| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash5ceaca9fd4ad000cb435820812fc69c8 8168397aaf7b572c89a9c83f46c0b65e4ac509f2 9c4e52e7e17158307d752db0bc3d1fbedae4f305cc301fd73b260f73ab796492
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C4E52E7E17158307D752DB0BC3D1FBEDAE4F305CC301FD73B260F73AB796492"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13639
Expires: Wed, 07 Dec 2022 07:44:24 GMT
Date: Wed, 07 Dec 2022 03:57:05 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashf83c5e33ba42e312ee398848bbb711f5 caa1fd23b1fbbe883292ded04404c1cfd861eb09 106d08fba45f1e13f85b4b5abc456594878494238933e54b6a06e21ed8a52bc9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2703
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 03:57:05 GMT
Last-Modified: Wed, 07 Dec 2022 03:12:02 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hasha0abf10fb7e96c1c98dacf2f013a68b4 acdd839bce85eadc78a8e821e32e00a958d5c0c8 b85d98f8df05431777d96c767ce4c152302ec3f653cdf6e61c8c3fa9574f3255
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B85D98F8DF05431777D96C767CE4C152302EC3F653CDF6E61C8C3FA9574F3255"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13669
Expires: Wed, 07 Dec 2022 07:44:54 GMT
Date: Wed, 07 Dec 2022 03:57:05 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 34.102.187.140 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash30db107dcf4380cef05efea409c2e6a3 96e6a306fbc07299aba64e5c14e2bfca35872fa9 b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 07 Dec 2022 03:20:27 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2198
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash53341dea33f4f3d9b4966f80589f429a 20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d 651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: xCMx3zqjdrnqe1pIv1SrdifKS40ehtlCt5CEglhEkvcgcOIwAlwyjRs+CxR3VbYIbZPGvaUPMfE=
x-amz-request-id: 63MKCWXCNKKS97Y4
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 07 Dec 2022 03:49:13 GMT
age: 472
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:05 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/ | 41.185.8.59 | 301 Moved Permanently | 0 B |
IP41.185.8.59:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET / HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 07 Dec 2022 03:57:05 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
X-Powered-By: PHP/7.1.33
X-Redirect-By: WordPress
Location: https://tebohomafodi.co.za/
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 34.102.187.140 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 07 Dec 2022 03:08:58 GMT
cache-control: public,max-age=3600
age: 2887
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash0f7dcaa590e32cfd1c075255188d5f06 d4bb4954fefdb3b59560b54adf500e806e252e39 195795c2511b31519134f5eb4442d8708918ecaff72f8e821a5473ad7c97c448
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2696
Cache-Control: max-age=107681
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 03:57:05 GMT
Etag: "638f062a-1d7"
Expires: Thu, 08 Dec 2022 09:51:46 GMT
Last-Modified: Tue, 06 Dec 2022 09:06:50 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.comodoca.com/ | 104.18.32.68 | 200 OK | 472 B |
IP104.18.32.68:0
Hash1e4de96af0e8b9c15a6aeff5d18edfe0 33316cbf1a286cbe13fe2805f9d07f35f6f0f6cc ac87a95b1e88ab182afba9641e87aa02042f4419498c324c533f3525ecdddf91
POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 03:57:06 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 05 Dec 2022 18:51:09 GMT
Expires: Mon, 12 Dec 2022 18:51:08 GMT
Etag: "33316cbf1a286cbe13fe2805f9d07f35f6f0f6cc"
Cache-Control: max-age=485042,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: MISS
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775a55cf39dafac8-OSL
|
|
| push.services.mozilla.com/ | 54.189.139.67 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP54.189.139.67:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3KR+tBxA/Lpa2fkX0g8TxQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: vnJd7uztyT/zHjTY3SgcU6oHslY=
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash1ab1615b2c8cc26b12fc0cf41734ff07 a7d54b3709ce75a20210e20013e6f06b0aa88e2d 22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4743
Expires: Wed, 07 Dec 2022 05:16:10 GMT
Date: Wed, 07 Dec 2022 03:57:07 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash1ab1615b2c8cc26b12fc0cf41734ff07 a7d54b3709ce75a20210e20013e6f06b0aa88e2d 22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4743
Expires: Wed, 07 Dec 2022 05:16:10 GMT
Date: Wed, 07 Dec 2022 03:57:07 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash1ab1615b2c8cc26b12fc0cf41734ff07 a7d54b3709ce75a20210e20013e6f06b0aa88e2d 22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4743
Expires: Wed, 07 Dec 2022 05:16:10 GMT
Date: Wed, 07 Dec 2022 03:57:07 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22142ca2-85b4-47d4-8eaa-fcf2823b2c28.jpeg | 34.120.237.76 | 200 OK | 8.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22142ca2-85b4-47d4-8eaa-fcf2823b2c28.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashe95ebce9d79ba46cb96af9a45af1762f 985c6761675e6bcc0186f64d55f94cf09352f05c 5837d6bf31e57f955ba2577f112281cc33a5502b358c83192f4e396b57042ac0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22142ca2-85b4-47d4-8eaa-fcf2823b2c28.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8438
x-amzn-requestid: 0f5d1b0e-1193-4006-8a54-555681d9f62e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cvlqVGMjoAMFS6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638fb641-6366ea6464122d857407cdff;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 21:38:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2j9gqNvWYRFM-li9Nj4nLAWe_eKWMSwagPgU3eAtk0pjcJUX4Q8XEA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 21:55:40 GMT
etag: "985c6761675e6bcc0186f64d55f94cf09352f05c"
content-type: image/jpeg
age: 21687
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash1ab1615b2c8cc26b12fc0cf41734ff07 a7d54b3709ce75a20210e20013e6f06b0aa88e2d 22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4743
Expires: Wed, 07 Dec 2022 05:16:10 GMT
Date: Wed, 07 Dec 2022 03:57:07 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash1ab1615b2c8cc26b12fc0cf41734ff07 a7d54b3709ce75a20210e20013e6f06b0aa88e2d 22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4743
Expires: Wed, 07 Dec 2022 05:16:10 GMT
Date: Wed, 07 Dec 2022 03:57:07 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F084354d3-0d22-4203-844f-c2f6ab2af36d.jpeg | 34.120.237.76 | 200 OK | 8.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F084354d3-0d22-4203-844f-c2f6ab2af36d.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashb89a7fe1080499e4f7171f962b57fec4 62ef59be034071e667e3476ea0740077c86778c1 e17432ce6af0006ba36fd43e13c56c1bd1dd9b1d1bc250309bc2731ac8f52abb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F084354d3-0d22-4203-844f-c2f6ab2af36d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8906
x-amzn-requestid: 453c8d4f-205d-46ac-8d24-1c9849d71419
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cvmAyEMnoAMFZwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638fb6d1-7b5051335073a5d2339e02e1;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 21:40:33 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 2LpJmaGp8UzaZHqa9WtCTvFq0oQYOVNAdKBdYHURf2d2v5fh7j44uQ==
via: 1.1 e124ba8d7ba1d81e2fdc59ac89f11b70.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 21:55:06 GMT
age: 21721
etag: "62ef59be034071e667e3476ea0740077c86778c1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F167b7461-ee08-4205-a299-12e7c883b958.jpeg | 34.120.237.76 | 200 OK | 15 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F167b7461-ee08-4205-a299-12e7c883b958.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash4884ce2731d3033b12e4792c1bbf453e 63b6efc98cb04228d82ac28fceb97bb1cf8d82fb 8c37704d0e1fd16239e28cbdb88c5ac6a2e9cfb70f8457bfab127202f89d3788
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F167b7461-ee08-4205-a299-12e7c883b958.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14896
x-amzn-requestid: 58d94b15-dce0-44c0-96b1-917f1206a39e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cnA4RFkeoAMFfGQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c4834-7c1667b53795d5c11a3bfdda;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 07:11:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gKrU6wAuRsrr4_VwxjHIsTHjAB_L3xy6VQPRFBTUrK4vd7ycP3kyig==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 07:46:26 GMT
age: 72641
etag: "63b6efc98cb04228d82ac28fceb97bb1cf8d82fb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F849e6cc4-2b6a-4e78-ba2e-d46bfbadd6ba.jpeg | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F849e6cc4-2b6a-4e78-ba2e-d46bfbadd6ba.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash0a317faf49d8e057d1da40f9441b6c30 f01497a3eef693b70b18885156f63c9c7305ed7e 5687e273eefa9ba3733fabe234e52bc7db87b4ec6244d12077c5816ae7961576
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F849e6cc4-2b6a-4e78-ba2e-d46bfbadd6ba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12259
x-amzn-requestid: db1b424e-af8a-4a6f-92dc-27ccf3256d25
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: coKPCHc9oAMFygg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638cbd93-56c293d73368cab66819d31e;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 15:32:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 1go6MAGUUThlH59lQ8FRciYwPrzYJbcTKlNPmzqxNWynDV7SHrwmTw==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 05:47:40 GMT
age: 79767
etag: "f01497a3eef693b70b18885156f63c9c7305ed7e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3a455f5-9c19-4e6f-ab7a-1fe9c399118f.jpeg | 34.120.237.76 | 200 OK | 8.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3a455f5-9c19-4e6f-ab7a-1fe9c399118f.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hasha0f0782df385287698881f1c19e79b96 5a25f245b594f6cbf2fdaeed2463ac5fbc08068a 4f795cd2286e194cd96751e6a4e3bd0da09c6db5344182e51986b65149e75cd7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3a455f5-9c19-4e6f-ab7a-1fe9c399118f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8579
x-amzn-requestid: 0efa303a-364e-488d-beac-24836c7c1e4f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cvlirE2KoAMFX9g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638fb610-5564a0c0264ed36f0497e17e;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 21:37:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: xpzGji_JAWkUjhXLouXWlin6rV-44shz6Z_STqo7uK7ZUV2PWs7Zpg==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 21:54:15 GMT
age: 21772
etag: "5a25f245b594f6cbf2fdaeed2463ac5fbc08068a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa051c24a-9b15-4802-8ffe-63154898a5cf.jpeg | 34.120.237.76 | 200 OK | 5.2 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa051c24a-9b15-4802-8ffe-63154898a5cf.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash639e2589368c582a78dfccb17890f552 158b89c849ca0728151fd6d46f06b1d2c01afead a2ae55dd59cbbf2fcb5ff552b450a1622156230425c1f430a44a791bfa55b3b3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa051c24a-9b15-4802-8ffe-63154898a5cf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5216
x-amzn-requestid: de340de7-410c-4481-85c4-0aec052ccf6f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjKUYFBzIAMFgsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638abdb5-2f96b0db47a0aaaa057b5135;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 03:08:37 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: J4Tw5vXVijXSm1CFHrxTCoDQWqB4c5iJP76s9kjxNCCTSnmdAZdP8A==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 20:30:32 GMT
age: 26795
etag: "158b89c849ca0728151fd6d46f06b1d2c01afead"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash3ba864a4daffd79d4639e98e35cf5a8f 4e2dfdbff3ce773c1c39031bdf854e2b0a31131c 73a684466e34cc6ab4250dbab0c6afb73a92c4239e37076020b9e1c446b69b7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 03:57:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashc10bc583c46449dc192a809398b4e814 ff0f7ad905d32d7f3d01e4054552d0ad551503a5 defd2b2559e55c9c6c0f8be9b23c53c4e781a736feae3dd73b4d203b69cfcc57
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 03:57:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash3074a66f6d9b2e2af9b41ec0e2f4e2db 942e2c49b3848f11da966937f5914c62aed24bce 7c3b21b91aab06aff58cc56ce4b7273a7d320df8b0b4ad685c660e03ba0b72aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 03:57:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.googletagmanager.com/gtag/js?id=UA-36193117-1 | 142.250.74.168 | 200 OK | 44 kB |
URL HTTP/2www.googletagmanager.com/gtag/js?id=UA-36193117-1 IP142.250.74.168:0
File typeASCII text, with very long lines (1921) Hash0b8b29b83e13518da3a0e560e2e021be edf21f520550545cc6281bc97e827b33bf152063 d3135c3c66e7c4f8ea37f63d9aa7a980bfc5d10bbdf34a4b88c7020a1cd85989
GET /gtag/js?id=UA-36193117-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 07 Dec 2022 03:57:07 GMT
expires: Wed, 07 Dec 2022 03:57:07 GMT
cache-control: private, max-age=900
last-modified: Wed, 07 Dec 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43593
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash3ba864a4daffd79d4639e98e35cf5a8f 4e2dfdbff3ce773c1c39031bdf854e2b0a31131c 73a684466e34cc6ab4250dbab0c6afb73a92c4239e37076020b9e1c446b69b7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 03:57:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash3074a66f6d9b2e2af9b41ec0e2f4e2db 942e2c49b3848f11da966937f5914c62aed24bce 7c3b21b91aab06aff58cc56ce4b7273a7d320df8b0b4ad685c660e03ba0b72aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 03:57:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| downloads.mailchimp.com/js/signup-forms/popup/unique-methods/embed.js | 143.204.55.116 | 200 OK | 68 kB |
URL HTTP/1.1downloads.mailchimp.com/js/signup-forms/popup/unique-methods/embed.js IP143.204.55.116:0
File typeASCII text, with very long lines (65526) Hashfead5f0ca75b311840f569e510b64482 a09ac9a0980113f6af15ff6381e26f1bbfd5d646 93168326abdbf369d362e37871904c0c51c5ac627dd100c000b63cd0eaf57a9a
GET /js/signup-forms/popup/unique-methods/embed.js HTTP/1.1
Host: downloads.mailchimp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 06 Dec 2022 20:25:59 GMT
Last-Modified: Tue, 06 Dec 2022 19:57:06 GMT
ETag: W/"8d6f42408302bc376ef00db40128ff9f"
Server: AmazonS3
Content-Encoding: br
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 6gkEz0nhrdU-Yf6nO2MuW-Ozja9OqAzUY0TFAAu8m-GxcDKdLyWImA==
Age: 27069
Vary: Accept-Encoding, Origin
|
|
| tebohomafodi.co.za/wp-includes/css/classic-themes.min.css?ver=1 | 41.185.8.59 | 200 OK | 217 B |
URL HTTP/2tebohomafodi.co.za/wp-includes/css/classic-themes.min.css?ver=1 IP41.185.8.59:0
Hash95e891f28e44a9b314c09545d86be2b7 f9b13a8bd47273b086a0a07df15f314e0af0bc3e 5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: text/css
content-length: 217
last-modified: Tue, 25 Oct 2022 17:15:16 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 | 41.185.8.59 | 200 OK | 19 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 IP41.185.8.59:0
File typeASCII text, with very long lines (19233) Hashd183c598fd582fe997f6782afed84f9b 7799820e0e849e8484543c3360a8d8cc62baa32f 83059e4c1a5c210e5585d96779fe655170817193d43e247c78dffaae7b7ba3a9
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: text/css
content-length: 19279
last-modified: Sun, 31 Jul 2022 22:11:38 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/themes/twentyseventeen/assets/css/blocks.css?ver=20220912 | 41.185.8.59 | 200 OK | 11 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/themes/twentyseventeen/assets/css/blocks.css?ver=20220912 IP41.185.8.59:0
Hash00184da8b43cc60f051ba2e5cc467a76 e765edb540994b2bf946a158969c0eb326398a45 37fa576d4c1a5e70993a211461fabe5e8473af031573b57dcfd7874bedb39d6a
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/themes/twentyseventeen/assets/css/blocks.css?ver=20220912 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: text/css
content-length: 10745
last-modified: Tue, 01 Nov 2022 23:31:24 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 | 41.185.8.59 | 200 OK | 31 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 IP41.185.8.59:0
File typeASCII text, with very long lines (30837) Hash008e0bb5ebfa7bc298a042f95944df25 93897ebc560b38a1d2bff43c22dd6a3b7ee90c0c c4047043368afb4baf1aed25d358a5c2a333842a3b436b58491ab36aeee65b9d
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: text/css
content-length: 30999
last-modified: Thu, 27 Jun 2019 09:54:54 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.9.0 | 41.185.8.59 | 200 OK | 9.9 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.9.0 IP41.185.8.59:0
File typeASCII text, with very long lines (9895) Hash0223335e4b80270dd7f3556a3ad02524 59818e586e594b9ada31d0d85bd15ea658576bb2 edbb4120b3ff59d1140e6527b5844b9f57dc86043b1d94181cc60822df8595f0
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.9.0 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: text/css
content-length: 9934
last-modified: Tue, 06 Dec 2022 18:49:08 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/plugins/page-builder-sandwich/page_builder_sandwich/css/style.min.css?ver=4.5.8 | 41.185.8.59 | 200 OK | 85 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/plugins/page-builder-sandwich/page_builder_sandwich/css/style.min.css?ver=4.5.8 IP41.185.8.59:0
File typeASCII text, with very long lines (65536), with no line terminators Hashd000586d4b438c3d17a7d13c5cde3e73 43f94213033f7ed7f55fc6c9c038b3c1c24a8f6b 511ff69ae9d021f3aa127a90242e84079bb5c5d50db368c88984cf5b9637febc
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/plugins/page-builder-sandwich/page_builder_sandwich/css/style.min.css?ver=4.5.8 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: text/css
content-length: 85358
last-modified: Fri, 02 Sep 2022 23:14:42 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 | 41.185.8.59 | 200 OK | 95 kB |
URL HTTP/2tebohomafodi.co.za/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 IP41.185.8.59:0
File typeASCII text, with very long lines (47826) Hash71d925864153f0edf91037f3d31048e8 cc16a0524ac63b5ce29f703a66412224f0dd771a c324ef26b20264369e4568dc9ef1c5cb1f325f6bc4e8b7c01f7fe93fa353276a
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: text/css
content-length: 94889
