 10671
last-modified: Thu, 08 Jun 2023 06:15:57 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
etag: W/"0-gzip"
x-original-content-length: 35587
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=315360000, public, stale-while-revalidate=86400, stale-if-error=86400
accept-ranges: bytes
X-Firefox-Spdy: h2
dav-beut.com/wp-content/plugins/wpforms-lite/assets/js/wpforms-modern.min.js,qver=1.8.2.1.pagespeed.ce.lZ54AGkUqM.js
195.154.50.35200 OK 1.9 kB URL GET HTTP/2 dav-beut.com/wp-content/plugins/wpforms-lite/assets/js/wpforms-modern.min.js,qver=1.8.2.1.pagespeed.ce.lZ54AGkUqM.js
IP 195.154.50.35:443
Certificate IssuerLet's Encrypt
Subjectdav-beut.com
FingerprintF3:B0:4F:72:3C:AE:A1:3D:A8:DE:2D:C6:4C:22:21:D4:79:98:0D:E9
ValidityThu, 01 Jun 2023 03:37:38 GMT - Wed, 30 Aug 2023 03:37:37 GMT
File type ASCII text, with very long lines (5584), with no line terminators
Hash 959e78006914a8cba2679ea5ecab4057
cecd3b395011b88cce498cdec0f0839de498745f
0ddd3441876780643d1f1d90840c9e6b64105f979dae3b2a204f0baf047007b8
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/wpforms-lite/assets/js/wpforms-modern.min.js,qver=1.8.2.1.pagespeed.ce.lZ54AGkUqM.js HTTP/1.1
Host: dav-beut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dav-beut.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 19:40:36 GMT
content-type: application/javascript
content-length: 1877
last-modified: Thu, 08 Jun 2023 06:15:57 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
etag: W/"0-gzip"
x-original-content-length: 5584
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=315360000, public, stale-while-revalidate=86400, stale-if-error=86400
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 95a94d12a9fc00a37c7e34de10e678b7
e2339ec07c410aa01864fd29eb0d99a7ccecc37c
79fc04cdd5d05f242eb5ba0ad8111f3609197a7d41f8a451dc2314b8280ed5cf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 19:40:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?onload=wpformsRecaptchaLoad&render=explicit
142.250.74.132200 OK 582 B URL GET HTTP/2 www.google.com/recaptcha/api.js?onload=wpformsRecaptchaLoad&render=explicit
IP 142.250.74.132:443
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintA8:95:C3:CB:D6:3F:BC:0A:7D:FF:36:72:5E:2F:56:26:9F:EB:77:0E
ValidityFri, 19 May 2023 12:58:13 GMT - Fri, 11 Aug 2023 12:58:12 GMT
File type ASCII text, with very long lines (915), with no line terminators
Hash aee5456c87baa8ec34d190507214b972
b3bf8a4ede623657b9e951a157ff8c2187df3c63
8886ffde10aab302f957e2efa780b7ad7aad8196ed0f2061aa16efb69fcd8eeb
GET /recaptcha/api.js?onload=wpformsRecaptchaLoad&render=explicit HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dav-beut.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
expires: Fri, 09 Jun 2023 19:40:37 GMT
date: Fri, 09 Jun 2023 19:40:37 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 582
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 6c61fb42405abc811f67aabeace702b2
0d41286eb5a6f7f82734de50e0fdbc7e752e3d8e
bd7a264bf9a25dd4e67665c894ea85fd985546fb75f9e69da4bbfb5ba2fabab5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 19:40:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dav-beut.com/wp-content/uploads/2023/05/beut-back2.jpg
195.154.50.35200 OK 229 kB URL GET HTTP/2 dav-beut.com/wp-content/uploads/2023/05/beut-back2.jpg
IP 195.154.50.35:443
Certificate IssuerLet's Encrypt
Subjectdav-beut.com
FingerprintF3:B0:4F:72:3C:AE:A1:3D:A8:DE:2D:C6:4C:22:21:D4:79:98:0D:E9
ValidityThu, 01 Jun 2023 03:37:38 GMT - Wed, 30 Aug 2023 03:37:37 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 1067x800, components 3\012- data