last-modified: Wed, 16 Nov 2022 08:10:54 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/plugins/all-in-one-event-calendar/public/themes-ai1ec/vortex/css/ai1ec_parsed_css.css?ver=3.0.0 | 41.185.8.59 | 200 OK | 267 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/plugins/all-in-one-event-calendar/public/themes-ai1ec/vortex/css/ai1ec_parsed_css.css?ver=3.0.0 IP41.185.8.59:0
File typeASCII text, with very long lines (65536), with no line terminators Size267 kB (267190 bytes) Hashca59c57333911db9a35cd1f45988d9f7 3caf7f082b86cdbe7aab05c679a3b8a6d695edb9 1f8e22239135a453a36a74b154a42d357ba2bca8f77c0ae80f94998e6fca800d
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/plugins/all-in-one-event-calendar/public/themes-ai1ec/vortex/css/ai1ec_parsed_css.css?ver=3.0.0 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: text/css
content-length: 267190
last-modified: Thu, 06 Feb 2020 16:40:30 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/css/global.css?ver=1634710450 | 41.185.8.59 | 200 OK | 9.5 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/css/global.css?ver=1634710450 IP41.185.8.59:0
File typeASCII text, with very long lines (6697) Hasha07c23e4f73d3f04890298ab831e650f 2ca899cf5246e6fcbcf2b6e8e4ae4354a0561706 7b64a84c219d901e94b497f2374a5eabfa89a26b3c2891c774979dea81bb66d4
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/css/global.css?ver=1634710450 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: text/css
content-length: 9475
last-modified: Wed, 20 Oct 2021 06:14:10 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/sabc2_logo-o5dks4kbuttgur53s12egcjoxryuwph4hpj18fve58.jpg | 41.185.8.59 | 200 OK | 6.5 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/sabc2_logo-o5dks4kbuttgur53s12egcjoxryuwph4hpj18fve58.jpg IP41.185.8.59:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 250x150, components 3\012- data Hashaa29d89e9a48b93484de167f9f317644 1c9ff8f411e19deb137b26bf4f8c7a33ea58fa82 173cbf39f16f618318892577160fc1f6c52234e091dc603b293b6966160b19bf
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/sabc2_logo-o5dks4kbuttgur53s12egcjoxryuwph4hpj18fve58.jpg HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/jpeg
content-length: 6462
last-modified: Wed, 24 Apr 2019 20:17:59 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/radio-2000-1-1024x538-o5dks2onh5qw7j7u3095bd0rr084hb9ntg829vy6ho.jpg | 41.185.8.59 | 200 OK | 5.5 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/radio-2000-1-1024x538-o5dks2onh5qw7j7u3095bd0rr084hb9ntg829vy6ho.jpg IP41.185.8.59:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 250x150, components 3\012- data Hashdc29a469df1722380e25a13202140232 4c582b364fb158d87bedfc2eb428787e914a93e0 36b6291e4421d4cdf064903d97dda5b6e6e981cd8e29556f5a30517f63a93b02
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/radio-2000-1-1024x538-o5dks2onh5qw7j7u3095bd0rr084hb9ntg829vy6ho.jpg HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/jpeg
content-length: 5522
last-modified: Wed, 24 Apr 2019 20:17:59 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.10.1 | 41.185.8.59 | 200 OK | 12 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.10.1 IP41.185.8.59:0
File typeASCII text, with very long lines (1577) Hasha76f61318af036823b08d73536486be6 31ff9b215dcef9151b9f4fc50ea91a9df1962102 abc9faa4970e07db7d506d6b2a98e4c86223be305c7541ced54ea2e15f99a76e
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.10.1 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: application/javascript
content-length: 11898
last-modified: Wed, 18 May 2022 16:14:50 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/sabc-3-1024x538-o5dks5i61nur6d3qmjh10ub5j5u84ekutu6ipptzz0.jpg | 41.185.8.59 | 200 OK | 4.2 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/sabc-3-1024x538-o5dks5i61nur6d3qmjh10ub5j5u84ekutu6ipptzz0.jpg IP41.185.8.59:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 250x150, components 3\012- data Hash7fdd505de31fa13aa5882318c01c6a08 57aea4202cfe42993d98aa848af676bc79ea4129 3e9f40a5efd3db1b775f5bcd6369d5a9b2cd23fcaf70870760ab831003e02763
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/sabc-3-1024x538-o5dks5i61nur6d3qmjh10ub5j5u84ekutu6ipptzz0.jpg HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/jpeg
content-length: 4245
last-modified: Wed, 24 Apr 2019 20:17:59 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Sabc-1-o5dks6g08hw1hz2dh1vnlc2m4jplc3ol5yu06zslss.jpg | 41.185.8.59 | 200 OK | 7.9 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Sabc-1-o5dks6g08hw1hz2dh1vnlc2m4jplc3ol5yu06zslss.jpg IP41.185.8.59:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 250x150, components 3\012- data Hashbab1d3af1410f8ee713efa74826d21d0 ee5ccdf745d2737a0524b77917416c2c4dbf6d76 5a418fc9ac28ea7774f41e4be8559c5568e948537146744464351598c9dc5975
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/Sabc-1-o5dks6g08hw1hz2dh1vnlc2m4jplc3ol5yu06zslss.jpg HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/jpeg
content-length: 7949
last-modified: Wed, 24 Apr 2019 20:17:59 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Motswe-o5dkryxaptlqx3daoymn1dyxdgqnmiuqgxm4cs3r6k.jpg | 41.185.8.59 | 200 OK | 4.0 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Motswe-o5dkryxaptlqx3daoymn1dyxdgqnmiuqgxm4cs3r6k.jpg IP41.185.8.59:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 250x150, components 3\012- data Hashad3ded1d8afc6bc856819cadd6292e71 8237a9b6ff4a2c9b665b85a179a4c836e840d53a 6459fe02d9192f44e2ff952a10f0cf722699741a84d860b4274aa2e2babfe229
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/Motswe-o5dkryxaptlqx3daoymn1dyxdgqnmiuqgxm4cs3r6k.jpg HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/jpeg
content-length: 4033
last-modified: Wed, 24 Apr 2019 20:17:59 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/e-o5dkr7nz7mkfkegw44ugj2uk5ah0fauip6p1fr8670.jpg | 41.185.8.59 | 200 OK | 5.6 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/e-o5dkr7nz7mkfkegw44ugj2uk5ah0fauip6p1fr8670.jpg IP41.185.8.59:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 250x150, components 3\012- data Hash120aec71bd830bdfe23eadbde3e934f3 ec6e94594e4fed660243735fd03bdcec3dc5f7b8 3412b0c3e1026764b222ab9f9deda690fc88ce450b082ffe330a06f80f81994d
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/e-o5dkr7nz7mkfkegw44ugj2uk5ah0fauip6p1fr8670.jpg HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/jpeg
content-length: 5641
last-modified: Wed, 24 Apr 2019 20:21:49 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Sunday_Times_Logo-1-o5dkr9jnlan07me5t5npo2dhc27qup1zdg00eb5duk.gif | 41.185.8.59 | 200 OK | 6.9 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Sunday_Times_Logo-1-o5dkr9jnlan07me5t5npo2dhc27qup1zdg00eb5duk.gif IP41.185.8.59:0
File typeGIF image data, version 87a, 250 x 150\012- data Hash7e81c7558d679db4b9573f5d31d35215 0d780eedc4dc28f822435612b1b9a906e659c345 c7e16b113d65a7f263ee07080ad28f1ab45c74f677b59891f8e30dfd7de15372
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/Sunday_Times_Logo-1-o5dkr9jnlan07me5t5npo2dhc27qup1zdg00eb5duk.gif HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/gif
content-length: 6938
last-modified: Wed, 24 Apr 2019 20:18:00 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/SOWETO-POPCORN-TV-o5dkrf6oqauq5a5yw83h30y8wdfy4vode7wx9yx0t8.png | 41.185.8.59 | 200 OK | 15 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/SOWETO-POPCORN-TV-o5dkrf6oqauq5a5yw83h30y8wdfy4vode7wx9yx0t8.png IP41.185.8.59:0
File typePNG image data, 250 x 150, 8-bit/color RGBA, non-interlaced\012- data Hash78ae10f611e1f446132f0c48a3861962 7f6e29b65b99a5d17df0738e44a4f4ec933d4db8 2177e73b1410eec23c751203f76e7c93286e0b8c7235bd9f50f31a18e3d9e8a7
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/SOWETO-POPCORN-TV-o5dkrf6oqauq5a5yw83h30y8wdfy4vode7wx9yx0t8.png HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/png
content-length: 14775
last-modified: Wed, 24 Apr 2019 20:18:00 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/YFM_Logo_bigger-o5dkrxzgizkglhenug80gw7gs2vaetr04symvi55cs.jpg | 41.185.8.59 | 200 OK | 4.9 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/YFM_Logo_bigger-o5dkrxzgizkglhenug80gw7gs2vaetr04symvi55cs.jpg IP41.185.8.59:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 250x150, components 3\012- data Hashee34d2637317db4a912307f578949f89 646ba4b0b2e3df0451de73b6ec83d99ad1d3c9c6 9d0890bbee4b44bbee9d7bea7418317a0ace9bfbd551529851bf70a93b41cac5
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/YFM_Logo_bigger-o5dkrxzgizkglhenug80gw7gs2vaetr04symvi55cs.jpg HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/jpeg
content-length: 4931
last-modified: Wed, 24 Apr 2019 20:17:59 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Ovhd-decoder-installations-20160906141029-o5dkryxaptlqx3daoymn1dyxdgqnmiuqgxm4cs3r6k.jpg | 41.185.8.59 | 200 OK | 8.8 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Ovhd-decoder-installations-20160906141029-o5dkryxaptlqx3daoymn1dyxdgqnmiuqgxm4cs3r6k.jpg IP41.185.8.59:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 250x150, components 3\012- data Hashc564c295a8b220122ea7060323d7e9b4 c339eed6232dea167ee1511cc2802746fc93268a df7c7ba2e443565729bcbfe95bb64b30eba27a0c669c4c6af85ccb65b4554326
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/Ovhd-decoder-installations-20160906141029-o5dkryxaptlqx3daoymn1dyxdgqnmiuqgxm4cs3r6k.jpg HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/jpeg
content-length: 8808
last-modified: Wed, 24 Apr 2019 20:17:59 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Move_logo2-o5dkr7nz7mkfkegw44ugj2uk5ah0fauip6p1fr8670.jpg | 41.185.8.59 | 200 OK | 10 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Move_logo2-o5dkr7nz7mkfkegw44ugj2uk5ah0fauip6p1fr8670.jpg IP41.185.8.59:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 250x150, components 3\012- data Hashf17400467c3c24e1d2d2dcadb1702443 766ed09a6ec808ff94748000807ef6be2f58678c cb7b7c790d24e8267431fc735b992eb3c7025db16f7abf6131e15a645609f0ff
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/Move_logo2-o5dkr7nz7mkfkegw44ugj2uk5ah0fauip6p1fr8670.jpg HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/jpeg
content-length: 9959
last-modified: Wed, 24 Apr 2019 20:18:00 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Sowetan-logo-o5dkrktpvb2g2xxrzaj8hzj0goo5f2areztu5monrw.gif | 41.185.8.59 | 200 OK | 7.1 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Sowetan-logo-o5dkrktpvb2g2xxrzaj8hzj0goo5f2areztu5monrw.gif IP41.185.8.59:0
File typeGIF image data, version 87a, 250 x 150\012- data Hash03c998934e8329a8c236ce27cc873df6 6a1f0029c46b7d4183f50b55a103a4c4011b08b1 9a6730eef7f707f1657263a9dbe2dea247d00e69b1c7c0d99101d0e8cb40056a
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/Sowetan-logo-o5dkrktpvb2g2xxrzaj8hzj0goo5f2areztu5monrw.gif HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/gif
content-length: 7143
last-modified: Wed, 24 Apr 2019 20:18:00 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/themes/twentyseventeen/assets/js/skip-link-focus-fix.js?ver=20161114 | 41.185.8.59 | 200 OK | 683 B |
URL HTTP/2tebohomafodi.co.za/wp-content/themes/twentyseventeen/assets/js/skip-link-focus-fix.js?ver=20161114 IP41.185.8.59:0
Hash75abd4cd8807b312f9f7faeb77ee774b e7b7a7ed06d0123ab8667a1d1eeb23de9f2bece7 ca424c0181141900220a19f998ffa7660380bc99ab99557ad458a083251f7034
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/themes/twentyseventeen/assets/js/skip-link-focus-fix.js?ver=20161114 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: application/javascript
content-length: 683
last-modified: Tue, 24 May 2022 17:17:12 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/power-1-o5dkr5satyhux6jmf417e3bmyiq9zwn20xe2h7ayjg.jpg | 41.185.8.59 | 200 OK | 6.3 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/power-1-o5dkr5satyhux6jmf417e3bmyiq9zwn20xe2h7ayjg.jpg IP41.185.8.59:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 250x150, components 3\012- data Hashb6ae1b348cf11b2125ec537cf7daa79b 1369e0f142499f24856dcc154f6de0c086322171 4ee50f30b1f5c79b4635b6f5122cb94131cdbd2ae7fc3ff6405a199d30fed8f7
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/power-1-o5dkr5satyhux6jmf417e3bmyiq9zwn20xe2h7ayjg.jpg HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/jpeg
content-length: 6297
last-modified: Wed, 24 Apr 2019 20:18:00 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Mnet-o5dkre8ujgtfto7c1pouij6sazkkx6kn239fsoyezg.jpg | 41.185.8.59 | 200 OK | 7.3 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Mnet-o5dkre8ujgtfto7c1pouij6sazkkx6kn239fsoyezg.jpg IP41.185.8.59:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 250x150, components 3\012- data Hash1194fa6c504c4d6ccde81d56fd8ea62c 2214deabfefe7b2833718068aac3450b1ac989e0 e21905075ed3d5b354c21037e26c8bf54cf5a0cb316d3ba0a12e93b65d137921
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/Mnet-o5dkre8ujgtfto7c1pouij6sazkkx6kn239fsoyezg.jpg HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/jpeg
content-length: 7292
last-modified: Wed, 24 Apr 2019 20:18:00 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/plugins/the-events-calendar/common/src/resources/js/underscore-before.js | 41.185.8.59 | 200 OK | 1.3 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/plugins/the-events-calendar/common/src/resources/js/underscore-before.js IP41.185.8.59:0
Hashed2a4da46568eb4080ede2396431343a 3b63971d85ed7d69ac4f5f80ae4df8f10b5d3e00 ae6de183ae9a339fddbc7ca40bbccc092582999e99089fbe7a5b31e0b075445a
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/plugins/the-events-calendar/common/src/resources/js/underscore-before.js HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: application/javascript
content-length: 1278
last-modified: Tue, 29 Nov 2022 14:44:54 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/THClogo-o5dkrnn8ft6b1rtoitr47gte8ua925lyfdsalgkh98.jpg | 41.185.8.59 | 200 OK | 6.9 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/THClogo-o5dkrnn8ft6b1rtoitr47gte8ua925lyfdsalgkh98.jpg IP41.185.8.59:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 250x150, components 3\012- data Hash183befaf3f1595fd38587abd0362927b b8aeafa71a1d25478460775e430d8a7d2d60582e 283a23d4803280feaa4e75ef485f3d4ecbc3cc5002de4be42d40c48ad97a0616
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/THClogo-o5dkrnn8ft6b1rtoitr47gte8ua925lyfdsalgkh98.jpg HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/jpeg
content-length: 6872
last-modified: Wed, 24 Apr 2019 20:21:49 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Sow-o5dkr8lteglpw0fiyn933km0qocdmzy91bcix16s0s.png | 41.185.8.59 | 200 OK | 22 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Sow-o5dkr8lteglpw0fiyn933km0qocdmzy91bcix16s0s.png IP41.185.8.59:0
File typePNG image data, 250 x 150, 8-bit/color RGBA, non-interlaced\012- data Hash3dfc6a5c389f0e5eb65ea754043e3dfd 38c4b7b95a5617d51195d612e9638b99bbfe7fbd 1172ae055aba93d8b09170217c6c65445031c1cb4ba4dc546e70c12ce08683b0
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/Sow-o5dkr8lteglpw0fiyn933km0qocdmzy91bcix16s0s.png HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/png
content-length: 22023
last-modified: Wed, 24 Apr 2019 20:18:00 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/metro-o5dkrlrk253qejwetsxv2hah22jimrehr4hbmwn9lo.jpg | 41.185.8.59 | 200 OK | 3.8 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/metro-o5dkrlrk253qejwetsxv2hah22jimrehr4hbmwn9lo.jpg IP41.185.8.59:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 250x150, components 3\012- data Hash17d5b327a5f3f042994c4939b101a023 851e5834de8a04246dbf06f644364dd78bf0bcf5 54cce107472d08c39853981e782146d58e22c27cd3c8adaa0b0c2d7307b6b52e
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/metro-o5dkrlrk253qejwetsxv2hah22jimrehr4hbmwn9lo.jpg HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/jpeg
content-length: 3803
last-modified: Wed, 24 Apr 2019 20:18:00 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/themes/twentyseventeen/assets/js/global.js?ver=20211130 | 41.185.8.59 | 200 OK | 7.8 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/themes/twentyseventeen/assets/js/global.js?ver=20211130 IP41.185.8.59:0
Hashb05f10be5dc47940fc74ad56a9495aaf 97c3e00962157773e293e0715dc533e221f62b18 75d7fd1066c67dfe078b0cf1fe3863d2b883076cb6f4e41988708179f7e18488
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/themes/twentyseventeen/assets/js/global.js?ver=20211130 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: application/javascript
content-length: 7825
last-modified: Tue, 24 May 2022 17:17:12 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/themes/twentyseventeen/assets/js/navigation.js?ver=20210122 | 41.185.8.59 | 200 OK | 3.8 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/themes/twentyseventeen/assets/js/navigation.js?ver=20210122 IP41.185.8.59:0
File typeassembler source, ASCII text Hash7528d405618574126935b33521c7b857 f125d71427c61fe576cbc90588b9d9d6327b8b59 1c98a8d8813ac4e8d1d79e5b5981c41ecce80bfdb7e55b70430e429690a0dbfe
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/themes/twentyseventeen/assets/js/navigation.js?ver=20210122 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: application/javascript
content-length: 3760
last-modified: Tue, 24 May 2022 17:17:12 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.9.0 | 41.185.8.59 | 200 OK | 5.0 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.9.0 IP41.185.8.59:0
File typeASCII text, with very long lines (4918) Hasha7a049e4c9bdcc9668d335ed4f53b866 6c5fb0e6b37e20e13251468623b3ee55ccd89f9a 9bfecf7bd02a7ee2751567c96fd914d67899b9a5f1951c547b406b83c2a3758c
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.9.0 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: application/javascript
content-length: 4957
last-modified: Tue, 06 Dec 2022 18:49:08 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.9.0 | 41.185.8.59 | 200 OK | 2.6 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.9.0 IP41.185.8.59:0
File typeASCII text, with very long lines (2620), with no line terminators Hash020e87460ce58802842e34a3aac97d83 d2eed5f7573c0bd640fb9f125b6bfedf43ebf9b9 138154c0deed3326477b9b4909175101070a5a3a95342291b53d8cc9879a5f47
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.9.0 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: application/javascript
content-length: 2620
last-modified: Sun, 31 Jul 2022 22:11:38 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/themes/twentyseventeen/assets/js/jquery.scrollTo.js?ver=2.1.3 | 41.185.8.59 | 200 OK | 5.8 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/themes/twentyseventeen/assets/js/jquery.scrollTo.js?ver=2.1.3 IP41.185.8.59:0