Size 229 kB (228970 bytes)
Hash f0f3e2140c5cc204047affb66a2a1237
b7b2bed8fae9588d1dc2ac80d475e10b62633cd8
cf24f1f9ec21eefd3c0b1437750eba5eb5f74a5b0982f95e9e306536c809a222
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2023/05/beut-back2.jpg HTTP/1.1
Host: dav-beut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dav-beut.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 19:40:37 GMT
content-type: image/jpeg
content-length: 228970
last-modified: Fri, 26 May 2023 11:08:32 GMT
etag: "37e6a-5fc96c1f0487a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public, stale-while-revalidate=86400, stale-if-error=86400
accept-ranges: bytes
X-Firefox-Spdy: h2
dav-beut.com/wp-content/uploads/2023/05/beut-back1.jpg
195.154.50.35200 OK 770 kB URL GET HTTP/2 dav-beut.com/wp-content/uploads/2023/05/beut-back1.jpg
IP 195.154.50.35:443
Certificate IssuerLet's Encrypt
Subjectdav-beut.com
FingerprintF3:B0:4F:72:3C:AE:A1:3D:A8:DE:2D:C6:4C:22:21:D4:79:98:0D:E9
ValidityThu, 01 Jun 2023 03:37:38 GMT - Wed, 30 Aug 2023 03:37:37 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 1600x900, components 3\012- data
Size 770 kB (770534 bytes)
Hash 7a490d63f2831d79c8a446db5df1b55b
faa922e84cb3efadf6888453db92f911c332cf19
29639cee8fc55a9669a80c24ca80a3324efb2a9738c806823c9806aa8ce4e02e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2023/05/beut-back1.jpg HTTP/1.1
Host: dav-beut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dav-beut.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 19:40:37 GMT
content-type: image/jpeg
content-length: 770534
last-modified: Thu, 25 May 2023 08:09:01 GMT
etag: "bc1e6-5fc802217dbef"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public, stale-while-revalidate=86400, stale-if-error=86400
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/Xh5Zjh8Od10-SgxpI_tcSnHR/recaptcha__en.js
216.58.207.227200 OK 166 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/Xh5Zjh8Od10-SgxpI_tcSnHR/recaptcha__en.js
IP 216.58.207.227:443
Requested by https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type ASCII text, with very long lines (694)
Size 166 kB (166526 bytes)
Hash 43735f6c22399555891e8abf82e7410b
c877dbb7a2ab1492a796fd6339c035c5e823d0e5
07cf56e972b5898434ac9845ae9edf4cc697ef991f4be4e2232b926bc4d7ed98
GET /recaptcha/releases/Xh5Zjh8Od10-SgxpI_tcSnHR/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dav-beut.com
DNT: 1
Connection: keep-alive
Referer: https://dav-beut.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166526
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Jun 2023 14:01:27 GMT
expires: Sat, 08 Jun 2024 14:01:27 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 04 Jun 2023 14:00:37 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 20350
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/recaptcha/api2/anchor?ar=1&k=6LfTHzwmAAAAAPt6pPrpxWm33cOe0dIEDFSJlBxj&co=aHR0cHM6Ly9kYXYtYmV1dC5jb206NDQz&hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR&size=invisible&cb=7wiboo80vfq7
142.250.74.132200 OK 28 kB URL GET HTTP/3 www.google.com/recaptcha/api2/anchor?ar=1&k=6LfTHzwmAAAAAPt6pPrpxWm33cOe0dIEDFSJlBxj&co=aHR0cHM6Ly9kYXYtYmV1dC5jb206NDQz&hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR&size=invisible&cb=7wiboo80vfq7
IP 142.250.74.132:443
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint55:5E:E6:33:AF:71:86:C2:88:4A:36:5F:68:1D:97:9D:9B:9D:2A:1D
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (43585)
Hash 3b1e7662d867e1637912e729e0f5404d
d73393265acdd3f796ff9493415a95ec689c2d6d
36d126428bccd1ed2138fad40d2ded37f86ba668abab6384db38e5f8ffc5dc78
GET /recaptcha/api2/anchor?ar=1&k=6LfTHzwmAAAAAPt6pPrpxWm33cOe0dIEDFSJlBxj&co=aHR0cHM6Ly9kYXYtYmV1dC5jb206NDQz&hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR&size=invisible&cb=7wiboo80vfq7 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dav-beut.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 09 Jun 2023 19:40:37 GMT
content-security-policy: script-src 'nonce-yqH8TAXgOXccj84XCwzDtw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 28343
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/Xh5Zjh8Od10-SgxpI_tcSnHR/styles__ltr.css
216.58.207.227200 OK 25 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/Xh5Zjh8Od10-SgxpI_tcSnHR/styles__ltr.css
IP 216.58.207.227:443
Requested by https://www.google.com/recaptcha/api2/bframe?hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR&k=6LfTHzwmAAAAAPt6pPrpxWm33cOe0dIEDFSJlBxj
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type ASCII text, with very long lines (56403), with no line terminators
Hash 83f90c5a4c20afb44429fa346fbadc10
7c278ec721d3880fbafaadeba9ee80bdf294b014
952833e41ba7a4b64c31a2d7b07dde81bf5bbacf5cbb967821cfe459d0c4a0d8
GET /recaptcha/releases/Xh5Zjh8Od10-SgxpI_tcSnHR/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24605
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Jun 2023 14:01:27 GMT
expires: Sat, 08 Jun 2024 14:01:27 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 04 Jun 2023 14:00:37 GMT
content-type: text/css
vary: Accept-Encoding
age: 20350
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/Xh5Zjh8Od10-SgxpI_tcSnHR/recaptcha__en.js
216.58.207.227200 OK 166 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/Xh5Zjh8Od10-SgxpI_tcSnHR/recaptcha__en.js
IP 216.58.207.227:443
Requested by https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type ASCII text, with very long lines (694)
Size 166 kB (166526 bytes)
Hash 43735f6c22399555891e8abf82e7410b
c877dbb7a2ab1492a796fd6339c035c5e823d0e5
07cf56e972b5898434ac9845ae9edf4cc697ef991f4be4e2232b926bc4d7ed98
GET /recaptcha/releases/Xh5Zjh8Od10-SgxpI_tcSnHR/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166526
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Jun 2023 14:01:27 GMT
expires: Sat, 08 Jun 2024 14:01:27 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 04 Jun 2023 14:00:37 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 20350
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:443
Requested by https://www.google.com/recaptcha/api2/bframe?hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR&k=6LfTHzwmAAAAAPt6pPrpxWm33cOe0dIEDFSJlBxj
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Jun 2023 17:31:32 GMT
expires: Wed, 05 Jun 2024 17:31:32 GMT
cache-control: public, max-age=31536000
age: 266946
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:443
Requested by https://www.google.com/recaptcha/api2/bframe?hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR&k=6LfTHzwmAAAAAPt6pPrpxWm33cOe0dIEDFSJlBxj
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Jun 2023 21:40:21 GMT
expires: Wed, 05 Jun 2024 21:40:21 GMT
cache-control: public, max-age=31536000
age: 252017
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/recaptcha/api2/webworker.js?hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR
142.250.74.132200 OK 112 B URL GET HTTP/3 www.google.com/recaptcha/api2/webworker.js?hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR
IP 142.250.74.132:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfTHzwmAAAAAPt6pPrpxWm33cOe0dIEDFSJlBxj&co=aHR0cHM6Ly9kYXYtYmV1dC5jb206NDQz&hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR&size=invisible&cb=7wiboo80vfq7