Hashd45857185e4d727c4644f920fe3da019 1f1860080bef5852db24e9c7c30caf655320ea3e 74b88e3c74597c256390ff0cf19b7bc9c5427ca2b0651959c164b29253965871
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/themes/twentyseventeen/assets/js/jquery.scrollTo.js?ver=2.1.3 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: application/javascript
content-length: 5817
last-modified: Tue, 01 Nov 2022 23:31:24 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 | 41.185.8.59 | 200 OK | 11 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 IP41.185.8.59:0
File typeASCII text, with very long lines (10544) Hash4eee50ac6f4f364ba3a284d0753ddae3 a8e7e824e6824ae0b370ff36e2c07ca07276fae0 b936db5880aa9b6b2f26a8d32fc2b689fb75f69d971b94194f16dba801221ffe
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: application/javascript
content-length: 10682
last-modified: Wed, 17 Nov 2021 06:27:36 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Sunworld-o5dkrv5xyhglmnirax04rex2zx96rqft4f06fo9bvg.png | 41.185.8.59 | 200 OK | 32 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Sunworld-o5dkrv5xyhglmnirax04rex2zx96rqft4f06fo9bvg.png IP41.185.8.59:0
File typePNG image data, 250 x 150, 8-bit/color RGBA, non-interlaced\012- data Hashd86b43417db7985be44ffa490af38204 a531f8063831e46b2b4c95d83dd43c0e694aa397 9fcb82f71ca9035bb7ca46c0a8f0b6025b371e65e281471ca91de867d205d4d1
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/Sunworld-o5dkrv5xyhglmnirax04rex2zx96rqft4f06fo9bvg.png HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/png
content-length: 31952
last-modified: Wed, 24 Apr 2019 20:21:49 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Times-o5dkrta9kte0zflhlw6vmfe5t5igcc8cg5p7h4c47w.png | 41.185.8.59 | 200 OK | 24 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Times-o5dkrta9kte0zflhlw6vmfe5t5igcc8cg5p7h4c47w.png IP41.185.8.59:0
File typePNG image data, 250 x 150, 8-bit/color RGBA, non-interlaced\012- data Hash3c5c6eefa3fd628dd3cbefa6827f04a3 a88b661504c30b256a82adea2917c81f638b0c4a 325d25c037d7760fa4c2b54b5fd89e2fcb1c551c22cfeb9474928520c6a7c740
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/Times-o5dkrta9kte0zflhlw6vmfe5t5igcc8cg5p7h4c47w.png HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/png
content-length: 24151
last-modified: Wed, 24 Apr 2019 20:21:49 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 | 41.185.8.59 | 200 OK | 19 kB |
URL HTTP/2tebohomafodi.co.za/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 IP41.185.8.59:0
File typeASCII text, with very long lines (15660) Hash32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: application/javascript
content-length: 18617
last-modified: Tue, 12 Apr 2022 09:26:24 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/css/post-73.css?ver=1634700544 | 41.185.8.59 | 200 OK | 25 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/css/post-73.css?ver=1634700544 IP41.185.8.59:0
File typeASCII text, with very long lines (25339), with no line terminators Hashdf8a1adb68c43882b567931a6961f4dc a6b2b1a4316a77da8cfaababce4fe4dc4e87f517 ed5f919382f6e7074a2c5f719ba21431afcc5f698ee9bbe8ec2877847a955ecd
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/css/post-73.css?ver=1634700544 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: text/css
content-length: 25339
last-modified: Wed, 20 Oct 2021 03:29:04 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/CNBC-Africa-o5dksa7czu16sewwv3i5vb4gi3726w3iihfy43n13w.png | 41.185.8.59 | 200 OK | 36 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/CNBC-Africa-o5dksa7czu16sewwv3i5vb4gi3726w3iihfy43n13w.png IP41.185.8.59:0
File typePNG image data, 250 x 150, 8-bit/color RGBA, non-interlaced\012- data Hashef8e68a0053a7d22904f39f3e91beae3 bafa265b588d386529c909683a78198d1a771081 bb947d26d135695488dc9cb29c86ed37d1a1b0d4c6bfeeb3763d717a0c6a304b
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/CNBC-Africa-o5dksa7czu16sewwv3i5vb4gi3726w3iihfy43n13w.png HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/png
content-length: 35757
last-modified: Wed, 24 Apr 2019 20:21:49 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Business-Day-TV-logo-DStv-e1555931539988-o6qs4l81d61bjlw3qsqtx3kei7byjeuouamp2vqiqk.jpg | 41.185.8.59 | 200 OK | 6.6 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Business-Day-TV-logo-DStv-e1555931539988-o6qs4l81d61bjlw3qsqtx3kei7byjeuouamp2vqiqk.jpg IP41.185.8.59:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 250x150, components 3\012- data Hasha323daedf9aa9855f34848e306785f77 ea83c38df1e133873f3e43d4710a6c6fe1ccd659 1cf62862d066cf7f172f2f060f3d1406567a6ddb89abf46b09e4f14f8aedfbb4
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/Business-Day-TV-logo-DStv-e1555931539988-o6qs4l81d61bjlw3qsqtx3kei7byjeuouamp2vqiqk.jpg HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/jpeg
content-length: 6555
last-modified: Wed, 24 Apr 2019 20:21:49 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Daily-o5dks0sz3hobkbakdzfw6dhuk8he1x2756x3bc0yu4.jpg | 41.185.8.59 | 200 OK | 8.6 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Daily-o5dks0sz3hobkbakdzfw6dhuk8he1x2756x3bc0yu4.jpg IP41.185.8.59:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 250x150, components 3\012- data Hash405b70a272b93c959db6df7cc312674c 8a3f9f7af402f257451887819bf6974fd2b0ce8f 96f749e725a32901dda1ac541db45658193a3c93c06c5293b65031371d4b0083
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/Daily-o5dks0sz3hobkbakdzfw6dhuk8he1x2756x3bc0yu4.jpg HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/jpeg
content-length: 8598
last-modified: Wed, 24 Apr 2019 20:17:59 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/2019/04/cropped-NEWlogoHighREZ.png | 41.185.8.59 | 200 OK | 17 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/2019/04/cropped-NEWlogoHighREZ.png IP41.185.8.59:0
File typePNG image data, 603 x 250, 8-bit/color RGBA, non-interlaced\012- data Hash382dd3e7fca15075de2d749989a45f89 7bd0332786535224539ee3dfdf676d8a6e2e5542 53552c2a2e261f621ff68a29798a950b2392d3b2495b5c711e3fb8ff59236e8e
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/2019/04/cropped-NEWlogoHighREZ.png HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/png
content-length: 16720
last-modified: Wed, 24 Apr 2019 04:34:39 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Sunday_Times_Logo-o5dkrx1mc5j69vg0zxtdweg06ozx74n9sob5e86jj0.gif | 41.185.8.59 | 200 OK | 6.9 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Sunday_Times_Logo-o5dkrx1mc5j69vg0zxtdweg06ozx74n9sob5e86jj0.gif IP41.185.8.59:0
File typeGIF image data, version 87a, 250 x 150\012- data Hash7e81c7558d679db4b9573f5d31d35215 0d780eedc4dc28f822435612b1b9a906e659c345 c7e16b113d65a7f263ee07080ad28f1ab45c74f677b59891f8e30dfd7de15372
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/Sunday_Times_Logo-o5dkrx1mc5j69vg0zxtdweg06ozx74n9sob5e86jj0.gif HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/gif
content-length: 6938
last-modified: Wed, 24 Apr 2019 20:17:59 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Uk-o5dkrg4ix4w0gw4lqqi3nipphrbbcks3qcker8vmn0.jpg | 41.185.8.59 | 200 OK | 4.9 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Uk-o5dkrg4ix4w0gw4lqqi3nipphrbbcks3qcker8vmn0.jpg IP41.185.8.59:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 250x150, components 3\012- data Hash7b9fc44b640293c0632beceb1a0bb319 4869791a5ffe67d95360e7efba2ae5d7bd5b7ba5 cb9d2e54b20043140d8b7b27fd1231c068276d5f0d4c0dad2d915d074c01b02a
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/Uk-o5dkrg4ix4w0gw4lqqi3nipphrbbcks3qcker8vmn0.jpg HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/jpeg
content-length: 4863
last-modified: Wed, 24 Apr 2019 20:18:00 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Daily-sun-o5dkrw3s5bhvy9he5ferbwojlb4jzfjjgjnnwy7xp8.jpg | 41.185.8.59 | 200 OK | 6.2 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Daily-sun-o5dkrw3s5bhvy9he5ferbwojlb4jzfjjgjnnwy7xp8.jpg IP41.185.8.59:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 250x150, components 3\012- data Hashe0876e81d8ca2f0be3529122503da76f a0f3ad3b495099f667b7f48635c7a33a3770bed8 38007e94f98405ced6b2b22419721c8b1e2c6f38afde3265ad7800207d507910
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/Daily-sun-o5dkrw3s5bhvy9he5ferbwojlb4jzfjjgjnnwy7xp8.jpg HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/jpeg
content-length: 6235
last-modified: Wed, 24 Apr 2019 20:17:59 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Lesedi-o5dkrrel75bgc7o7wvdmhfv8mdrpwy0vrwe8ikewkc.png | 41.185.8.59 | 200 OK | 24 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Lesedi-o5dkrrel75bgc7o7wvdmhfv8mdrpwy0vrwe8ikewkc.png IP41.185.8.59:0
File typePNG image data, 250 x 150, 8-bit/color RGBA, non-interlaced\012- data Hash02a680b38991983bf3346854cfd74a0c d5f00ca2cbb26931bbab0556649e33b6ecc5a3cd 669d3e95345299bb98efd4da1ed6fcea1be56844f9c1178d3ac05004062a92b1
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/Lesedi-o5dkrrel75bgc7o7wvdmhfv8mdrpwy0vrwe8ikewkc.png HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/png
content-length: 24155
last-modified: Wed, 24 Apr 2019 20:17:59 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/City-Pres-o5dkru83rnfbb1k4geli6x5mejdtk1c2sacoyeaq1o.png | 41.185.8.59 | 200 OK | 36 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/City-Pres-o5dkru83rnfbb1k4geli6x5mejdtk1c2sacoyeaq1o.png IP41.185.8.59:0
File typePNG image data, 250 x 150, 8-bit/color RGBA, non-interlaced\012- data Hash1961aa07a0352d5f3dc024976316ca55 e9baa73b9d88aae78328bc55fcb9efef3c2aafd5 3e91c097e215b52aeb58b3d8504d12abb0c7eea16c53b2f5009f46015a43aab8
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/City-Pres-o5dkru83rnfbb1k4geli6x5mejdtk1c2sacoyeaq1o.png HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/png
content-length: 36231
last-modified: Wed, 24 Apr 2019 20:17:59 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/safm-1024x538-o5dkrjvvoh15rbz54s4lxhrjvass7d712v6cocq1y4.jpg | 41.185.8.59 | 200 OK | 5.0 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/safm-1024x538-o5dkrjvvoh15rbz54s4lxhrjvass7d712v6cocq1y4.jpg IP41.185.8.59:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 250x150, components 3\012- data Hash8bec35ac490c53af386e8e326dacf882 08e07b257aeac62f50b92db70fca9d0e689faf4f a0a54de6f60c71c8033912fe5c63ab4abc4da99c31296fc645aa43effb522b9b
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/safm-1024x538-o5dkrjvvoh15rbz54s4lxhrjvass7d712v6cocq1y4.jpg HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/jpeg
content-length: 5028
last-modified: Wed, 24 Apr 2019 20:18:00 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-includes/js/wp-util.min.js?ver=6.1.1 | 41.185.8.59 | 200 OK | 1.4 kB |
URL HTTP/2tebohomafodi.co.za/wp-includes/js/wp-util.min.js?ver=6.1.1 IP41.185.8.59:0
File typeASCII text, with very long lines (1391) Hash19d386c9004e54941c1cc61d357efa5d 0a77594006c8d86fdcc0adbc2b9aecaef3869586 3bc6467a95cec8fa516c6f5f69e1301e37e16f9bb1046fe7756729249f901b95
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-includes/js/wp-util.min.js?ver=6.1.1 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: application/javascript
content-length: 1426
last-modified: Tue, 20 Sep 2022 07:22:10 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8 | 41.185.8.59 | 200 OK | 754 B |
URL HTTP/2tebohomafodi.co.za/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8 IP41.185.8.59:0
File typeASCII text, with very long lines (754), with no line terminators Hashafb55c29bdbcfc262d9fa56743572cad d4b6cb9df2b1b5477cd968fb05cf5faa1d13d6bf c30dab20b677f2b13f42a4a04385a3c6d380fa023a4a1c32f45f2996e152bfba
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: application/javascript
content-length: 754
last-modified: Thu, 10 Nov 2022 10:24:24 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-includes/js/underscore.min.js?ver=1.13.4 | 41.185.8.59 | 200 OK | 19 kB |
URL HTTP/2tebohomafodi.co.za/wp-includes/js/underscore.min.js?ver=1.13.4 IP41.185.8.59:0
File typeASCII text, with very long lines (18798) Hashf88d5720bb454ed5d204cbdb56901f6b f1952292fde4b15936e9aac16b2b9896684db95b 726b820e44f6ab90ad991d30a4bf26d3a5d71493cbcd1fb1efd0d14e89b9df2a
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: application/javascript
content-length: 18833
last-modified: Tue, 27 Sep 2022 18:48:26 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/plugins/the-events-calendar/common/src/resources/js/underscore-after.js | 41.185.8.59 | 200 OK | 928 B |
URL HTTP/2tebohomafodi.co.za/wp-content/plugins/the-events-calendar/common/src/resources/js/underscore-after.js IP41.185.8.59:0
Hash5ecfc97f98f4182283767624aa556197 9a6c9ced34020bc7cfc3cb25ab4a201b1722a18b 28ba1826a2b215bb02c0182c67e01b2a361ed1f3726b45a191c67392f1dcec6b
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/plugins/the-events-calendar/common/src/resources/js/underscore-after.js HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: application/javascript
content-length: 928
last-modified: Tue, 29 Nov 2022 14:44:54 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/RealEstate-Logo-e1555931651588-o6qs7ihymm1fnxn6o291od011cx2higmkrp2tvefdo.jpg | 41.185.8.59 | 200 OK | 5.3 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/RealEstate-Logo-e1555931651588-o6qs7ihymm1fnxn6o291od011cx2higmkrp2tvefdo.jpg IP41.185.8.59:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 250x150, components 3\012- data Hasha395db9f2aafef6550c87586fdfa06de 4378825b9df86ed57adb38808fa5721aeb58271e fdc050e4d9be33cf511ea229a59697577c01eca24f17d067a388b99634306597
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/RealEstate-Logo-e1555931651588-o6qs7ihymm1fnxn6o291od011cx2higmkrp2tvefdo.jpg HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/jpeg
content-length: 5281
last-modified: Wed, 24 Apr 2019 20:21:49 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Permanent+Marker%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CLora%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Condensed%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPhilosopher%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 | 142.250.74.106 | 200 OK | 35 kB |
URL HTTP/2fonts.googleapis.com/css?family=Permanent+Marker%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CLora%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Condensed%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPhilosopher%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 IP142.250.74.106:0
Hash27ab9384e35eb4fe5fd0c64900faa320 cc631c84a61d2d4ab00f0f8bba8cc38ea4d15e53 031af6c696f6b81e0d02326df8817bbcc0b6810159a30027db4bc2baef33b0b8
GET /css?family=Permanent+Marker%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CLora%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Condensed%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPhilosopher%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 07 Dec 2022 03:57:07 GMT
date: Wed, 07 Dec 2022 03:57:07 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/power-o5dkqbpgr9colnrbar156awvy6uj5lbn8sij4cjk2k.jpg | 41.185.8.59 | 200 OK | 6.3 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/power-o5dkqbpgr9colnrbar156awvy6uj5lbn8sij4cjk2k.jpg IP41.185.8.59:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 250x150, components 3\012- data Hashb6ae1b348cf11b2125ec537cf7daa79b 1369e0f142499f24856dcc154f6de0c086322171 4ee50f30b1f5c79b4635b6f5122cb94131cdbd2ae7fc3ff6405a199d30fed8f7
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/power-o5dkqbpgr9colnrbar156awvy6uj5lbn8sij4cjk2k.jpg HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/jpeg
content-length: 6297
last-modified: Wed, 24 Apr 2019 20:18:00 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/press-logo-entrepreneur-magazine-gray-background-300x140px-o5dkr6q50sj58si99mftyl33jwln7lqsd21jyh9kd8.jpg | 41.185.8.59 | 200 OK | 6.8 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/press-logo-entrepreneur-magazine-gray-background-300x140px-o5dkr6q50sj58si99mftyl33jwln7lqsd21jyh9kd8.jpg IP41.185.8.59:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 250x150, components 3\012- data Hashe1c3f5176f2038a56aff68d1fe1718b3 6fde99afd35a542f6340b4fcd07e95fcf702ab4d ea65c68ef8b10aeedd9dbc82f14d850a13f459323e07765dfbfdf344654486a0
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/press-logo-entrepreneur-magazine-gray-background-300x140px-o5dkr6q50sj58si99mftyl33jwln7lqsd21jyh9kd8.jpg HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/jpeg
content-length: 6787
last-modified: Wed, 24 Apr 2019 20:21:49 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/forbes-africa-logo-o5dkrahhs4oaj8csno2c8k4xxg342e5ppknhvl3zoc.png | 41.185.8.59 | 200 OK | 21 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/forbes-africa-logo-o5dkrahhs4oaj8csno2c8k4xxg342e5ppknhvl3zoc.png IP41.185.8.59:0
File typePNG image data, 250 x 150, 8-bit/color RGBA, non-interlaced\012- data Hash8dc30f27eb8b6efd7e393bd5fa8ce843 13ba8f9cd756ac607822d51da50d5518f48ddea2 c60bba8fb4023963e885debf4a49be0de78dc18891f759b44f84260588b3d2a1
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/forbes-africa-logo-o5dkrahhs4oaj8csno2c8k4xxg342e5ppknhvl3zoc.png HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/png
content-length: 20757
last-modified: Wed, 24 Apr 2019 20:21:49 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/final-ann7-logo-2015-o5dkrdb0cms5i28p77a7y1fbplp7phgwpylybezt5o.png | 41.185.8.59 | 200 OK | 27 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/final-ann7-logo-2015-o5dkrdb0cms5i28p77a7y1fbplp7phgwpylybezt5o.png IP41.185.8.59:0
File typePNG image data, 250 x 150, 8-bit/color RGBA, non-interlaced\012- data Hashf9aa0962834df1f6be400c0adced6861 a79d04cc1870fbab1d62cee2f333807e33553348 bdd4720c435ef0b8f629f1cba97af4b349c1fcc71ab06888058dbdd1d616e6dd
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/final-ann7-logo-2015-o5dkrdb0cms5i28p77a7y1fbplp7phgwpylybezt5o.png HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/png
content-length: 26962
last-modified: Wed, 24 Apr 2019 20:18:00 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.9.0 | 41.185.8.59 | 200 OK | 18 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.9.0 IP41.185.8.59:0
File typeASCII text, with very long lines (10019) Hash4601ba55044413706c2022cb6c1c3d05 5103ec2fbb389568ebf5cfe4fd721f3df2ff7aec fe513ef974b767510d0a2b9f1b4d3afa53185b89ab617c869e5e3d6db960192c
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.9.0 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: text/css