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint55:5E:E6:33:AF:71:86:C2:88:4A:36:5F:68:1D:97:9D:9B:9D:2A:1D
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT
File type ASCII text, with no line terminators
Hash 983bb9c268615cc353bee88601f14e9e
47986f5bb70c39569d68200e4341866a59f1fc54
4b092828992acbd759ebd249d6472169093ee8b739753c1ae3e165cd34449b70
GET /recaptcha/api2/webworker.js?hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfTHzwmAAAAAPt6pPrpxWm33cOe0dIEDFSJlBxj&co=aHR0cHM6Ly9kYXYtYmV1dC5jb206NDQz&hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR&size=invisible&cb=7wiboo80vfq7
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
expires: Fri, 09 Jun 2023 19:40:38 GMT
date: Fri, 09 Jun 2023 19:40:38 GMT
cache-control: private, max-age=300
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/javascript; charset=UTF-8
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 112
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/api2/logo_48.png
216.58.207.227200 OK 2.2 kB URL GET HTTP/3 www.gstatic.com/recaptcha/api2/logo_48.png
IP 216.58.207.227:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfTHzwmAAAAAPt6pPrpxWm33cOe0dIEDFSJlBxj&co=aHR0cHM6Ly9kYXYtYmV1dC5jb206NDQz&hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR&size=invisible&cb=7wiboo80vfq7
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/Xh5Zjh8Od10-SgxpI_tcSnHR/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Jun 2023 21:48:58 GMT
expires: Mon, 12 Jun 2023 21:48:58 GMT
cache-control: public, max-age=604800
age: 337900
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/Xh5Zjh8Od10-SgxpI_tcSnHR/recaptcha__en.js
216.58.207.227200 OK 166 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/Xh5Zjh8Od10-SgxpI_tcSnHR/recaptcha__en.js
IP 216.58.207.227:443
Requested by https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type ASCII text, with very long lines (694)
Size 166 kB (166526 bytes)
Hash 43735f6c22399555891e8abf82e7410b
c877dbb7a2ab1492a796fd6339c035c5e823d0e5
07cf56e972b5898434ac9845ae9edf4cc697ef991f4be4e2232b926bc4d7ed98
GET /recaptcha/releases/Xh5Zjh8Od10-SgxpI_tcSnHR/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166526
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Jun 2023 14:01:27 GMT
expires: Sat, 08 Jun 2024 14:01:27 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 04 Jun 2023 14:00:37 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 20351
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/recaptcha/api2/bframe?hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR&k=6LfTHzwmAAAAAPt6pPrpxWm33cOe0dIEDFSJlBxj
142.250.74.132200 OK 1.2 kB URL GET HTTP/3 www.google.com/recaptcha/api2/bframe?hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR&k=6LfTHzwmAAAAAPt6pPrpxWm33cOe0dIEDFSJlBxj
IP 142.250.74.132:443
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint55:5E:E6:33:AF:71:86:C2:88:4A:36:5F:68:1D:97:9D:9B:9D:2A:1D
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5f39ac3c6f1fe756bac77b2187971485
52b72078e02c39c32c07f8ed4cda0f3b67ea4ebf
56f53fdcd7e0f9df8a6adc21444c853bb260c85e3e05f6b4fc42f0a29518244d
GET /recaptcha/api2/bframe?hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR&k=6LfTHzwmAAAAAPt6pPrpxWm33cOe0dIEDFSJlBxj HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dav-beut.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 09 Jun 2023 19:40:38 GMT
content-security-policy: script-src 'nonce-uddOH0wTzMY_IxDG4A63kw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 1155
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/Xh5Zjh8Od10-SgxpI_tcSnHR/styles__ltr.css