content-length: 18468
last-modified: Tue, 13 Mar 2018 09:48:42 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/The_New_Age_South_African_newspaper-o5dkrcd65sqv6ga2covldjnv47tuhsd6dtygu517bw.gif | 41.185.8.59 | 200 OK | 7.1 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/The_New_Age_South_African_newspaper-o5dkrcd65sqv6ga2covldjnv47tuhsd6dtygu517bw.gif IP41.185.8.59:0
File typeGIF image data, version 87a, 250 x 150\012- data Hashf9c5976e743a5bcde93d32ddc236e816 150c3ceb74bc04c82659691e64fb624b903d951b 1b3bb6554b0d0a94e2e0daa4f3e2db92124cf1ccaf06b96c6cdda944ccd1f2e3
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/The_New_Age_South_African_newspaper-o5dkrcd65sqv6ga2covldjnv47tuhsd6dtygu517bw.gif HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/gif
content-length: 7145
last-modified: Wed, 24 Apr 2019 20:18:00 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/destiny-logo-o5dkrbfbyypkuubfi6gyt1weityha39g1pazcv2li4.png | 41.185.8.59 | 200 OK | 22 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/destiny-logo-o5dkrbfbyypkuubfi6gyt1weityha39g1pazcv2li4.png IP41.185.8.59:0
File typePNG image data, 250 x 150, 8-bit/color RGBA, non-interlaced\012- data Hashddc31bcb8e06dada115e9ee8d44f36c7 ad9f387b0ee25ba701ec35972b98fff94d1e9eb1 348ac1f118c3569e07093f8f7c0527dc796116526d64d82a7e67f7334180aa6a
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/destiny-logo-o5dkrbfbyypkuubfi6gyt1weityha39g1pazcv2li4.png HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/png
content-length: 22038
last-modified: Wed, 24 Apr 2019 20:21:49 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/moneyweb-o5dkrmpe8z50q5v1obchmz1xngevugi8394t46lvfg.png | 41.185.8.59 | 200 OK | 11 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/moneyweb-o5dkrmpe8z50q5v1obchmz1xngevugi8394t46lvfg.png IP41.185.8.59:0
File typePNG image data, 250 x 150, 8-bit/color RGBA, non-interlaced\012- data Hashcd02ed882b1f4abffc12b2c5fa6f5549 314230dc27a21cdcc4e160ec146c3e9f20c987f8 f9aa3fa7d5cf3158ba98f19c2bc1cdc299542c0988f844d21fe7699ab73b8872
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/moneyweb-o5dkrmpe8z50q5v1obchmz1xngevugi8394t46lvfg.png HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/png
content-length: 11106
last-modified: Wed, 24 Apr 2019 20:18:00 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/SAME-SA-o5dkrol2mn7lddsbdc5qrykuu85m9uporifs2qj330.png | 41.185.8.59 | 200 OK | 16 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/SAME-SA-o5dkrol2mn7lddsbdc5qrykuu85m9uporifs2qj330.png IP41.185.8.59:0
File typePNG image data, 250 x 150, 8-bit/color RGBA, non-interlaced\012- data Hash80c249087005ab6d60690ccde8a4136d 50e74742f2f0aedd359c6f75cfaed8e28e9744f3 ae2986a371d03ace6cc34d016778bf4eef8759f4cdcf3c66af6f819be19082d4
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/SAME-SA-o5dkrol2mn7lddsbdc5qrykuu85m9uporifs2qj330.png HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/png
content-length: 16536
last-modified: Wed, 24 Apr 2019 20:18:00 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 | 41.185.8.59 | 200 OK | 21 kB |
URL HTTP/2tebohomafodi.co.za/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 IP41.185.8.59:0
File typeUnicode text, UTF-8 text, with very long lines (8189) Hash034bd11ecaf6fb9240d905245e42e202 ff136c394ed95badfc0107fb98a890dcff642828 ca7154cdda62b535ceaba9ad2a2b2217ff49de94c069a2c4e89733f3f06b3651
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: application/javascript
content-length: 21440
last-modified: Fri, 23 Sep 2022 23:25:30 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.9.0 | 41.185.8.59 | 200 OK | 41 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.9.0 IP41.185.8.59:0
File typeASCII text, with very long lines (40657) Hash54282fd3a039be93e9599ac352eeca1f d908e132f5b9a91f3a059295d5103c6c2137ff8b d597aad322b12415db5f4a1b2e046bce267df4c7911b6667865c1d6374de17cd
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.9.0 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: application/javascript
content-length: 40696
last-modified: Tue, 06 Dec 2022 18:49:08 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 | 41.185.8.59 | 200 OK | 12 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP41.185.8.59:0
File typeASCII text, with very long lines (12198), with no line terminators Hash3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: application/javascript
content-length: 12198
last-modified: Wed, 11 Jan 2017 14:35:32 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/sabc-news-1024x538-o5dks7dufbxbtl10bkaa5tu2pxkyjssbi3hho9r7mk.jpg | 41.185.8.59 | 200 OK | 6.8 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/sabc-news-1024x538-o5dks7dufbxbtl10bkaa5tu2pxkyjssbi3hho9r7mk.jpg IP41.185.8.59:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 250x150, components 3\012- data Hash9c7719684349249495eff3b8e7cece88 5a910fa3386e4e4227121e07e9e84bc800a19efb 7499b1e20ce0a6f03e2b4c074ea016b042ae9e514135cbc20966c0ca8f370e70
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/sabc-news-1024x538-o5dks7dufbxbtl10bkaa5tu2pxkyjssbi3hho9r7mk.jpg HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/jpeg
content-length: 6835
last-modified: Wed, 24 Apr 2019 20:17:59 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/ENCA-o5dks0sz3hobkbakdzfw6dhuk8he1x2756x3bc0yu4.png | 41.185.8.59 | 200 OK | 20 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/ENCA-o5dks0sz3hobkbakdzfw6dhuk8he1x2756x3bc0yu4.png IP41.185.8.59:0
File typePNG image data, 250 x 150, 8-bit/color RGBA, non-interlaced\012- data Hashe8b416e35a1396259e79c2a04f69fab7 0f2f9887946c2453ffffee551ab1748fcdb52d21 691d662147640c656d8f8e7e50890f1435764df0e8434b7b2d1bccd6b09d2216
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/ENCA-o5dks0sz3hobkbakdzfw6dhuk8he1x2756x3bc0yu4.png HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/png
content-length: 20087
last-modified: Wed, 24 Apr 2019 20:21:49 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/plugins/page-builder-sandwich/page_builder_sandwich/js/min/frontend-min.js?ver=4.5.8 | 41.185.8.59 | 200 OK | 55 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/plugins/page-builder-sandwich/page_builder_sandwich/js/min/frontend-min.js?ver=4.5.8 IP41.185.8.59:0
File typeASCII text, with very long lines (54859), with no line terminators Hash1e97ebf41e8b8941bf2658b2562d70c2 4b7ea60b3994d742b10a947bddc70388c49ab0b9 f4c04f3da76afae396d7942c46646d6025fba41ba914b3997d95e79ad51c6c7a
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/plugins/page-builder-sandwich/page_builder_sandwich/js/min/frontend-min.js?ver=4.5.8 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: application/javascript
content-length: 54859
last-modified: Fri, 02 Sep 2022 23:14:42 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 | 41.185.8.59 | 200 OK | 11 kB |
URL HTTP/2tebohomafodi.co.za/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP41.185.8.59:0
File typeASCII text, with very long lines (11126) Hash79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: application/javascript
content-length: 11224
last-modified: Wed, 18 Nov 2020 12:36:06 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Destman-o5dkrcd65sqv6ga2covldjnv47tuhsd6dtygu517bw.png | 41.185.8.59 | 200 OK | 18 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Destman-o5dkrcd65sqv6ga2covldjnv47tuhsd6dtygu517bw.png IP41.185.8.59:0
File typePNG image data, 250 x 150, 8-bit/color RGBA, non-interlaced\012- data Hash46763cb82eda722bce98811bf50392cc 1cffafd9ca8c7c6f4de6d4d0035db09c3f238fb4 6ed47aa15d552dd5fa30000bb71c09fa58fe6857f061044df20a948a4bccc8f8
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/Destman-o5dkrcd65sqv6ga2covldjnv47tuhsd6dtygu517bw.png HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/png
content-length: 17643
last-modified: Wed, 24 Apr 2019 20:21:49 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Geleza-o5dks1qtabplvx978huiqv9b5mcr9m5xhbkkslzknw.jpg | 41.185.8.59 | 200 OK | 8.5 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/Geleza-o5dks1qtabplvx978huiqv9b5mcr9m5xhbkkslzknw.jpg IP41.185.8.59:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 250x150, components 3\012- data Hashcd5dcbdfcfc60b41d112df130ec1d4bb abdc4b43745121c608cbe1765769a6cb013e3fd5 2edcc4e0172ab9e5e1c9d55451a82f54e4d299362a1fbb0c34acaf6fdba76716
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/Geleza-o5dks1qtabplvx978huiqv9b5mcr9m5xhbkkslzknw.jpg HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/jpeg
content-length: 8477
last-modified: Wed, 24 Apr 2019 20:17:59 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/RadioP-o5dkr4ugn4gklkkzklmktlk6d4uws7jbosqkzxccpo.png | 41.185.8.59 | 200 OK | 28 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/RadioP-o5dkr4ugn4gklkkzklmktlk6d4uws7jbosqkzxccpo.png IP41.185.8.59:0
File typePNG image data, 250 x 150, 8-bit/color RGBA, non-interlaced\012- data Hasheac7f0ca4158d63324d6e543704837a7 983db44e5319822f0b5daa7c1c57cfb0b65eaeed 1130a8f91169adc1dfa21d2ff0c0901245bb1c903c71722050eaab02215a8909
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/RadioP-o5dkr4ugn4gklkkzklmktlk6d4uws7jbosqkzxccpo.png HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/png
content-length: 27705
last-modified: Wed, 24 Apr 2019 20:21:49 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.9.0 | 41.185.8.59 | 200 OK | 32 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.9.0 IP41.185.8.59:0
File typeUnicode text, UTF-8 text, with very long lines (31482) Hashcd88b14bfede1f52358c2e715072f445 f0e9767202e9cc6aeae466c6f5dc72aa25f62667 954560b7f82fe3c2509b14f9d5cd0cef1aa443596e1c3cef541f2339c38e5f41
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.9.0 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: application/javascript
content-length: 31522
last-modified: Tue, 06 Dec 2022 18:49:08 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.9.0 | 41.185.8.59 | 200 OK | 43 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.9.0 IP41.185.8.59:0
File typeASCII text, with very long lines (43073) Hash56a9afe8db67e443d29317e0668c064b 859c3fe50f5ec67f1206f444f216400264e766ff d5d27a46e83ac686cba2efe86e788f35aa48a2643e12084d72d0896855bfa0cb
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.9.0 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: application/javascript
content-length: 43112
last-modified: Tue, 06 Dec 2022 18:49:08 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 | 41.185.8.59 | 200 OK | 90 kB |
URL HTTP/2tebohomafodi.co.za/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 IP41.185.8.59:0
File typeASCII text, with very long lines (65447) Hash17738318d61d394f1de8890d589afaec f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3 cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: application/javascript
content-length: 89684
last-modified: Mon, 19 Sep 2022 17:46:24 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/KAYA-FM-High-Res-Vector-o5dkrh2d3yxasi38l8wq80h6356ok9vu2h7w8iu8gs.jpg | 41.185.8.59 | 200 OK | 11 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/elementor/thumbs/KAYA-FM-High-Res-Vector-o5dkrh2d3yxasi38l8wq80h6356ok9vu2h7w8iu8gs.jpg IP41.185.8.59:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 250x150, components 3\012- data Hash7747ae2c27fc7e6c6dde07d6eb459d93 b44ac915e54be84a9ea990dd30ede9ba054ea5df 314cc6a6ab84ad6663300736120dcef2251c153bc74d6b1d0cfe657630a60dd5
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/elementor/thumbs/KAYA-FM-High-Res-Vector-o5dkrh2d3yxasi38l8wq80h6356ok9vu2h7w8iu8gs.jpg HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/jpeg
content-length: 10599
last-modified: Wed, 24 Apr 2019 20:18:00 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 | 41.185.8.59 | 200 OK | 139 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 IP41.185.8.59:0
File typeASCII text, with very long lines (65280) Size139 kB (139153 bytes) Hash15bb2b8491fc7e84137d65f610e1685a cd76b70a5426893e9c022b9a75c50a7c1348e2d0 b23f49f504faa32aac548b6662ffd64412f6738496fab8be38da46c5b7121804
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: application/javascript
content-length: 139153
last-modified: Mon, 01 Jun 2020 14:47:40 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/plugins/wp-webinarsystem/includes/js/moment-with-locales.min.js?ver=1.32.7 | 41.185.8.59 | 200 OK | 336 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/plugins/wp-webinarsystem/includes/js/moment-with-locales.min.js?ver=1.32.7 IP41.185.8.59:0
File typeASCII text, with very long lines (65536), with no line terminators Size336 kB (336451 bytes) Hash1b1c80b617bfcaf8c0766d41c4a3c680 6319f4a7d5f345583a730ab527704ff2491a9043 01d40df7c31566ce3812adb24f0b682ae7e19d4fae67bbf69179c3e6fab3655a
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/plugins/wp-webinarsystem/includes/js/moment-with-locales.min.js?ver=1.32.7 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: application/javascript
content-length: 336451
last-modified: Mon, 10 Feb 2020 12:55:50 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashe24f2da4ed2e3cd07b0999a67550d634 6e2277e734fd0015849c3554dd2cf2ae289c2cf2 74dc14d7d9ba8bba4a162680e59801af1d7c2995639df51f32ff2f3d4d0b0051
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 03:57:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| tebohomafodi.co.za/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.9.0 | 41.185.8.59 | 200 OK | 472 B |
URL HTTP/2tebohomafodi.co.za/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.9.0 IP41.185.8.59:0
Hashec6ece82a7cb8faa3ba171efae3a9eda 7ee75fba9a9d1078960f7834d71961c38f514b82 301d0c4d73b444369e488ee4f78b3a994a9168ec6c6d46cd7f3448722a841a2e
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.9.0 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: text/css
content-length: 137878
last-modified: Tue, 06 Dec 2022 18:49:08 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 15660, version 1.0\012- data Hashd7b0b953a50fddaa88089b5b787cf719 2f85bc568b27659a3d6452f58f9fd7678450326d e79c1c1a140e6afb861074c70392db54cc65a06050de2a69162ab94eb95b0516
GET /s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tebohomafodi.co.za
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15660
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 22:14:50 GMT
expires: Wed, 06 Dec 2023 22:14:50 GMT
cache-control: public, max-age=31536000
age: 20538
last-modified: Tue, 19 Apr 2022 18:42:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashec6ece82a7cb8faa3ba171efae3a9eda 7ee75fba9a9d1078960f7834d71961c38f514b82 301d0c4d73b444369e488ee4f78b3a994a9168ec6c6d46cd7f3448722a841a2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 03:57:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashe24f2da4ed2e3cd07b0999a67550d634 6e2277e734fd0015849c3554dd2cf2ae289c2cf2 74dc14d7d9ba8bba4a162680e59801af1d7c2995639df51f32ff2f3d4d0b0051
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 03:57:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/librefranklin/v13/jizDREVItHgc8qDIbSTKq4XkRiUf2zc.woff2 | 216.58.207.227 | 200 OK | 27 kB |
URL HTTP/2fonts.gstatic.com/s/librefranklin/v13/jizDREVItHgc8qDIbSTKq4XkRiUf2zc.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 27268, version 1.0\012- data Hashcd83836443d658985c464d7021aa3e83 83a2915021f30c4ed54752b02e0c999e3c56798c 0c5b68b3ae23054815d89c5a2230ad7edf2d4b68732b4463d6be74cacb974055
GET /s/librefranklin/v13/jizDREVItHgc8qDIbSTKq4XkRiUf2zc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tebohomafodi.co.za
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27268
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 06:10:24 GMT
expires: Tue, 05 Dec 2023 06:10:24 GMT
cache-control: public, max-age=31536000
age: 164804
last-modified: Mon, 11 Jul 2022 18:56:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/philosopher/v19/vEFV2_5QCwIS4_Dhez5jcWBuT00.woff2 | 216.58.207.227 | 200 OK | 19 kB |
URL HTTP/2fonts.gstatic.com/s/philosopher/v19/vEFV2_5QCwIS4_Dhez5jcWBuT00.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 19416, version 1.0\012- data Hash1dc0b12f391d61c5e8382c0d274c2374 eb682de4b8c97cbe8ea03a728b4e0638a23020a2 28f56aba8c13677b3be2478a6cb6e29a9a71ef8e98a0a4a18ec9d4491221f328
GET /s/philosopher/v19/vEFV2_5QCwIS4_Dhez5jcWBuT00.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tebohomafodi.co.za
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19416
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Dec 2022 22:41:41 GMT
expires: Sun, 03 Dec 2023 22:41:41 GMT
cache-control: public, max-age=31536000
age: 278127
last-modified: Wed, 27 Apr 2022 16:01:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/permanentmarker/v16/Fh4uPib9Iyv2ucM6pGQMWimMp004La2Cfw.woff2 | 216.58.207.227 | 200 OK | 30 kB |
URL HTTP/2fonts.gstatic.com/s/permanentmarker/v16/Fh4uPib9Iyv2ucM6pGQMWimMp004La2Cfw.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 29564, version 1.0\012- data Hash1b66ccb164151a6cf698667c8b570cc6 f5617a0f087645703c874453960be6382c8a7427 4884fec2c73aa52a2461073c1b87d1ceb80f400520391b43f97ca7d3c39eeb24
GET /s/permanentmarker/v16/Fh4uPib9Iyv2ucM6pGQMWimMp004La2Cfw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tebohomafodi.co.za
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29564
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 12:31:43 GMT
expires: Fri, 01 Dec 2023 12:31:43 GMT
cache-control: public, max-age=31536000
age: 487525
last-modified: Tue, 19 Apr 2022 17:55:57 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 | 216.58.207.227 | 200 OK | 7.7 kB |
URL HTTP/2fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data Hasha09f2fccfee35b7247b08a1a266f0328 0da2d17e738f46d2a09e6fb7969da451719a9820 cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tebohomafodi.co.za
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:28:50 GMT
expires: Thu, 30 Nov 2023 19:28:50 GMT
cache-control: public, max-age=31536000
age: 548898
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 | 216.58.207.227 | 200 OK | 7.9 kB |
URL HTTP/2fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data Hash9212f6f9860f9fc6c69b02fedf6db8c3 ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b 7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tebohomafodi.co.za
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:28:50 GMT
expires: Thu, 30 Nov 2023 19:28:50 GMT
cache-control: public, max-age=31536000
age: 548898
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/lora/v26/0QIvMX1D_JOuMwr7Iw.woff2 | 216.58.207.227 | 200 OK | 36 kB |