216.58.207.227200 OK 25 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/Xh5Zjh8Od10-SgxpI_tcSnHR/styles__ltr.css
IP 216.58.207.227:443
Requested by https://www.google.com/recaptcha/api2/bframe?hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR&k=6LfTHzwmAAAAAPt6pPrpxWm33cOe0dIEDFSJlBxj
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type ASCII text, with very long lines (56403), with no line terminators
Hash 83f90c5a4c20afb44429fa346fbadc10
7c278ec721d3880fbafaadeba9ee80bdf294b014
952833e41ba7a4b64c31a2d7b07dde81bf5bbacf5cbb967821cfe459d0c4a0d8
GET /recaptcha/releases/Xh5Zjh8Od10-SgxpI_tcSnHR/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24605
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Jun 2023 14:01:27 GMT
expires: Sat, 08 Jun 2024 14:01:27 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 04 Jun 2023 14:00:37 GMT
content-type: text/css
vary: Accept-Encoding
age: 20351
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/Xh5Zjh8Od10-SgxpI_tcSnHR/recaptcha__en.js
216.58.207.227200 OK 166 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/Xh5Zjh8Od10-SgxpI_tcSnHR/recaptcha__en.js
IP 216.58.207.227:443
Requested by https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type ASCII text, with very long lines (694)
Size 166 kB (166526 bytes)
Hash 43735f6c22399555891e8abf82e7410b
c877dbb7a2ab1492a796fd6339c035c5e823d0e5
07cf56e972b5898434ac9845ae9edf4cc697ef991f4be4e2232b926bc4d7ed98
GET /recaptcha/releases/Xh5Zjh8Od10-SgxpI_tcSnHR/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166526
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Jun 2023 14:01:27 GMT
expires: Sat, 08 Jun 2024 14:01:27 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 04 Jun 2023 14:00:37 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 20351
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/recaptcha/api2/reload?k=6LfTHzwmAAAAAPt6pPrpxWm33cOe0dIEDFSJlBxj
142.250.74.132200 OK 24 kB URL POST HTTP/3 www.google.com/recaptcha/api2/reload?k=6LfTHzwmAAAAAPt6pPrpxWm33cOe0dIEDFSJlBxj
IP 142.250.74.132:443
Requested by https://www.google.com/recaptcha/api2/bframe?hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR&k=6LfTHzwmAAAAAPt6pPrpxWm33cOe0dIEDFSJlBxj
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint55:5E:E6:33:AF:71:86:C2:88:4A:36:5F:68:1D:97:9D:9B:9D:2A:1D
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT
File type ASCII text, with very long lines (40551)
Hash 6d85f2fc86f1d2ce2a3e2fd1bd6886d7
e1ca4c4e38aa3ec1e89098f5c96f4277b9c582b4
0525f66672ac9623eb3cb9982d2cef038278d0aba50ddbcaa03105e475821527
POST /recaptcha/api2/reload?k=6LfTHzwmAAAAAPt6pPrpxWm33cOe0dIEDFSJlBxj HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-protobuffer
Content-Length: 6664
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/bframe?hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR&k=6LfTHzwmAAAAAPt6pPrpxWm33cOe0dIEDFSJlBxj
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=utf-8
content-encoding: gzip
date: Fri, 09 Jun 2023 19:40:38 GMT
expires: Fri, 09 Jun 2023 19:40:38 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 24358
server: GSE
set-cookie: _GRECAPTCHA=09ALyjir-a8dhNx67MybzKPiAfW06TxN_If1xk_XT5zGNV1m7T9mU20naB42Y7HxMNsZLQ9b8QX3Y1NmY8uhxE3QY;Path=/recaptcha;Expires=Wed, 06-Dec-2023 19:40:38 GMT;Secure;HttpOnly;Priority=HIGH;SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:443
Requested by https://www.google.com/recaptcha/api2/bframe?hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR&k=6LfTHzwmAAAAAPt6pPrpxWm33cOe0dIEDFSJlBxj
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Jun 2023 17:31:32 GMT
expires: Wed, 05 Jun 2024 17:31:32 GMT
cache-control: public, max-age=31536000
age: 266946
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
216.58.207.227200 OK 15 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP 216.58.207.227:443
Requested by https://www.google.com/recaptcha/api2/bframe?hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR&k=6LfTHzwmAAAAAPt6pPrpxWm33cOe0dIEDFSJlBxj
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 15340, version 1.0\012- data
Hash 19b7a0adfdd4f808b53af7e2ce2ad4e5
81d5d4c7b5035ad10cce63cf7100295e0c51fdda
c912a9ce0c3122d4b2b29ad26bfe06b0390d1a5bdaa5d6128692c0befd1dfbbd
GET /s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15340
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Jun 2023 11:10:37 GMT
expires: Sat, 08 Jun 2024 11:10:37 GMT
cache-control: public, max-age=31536000
age: 30601
last-modified: Mon, 16 Oct 2017 17:33:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:443
Requested by https://www.google.com/recaptcha/api2/bframe?hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR&k=6LfTHzwmAAAAAPt6pPrpxWm33cOe0dIEDFSJlBxj
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Jun 2023 21:40:21 GMT
expires: Wed, 05 Jun 2024 21:40:21 GMT
cache-control: public, max-age=31536000
age: 252017
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/api2/refresh_2x.png
216.58.207.227200 OK 600 B URL GET HTTP/3 www.gstatic.com/recaptcha/api2/refresh_2x.png
IP 216.58.207.227:443
Requested by https://www.google.com/recaptcha/api2/bframe?hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR&k=6LfTHzwmAAAAAPt6pPrpxWm33cOe0dIEDFSJlBxj
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Hash 0f2a4639b8a4cb30c76e8333c00d30a6
57e273a270bb864970d747c74b3f0a7c8e515b13
44b988703019cd6bfa86c91840fecf2a42b611b364e3eea2f4eb63bf62714e98
GET /recaptcha/api2/refresh_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/Xh5Zjh8Od10-SgxpI_tcSnHR/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Jun 2023 20:49:22 GMT
expires: Wed, 14 Jun 2023 20:49:22 GMT
cache-control: public, max-age=604800
age: 168677
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/api2/info_2x.png
216.58.207.227200 OK 665 B URL GET HTTP/3 www.gstatic.com/recaptcha/api2/info_2x.png
IP 216.58.207.227:443
Requested by https://www.google.com/recaptcha/api2/bframe?hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR&k=6LfTHzwmAAAAAPt6pPrpxWm33cOe0dIEDFSJlBxj
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Hash 07bf314aab04047b9e9a959ee6f63da3
17bef6602672e2fd9956381e01356245144003e5
55eaf62cb05da20088dc12b39d7d254d046cb1fd61ddf3ae641f1439efd0a5ee
GET /recaptcha/api2/info_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/Xh5Zjh8Od10-SgxpI_tcSnHR/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 665
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Jun 2023 00:56:35 GMT
expires: Thu, 15 Jun 2023 00:56:35 GMT
cache-control: public, max-age=604800
age: 153844
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/api2/audio_2x.png
216.58.207.227200 OK 530 B URL GET HTTP/3 www.gstatic.com/recaptcha/api2/audio_2x.png
IP 216.58.207.227:443
Requested by https://www.google.com/recaptcha/api2/bframe?hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR&k=6LfTHzwmAAAAAPt6pPrpxWm33cOe0dIEDFSJlBxj
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Hash 88e0f42c9fa4f94aa8bcd54d1685c180
5ad9d47a49b82718baa3be88550a0b3350270c42
89c62095126fca89ea1511cf35b49b8306162946b0c26d6f60c5506c51d85992
GET /recaptcha/api2/audio_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/Xh5Zjh8Od10-SgxpI_tcSnHR/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 530