URL HTTP/2fonts.gstatic.com/s/lora/v26/0QIvMX1D_JOuMwr7Iw.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 35660, version 1.0\012- data Hash0d0d3e5824e5e67a9e993960df2b67a9 328d67bb1d5899a7809df9f4385181863fd035f1 38da98e06ba18c4204f547d30572cd81a2dd3fd5438d306856d2617480ee8639
GET /s/lora/v26/0QIvMX1D_JOuMwr7Iw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tebohomafodi.co.za
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35660
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 08:31:54 GMT
expires: Fri, 01 Dec 2023 08:31:54 GMT
cache-control: public, max-age=31536000
age: 501914
last-modified: Mon, 15 Aug 2022 18:07:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tebohomafodi.co.za
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:54 GMT
expires: Thu, 30 Nov 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 548594
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashe24f2da4ed2e3cd07b0999a67550d634 6e2277e734fd0015849c3554dd2cf2ae289c2cf2 74dc14d7d9ba8bba4a162680e59801af1d7c2995639df51f32ff2f3d4d0b0051
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 03:57:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| tebohomafodi.co.za/wp-content/uploads/2019/03/Dj-Euphonik-Teboho-Mafodi-1.jpg | 41.185.8.59 | 200 OK | 200 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/2019/03/Dj-Euphonik-Teboho-Mafodi-1.jpg IP41.185.8.59:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 958x954, components 3\012- data Size200 kB (200023 bytes) Hash83071a932473ccbb1b29950cb29f33c8 7786d3dd7d810498902fcba9c88367d9daa4763f 98dc741d2a3166b6ee5485eb4477285f38a8f9e8f015f5b946373d75a6b17412
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/2019/03/Dj-Euphonik-Teboho-Mafodi-1.jpg HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/wp-content/uploads/elementor/css/post-73.css?ver=1634700544
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:08 GMT
content-type: image/jpeg
content-length: 200023
last-modified: Thu, 21 Mar 2019 07:13:46 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/2019/03/cover-pic_-real-estate.jpg | 41.185.8.59 | 200 OK | 183 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/2019/03/cover-pic_-real-estate.jpg IP41.185.8.59:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1600x1068, components 3\012- data Size183 kB (183022 bytes) Hash29ab8fad6138e16c48eb2480b04e2ae8 99407b39fdae9fad3e9d633653c9ca42488ac025 e3f34f838956ca38cc92040e25ef16d9f61aed61fceb7a7fac14bd42a24dc164
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/2019/03/cover-pic_-real-estate.jpg HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/wp-content/uploads/elementor/css/post-73.css?ver=1634700544
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:08 GMT
content-type: image/jpeg
content-length: 183022
last-modified: Thu, 21 Mar 2019 04:40:33 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0 | 41.185.8.59 | 200 OK | 93 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0 IP41.185.8.59:0
File typeWeb Open Font Format (Version 2), TrueType, length 93372, version 1.0\012- data Hashaab0bb3379e0eb7ebc26071db61fbd57 711c8d350c4192c2f1aa7f73551445b89fb4b161 691fa7d17effc7d303eda0ad7e4a1d91b2f375506cfc8a774480cc2b55f156ea
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://tebohomafodi.co.za/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:08 GMT
content-type: font/woff2
content-length: 93372
last-modified: Sun, 31 Jul 2022 22:11:38 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 | 41.185.8.59 | 200 OK | 77 kB |
URL HTTP/2tebohomafodi.co.za/wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 IP41.185.8.59:0
File typeWeb Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data Hashaf7ae505a9eed503f8b8e6982036873e d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://tebohomafodi.co.za/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:08 GMT
content-type: font/woff2
content-length: 77160
last-modified: Wed, 26 Oct 2016 13:03:48 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/analytics.js | 142.250.74.110 | 200 OK | 20 kB |
URL HTTP/2www.google-analytics.com/analytics.js IP142.250.74.110:0
File typeASCII text, with very long lines (1325) Hash47e6f374ca946fddd5b59871b325736c baa9282efc8785e84d247c3bff518eaa45f101c4 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 07 Dec 2022 02:41:08 GMT
expires: Wed, 07 Dec 2022 04:41:08 GMT
cache-control: public, max-age=7200
age: 4560
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/plugins/ua/linkid.js | 142.250.74.110 | 200 OK | 859 B |
URL HTTP/2www.google-analytics.com/plugins/ua/linkid.js IP142.250.74.110:0
File typeASCII text, with very long lines (1335) Hash904463ce35aee800847ab85ec948aaf6 904e4d2647466c7f7e0f7412019984e3b2ccfb24 057b4d29359dfe2536a2ec40243bdfa7b151222efcc1eb358608994a14c34237
GET /plugins/ua/linkid.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 859
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 03:44:31 GMT
expires: Wed, 07 Dec 2022 04:44:31 GMT
cache-control: public, max-age=3600
age: 757
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashee6bfe50f8e4b9c142f971a55496ac26 8c3fd42aaa7fa3ebdedc4f7b0271b8caae166e64 4582e8e1ada92a279cbc5d82904c7fd27b9d4b95bc06c7a8b3c13168978f0b33
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 03:57:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.youtube.com/s/player/ac058a09/www-widgetapi.vflset/www-widgetapi.js | 142.250.74.142 | 200 OK | 54 kB |
URL HTTP/2www.youtube.com/s/player/ac058a09/www-widgetapi.vflset/www-widgetapi.js IP142.250.74.142:0
File typeASCII text, with very long lines (817) Hash412308866bc89dfdabc2f01da260060c ff046fae7c14da6739ced00601c04a2f3c655682 8a3a845ac0ca1f24696f404c6ba38545517136e6b89410ac24db11dcac53758c
GET /s/player/ac058a09/www-widgetapi.vflset/www-widgetapi.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 53949
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 19:09:49 GMT
expires: Wed, 06 Dec 2023 19:09:49 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 05 Dec 2022 01:22:00 GMT
content-type: text/javascript
age: 31640
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| mc.us20.list-manage.com/subscribe/form-settings?u=c26a46aa12bed8b113bbeca2d&id=b0886c7ced&u=c26a46aa12bed8b113bbeca2d&id=b0886c7ced&c=dojo_request_script_callbacks.dojo_request_script0 | 104.110.24.122 | 200 OK | 6.4 kB |
URL HTTP/2mc.us20.list-manage.com/subscribe/form-settings?u=c26a46aa12bed8b113bbeca2d&id=b0886c7ced&u=c26a46aa12bed8b113bbeca2d&id=b0886c7ced&c=dojo_request_script_callbacks.dojo_request_script0 IP104.110.24.122:0
File typeASCII text, with very long lines (14110), with no line terminators Hash7ee2a7e2437110d8a9828acfa73ef14f da9a7ec5fe8b024e14768a545e93117540aef92c a63523565a6dc1853bcc3c831e886b591e0a0384d0444bc0ec18980d0306ff86
GET /subscribe/form-settings?u=c26a46aa12bed8b113bbeca2d&id=b0886c7ced&u=c26a46aa12bed8b113bbeca2d&id=b0886c7ced&c=dojo_request_script_callbacks.dojo_request_script0 HTTP/1.1
Host: mc.us20.list-manage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
content-type: application/json; charset=utf-8
content-length: 6390
x-ua-compatible: IE=edge,chrome=1
referrer-policy: same-origin
content-encoding: gzip
x-edgeconnect-midmile-rtt: 0, 6
x-edgeconnect-origin-mex-latency: 224, 224
cache-control: max-age=246
expires: Wed, 07 Dec 2022 04:01:15 GMT
date: Wed, 07 Dec 2022 03:57:09 GMT
vary: Accept-Encoding
set-cookie: _mcid=1.eacda52bb071a6cdd9dd371ab4d3dc05.fc0f412e568a41cfe6f275b93f6fb0b36242d522761705e8a8f80c50750f1935; expires=Thu, 07-Dec-2023 03:57:08 GMT; Max-Age=31536000; path=/
_mc_anon_id=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
_abck=816A21B0DF7819A0F88A96909BD9D40B~-1~YAAQrU0kFxXwrIOEAQAAg+q66glUQROChLVcgd1Z0iYdqyYuhmNcYUwm+8dgJdTSUoHV/z703MTXdkNCvuB+aJtbB14Uhhs7S7NlMqe6ANCdHlLlvAgmOWa4XJa6aa3QmcqQ8AJgIl5IKimddkCzTnjG913zwZmwKsZN9jY5GO9jpsq/KlZVzWN9Pt4Ir+UjGTs1vvlDP6e7yUOW9GUkt3GhEEIRKi8ibVc5oY0PTqpdon5mHzgwa9ctoM1AUv+iBtvg4pw913s0Ol3zYn5RCTqUFtQdvKltqS6tBSdO/cEFBy4UX9Dpu3fW0Y3fX12K9UehxYofsuHbA30xvJw59W3PCvGbSzUsUW00NxoDxQr8Do8nlrw9etDGkI04O0eD07E=~-1~-1~-1; Domain=.list-manage.com; Path=/; Expires=Thu, 07 Dec 2023 03:57:09 GMT; Max-Age=31536000; SameSite=None; Secure
ak_bmsc=489CF6A65475899D55ED74FF4898490E~000000000000000000000000000000~YAAQrU0kFxbwrIOEAQAAg+q66hKKx2PH4fY4Dna+SW5bE/mdvvPp/gfaLiAoNPA+SPcZgBnzqy+K6V2ACMflR0CY7u/oE5XoJhCjuTJVxA5TfSfh12gKpLiiCWURpq1eekT6PZycNbbVlIMOdIy+itp2RHw6W6jGq8AEfl7B0O6xjcBGklnRAaAnGuk9thllxOdUESVO5YCedibVHIGJTehYPMvvpWPSqxsJofnM5w17Xiwryq5mPcmdoXBIh1vy0b6zx4X1SQTML0mglrS6boMrO4WWHhQiGTfHMjRNoOVfD8iDeN52qj+GQq2WzHXwi72cDHYQODp11EApzhUx6l3np2g7nwVRSI6hUsLJ+b5JyuZSdpQJEnu2Pc3WNLwJTdqGcV8qnlbNHIlQAQHtWYXoow==; Domain=.us20.list-manage.com; Path=/; Expires=Wed, 07 Dec 2022 05:57:08 GMT; Max-Age=7199; SameSite=None; Secure; HttpOnly
bm_sz=311EB7A8D1A06BC32523C30D8D8538B6~YAAQrU0kFxfwrIOEAQAAg+q66hJlO3SBe48s9kY1VbH3WYKB1TWcjAKzBBg0wgU5k8gs8zRfjbZY3kaEekIPXaJh9vOBUlEIzl2pR+dPVYnTJbTzFtdTxwU6jzH/mBP560MFcEBv/IzkVwi+KcnlA4aub0fblcfRlLvMcuW4wCX40ZxuEMpNw+7CQaxS51YRKGeIlvcbQ8gQ1jeSOV+1b248YkbDH6lu0Vy0LB6H/GeY2bA6WVxQPIiYFE7I4esz4Bas99GXV1jScNgJnpQQKVVf0ZmogPwL5X4d48cgRaUI3v0Tjo0yNQ==~3158328~4600130; Domain=.list-manage.com; Path=/; Expires=Wed, 07 Dec 2022 07:57:08 GMT; Max-Age=14399; SameSite=None; Secure
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashcd6dabd083ee1c237c8ea3ba38cc48d5 bbe4420bf1c0fe0d5621336865563418d2f16f39 c9314cdac13bc2ea94505f473538ab4d5c0a940dfbc2f5447e6f22a5af580572
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 03:57:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| downloads.mailchimp.com/js/signup-forms/popup/unique-methods/73bf20a8fe762dee6abd0173cd576e53d748a0df/popup.js | 143.204.55.116 | 200 OK | 29 kB |
URL HTTP/1.1downloads.mailchimp.com/js/signup-forms/popup/unique-methods/73bf20a8fe762dee6abd0173cd576e53d748a0df/popup.js IP143.204.55.116:0
File typeASCII text, with very long lines (65526) Hasha531c468d1043afe130c4efa82a27d16 f80d04183d75e7f4f3a8718a9eaa83f1651fec7a 11725cf6f668d5099a3a756678d2f2743187d82d274aff62e60200df2289d5ff
GET /js/signup-forms/popup/unique-methods/73bf20a8fe762dee6abd0173cd576e53d748a0df/popup.js HTTP/1.1
Host: downloads.mailchimp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 29 Sep 2022 15:39:29 GMT
Server: AmazonS3
Content-Encoding: br
Date: Tue, 06 Dec 2022 12:51:28 GMT
ETag: W/"d3149280c831cbf6538770c71a916f43"
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Qk_mBmB8KXCnf2hG1ntU_9_I8Ejl6pIXYz783jzDyYCLTAdwL6GJcA==
Age: 54341
Vary: Accept-Encoding, Origin
|
|
| downloads.mailchimp.com/css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/common.css | 143.204.55.116 | 200 OK | 2.4 kB |
URL HTTP/1.1downloads.mailchimp.com/css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/common.css IP143.204.55.116:0
Hashd19b18b64fe30a64762d4a50ca861b1c cf0b39c5e4a85fa9cb916f074c62ec2315528c95 ddc117511a02d7e507e26304afa0f9877c6644f43ec83ca8a15ff81b00c1e79e
GET /css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/common.css HTTP/1.1
Host: downloads.mailchimp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 06 Dec 2022 12:40:30 GMT
Last-Modified: Thu, 29 Sep 2022 15:39:29 GMT
ETag: W/"82e72d627b04e1654282023cca1d1e69"
Server: AmazonS3
Content-Encoding: br
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: KwWzkvSEYDyL1a-C865lRIyv7nXE4D78KAGZnURJHuctt-Kle7K6SA==
Age: 55000
Vary: Accept-Encoding, Origin
|
|
| downloads.mailchimp.com/css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/banner.css | 143.204.55.116 | 200 OK | 348 B |
URL HTTP/1.1downloads.mailchimp.com/css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/banner.css IP143.204.55.116:0
Hash7dc952a02aac2296639b02e8b693f1ca 141d2c58d397b253795db7e070d0846e4cb67d37 4768822ea5fd24c1368db661e02e9e2119f98351068a5531c3ae6e7a762f5e9a
GET /css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/banner.css HTTP/1.1
Host: downloads.mailchimp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 29 Sep 2022 15:39:29 GMT
Server: AmazonS3
Content-Encoding: br
Date: Tue, 06 Dec 2022 11:17:31 GMT
ETag: W/"78d1bdd981816cfbeb6954a85f9efa58"
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: VmzZN2kIy-VOQgxfMIMeltu-q8K3BBTS9o-aXNP-R0VJ2WOcRVCRcw==
Age: 72063
Vary: Accept-Encoding, Origin
|
|
| downloads.mailchimp.com/css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/layout-2.css | 143.204.55.116 | 200 OK | 379 B |
URL HTTP/1.1downloads.mailchimp.com/css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/layout-2.css IP143.204.55.116:0
Hash9fd83ab40bc288a35861ff6a7563acea 7e1b25aee243e1ee670eb64683cfaccd88625976 c755c118189808bd2a51aaf47595ed2622ad2a27009eb8836128fb4c4ab6a363
GET /css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/layout-2.css HTTP/1.1
Host: downloads.mailchimp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 29 Sep 2022 15:39:29 GMT
Server: AmazonS3
Content-Encoding: br
Date: Tue, 06 Dec 2022 10:53:02 GMT
ETag: W/"38f50a83c6d5d15facb231447fa1ac56"
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: YihoFu9WLeLLObSBYsLi9s7uChs3U4jmPRxrJIgzBeUOytsMbX_hLg==
Age: 61448
Vary: Accept-Encoding, Origin
|
|
| downloads.mailchimp.com/css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/modal.css | 143.204.55.116 | 200 OK | 945 B |
URL HTTP/1.1downloads.mailchimp.com/css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/modal.css IP143.204.55.116:0
Hashcff4710f863e85980b11cdc1a67e45e5 272b6b68af6d70bd7e1b69b251ac5821cf3daa25 8a3b8e717762c3e251de403a2f6b06da68e2fce957e10474b0a75c1f610799c3
GET /css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/modal.css HTTP/1.1
Host: downloads.mailchimp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 29 Sep 2022 15:39:29 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 06 Dec 2022 09:41:01 GMT
ETag: W/"aa6f4416185bd7f299dd89e11dac117f"
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: jO95krQ1LJm-s9E-SgaHA1HGwFqN-_CHDNlr85s1ZtBooULwTdd9jg==
Age: 65769
Vary: Accept-Encoding, Origin
|
|
| cdn-images.mailchimp.com/icons/mailchimp-gdpr.svg | 54.230.217.92 | 200 OK | 583 B |
URL HTTP/1.1cdn-images.mailchimp.com/icons/mailchimp-gdpr.svg IP54.230.217.92:0
File typeSVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1530), with no line terminators Hashb46998ea59b2f40b49f913d2d06604da 95351d9825332f2666a3bc017ad8bc1e17916c90 aaf0e498bd95dd10918575894a82834b8b15872b80374b251146ddf1e28257f6
GET /icons/mailchimp-gdpr.svg HTTP/1.1
Host: cdn-images.mailchimp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 25 Apr 2018 21:26:45 GMT
x-amz-meta-s3fox-filesize: 1530
x-amz-version-id: null
x-amz-meta-s3fox-modifiedtime: 1524676315000
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 06 Dec 2022 19:38:13 GMT
ETag: W/"59a8ccc2056b4656cdc1e99c50b9d0db"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: -m4b7mRLqK_hb9cJNcwITxfMhYLl-cjLh7755RPISXktbWZAN2JedA==
Age: 29935
|
|
| tebohomafodi.co.za/favicon.ico | 41.185.8.59 | 302 Found | 0 B |
URL HTTP/2tebohomafodi.co.za/favicon.ico IP41.185.8.59:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /favicon.ico HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
server: nginx
date: Wed, 07 Dec 2022 03:57:09 GMT
content-type: text/html; charset=UTF-8
content-length: 0
x-powered-by: PHP/7.1.33
link: <https://tebohomafodi.co.za/wp-json/>; rel="https://api.w.org/"
x-tec-api-version: v1
x-tec-api-root: https://tebohomafodi.co.za/wp-json/tribe/events/v1/
x-tec-api-origin: https://tebohomafodi.co.za
x-redirect-by: WordPress
location: https://tebohomafodi.co.za/wp-includes/images/w-logo-blue-white-bg.png
X-Firefox-Spdy: h2
|
|
| www.youtube.com/iframe_api | 142.250.74.142 | 200 OK | 43 kB |
URL HTTP/2www.youtube.com/iframe_api IP142.250.74.142:0
File typeASCII text, with very long lines (509) Hash126c9540c71ebc8c5be8996a6fe3c1c0 4586d0c484b35f74a05e3edc2e36e2a9c6af0ea5 c495016992ca7a3189ea1e2924fa493dc505715d5629fc4a6b8cb192239dd518
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Wed, 07 Dec 2022 03:57:09 GMT
date: Wed, 07 Dec 2022 03:57:09 GMT
cache-control: private, max-age=0
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=24fjvbzgKzw; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=D9Uz2F5i52c; Domain=.youtube.com; Expires=Mon, 05-Jun-2023 03:57:09 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+636; expires=Fri, 06-Dec-2024 03:57:09 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 16:40:43 GMT
expires: Fri, 01 Dec 2023 16:40:43 GMT
cache-control: public, max-age=31536000
age: 472586
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-includes/images/w-logo-blue-white-bg.png | 41.185.8.59 | 200 OK | 4.1 kB |
URL HTTP/2tebohomafodi.co.za/wp-includes/images/w-logo-blue-white-bg.png IP41.185.8.59:0
File typePNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data Hash000bf649cc8f6bf27cfb04d1bcdcd3c7 d73d2f6d74ec6cdcbae07955592962e77d8ae814 6bdb369337ac2496761c6f063bffea0aa6a91d4662279c399071a468251f51f0
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-includes/images/w-logo-blue-white-bg.png HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tebohomafodi.co.za/
Connection: keep-alive
Cookie: _ga=GA1.3.1747604476.1670385429; _gid=GA1.3.480328857.1670385429; _gat_gtag_UA_36193117_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:09 GMT
content-type: image/png
content-length: 4119
last-modified: Tue, 16 Nov 2021 03:34:02 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash38d1c089860ce360f5266ae101ab05ca 31705702b50e1c818c052b6d2a23f22583aa07d1 097ac1bb8edd3ef2e02fa551d824a0104c6995e130f9cdc4bcfa65583a9785d0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 03:57:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashd9339bfb0393ef6575db48a0481f2556 351fa573fc3ea6626f3258061743cad65e0c4fce 5890254c4fac81ab169d788b9e5f9100f36e1ea2a2a6fe9036c45122aff062b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 03:57:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashd9339bfb0393ef6575db48a0481f2556 351fa573fc3ea6626f3258061743cad65e0c4fce 5890254c4fac81ab169d788b9e5f9100f36e1ea2a2a6fe9036c45122aff062b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 03:57:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| static.doubleclick.net/instream/ad_status.js | 142.250.74.134 | 200 OK | 29 B |
URL HTTP/2static.doubleclick.net/instream/ad_status.js IP142.250.74.134:0
Hash1fa71744db23d0f8df9cce6719defcb7 e4be9b7136697942a036f97cf26ebaf703ad2067 eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 03:51:04 GMT
expires: Wed, 07 Dec 2022 04:06:04 GMT
cache-control: public, max-age=900
age: 366
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash82dc811a8b106183fe1a3c92caca7a67 6f91d328a356a18d85a192a057f8bb0f12bd310d 618addad95581f04d48245ca12062d5b959e236b7fbf12d4966471abb4b1e834
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 03:57:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| googleads.g.doubleclick.net/pagead/id | 142.250.74.34 | 302 Found | 0 B |
URL HTTP/2googleads.g.doubleclick.net/pagead/id IP142.250.74.34:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Wed, 07 Dec 2022 03:57:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| googleads.g.doubleclick.net/pagead/id | 142.250.74.34 | 302 Found | 0 B |
URL HTTP/2googleads.g.doubleclick.net/pagead/id IP142.250.74.34:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Wed, 07 Dec 2022 03:57:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash38d1c089860ce360f5266ae101ab05ca 31705702b50e1c818c052b6d2a23f22583aa07d1 097ac1bb8edd3ef2e02fa551d824a0104c6995e130f9cdc4bcfa65583a9785d0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 03:57:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 216.58.207.234 | 200 OK | 0 B |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP216.58.207.234:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 07 Dec 2022 03:57:10 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashd9339bfb0393ef6575db48a0481f2556 351fa573fc3ea6626f3258061743cad65e0c4fce 5890254c4fac81ab169d788b9e5f9100f36e1ea2a2a6fe9036c45122aff062b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 03:57:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 216.58.207.234 | 200 OK | 31 kB |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP216.58.207.234:0
File typeJSON data\012- , ASCII text, with very long lines (65536), with no line terminators Hash903db79f46db0c524aa6e52da4bbbbe8 c7d444ae15f1e6592f8ba8833169bb2e8e7ac83b 38a246f856e6371d1e2f918161cb40b6645d21a62655c066263319a2e54c282f
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 07 Dec 2022 03:57:10 GMT
server: ESF
cache-control: private
content-length: 30874
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hashd0a4298298230aea5ddb15915a28de37 5a9a31ac970f2395aa12cd5038476d0f7ed42e10 1803a1821db5c4478725a6362f5dc7c8f4d4fce436b233e176ff793e5fc76cad
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 03:57:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash5006b8e985c5838b7fd2f2b558a65bc4 183ff15e0faedf346305fd6fe1c70c9c7a1eef4a fcbfec9f5fd0e10d44778c1df64d8612281cd39881cdfd0aa8ca30d13655655a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 03:57:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 216.58.207.234 | 200 OK | 31 kB |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP216.58.207.234:0
File typeJSON data\012- , ASCII text, with very long lines (65536), with no line terminators Hash4af4af7ee1000b0b8251dee59d290765 c6678f6e66e62ed17a54b756acb6301a96cb6bf8 1958c50c63b743222358ab199b2b696b0b6eae1b47497c9d8e44837a4fc41894
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 07 Dec 2022 03:57:10 GMT
server: ESF
cache-control: private
content-length: 30857
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.google.com/js/th/98eZ1SvQKncrIy_uxRv1pSvbmSGZ50EV24E3eut_s2o.js | 142.250.74.132 | 200 OK | 14 kB |
URL HTTP/2www.google.com/js/th/98eZ1SvQKncrIy_uxRv1pSvbmSGZ50EV24E3eut_s2o.js IP142.250.74.132:0
File typeASCII text, with very long lines (35818) Hash511a3814cb1663e9d9286015da587ae2 a9ef6e40f17b2659c823195354e912a8979cc1a0 a2e4a4711f28ea423fdcadcced71bdf38e190b285fdde3fc9f11868ad8730375
GET /js/th/98eZ1SvQKncrIy_uxRv1pSvbmSGZ50EV24E3eut_s2o.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14262
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 06:09:08 GMT
expires: Thu, 30 Nov 2023 06:09:08 GMT
cache-control: public, max-age=31536000
age: 596882
last-modified: Thu, 03 Nov 2022 10:00:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| i.ytimg.com/vi_webp/yx226REvbzw/maxresdefault.webp | 142.250.74.54 | 200 OK | 40 kB |
URL HTTP/2i.ytimg.com/vi_webp/yx226REvbzw/maxresdefault.webp IP142.250.74.54:0
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Hash15e22e6f83ce5cd9e4313d30e06b389a fef1b732eaea32b37e64478c20858599ef5f627c e47431edf7bdd4fe5f2fd8abef6767bfbc57010089cffe23ff9f4239554e804e
GET /vi_webp/yx226REvbzw/maxresdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 39600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 03:57:10 GMT
expires: Wed, 07 Dec 2022 05:57:10 GMT
cache-control: public, max-age=7200
etag: "0"
content-type: image/webp
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hashc2bc646545bfb8251d6d5061622e92f9 b14bf36b5bc259fe2429b8521f73f14703195fba 521f345ee743d506ed3b636023dbd6942238d94d7a0dbda7575c15eb659edfb3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 03:57:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash9e83e23c9303fc167d2b23bceba4f304 cc712e67770a00bcc9901a6881f5b1cd343cf054 16378fd60ce4fb8ead3bbc313e6ae0166f68d532d40c586f8c71cb6cd1a91f50
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 03:57:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| i.ytimg.com/vi_webp/EBcmZRKHtxs/maxresdefault.webp | 142.250.74.54 | 200 OK | 66 kB |
URL HTTP/2i.ytimg.com/vi_webp/EBcmZRKHtxs/maxresdefault.webp IP142.250.74.54:0
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Hash84a4278e8351ffb33e7f1292882773b2 eb23d5476b0cc21905a3222a1f4bfa4311adf7bb 5c922922d43c85f6d6adc4de2ae55db41315f0b5dca8a323cfff600b3e329428
GET /vi_webp/EBcmZRKHtxs/maxresdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 66486
date: Wed, 07 Dec 2022 03:57:10 GMT
expires: Wed, 07 Dec 2022 05:57:10 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| yt3.ggpht.com/ytc/AMLnZu_NHXI7ItSNO7CBwAjKMDnProopxF0XHbBJ3A=s68-c-k-c0x00ffffff-no-rj | 142.250.74.161 | 200 OK | 1.0 kB |
URL HTTP/2yt3.ggpht.com/ytc/AMLnZu_NHXI7ItSNO7CBwAjKMDnProopxF0XHbBJ3A=s68-c-k-c0x00ffffff-no-rj IP142.250.74.161:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data Hasha2f4fcf4f1fc517d066bd7b46d0e5983 88700f1bd6c0d5ce78188cde9a5c86807d04b58e b045e74e5fc1251b858458c98f7c298ae24619fc54aea54424ff00110cae4ff3
GET /ytc/AMLnZu_NHXI7ItSNO7CBwAjKMDnProopxF0XHbBJ3A=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1021
x-xss-protection: 0
date: Wed, 07 Dec 2022 02:13:45 GMT
expires: Thu, 08 Dec 2022 02:13:45 GMT
cache-control: public, max-age=86400, no-transform
content-type: image/jpeg
age: 6205
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 216.58.207.234 | 200 OK | 0 B |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP216.58.207.234:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 07 Dec 2022 03:57:10 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash9e83e23c9303fc167d2b23bceba4f304 cc712e67770a00bcc9901a6881f5b1cd343cf054 16378fd60ce4fb8ead3bbc313e6ae0166f68d532d40c586f8c71cb6cd1a91f50
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 03:57:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 216.58.207.234 | 200 OK | 110 B |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP216.58.207.234:0
File typeJSON data\012- , ASCII text, with no line terminators Hasha46821e1fc7cf08f874f1defca8101ec 1ade2b62e323a76b63309facab9fa5c2eded46a5 e78d9f14d0c79082d2952cdbdb5f1c44a53985ae4cfe03b96b650f1c6948ad74
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1258
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 07 Dec 2022 03:57:10 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 216.58.207.234 | 200 OK | 110 B |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP216.58.207.234:0
File typeJSON data\012- , ASCII text, with no line terminators Hashe06738381dd401587b44f7565af7740c cddcf17f2cb352a29cebc0462f3b077abfa16ea1 7212c753b4e2699e30eb9515cc67c80180ff4811b6e3ec9a9bd30d2791569fff
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1203
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 07 Dec 2022 03:57:10 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| yt3.ggpht.com/ytc/AMLnZu-QnFB-W0N_jrGrif208jUeKkLT7ZrUhwCkUwKgTw=s68-c-k-c0x00ffffff-no-rj | 142.250.74.161 | 200 OK | 3.9 kB |
URL HTTP/2yt3.ggpht.com/ytc/AMLnZu-QnFB-W0N_jrGrif208jUeKkLT7ZrUhwCkUwKgTw=s68-c-k-c0x00ffffff-no-rj IP142.250.74.161:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 68x68, components 3\012- data Hashf27c2d72c8f38409257588ed7d38525d f0d21c3ac20ee4ca17d52c77a4b2554218e3b2cf 6e68bb3088b50c3092e19c5284622e2e0980ac2cfa6bfc1a1e9eddaf21e8dfb1
GET /ytc/AMLnZu-QnFB-W0N_jrGrif208jUeKkLT7ZrUhwCkUwKgTw=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 3885
x-xss-protection: 0
date: Wed, 07 Dec 2022 03:57:10 GMT
expires: Mon, 05 Dec 2022 22:19:55 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1db5"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash4808876cfd727e5f220568c0d82e90fd 9d217d8f2aa94544ba80b006ac4291c4bc9c0312 8edec2d89259e801da93aedcd326b6388d117655655d6580f1fdff9a6833adf7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 03:57:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash4808876cfd727e5f220568c0d82e90fd 9d217d8f2aa94544ba80b006ac4291c4bc9c0312 8edec2d89259e801da93aedcd326b6388d117655655d6580f1fdff9a6833adf7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 03:57:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1670407030&ei=Fg-QY5OMK5DIyAXr_JugCw&ip=91.90.42.154&id=o-AMdse70doVZnRzj_epvN1QD4lP04ubMQFpwLxtH10e7f&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&mh=WC&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynlk&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=990000&spc=SFxXNof7y5PCS-HDZKb88gdoFmPW1ks&vprv=1&mime=video%2Fwebm&ns=eqyQJdGdk1KUNAkcD4JRIr8J&gir=yes&clen=4604979&dur=76.367&lmt=1570367068774166&mt=1670384945&fvip=4&keepalive=yes&fexp=24001373%2C24007246&beids=24239131&c=WEB_EMBEDDED_PLAYER&txp=5535432&n=lssGhxApau874Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgNtt6hrZNEIK6BUWgKDfRMRKhOQb7C55AUhd-PwGct9ACICBwTVyH9ph-ibMzdTwtHhnyg5adf13CGCAAak50t1Bg&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIhAMQAxmiwD8Wws1h9GJGehe9Rlh7ilUnVyjKhJjLlwrslAiBJBqKGWmTjXjCi7N36HoW2KAyO_OqKjsFUxchkfXEGBw%3D%3D&alr=yes&cpn=To-X-eT_-vQILdUU&cver=1.20221204.00.00&range=0-158458&rn=1&rbuf=0&pot=D5_vzBiNCF7an9dWIxUdHe8aGD_PUkJ6_ZcEmRW-JUJ3UJz0X3rc3gNp52-ejMSx4KIpvzvmUbNTPSOrUciv8QU5vNTzXstaw1EmMes-1oHSRPigv0ofQjHdB02v4EV4vUfoueM= | 91.90.45.173 | 200 OK | 1.3 kB |
URL HTTP/1.1rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1670407030&ei=Fg-QY5OMK5DIyAXr_JugCw&ip=91.90.42.154&id=o-AMdse70doVZnRzj_epvN1QD4lP04ubMQFpwLxtH10e7f&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&mh=WC&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynlk&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=990000&spc=SFxXNof7y5PCS-HDZKb88gdoFmPW1ks&vprv=1&mime=video%2Fwebm&ns=eqyQJdGdk1KUNAkcD4JRIr8J&gir=yes&clen=4604979&dur=76.367&lmt=1570367068774166&mt=1670384945&fvip=4&keepalive=yes&fexp=24001373%2C24007246&beids=24239131&c=WEB_EMBEDDED_PLAYER&txp=5535432&n=lssGhxApau874Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgNtt6hrZNEIK6BUWgKDfRMRKhOQb7C55AUhd-PwGct9ACICBwTVyH9ph-ibMzdTwtHhnyg5adf13CGCAAak50t1Bg&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIhAMQAxmiwD8Wws1h9GJGehe9Rlh7ilUnVyjKhJjLlwrslAiBJBqKGWmTjXjCi7N36HoW2KAyO_OqKjsFUxchkfXEGBw%3D%3D&alr=yes&cpn=To-X-eT_-vQILdUU&cver=1.20221204.00.00&range=0-158458&rn=1&rbuf=0&pot=D5_vzBiNCF7an9dWIxUdHe8aGD_PUkJ6_ZcEmRW-JUJ3UJz0X3rc3gNp52-ejMSx4KIpvzvmUbNTPSOrUciv8QU5vNTzXstaw1EmMes-1oHSRPigv0ofQjHdB02v4EV4vUfoueM= IP91.90.45.173:0 ASN#50304 Blix Solutions AS
File typeASCII text, with very long lines (1304), with no line terminators Hash88a88b29bb40d45a8b13403f0a4c87c0 0f2eb79cb740e5aa5b99b652cebd7208e18cc501 c491cd41b728ac7453f45b3270eb50bf49f756bbba9e2a0699fe605c8cfbed17
POST /videoplayback?expire=1670407030&ei=Fg-QY5OMK5DIyAXr_JugCw&ip=91.90.42.154&id=o-AMdse70doVZnRzj_epvN1QD4lP04ubMQFpwLxtH10e7f&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&mh=WC&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynlk&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=990000&spc=SFxXNof7y5PCS-HDZKb88gdoFmPW1ks&vprv=1&mime=video%2Fwebm&ns=eqyQJdGdk1KUNAkcD4JRIr8J&gir=yes&clen=4604979&dur=76.367&lmt=1570367068774166&mt=1670384945&fvip=4&keepalive=yes&fexp=24001373%2C24007246&beids=24239131&c=WEB_EMBEDDED_PLAYER&txp=5535432&n=lssGhxApau874Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgNtt6hrZNEIK6BUWgKDfRMRKhOQb7C55AUhd-PwGct9ACICBwTVyH9ph-ibMzdTwtHhnyg5adf13CGCAAak50t1Bg&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIhAMQAxmiwD8Wws1h9GJGehe9Rlh7ilUnVyjKhJjLlwrslAiBJBqKGWmTjXjCi7N36HoW2KAyO_OqKjsFUxchkfXEGBw%3D%3D&alr=yes&cpn=To-X-eT_-vQILdUU&cver=1.20221204.00.00&range=0-158458&rn=1&rbuf=0&pot=D5_vzBiNCF7an9dWIxUdHe8aGD_PUkJ6_ZcEmRW-JUJ3UJz0X3rc3gNp52-ejMSx4KIpvzvmUbNTPSOrUciv8QU5vNTzXstaw1EmMes-1oHSRPigv0ofQjHdB02v4EV4vUfoueM= HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Wed, 07 Dec 2022 03:57:10 GMT
Expires: Wed, 07 Dec 2022 03:57:10 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 1304
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
|
|
| rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1670407030&ei=Fg-QY5OMK5DIyAXr_JugCw&ip=91.90.42.154&id=o-AMdse70doVZnRzj_epvN1QD4lP04ubMQFpwLxtH10e7f&itag=250&source=youtube&requiressl=yes&mh=WC&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynlk&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=990000&spc=SFxXNof7y5PCS-HDZKb88gdoFmPW1ks&vprv=1&mime=audio%2Fwebm&ns=eqyQJdGdk1KUNAkcD4JRIr8J&gir=yes&clen=34843&dur=76.381&lmt=1570363692068637&mt=1670384945&fvip=4&keepalive=yes&fexp=24001373%2C24007246&beids=24239131&c=WEB_EMBEDDED_PLAYER&txp=5531432&n=lssGhxApau874Q&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIgXMhCeKm75ORRJ3uqUooB-z3EB1Mlb52tFnlOOrm-UdoCIQDWjLdyUjMwnPoKBMRVToOrIIYA7yFo5OhyXFIJSd-tEQ%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIhAMQAxmiwD8Wws1h9GJGehe9Rlh7ilUnVyjKhJjLlwrslAiBJBqKGWmTjXjCi7N36HoW2KAyO_OqKjsFUxchkfXEGBw%3D%3D&alr=yes&cpn=To-X-eT_-vQILdUU&cver=1.20221204.00.00&range=0-34842&rn=2&rbuf=0&pot=D5_vzBiNCF7an9dWIxUdHe8aGD_PUkJ6_ZcEmRW-JUJ3UJz0X3rc3gNp52-ejMSx4KIpvzvmUbNTPSOrUciv8QU5vNTzXstaw1EmMes-1oHSRPigv0ofQjHdB02v4EV4vUfoueM= | 91.90.45.173 | 200 OK | 1.2 kB |
URL HTTP/1.1rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1670407030&ei=Fg-QY5OMK5DIyAXr_JugCw&ip=91.90.42.154&id=o-AMdse70doVZnRzj_epvN1QD4lP04ubMQFpwLxtH10e7f&itag=250&source=youtube&requiressl=yes&mh=WC&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynlk&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=990000&spc=SFxXNof7y5PCS-HDZKb88gdoFmPW1ks&vprv=1&mime=audio%2Fwebm&ns=eqyQJdGdk1KUNAkcD4JRIr8J&gir=yes&clen=34843&dur=76.381&lmt=1570363692068637&mt=1670384945&fvip=4&keepalive=yes&fexp=24001373%2C24007246&beids=24239131&c=WEB_EMBEDDED_PLAYER&txp=5531432&n=lssGhxApau874Q&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIgXMhCeKm75ORRJ3uqUooB-z3EB1Mlb52tFnlOOrm-UdoCIQDWjLdyUjMwnPoKBMRVToOrIIYA7yFo5OhyXFIJSd-tEQ%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIhAMQAxmiwD8Wws1h9GJGehe9Rlh7ilUnVyjKhJjLlwrslAiBJBqKGWmTjXjCi7N36HoW2KAyO_OqKjsFUxchkfXEGBw%3D%3D&alr=yes&cpn=To-X-eT_-vQILdUU&cver=1.20221204.00.00&range=0-34842&rn=2&rbuf=0&pot=D5_vzBiNCF7an9dWIxUdHe8aGD_PUkJ6_ZcEmRW-JUJ3UJz0X3rc3gNp52-ejMSx4KIpvzvmUbNTPSOrUciv8QU5vNTzXstaw1EmMes-1oHSRPigv0ofQjHdB02v4EV4vUfoueM= IP91.90.45.173:0 ASN#50304 Blix Solutions AS
File typeASCII text, with very long lines (1194), with no line terminators Hash3f7c4d2b9c03b0a4a0bf8cc89afa7bde 09d9e9556964a1b2deccfd420c2ad530ac334ebb 04e538d78c19cf5bf306efdbb0cd9bf41692f60d3237933a04be24bc8559d2f8
POST /videoplayback?expire=1670407030&ei=Fg-QY5OMK5DIyAXr_JugCw&ip=91.90.42.154&id=o-AMdse70doVZnRzj_epvN1QD4lP04ubMQFpwLxtH10e7f&itag=250&source=youtube&requiressl=yes&mh=WC&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynlk&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=990000&spc=SFxXNof7y5PCS-HDZKb88gdoFmPW1ks&vprv=1&mime=audio%2Fwebm&ns=eqyQJdGdk1KUNAkcD4JRIr8J&gir=yes&clen=34843&dur=76.381&lmt=1570363692068637&mt=1670384945&fvip=4&keepalive=yes&fexp=24001373%2C24007246&beids=24239131&c=WEB_EMBEDDED_PLAYER&txp=5531432&n=lssGhxApau874Q&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIgXMhCeKm75ORRJ3uqUooB-z3EB1Mlb52tFnlOOrm-UdoCIQDWjLdyUjMwnPoKBMRVToOrIIYA7yFo5OhyXFIJSd-tEQ%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIhAMQAxmiwD8Wws1h9GJGehe9Rlh7ilUnVyjKhJjLlwrslAiBJBqKGWmTjXjCi7N36HoW2KAyO_OqKjsFUxchkfXEGBw%3D%3D&alr=yes&cpn=To-X-eT_-vQILdUU&cver=1.20221204.00.00&range=0-34842&rn=2&rbuf=0&pot=D5_vzBiNCF7an9dWIxUdHe8aGD_PUkJ6_ZcEmRW-JUJ3UJz0X3rc3gNp52-ejMSx4KIpvzvmUbNTPSOrUciv8QU5vNTzXstaw1EmMes-1oHSRPigv0ofQjHdB02v4EV4vUfoueM= HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Wed, 07 Dec 2022 03:57:10 GMT
Expires: Wed, 07 Dec 2022 03:57:10 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 1194
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash4808876cfd727e5f220568c0d82e90fd 9d217d8f2aa94544ba80b006ac4291c4bc9c0312 8edec2d89259e801da93aedcd326b6388d117655655d6580f1fdff9a6833adf7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 03:57:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1670407030&ei=Fg-QY92nLMvEyAX9u5m4BQ&ip=91.90.42.154&id=o-AP3CalKZ37hGoREPZg7YfO35I9bWRpFuZpqkGnC19Fai&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&mh=yy&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynlk&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=990000&spc=SFxXNslan4u3FkG5ulfMl7g-4_V4j1Q&vprv=1&mime=video%2Fwebm&ns=h_mEQaJuP4V0VjgW6Nj6g4UJ&gir=yes&clen=9699087&dur=138.440&lmt=1557849960113009&mt=1670384945&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5431432&n=2j9VZsLm_lGMWg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAKj7Kxx1bDtzFeeHw8-1eqsDLzBuMZYyO4HL_ggtbHGOAiEAoaN7OIh4Oh1SRuYxqGUd9uhhTQLJDQjBbp3C9hdkj9o%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIgV0ovdrAAF0zoW1bV3zOPix3eVFFbNnNZgArcDfBgdjcCIQCRHfLuV1XXffHEwMaWl4ZQyUesheB1Zmb0V52WxEqLJA%3D%3D&alr=yes&cpn=mkGFpE-ZXtQWjUA8&cver=1.20221204.00.00&range=0-685&rn=1&rbuf=0&pot=D40VbZoqwtADjS3pksDjv7sGni1f5APOadQBCnhe6QhvgQma73fNb5ZktJXjAbYd8QLNzshxW2QmDHCRMHDUOBEC5MmQBkXxYZyS9B00OPwb3dsh6LKV6eqEJpWkRDkxkQM9tvU= | 91.90.45.172 | 200 OK | 1.2 kB |