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Jun 2023 16:14:42 GMT
expires: Tue, 13 Jun 2023 16:14:42 GMT
cache-control: public, max-age=604800
age: 271557
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/recaptcha/api2/payload?p=06AL8dmw_8xJgUNNT3XltTjoD7HDv-JCojt6QIDyvVVCgB1RzoXclhmYyGvJ6Ojt5ovXXy9dTY1wD0D75V4UaXbiQy4xAkP90U7syhwSg5Dd22m50JJD9_XdReYDGtY80wSwtCTFtTrt26EnBW14PcXZegUlKqvdVOk96GIPgiM2rpYOz4WnyIHFwiwD_6A5WoFWvc7XDyAsVy&k=6LfTHzwmAAAAAPt6pPrpxWm33cOe0dIEDFSJlBxj
142.250.74.132200 OK 61 kB URL GET HTTP/3 www.google.com/recaptcha/api2/payload?p=06AL8dmw_8xJgUNNT3XltTjoD7HDv-JCojt6QIDyvVVCgB1RzoXclhmYyGvJ6Ojt5ovXXy9dTY1wD0D75V4UaXbiQy4xAkP90U7syhwSg5Dd22m50JJD9_XdReYDGtY80wSwtCTFtTrt26EnBW14PcXZegUlKqvdVOk96GIPgiM2rpYOz4WnyIHFwiwD_6A5WoFWvc7XDyAsVy&k=6LfTHzwmAAAAAPt6pPrpxWm33cOe0dIEDFSJlBxj
IP 142.250.74.132:443
Requested by https://www.google.com/recaptcha/api2/bframe?hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR&k=6LfTHzwmAAAAAPt6pPrpxWm33cOe0dIEDFSJlBxj
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint55:5E:E6:33:AF:71:86:C2:88:4A:36:5F:68:1D:97:9D:9B:9D:2A:1D
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 450x450, components 3\012- data
Hash e65c54428b2a3d2da5e3e28cc426c202
f01dd53e1f4c0891d0d9f3cc09617202a8938809
012841477d2cc23708ec21257e5c82c4c81d3e2d2de5594d7e85335dd6a04ee2
GET /recaptcha/api2/payload?p=06AL8dmw_8xJgUNNT3XltTjoD7HDv-JCojt6QIDyvVVCgB1RzoXclhmYyGvJ6Ojt5ovXXy9dTY1wD0D75V4UaXbiQy4xAkP90U7syhwSg5Dd22m50JJD9_XdReYDGtY80wSwtCTFtTrt26EnBW14PcXZegUlKqvdVOk96GIPgiM2rpYOz4WnyIHFwiwD_6A5WoFWvc7XDyAsVy&k=6LfTHzwmAAAAAPt6pPrpxWm33cOe0dIEDFSJlBxj HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/bframe?hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR&k=6LfTHzwmAAAAAPt6pPrpxWm33cOe0dIEDFSJlBxj
Cookie: _GRECAPTCHA=09ALyjir-a8dhNx67MybzKPiAfW06TxN_If1xk_XT5zGNV1m7T9mU20naB42Y7HxMNsZLQ9b8QX3Y1NmY8uhxE3QY
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
expires: Fri, 09 Jun 2023 19:40:39 GMT
date: Fri, 09 Jun 2023 19:40:39 GMT
cache-control: private, max-age=30
content-type: image/jpeg
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 60614
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
dav-beut.com/wp-content/plugins/wpforms-lite/assets/lib/jquery.validate.min.js,qver=1.19.5.pagespeed.jm.UHPoyZzkGi.js
195.154.50.35200 OK 24 kB URL GET HTTP/2 dav-beut.com/wp-content/plugins/wpforms-lite/assets/lib/jquery.validate.min.js,qver=1.19.5.pagespeed.jm.UHPoyZzkGi.js
IP 195.154.50.35:443
Certificate IssuerLet's Encrypt
Subjectdav-beut.com
FingerprintF3:B0:4F:72:3C:AE:A1:3D:A8:DE:2D:C6:4C:22:21:D4:79:98:0D:E9
ValidityThu, 01 Jun 2023 03:37:38 GMT - Wed, 30 Aug 2023 03:37:37 GMT
File type ASCII text, with very long lines (24463), with no line terminators
Hash 5073e8c99ce41a24ea1cd353e9d23d94
fa8cb63fda5d09979d6701dcd978bd169201432d
acd2d4ec127230c4eb2b2acb5d3551a78a0b3e33053f669721bca91836582e06
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/wpforms-lite/assets/lib/jquery.validate.min.js,qver=1.19.5.pagespeed.jm.UHPoyZzkGi.js HTTP/1.1
Host: dav-beut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dav-beut.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 19:40:36 GMT
content-type: application/javascript
content-length: 7812
expires: Thu, 31 Dec 2037 23:55:55 GMT
etag: W/"0-gzip"
last-modified: Mon, 29 May 2023 08:25:28 GMT
x-original-content-length: 24602
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=315360000, public, stale-while-revalidate=86400, stale-if-error=86400
accept-ranges: bytes
X-Firefox-Spdy: h2