URL HTTP/1.1rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1670407030&ei=Fg-QY92nLMvEyAX9u5m4BQ&ip=91.90.42.154&id=o-AP3CalKZ37hGoREPZg7YfO35I9bWRpFuZpqkGnC19Fai&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&mh=yy&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynlk&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=990000&spc=SFxXNslan4u3FkG5ulfMl7g-4_V4j1Q&vprv=1&mime=video%2Fwebm&ns=h_mEQaJuP4V0VjgW6Nj6g4UJ&gir=yes&clen=9699087&dur=138.440&lmt=1557849960113009&mt=1670384945&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5431432&n=2j9VZsLm_lGMWg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAKj7Kxx1bDtzFeeHw8-1eqsDLzBuMZYyO4HL_ggtbHGOAiEAoaN7OIh4Oh1SRuYxqGUd9uhhTQLJDQjBbp3C9hdkj9o%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIgV0ovdrAAF0zoW1bV3zOPix3eVFFbNnNZgArcDfBgdjcCIQCRHfLuV1XXffHEwMaWl4ZQyUesheB1Zmb0V52WxEqLJA%3D%3D&alr=yes&cpn=mkGFpE-ZXtQWjUA8&cver=1.20221204.00.00&range=0-685&rn=1&rbuf=0&pot=D40VbZoqwtADjS3pksDjv7sGni1f5APOadQBCnhe6QhvgQma73fNb5ZktJXjAbYd8QLNzshxW2QmDHCRMHDUOBEC5MmQBkXxYZyS9B00OPwb3dsh6LKV6eqEJpWkRDkxkQM9tvU= IP91.90.45.172:0 ASN#50304 Blix Solutions AS
File typeASCII text, with very long lines (1246), with no line terminators Hash29ffe0b9ad85cbd7840fd07abc9664ac 32029714f49a8820c0a58175d85ffabb439c6380 f824fa310c05cdfef9541c98aa42e3231defb94f3338507c9c37cbdc088bb361
POST /videoplayback?expire=1670407030&ei=Fg-QY92nLMvEyAX9u5m4BQ&ip=91.90.42.154&id=o-AP3CalKZ37hGoREPZg7YfO35I9bWRpFuZpqkGnC19Fai&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&mh=yy&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynlk&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=990000&spc=SFxXNslan4u3FkG5ulfMl7g-4_V4j1Q&vprv=1&mime=video%2Fwebm&ns=h_mEQaJuP4V0VjgW6Nj6g4UJ&gir=yes&clen=9699087&dur=138.440&lmt=1557849960113009&mt=1670384945&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5431432&n=2j9VZsLm_lGMWg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAKj7Kxx1bDtzFeeHw8-1eqsDLzBuMZYyO4HL_ggtbHGOAiEAoaN7OIh4Oh1SRuYxqGUd9uhhTQLJDQjBbp3C9hdkj9o%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIgV0ovdrAAF0zoW1bV3zOPix3eVFFbNnNZgArcDfBgdjcCIQCRHfLuV1XXffHEwMaWl4ZQyUesheB1Zmb0V52WxEqLJA%3D%3D&alr=yes&cpn=mkGFpE-ZXtQWjUA8&cver=1.20221204.00.00&range=0-685&rn=1&rbuf=0&pot=D40VbZoqwtADjS3pksDjv7sGni1f5APOadQBCnhe6QhvgQma73fNb5ZktJXjAbYd8QLNzshxW2QmDHCRMHDUOBEC5MmQBkXxYZyS9B00OPwb3dsh6LKV6eqEJpWkRDkxkQM9tvU= HTTP/1.1
Host: rr1---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Wed, 07 Dec 2022 03:57:10 GMT
Expires: Wed, 07 Dec 2022 03:57:10 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 1246
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
|
|
| rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1670407030&ei=Fg-QY92nLMvEyAX9u5m4BQ&ip=91.90.42.154&id=o-AP3CalKZ37hGoREPZg7YfO35I9bWRpFuZpqkGnC19Fai&itag=251&source=youtube&requiressl=yes&mh=yy&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynlk&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=990000&spc=SFxXNslan4u3FkG5ulfMl7g-4_V4j1Q&vprv=1&mime=audio%2Fwebm&ns=h_mEQaJuP4V0VjgW6Nj6g4UJ&gir=yes&clen=2150197&dur=138.521&lmt=1557849587910572&mt=1670384945&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5431432&n=2j9VZsLm_lGMWg&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAKCMEFMsSJzkReBXnisECGMey0EOg_Xk5YmoSY3RtfepAiB-NX8h5ODeBDD_U_qk5kkptTSahRbj9ND-YY0ndTLGUw%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIgV0ovdrAAF0zoW1bV3zOPix3eVFFbNnNZgArcDfBgdjcCIQCRHfLuV1XXffHEwMaWl4ZQyUesheB1Zmb0V52WxEqLJA%3D%3D&alr=yes&cpn=mkGFpE-ZXtQWjUA8&cver=1.20221204.00.00&range=0-493&rn=2&rbuf=0&pot=D40VbZoqwtADjS3pksDjv7sGni1f5APOadQBCnhe6QhvgQma73fNb5ZktJXjAbYd8QLNzshxW2QmDHCRMHDUOBEC5MmQBkXxYZyS9B00OPwb3dsh6LKV6eqEJpWkRDkxkQM9tvU= | 91.90.45.172 | 200 OK | 1.2 kB |
URL HTTP/1.1rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1670407030&ei=Fg-QY92nLMvEyAX9u5m4BQ&ip=91.90.42.154&id=o-AP3CalKZ37hGoREPZg7YfO35I9bWRpFuZpqkGnC19Fai&itag=251&source=youtube&requiressl=yes&mh=yy&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynlk&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=990000&spc=SFxXNslan4u3FkG5ulfMl7g-4_V4j1Q&vprv=1&mime=audio%2Fwebm&ns=h_mEQaJuP4V0VjgW6Nj6g4UJ&gir=yes&clen=2150197&dur=138.521&lmt=1557849587910572&mt=1670384945&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5431432&n=2j9VZsLm_lGMWg&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAKCMEFMsSJzkReBXnisECGMey0EOg_Xk5YmoSY3RtfepAiB-NX8h5ODeBDD_U_qk5kkptTSahRbj9ND-YY0ndTLGUw%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIgV0ovdrAAF0zoW1bV3zOPix3eVFFbNnNZgArcDfBgdjcCIQCRHfLuV1XXffHEwMaWl4ZQyUesheB1Zmb0V52WxEqLJA%3D%3D&alr=yes&cpn=mkGFpE-ZXtQWjUA8&cver=1.20221204.00.00&range=0-493&rn=2&rbuf=0&pot=D40VbZoqwtADjS3pksDjv7sGni1f5APOadQBCnhe6QhvgQma73fNb5ZktJXjAbYd8QLNzshxW2QmDHCRMHDUOBEC5MmQBkXxYZyS9B00OPwb3dsh6LKV6eqEJpWkRDkxkQM9tvU= IP91.90.45.172:0 ASN#50304 Blix Solutions AS
File typeASCII text, with very long lines (1169), with no line terminators Hash87c98461019fac886857cfd96de90e42 a7beb8dabd32bc932041968b41b9b419777ecb00 9542c0dd0708d24b6d7729d7b8344ec341e4cb46ea938ac1e04e02dcddf0391e
POST /videoplayback?expire=1670407030&ei=Fg-QY92nLMvEyAX9u5m4BQ&ip=91.90.42.154&id=o-AP3CalKZ37hGoREPZg7YfO35I9bWRpFuZpqkGnC19Fai&itag=251&source=youtube&requiressl=yes&mh=yy&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynlk&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=990000&spc=SFxXNslan4u3FkG5ulfMl7g-4_V4j1Q&vprv=1&mime=audio%2Fwebm&ns=h_mEQaJuP4V0VjgW6Nj6g4UJ&gir=yes&clen=2150197&dur=138.521&lmt=1557849587910572&mt=1670384945&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5431432&n=2j9VZsLm_lGMWg&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAKCMEFMsSJzkReBXnisECGMey0EOg_Xk5YmoSY3RtfepAiB-NX8h5ODeBDD_U_qk5kkptTSahRbj9ND-YY0ndTLGUw%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIgV0ovdrAAF0zoW1bV3zOPix3eVFFbNnNZgArcDfBgdjcCIQCRHfLuV1XXffHEwMaWl4ZQyUesheB1Zmb0V52WxEqLJA%3D%3D&alr=yes&cpn=mkGFpE-ZXtQWjUA8&cver=1.20221204.00.00&range=0-493&rn=2&rbuf=0&pot=D40VbZoqwtADjS3pksDjv7sGni1f5APOadQBCnhe6QhvgQma73fNb5ZktJXjAbYd8QLNzshxW2QmDHCRMHDUOBEC5MmQBkXxYZyS9B00OPwb3dsh6LKV6eqEJpWkRDkxkQM9tvU= HTTP/1.1
Host: rr1---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Wed, 07 Dec 2022 03:57:10 GMT
Expires: Wed, 07 Dec 2022 03:57:10 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 1169
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash00a44eacab2a2866366cfbb2483463ca a000c92137b94cbfffdda028cd866d23ac37d17c 0b12fc2d0e7fa43df9c0e0b1ca29a12199982595dd5d687d2632020f81e2a9e5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 03:57:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash00a44eacab2a2866366cfbb2483463ca a000c92137b94cbfffdda028cd866d23ac37d17c 0b12fc2d0e7fa43df9c0e0b1ca29a12199982595dd5d687d2632020f81e2a9e5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 03:57:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash00a44eacab2a2866366cfbb2483463ca a000c92137b94cbfffdda028cd866d23ac37d17c 0b12fc2d0e7fa43df9c0e0b1ca29a12199982595dd5d687d2632020f81e2a9e5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 03:57:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash00a44eacab2a2866366cfbb2483463ca a000c92137b94cbfffdda028cd866d23ac37d17c 0b12fc2d0e7fa43df9c0e0b1ca29a12199982595dd5d687d2632020f81e2a9e5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 03:57:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| rr4---sn-5goeen7y.googlevideo.com/videoplayback?expire=1670407030&ei=Fg-QY5OMK5DIyAXr_JugCw&ip=91.90.42.154&id=o-AMdse70doVZnRzj_epvN1QD4lP04ubMQFpwLxtH10e7f&itag=250&source=youtube&requiressl=yes&spc=SFxXNof7y5PCS-HDZKb88gdoFmPW1ks&vprv=1&mime=audio%2Fwebm&ns=eqyQJdGdk1KUNAkcD4JRIr8J&gir=yes&clen=34843&dur=76.381&lmt=1570363692068637&keepalive=yes&fexp=24001373,24007246,24239131&beids=24239131&c=WEB_EMBEDDED_PLAYER&txp=5531432&n=lssGhxApau874Q&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIgXMhCeKm75ORRJ3uqUooB-z3EB1Mlb52tFnlOOrm-UdoCIQDWjLdyUjMwnPoKBMRVToOrIIYA7yFo5OhyXFIJSd-tEQ%3D%3D&alr=yes&cpn=To-X-eT_-vQILdUU&cver=1.20221204.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=WC&mm=29&mn=sn-5goeen7y&ms=rdu&mt=1670385195&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgNwMeX0k6QdEevizCXt0WENyCKwsE38vvmkZkkoeqtnMCIQCURB_6WlbxNareRZdnFcCZ8MrBvDoF1EP-NSTApnzA9w%3D%3D&range=0-34842&rn=4&rbuf=0&pot=D5_vzBiNCF7an9dWIxUdHe8aGD_PUkJ6_ZcEmRW-JUJ3UJz0X3rc3gNp52-ejMSx4KIpvzvmUbNTPSOrUciv8QU5vNTzXstaw1EmMes-1oHSRPigv0ofQjHdB02v4EV4vUfoueM= | 74.125.110.137 | 200 OK | 35 kB |
URL HTTP/1.1rr4---sn-5goeen7y.googlevideo.com/videoplayback?expire=1670407030&ei=Fg-QY5OMK5DIyAXr_JugCw&ip=91.90.42.154&id=o-AMdse70doVZnRzj_epvN1QD4lP04ubMQFpwLxtH10e7f&itag=250&source=youtube&requiressl=yes&spc=SFxXNof7y5PCS-HDZKb88gdoFmPW1ks&vprv=1&mime=audio%2Fwebm&ns=eqyQJdGdk1KUNAkcD4JRIr8J&gir=yes&clen=34843&dur=76.381&lmt=1570363692068637&keepalive=yes&fexp=24001373,24007246,24239131&beids=24239131&c=WEB_EMBEDDED_PLAYER&txp=5531432&n=lssGhxApau874Q&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIgXMhCeKm75ORRJ3uqUooB-z3EB1Mlb52tFnlOOrm-UdoCIQDWjLdyUjMwnPoKBMRVToOrIIYA7yFo5OhyXFIJSd-tEQ%3D%3D&alr=yes&cpn=To-X-eT_-vQILdUU&cver=1.20221204.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=WC&mm=29&mn=sn-5goeen7y&ms=rdu&mt=1670385195&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgNwMeX0k6QdEevizCXt0WENyCKwsE38vvmkZkkoeqtnMCIQCURB_6WlbxNareRZdnFcCZ8MrBvDoF1EP-NSTApnzA9w%3D%3D&range=0-34842&rn=4&rbuf=0&pot=D5_vzBiNCF7an9dWIxUdHe8aGD_PUkJ6_ZcEmRW-JUJ3UJz0X3rc3gNp52-ejMSx4KIpvzvmUbNTPSOrUciv8QU5vNTzXstaw1EmMes-1oHSRPigv0ofQjHdB02v4EV4vUfoueM= IP74.125.110.137:0
File typeWebM\012- EBML file, creator webmB\20\012- data Hashd74549d261c03e9394b7488cfb7887de 5cad4e44ba32c4dd344215f6fa827d6d4ec82a0e 0ac1c0b27df72cb19185235f7a1152713ac8a72141714490b2459dd8b5558db8
POST /videoplayback?expire=1670407030&ei=Fg-QY5OMK5DIyAXr_JugCw&ip=91.90.42.154&id=o-AMdse70doVZnRzj_epvN1QD4lP04ubMQFpwLxtH10e7f&itag=250&source=youtube&requiressl=yes&spc=SFxXNof7y5PCS-HDZKb88gdoFmPW1ks&vprv=1&mime=audio%2Fwebm&ns=eqyQJdGdk1KUNAkcD4JRIr8J&gir=yes&clen=34843&dur=76.381&lmt=1570363692068637&keepalive=yes&fexp=24001373,24007246,24239131&beids=24239131&c=WEB_EMBEDDED_PLAYER&txp=5531432&n=lssGhxApau874Q&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIgXMhCeKm75ORRJ3uqUooB-z3EB1Mlb52tFnlOOrm-UdoCIQDWjLdyUjMwnPoKBMRVToOrIIYA7yFo5OhyXFIJSd-tEQ%3D%3D&alr=yes&cpn=To-X-eT_-vQILdUU&cver=1.20221204.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=WC&mm=29&mn=sn-5goeen7y&ms=rdu&mt=1670385195&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgNwMeX0k6QdEevizCXt0WENyCKwsE38vvmkZkkoeqtnMCIQCURB_6WlbxNareRZdnFcCZ8MrBvDoF1EP-NSTApnzA9w%3D%3D&range=0-34842&rn=4&rbuf=0&pot=D5_vzBiNCF7an9dWIxUdHe8aGD_PUkJ6_ZcEmRW-JUJ3UJz0X3rc3gNp52-ejMSx4KIpvzvmUbNTPSOrUciv8QU5vNTzXstaw1EmMes-1oHSRPigv0ofQjHdB02v4EV4vUfoueM= HTTP/1.1
Host: rr4---sn-5goeen7y.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Sun, 06 Oct 2019 12:08:12 GMT
Content-Type: audio/webm
Date: Wed, 07 Dec 2022 03:57:11 GMT
Expires: Wed, 07 Dec 2022 03:57:11 GMT
Cache-Control: private, max-age=21299
Accept-Ranges: bytes
Content-Length: 34843
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
|
|
| rr2---sn-5goeenes.googlevideo.com/videoplayback?expire=1670407030&ei=Fg-QY92nLMvEyAX9u5m4BQ&ip=91.90.42.154&id=o-AP3CalKZ37hGoREPZg7YfO35I9bWRpFuZpqkGnC19Fai&itag=251&source=youtube&requiressl=yes&spc=SFxXNslan4u3FkG5ulfMl7g-4_V4j1Q&vprv=1&mime=audio%2Fwebm&ns=h_mEQaJuP4V0VjgW6Nj6g4UJ&gir=yes&clen=2150197&dur=138.521&lmt=1557849587910572&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5431432&n=2j9VZsLm_lGMWg&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAKCMEFMsSJzkReBXnisECGMey0EOg_Xk5YmoSY3RtfepAiB-NX8h5ODeBDD_U_qk5kkptTSahRbj9ND-YY0ndTLGUw%3D%3D&alr=yes&cpn=mkGFpE-ZXtQWjUA8&cver=1.20221204.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=yy&mm=29&mn=sn-5goeenes&ms=rdu&mt=1670385195&mv=m&mvi=2&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhAJTHYvv-cePNZcpJ9--x6IdozF_JaooEPNAcSSmDXPK_AiEAoSLr2yf08g_hPyFfQrsQARKq5n9-CG8xKIkY2tjX32Y%3D&range=0-493&rn=4&rbuf=0&pot=D40VbZoqwtADjS3pksDjv7sGni1f5APOadQBCnhe6QhvgQma73fNb5ZktJXjAbYd8QLNzshxW2QmDHCRMHDUOBEC5MmQBkXxYZyS9B00OPwb3dsh6LKV6eqEJpWkRDkxkQM9tvU= | 74.125.108.231 | 200 OK | 1.2 kB |
URL HTTP/1.1rr2---sn-5goeenes.googlevideo.com/videoplayback?expire=1670407030&ei=Fg-QY92nLMvEyAX9u5m4BQ&ip=91.90.42.154&id=o-AP3CalKZ37hGoREPZg7YfO35I9bWRpFuZpqkGnC19Fai&itag=251&source=youtube&requiressl=yes&spc=SFxXNslan4u3FkG5ulfMl7g-4_V4j1Q&vprv=1&mime=audio%2Fwebm&ns=h_mEQaJuP4V0VjgW6Nj6g4UJ&gir=yes&clen=2150197&dur=138.521&lmt=1557849587910572&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5431432&n=2j9VZsLm_lGMWg&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAKCMEFMsSJzkReBXnisECGMey0EOg_Xk5YmoSY3RtfepAiB-NX8h5ODeBDD_U_qk5kkptTSahRbj9ND-YY0ndTLGUw%3D%3D&alr=yes&cpn=mkGFpE-ZXtQWjUA8&cver=1.20221204.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=yy&mm=29&mn=sn-5goeenes&ms=rdu&mt=1670385195&mv=m&mvi=2&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhAJTHYvv-cePNZcpJ9--x6IdozF_JaooEPNAcSSmDXPK_AiEAoSLr2yf08g_hPyFfQrsQARKq5n9-CG8xKIkY2tjX32Y%3D&range=0-493&rn=4&rbuf=0&pot=D40VbZoqwtADjS3pksDjv7sGni1f5APOadQBCnhe6QhvgQma73fNb5ZktJXjAbYd8QLNzshxW2QmDHCRMHDUOBEC5MmQBkXxYZyS9B00OPwb3dsh6LKV6eqEJpWkRDkxkQM9tvU= IP74.125.108.231:0
File typeASCII text, with very long lines (1182), with no line terminators Hashfe1fb263216941ab792ba5e8e1736e01 f1e503918bed7a40a40e0d3bee0bd3b7f7bb78f8 953a106963797814d1fd00b4185f6388d521491707182c295fef7cc5d3727d94
POST /videoplayback?expire=1670407030&ei=Fg-QY92nLMvEyAX9u5m4BQ&ip=91.90.42.154&id=o-AP3CalKZ37hGoREPZg7YfO35I9bWRpFuZpqkGnC19Fai&itag=251&source=youtube&requiressl=yes&spc=SFxXNslan4u3FkG5ulfMl7g-4_V4j1Q&vprv=1&mime=audio%2Fwebm&ns=h_mEQaJuP4V0VjgW6Nj6g4UJ&gir=yes&clen=2150197&dur=138.521&lmt=1557849587910572&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5431432&n=2j9VZsLm_lGMWg&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAKCMEFMsSJzkReBXnisECGMey0EOg_Xk5YmoSY3RtfepAiB-NX8h5ODeBDD_U_qk5kkptTSahRbj9ND-YY0ndTLGUw%3D%3D&alr=yes&cpn=mkGFpE-ZXtQWjUA8&cver=1.20221204.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=yy&mm=29&mn=sn-5goeenes&ms=rdu&mt=1670385195&mv=m&mvi=2&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhAJTHYvv-cePNZcpJ9--x6IdozF_JaooEPNAcSSmDXPK_AiEAoSLr2yf08g_hPyFfQrsQARKq5n9-CG8xKIkY2tjX32Y%3D&range=0-493&rn=4&rbuf=0&pot=D40VbZoqwtADjS3pksDjv7sGni1f5APOadQBCnhe6QhvgQma73fNb5ZktJXjAbYd8QLNzshxW2QmDHCRMHDUOBEC5MmQBkXxYZyS9B00OPwb3dsh6LKV6eqEJpWkRDkxkQM9tvU= HTTP/1.1
Host: rr2---sn-5goeenes.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Wed, 07 Dec 2022 03:57:11 GMT
Expires: Wed, 07 Dec 2022 03:57:11 GMT
Cache-Control: private, max-age=21299
Accept-Ranges: bytes
Content-Length: 1182
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
|
|
| rr2---sn-5goeenes.googlevideo.com/videoplayback?expire=1670407030&ei=Fg-QY92nLMvEyAX9u5m4BQ&ip=91.90.42.154&id=o-AP3CalKZ37hGoREPZg7YfO35I9bWRpFuZpqkGnC19Fai&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&spc=SFxXNslan4u3FkG5ulfMl7g-4_V4j1Q&vprv=1&mime=video%2Fwebm&ns=h_mEQaJuP4V0VjgW6Nj6g4UJ&gir=yes&clen=9699087&dur=138.440&lmt=1557849960113009&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5431432&n=2j9VZsLm_lGMWg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAKj7Kxx1bDtzFeeHw8-1eqsDLzBuMZYyO4HL_ggtbHGOAiEAoaN7OIh4Oh1SRuYxqGUd9uhhTQLJDQjBbp3C9hdkj9o%3D&alr=yes&cpn=mkGFpE-ZXtQWjUA8&cver=1.20221204.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=yy&mm=29&mn=sn-5goeenes&ms=rdu&mt=1670385195&mv=m&mvi=2&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhANheqsZkq_R_oNyqRqVVWTi34nA4_hTD7ak4tyrY0-uaAiEAgdt35JROGXoBuK-_fROjxq4G5Oc18npnv7h7BslwRYQ%3D&range=0-685&rn=3&rbuf=0&pot=D40VbZoqwtADjS3pksDjv7sGni1f5APOadQBCnhe6QhvgQma73fNb5ZktJXjAbYd8QLNzshxW2QmDHCRMHDUOBEC5MmQBkXxYZyS9B00OPwb3dsh6LKV6eqEJpWkRDkxkQM9tvU= | 74.125.108.231 | 200 OK | 1.3 kB |
URL HTTP/1.1rr2---sn-5goeenes.googlevideo.com/videoplayback?expire=1670407030&ei=Fg-QY92nLMvEyAX9u5m4BQ&ip=91.90.42.154&id=o-AP3CalKZ37hGoREPZg7YfO35I9bWRpFuZpqkGnC19Fai&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&spc=SFxXNslan4u3FkG5ulfMl7g-4_V4j1Q&vprv=1&mime=video%2Fwebm&ns=h_mEQaJuP4V0VjgW6Nj6g4UJ&gir=yes&clen=9699087&dur=138.440&lmt=1557849960113009&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5431432&n=2j9VZsLm_lGMWg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAKj7Kxx1bDtzFeeHw8-1eqsDLzBuMZYyO4HL_ggtbHGOAiEAoaN7OIh4Oh1SRuYxqGUd9uhhTQLJDQjBbp3C9hdkj9o%3D&alr=yes&cpn=mkGFpE-ZXtQWjUA8&cver=1.20221204.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=yy&mm=29&mn=sn-5goeenes&ms=rdu&mt=1670385195&mv=m&mvi=2&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhANheqsZkq_R_oNyqRqVVWTi34nA4_hTD7ak4tyrY0-uaAiEAgdt35JROGXoBuK-_fROjxq4G5Oc18npnv7h7BslwRYQ%3D&range=0-685&rn=3&rbuf=0&pot=D40VbZoqwtADjS3pksDjv7sGni1f5APOadQBCnhe6QhvgQma73fNb5ZktJXjAbYd8QLNzshxW2QmDHCRMHDUOBEC5MmQBkXxYZyS9B00OPwb3dsh6LKV6eqEJpWkRDkxkQM9tvU= IP74.125.108.231:0
File typeASCII text, with very long lines (1259), with no line terminators Hash3765b60757397080969d42ac5907ec4b 41bdb767ffe30daf9db9788bb786bbdd6945adfd e0cecdd99f1f38925b2487611c7d0abf6db3cc0b0007638bd1d59078ed10cda3
POST /videoplayback?expire=1670407030&ei=Fg-QY92nLMvEyAX9u5m4BQ&ip=91.90.42.154&id=o-AP3CalKZ37hGoREPZg7YfO35I9bWRpFuZpqkGnC19Fai&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&spc=SFxXNslan4u3FkG5ulfMl7g-4_V4j1Q&vprv=1&mime=video%2Fwebm&ns=h_mEQaJuP4V0VjgW6Nj6g4UJ&gir=yes&clen=9699087&dur=138.440&lmt=1557849960113009&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5431432&n=2j9VZsLm_lGMWg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAKj7Kxx1bDtzFeeHw8-1eqsDLzBuMZYyO4HL_ggtbHGOAiEAoaN7OIh4Oh1SRuYxqGUd9uhhTQLJDQjBbp3C9hdkj9o%3D&alr=yes&cpn=mkGFpE-ZXtQWjUA8&cver=1.20221204.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=yy&mm=29&mn=sn-5goeenes&ms=rdu&mt=1670385195&mv=m&mvi=2&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhANheqsZkq_R_oNyqRqVVWTi34nA4_hTD7ak4tyrY0-uaAiEAgdt35JROGXoBuK-_fROjxq4G5Oc18npnv7h7BslwRYQ%3D&range=0-685&rn=3&rbuf=0&pot=D40VbZoqwtADjS3pksDjv7sGni1f5APOadQBCnhe6QhvgQma73fNb5ZktJXjAbYd8QLNzshxW2QmDHCRMHDUOBEC5MmQBkXxYZyS9B00OPwb3dsh6LKV6eqEJpWkRDkxkQM9tvU= HTTP/1.1
Host: rr2---sn-5goeenes.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Wed, 07 Dec 2022 03:57:11 GMT
Expires: Wed, 07 Dec 2022 03:57:11 GMT
Cache-Control: private, max-age=21299
Accept-Ranges: bytes
Content-Length: 1259
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash00a44eacab2a2866366cfbb2483463ca a000c92137b94cbfffdda028cd866d23ac37d17c 0b12fc2d0e7fa43df9c0e0b1ca29a12199982595dd5d687d2632020f81e2a9e5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 03:57:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash00a44eacab2a2866366cfbb2483463ca a000c92137b94cbfffdda028cd866d23ac37d17c 0b12fc2d0e7fa43df9c0e0b1ca29a12199982595dd5d687d2632020f81e2a9e5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 03:57:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| rr2---sn-5goeenes.googlevideo.com/videoplayback?expire=1670407030&ei=Fg-QY92nLMvEyAX9u5m4BQ&ip=91.90.42.154&id=o-AP3CalKZ37hGoREPZg7YfO35I9bWRpFuZpqkGnC19Fai&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&spc=SFxXNslan4u3FkG5ulfMl7g-4_V4j1Q&vprv=1&mime=video%2Fwebm&ns=h_mEQaJuP4V0VjgW6Nj6g4UJ&gir=yes&clen=9699087&dur=138.440&lmt=1557849960113009&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5431432&n=2j9VZsLm_lGMWg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAKj7Kxx1bDtzFeeHw8-1eqsDLzBuMZYyO4HL_ggtbHGOAiEAoaN7OIh4Oh1SRuYxqGUd9uhhTQLJDQjBbp3C9hdkj9o%3D&alr=yes&cpn=mkGFpE-ZXtQWjUA8&cver=1.20221204.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=yy&mm=29&mn=sn-5goeenes&ms=rdu&mt=1670385195&mv=m&mvi=2&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRAIgUszNH3tYr9hcJVRAY7joVYefneFBI0pQiGilZscCjU0CIFUAq9w9tmpn81y0f48GFH7Zrf_MF1wQrHQXkMrGZv_8&range=0-685&rn=7&rbuf=0&pot=D40VbZoqwtADjS3pksDjv7sGni1f5APOadQBCnhe6QhvgQma73fNb5ZktJXjAbYd8QLNzshxW2QmDHCRMHDUOBEC5MmQBkXxYZyS9B00OPwb3dsh6LKV6eqEJpWkRDkxkQM9tvU= | 74.125.108.231 | 200 OK | 1.3 kB |
URL HTTP/1.1rr2---sn-5goeenes.googlevideo.com/videoplayback?expire=1670407030&ei=Fg-QY92nLMvEyAX9u5m4BQ&ip=91.90.42.154&id=o-AP3CalKZ37hGoREPZg7YfO35I9bWRpFuZpqkGnC19Fai&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&spc=SFxXNslan4u3FkG5ulfMl7g-4_V4j1Q&vprv=1&mime=video%2Fwebm&ns=h_mEQaJuP4V0VjgW6Nj6g4UJ&gir=yes&clen=9699087&dur=138.440&lmt=1557849960113009&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5431432&n=2j9VZsLm_lGMWg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAKj7Kxx1bDtzFeeHw8-1eqsDLzBuMZYyO4HL_ggtbHGOAiEAoaN7OIh4Oh1SRuYxqGUd9uhhTQLJDQjBbp3C9hdkj9o%3D&alr=yes&cpn=mkGFpE-ZXtQWjUA8&cver=1.20221204.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=yy&mm=29&mn=sn-5goeenes&ms=rdu&mt=1670385195&mv=m&mvi=2&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRAIgUszNH3tYr9hcJVRAY7joVYefneFBI0pQiGilZscCjU0CIFUAq9w9tmpn81y0f48GFH7Zrf_MF1wQrHQXkMrGZv_8&range=0-685&rn=7&rbuf=0&pot=D40VbZoqwtADjS3pksDjv7sGni1f5APOadQBCnhe6QhvgQma73fNb5ZktJXjAbYd8QLNzshxW2QmDHCRMHDUOBEC5MmQBkXxYZyS9B00OPwb3dsh6LKV6eqEJpWkRDkxkQM9tvU= IP74.125.108.231:0
File typeASCII text, with very long lines (1259), with no line terminators Hash207a84640c240d8fb5bed5ca21e0a1fe d335f0c477bb1bed68aff1d5c4eb73869c26d868 faf284b32e31d87e2eae61eeb63b53255f41cdeb20843383107068975fadb4b8
POST /videoplayback?expire=1670407030&ei=Fg-QY92nLMvEyAX9u5m4BQ&ip=91.90.42.154&id=o-AP3CalKZ37hGoREPZg7YfO35I9bWRpFuZpqkGnC19Fai&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&spc=SFxXNslan4u3FkG5ulfMl7g-4_V4j1Q&vprv=1&mime=video%2Fwebm&ns=h_mEQaJuP4V0VjgW6Nj6g4UJ&gir=yes&clen=9699087&dur=138.440&lmt=1557849960113009&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5431432&n=2j9VZsLm_lGMWg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAKj7Kxx1bDtzFeeHw8-1eqsDLzBuMZYyO4HL_ggtbHGOAiEAoaN7OIh4Oh1SRuYxqGUd9uhhTQLJDQjBbp3C9hdkj9o%3D&alr=yes&cpn=mkGFpE-ZXtQWjUA8&cver=1.20221204.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=yy&mm=29&mn=sn-5goeenes&ms=rdu&mt=1670385195&mv=m&mvi=2&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRAIgUszNH3tYr9hcJVRAY7joVYefneFBI0pQiGilZscCjU0CIFUAq9w9tmpn81y0f48GFH7Zrf_MF1wQrHQXkMrGZv_8&range=0-685&rn=7&rbuf=0&pot=D40VbZoqwtADjS3pksDjv7sGni1f5APOadQBCnhe6QhvgQma73fNb5ZktJXjAbYd8QLNzshxW2QmDHCRMHDUOBEC5MmQBkXxYZyS9B00OPwb3dsh6LKV6eqEJpWkRDkxkQM9tvU= HTTP/1.1
Host: rr2---sn-5goeenes.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Wed, 07 Dec 2022 03:57:11 GMT
Expires: Wed, 07 Dec 2022 03:57:11 GMT
Cache-Control: private, max-age=21299
Accept-Ranges: bytes
Content-Length: 1259
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
|
|
| rr4---sn-5goeen7y.googlevideo.com/videoplayback?expire=1670407030&ei=Fg-QY5OMK5DIyAXr_JugCw&ip=91.90.42.154&id=o-AMdse70doVZnRzj_epvN1QD4lP04ubMQFpwLxtH10e7f&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&spc=SFxXNof7y5PCS-HDZKb88gdoFmPW1ks&vprv=1&mime=video%2Fwebm&ns=eqyQJdGdk1KUNAkcD4JRIr8J&gir=yes&clen=4604979&dur=76.367&lmt=1570367068774166&keepalive=yes&fexp=24001373,24007246,24239131&beids=24239131&c=WEB_EMBEDDED_PLAYER&txp=5535432&n=lssGhxApau874Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgNtt6hrZNEIK6BUWgKDfRMRKhOQb7C55AUhd-PwGct9ACICBwTVyH9ph-ibMzdTwtHhnyg5adf13CGCAAak50t1Bg&alr=yes&cpn=To-X-eT_-vQILdUU&cver=1.20221204.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=WC&mm=29&mn=sn-5goeen7y&ms=rdu&mt=1670385195&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgPebla-ZQkOH6RYkoR9Uy-_pUlPtt9YiKhgdcmzCXb18CIQCsvL93S_bw-W6WtOb_O94X4mZEnd9zXWPoYLIo7Efkfg%3D%3D&range=0-158458&rn=3&rbuf=0&pot=D5_vzBiNCF7an9dWIxUdHe8aGD_PUkJ6_ZcEmRW-JUJ3UJz0X3rc3gNp52-ejMSx4KIpvzvmUbNTPSOrUciv8QU5vNTzXstaw1EmMes-1oHSRPigv0ofQjHdB02v4EV4vUfoueM= | 74.125.110.137 | 200 OK | 158 kB |
URL HTTP/1.1rr4---sn-5goeen7y.googlevideo.com/videoplayback?expire=1670407030&ei=Fg-QY5OMK5DIyAXr_JugCw&ip=91.90.42.154&id=o-AMdse70doVZnRzj_epvN1QD4lP04ubMQFpwLxtH10e7f&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&spc=SFxXNof7y5PCS-HDZKb88gdoFmPW1ks&vprv=1&mime=video%2Fwebm&ns=eqyQJdGdk1KUNAkcD4JRIr8J&gir=yes&clen=4604979&dur=76.367&lmt=1570367068774166&keepalive=yes&fexp=24001373,24007246,24239131&beids=24239131&c=WEB_EMBEDDED_PLAYER&txp=5535432&n=lssGhxApau874Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgNtt6hrZNEIK6BUWgKDfRMRKhOQb7C55AUhd-PwGct9ACICBwTVyH9ph-ibMzdTwtHhnyg5adf13CGCAAak50t1Bg&alr=yes&cpn=To-X-eT_-vQILdUU&cver=1.20221204.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=WC&mm=29&mn=sn-5goeen7y&ms=rdu&mt=1670385195&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgPebla-ZQkOH6RYkoR9Uy-_pUlPtt9YiKhgdcmzCXb18CIQCsvL93S_bw-W6WtOb_O94X4mZEnd9zXWPoYLIo7Efkfg%3D%3D&range=0-158458&rn=3&rbuf=0&pot=D5_vzBiNCF7an9dWIxUdHe8aGD_PUkJ6_ZcEmRW-JUJ3UJz0X3rc3gNp52-ejMSx4KIpvzvmUbNTPSOrUciv8QU5vNTzXstaw1EmMes-1oHSRPigv0ofQjHdB02v4EV4vUfoueM= IP74.125.110.137:0
File typeWebM\012- EBML file, creator webmB\20\012- data Size158 kB (158459 bytes) Hasha241a279454e5331e502a025f27d8622 484a527efa2eba8b76620d8e54c75914d5d4b5bd 189118604785ea41232bd04a2ab3f6a081ed32cdf960c5fa3790c955119e9c40
POST /videoplayback?expire=1670407030&ei=Fg-QY5OMK5DIyAXr_JugCw&ip=91.90.42.154&id=o-AMdse70doVZnRzj_epvN1QD4lP04ubMQFpwLxtH10e7f&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&spc=SFxXNof7y5PCS-HDZKb88gdoFmPW1ks&vprv=1&mime=video%2Fwebm&ns=eqyQJdGdk1KUNAkcD4JRIr8J&gir=yes&clen=4604979&dur=76.367&lmt=1570367068774166&keepalive=yes&fexp=24001373,24007246,24239131&beids=24239131&c=WEB_EMBEDDED_PLAYER&txp=5535432&n=lssGhxApau874Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgNtt6hrZNEIK6BUWgKDfRMRKhOQb7C55AUhd-PwGct9ACICBwTVyH9ph-ibMzdTwtHhnyg5adf13CGCAAak50t1Bg&alr=yes&cpn=To-X-eT_-vQILdUU&cver=1.20221204.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=WC&mm=29&mn=sn-5goeen7y&ms=rdu&mt=1670385195&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgPebla-ZQkOH6RYkoR9Uy-_pUlPtt9YiKhgdcmzCXb18CIQCsvL93S_bw-W6WtOb_O94X4mZEnd9zXWPoYLIo7Efkfg%3D%3D&range=0-158458&rn=3&rbuf=0&pot=D5_vzBiNCF7an9dWIxUdHe8aGD_PUkJ6_ZcEmRW-JUJ3UJz0X3rc3gNp52-ejMSx4KIpvzvmUbNTPSOrUciv8QU5vNTzXstaw1EmMes-1oHSRPigv0ofQjHdB02v4EV4vUfoueM= HTTP/1.1
Host: rr4---sn-5goeen7y.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Sun, 06 Oct 2019 13:04:28 GMT
Content-Type: video/webm
Date: Wed, 07 Dec 2022 03:57:11 GMT
Expires: Wed, 07 Dec 2022 03:57:11 GMT
Cache-Control: private, max-age=21299
Accept-Ranges: bytes
Content-Length: 158459
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
|
|
| rr3---sn-5hne6nsd.googlevideo.com/videoplayback?expire=1670407030&ei=Fg-QY92nLMvEyAX9u5m4BQ&ip=91.90.42.154&id=o-AP3CalKZ37hGoREPZg7YfO35I9bWRpFuZpqkGnC19Fai&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&spc=SFxXNslan4u3FkG5ulfMl7g-4_V4j1Q&vprv=1&mime=video%2Fwebm&ns=h_mEQaJuP4V0VjgW6Nj6g4UJ&gir=yes&clen=9699087&dur=138.440&lmt=1557849960113009&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5431432&n=2j9VZsLm_lGMWg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAKj7Kxx1bDtzFeeHw8-1eqsDLzBuMZYyO4HL_ggtbHGOAiEAoaN7OIh4Oh1SRuYxqGUd9uhhTQLJDQjBbp3C9hdkj9o%3D&alr=yes&cpn=mkGFpE-ZXtQWjUA8&cver=1.20221204.00.00&cm2rm=sn-capm-vnae7e,sn-5goly7l&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=yy&mm=34&mn=sn-5hne6nsd&ms=ltu&mt=1670385166&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIhAIl8JXlEWVFWYxjBrZwq28dT1Ou86r-1ZV4vePJs_U49AiBZ776lI-AfgZ2IvNSwiPp94Sb57FD19CLLKZznnS69gw%3D%3D&range=0-685&rn=8&rbuf=0&pot=D40VbZoqwtADjS3pksDjv7sGni1f5APOadQBCnhe6QhvgQma73fNb5ZktJXjAbYd8QLNzshxW2QmDHCRMHDUOBEC5MmQBkXxYZyS9B00OPwb3dsh6LKV6eqEJpWkRDkxkQM9tvU= | 172.217.132.8 | 200 OK | 686 B |
URL HTTP/1.1rr3---sn-5hne6nsd.googlevideo.com/videoplayback?expire=1670407030&ei=Fg-QY92nLMvEyAX9u5m4BQ&ip=91.90.42.154&id=o-AP3CalKZ37hGoREPZg7YfO35I9bWRpFuZpqkGnC19Fai&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&spc=SFxXNslan4u3FkG5ulfMl7g-4_V4j1Q&vprv=1&mime=video%2Fwebm&ns=h_mEQaJuP4V0VjgW6Nj6g4UJ&gir=yes&clen=9699087&dur=138.440&lmt=1557849960113009&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5431432&n=2j9VZsLm_lGMWg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAKj7Kxx1bDtzFeeHw8-1eqsDLzBuMZYyO4HL_ggtbHGOAiEAoaN7OIh4Oh1SRuYxqGUd9uhhTQLJDQjBbp3C9hdkj9o%3D&alr=yes&cpn=mkGFpE-ZXtQWjUA8&cver=1.20221204.00.00&cm2rm=sn-capm-vnae7e,sn-5goly7l&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=yy&mm=34&mn=sn-5hne6nsd&ms=ltu&mt=1670385166&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIhAIl8JXlEWVFWYxjBrZwq28dT1Ou86r-1ZV4vePJs_U49AiBZ776lI-AfgZ2IvNSwiPp94Sb57FD19CLLKZznnS69gw%3D%3D&range=0-685&rn=8&rbuf=0&pot=D40VbZoqwtADjS3pksDjv7sGni1f5APOadQBCnhe6QhvgQma73fNb5ZktJXjAbYd8QLNzshxW2QmDHCRMHDUOBEC5MmQBkXxYZyS9B00OPwb3dsh6LKV6eqEJpWkRDkxkQM9tvU= IP172.217.132.8:0
File typeWebM\012- EBML file, creator webmB\20\012- data Hashd50276554822b10dab3c000da7e4fd2a 3d266684bcc08f661ef6ea8d794655dccd4bd420 300b45a6fc9ecd8b30c46a4b8dad458963782ada4d595f2389543c45aa04b678
POST /videoplayback?expire=1670407030&ei=Fg-QY92nLMvEyAX9u5m4BQ&ip=91.90.42.154&id=o-AP3CalKZ37hGoREPZg7YfO35I9bWRpFuZpqkGnC19Fai&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&spc=SFxXNslan4u3FkG5ulfMl7g-4_V4j1Q&vprv=1&mime=video%2Fwebm&ns=h_mEQaJuP4V0VjgW6Nj6g4UJ&gir=yes&clen=9699087&dur=138.440&lmt=1557849960113009&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5431432&n=2j9VZsLm_lGMWg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAKj7Kxx1bDtzFeeHw8-1eqsDLzBuMZYyO4HL_ggtbHGOAiEAoaN7OIh4Oh1SRuYxqGUd9uhhTQLJDQjBbp3C9hdkj9o%3D&alr=yes&cpn=mkGFpE-ZXtQWjUA8&cver=1.20221204.00.00&cm2rm=sn-capm-vnae7e,sn-5goly7l&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=yy&mm=34&mn=sn-5hne6nsd&ms=ltu&mt=1670385166&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIhAIl8JXlEWVFWYxjBrZwq28dT1Ou86r-1ZV4vePJs_U49AiBZ776lI-AfgZ2IvNSwiPp94Sb57FD19CLLKZznnS69gw%3D%3D&range=0-685&rn=8&rbuf=0&pot=D40VbZoqwtADjS3pksDjv7sGni1f5APOadQBCnhe6QhvgQma73fNb5ZktJXjAbYd8QLNzshxW2QmDHCRMHDUOBEC5MmQBkXxYZyS9B00OPwb3dsh6LKV6eqEJpWkRDkxkQM9tvU= HTTP/1.1
Host: rr3---sn-5hne6nsd.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Tue, 14 May 2019 16:06:00 GMT
Content-Type: video/webm
Date: Wed, 07 Dec 2022 03:57:11 GMT
Expires: Wed, 07 Dec 2022 03:57:11 GMT
Cache-Control: private, max-age=21299
Accept-Ranges: bytes
Content-Length: 686
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
|
|
| rr3---sn-5hne6nsd.googlevideo.com/videoplayback?expire=1670407030&ei=Fg-QY92nLMvEyAX9u5m4BQ&ip=91.90.42.154&id=o-AP3CalKZ37hGoREPZg7YfO35I9bWRpFuZpqkGnC19Fai&itag=251&source=youtube&requiressl=yes&spc=SFxXNslan4u3FkG5ulfMl7g-4_V4j1Q&vprv=1&mime=audio%2Fwebm&ns=h_mEQaJuP4V0VjgW6Nj6g4UJ&gir=yes&clen=2150197&dur=138.521&lmt=1557849587910572&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5431432&n=2j9VZsLm_lGMWg&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAKCMEFMsSJzkReBXnisECGMey0EOg_Xk5YmoSY3RtfepAiB-NX8h5ODeBDD_U_qk5kkptTSahRbj9ND-YY0ndTLGUw%3D%3D&alr=yes&cpn=mkGFpE-ZXtQWjUA8&cver=1.20221204.00.00&cm2rm=sn-capm-vnae7e,sn-5goly7l&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=yy&mm=34&mn=sn-5hne6nsd&ms=ltu&mt=1670385166&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIhAMcGQWtfsZqbuJELns0xef9Iff7ffz0rerkn-3rswL9WAiAHbFXSf7t5JnzQ5Vi1oflZRdHUsKHGLtLlZTyYQperuA%3D%3D&range=0-493&rn=5&rbuf=0&pot=D40VbZoqwtADjS3pksDjv7sGni1f5APOadQBCnhe6QhvgQma73fNb5ZktJXjAbYd8QLNzshxW2QmDHCRMHDUOBEC5MmQBkXxYZyS9B00OPwb3dsh6LKV6eqEJpWkRDkxkQM9tvU= | 172.217.132.8 | 200 OK | 494 B |
URL HTTP/1.1rr3---sn-5hne6nsd.googlevideo.com/videoplayback?expire=1670407030&ei=Fg-QY92nLMvEyAX9u5m4BQ&ip=91.90.42.154&id=o-AP3CalKZ37hGoREPZg7YfO35I9bWRpFuZpqkGnC19Fai&itag=251&source=youtube&requiressl=yes&spc=SFxXNslan4u3FkG5ulfMl7g-4_V4j1Q&vprv=1&mime=audio%2Fwebm&ns=h_mEQaJuP4V0VjgW6Nj6g4UJ&gir=yes&clen=2150197&dur=138.521&lmt=1557849587910572&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5431432&n=2j9VZsLm_lGMWg&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAKCMEFMsSJzkReBXnisECGMey0EOg_Xk5YmoSY3RtfepAiB-NX8h5ODeBDD_U_qk5kkptTSahRbj9ND-YY0ndTLGUw%3D%3D&alr=yes&cpn=mkGFpE-ZXtQWjUA8&cver=1.20221204.00.00&cm2rm=sn-capm-vnae7e,sn-5goly7l&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=yy&mm=34&mn=sn-5hne6nsd&ms=ltu&mt=1670385166&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIhAMcGQWtfsZqbuJELns0xef9Iff7ffz0rerkn-3rswL9WAiAHbFXSf7t5JnzQ5Vi1oflZRdHUsKHGLtLlZTyYQperuA%3D%3D&range=0-493&rn=5&rbuf=0&pot=D40VbZoqwtADjS3pksDjv7sGni1f5APOadQBCnhe6QhvgQma73fNb5ZktJXjAbYd8QLNzshxW2QmDHCRMHDUOBEC5MmQBkXxYZyS9B00OPwb3dsh6LKV6eqEJpWkRDkxkQM9tvU= IP172.217.132.8:0
File typeWebM\012- EBML file, creator webmB\20\012- data Hashb98b575c25ca2de5f7e127dc52df2e58 c223f3886fc925dccce84fb573bb5b33822b78d5 bef2add572aa782ab49357867f9efa02e4b2c73e990d5f99d57b8a09bcefcbb9
POST /videoplayback?expire=1670407030&ei=Fg-QY92nLMvEyAX9u5m4BQ&ip=91.90.42.154&id=o-AP3CalKZ37hGoREPZg7YfO35I9bWRpFuZpqkGnC19Fai&itag=251&source=youtube&requiressl=yes&spc=SFxXNslan4u3FkG5ulfMl7g-4_V4j1Q&vprv=1&mime=audio%2Fwebm&ns=h_mEQaJuP4V0VjgW6Nj6g4UJ&gir=yes&clen=2150197&dur=138.521&lmt=1557849587910572&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5431432&n=2j9VZsLm_lGMWg&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAKCMEFMsSJzkReBXnisECGMey0EOg_Xk5YmoSY3RtfepAiB-NX8h5ODeBDD_U_qk5kkptTSahRbj9ND-YY0ndTLGUw%3D%3D&alr=yes&cpn=mkGFpE-ZXtQWjUA8&cver=1.20221204.00.00&cm2rm=sn-capm-vnae7e,sn-5goly7l&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=yy&mm=34&mn=sn-5hne6nsd&ms=ltu&mt=1670385166&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIhAMcGQWtfsZqbuJELns0xef9Iff7ffz0rerkn-3rswL9WAiAHbFXSf7t5JnzQ5Vi1oflZRdHUsKHGLtLlZTyYQperuA%3D%3D&range=0-493&rn=5&rbuf=0&pot=D40VbZoqwtADjS3pksDjv7sGni1f5APOadQBCnhe6QhvgQma73fNb5ZktJXjAbYd8QLNzshxW2QmDHCRMHDUOBEC5MmQBkXxYZyS9B00OPwb3dsh6LKV6eqEJpWkRDkxkQM9tvU= HTTP/1.1
Host: rr3---sn-5hne6nsd.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Tue, 14 May 2019 15:59:47 GMT
Content-Type: audio/webm
Date: Wed, 07 Dec 2022 03:57:11 GMT
Expires: Wed, 07 Dec 2022 03:57:11 GMT
Cache-Control: private, max-age=21299
Accept-Ranges: bytes
Content-Length: 494
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
|
|
| rr3---sn-5hne6nsd.googlevideo.com/videoplayback?expire=1670407030&ei=Fg-QY92nLMvEyAX9u5m4BQ&ip=91.90.42.154&id=o-AP3CalKZ37hGoREPZg7YfO35I9bWRpFuZpqkGnC19Fai&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&spc=SFxXNslan4u3FkG5ulfMl7g-4_V4j1Q&vprv=1&mime=video%2Fwebm&ns=h_mEQaJuP4V0VjgW6Nj6g4UJ&gir=yes&clen=9699087&dur=138.440&lmt=1557849960113009&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5431432&n=2j9VZsLm_lGMWg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAKj7Kxx1bDtzFeeHw8-1eqsDLzBuMZYyO4HL_ggtbHGOAiEAoaN7OIh4Oh1SRuYxqGUd9uhhTQLJDQjBbp3C9hdkj9o%3D&alr=yes&cpn=mkGFpE-ZXtQWjUA8&cver=1.20221204.00.00&cm2rm=sn-capm-vnae7e,sn-5goly7l&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=yy&mm=34&mn=sn-5hne6nsd&ms=ltu&mt=1670385166&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIhAIl8JXlEWVFWYxjBrZwq28dT1Ou86r-1ZV4vePJs_U49AiBZ776lI-AfgZ2IvNSwiPp94Sb57FD19CLLKZznnS69gw%3D%3D&range=686-187409&rn=9&rbuf=0&pot=D40VbZoqwtADjS3pksDjv7sGni1f5APOadQBCnhe6QhvgQma73fNb5ZktJXjAbYd8QLNzshxW2QmDHCRMHDUOBEC5MmQBkXxYZyS9B00OPwb3dsh6LKV6eqEJpWkRDkxkQM9tvU= | 172.217.132.8 | 200 OK | 187 kB |
URL HTTP/1.1rr3---sn-5hne6nsd.googlevideo.com/videoplayback?expire=1670407030&ei=Fg-QY92nLMvEyAX9u5m4BQ&ip=91.90.42.154&id=o-AP3CalKZ37hGoREPZg7YfO35I9bWRpFuZpqkGnC19Fai&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&spc=SFxXNslan4u3FkG5ulfMl7g-4_V4j1Q&vprv=1&mime=video%2Fwebm&ns=h_mEQaJuP4V0VjgW6Nj6g4UJ&gir=yes&clen=9699087&dur=138.440&lmt=1557849960113009&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5431432&n=2j9VZsLm_lGMWg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAKj7Kxx1bDtzFeeHw8-1eqsDLzBuMZYyO4HL_ggtbHGOAiEAoaN7OIh4Oh1SRuYxqGUd9uhhTQLJDQjBbp3C9hdkj9o%3D&alr=yes&cpn=mkGFpE-ZXtQWjUA8&cver=1.20221204.00.00&cm2rm=sn-capm-vnae7e,sn-5goly7l&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=yy&mm=34&mn=sn-5hne6nsd&ms=ltu&mt=1670385166&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIhAIl8JXlEWVFWYxjBrZwq28dT1Ou86r-1ZV4vePJs_U49AiBZ776lI-AfgZ2IvNSwiPp94Sb57FD19CLLKZznnS69gw%3D%3D&range=686-187409&rn=9&rbuf=0&pot=D40VbZoqwtADjS3pksDjv7sGni1f5APOadQBCnhe6QhvgQma73fNb5ZktJXjAbYd8QLNzshxW2QmDHCRMHDUOBEC5MmQBkXxYZyS9B00OPwb3dsh6LKV6eqEJpWkRDkxkQM9tvU= IP172.217.132.8:0
Size187 kB (186724 bytes) Hashb5a6aa5ef9ea35d1426861a8a8b245c4 290b4e2433adf1af77ef4b5d24dd31624fe5a51e 26b3f7332589fb25757c37b3f73c004369b3988349a15da28ed8faa6dfd8f07b
POST /videoplayback?expire=1670407030&ei=Fg-QY92nLMvEyAX9u5m4BQ&ip=91.90.42.154&id=o-AP3CalKZ37hGoREPZg7YfO35I9bWRpFuZpqkGnC19Fai&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&spc=SFxXNslan4u3FkG5ulfMl7g-4_V4j1Q&vprv=1&mime=video%2Fwebm&ns=h_mEQaJuP4V0VjgW6Nj6g4UJ&gir=yes&clen=9699087&dur=138.440&lmt=1557849960113009&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5431432&n=2j9VZsLm_lGMWg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAKj7Kxx1bDtzFeeHw8-1eqsDLzBuMZYyO4HL_ggtbHGOAiEAoaN7OIh4Oh1SRuYxqGUd9uhhTQLJDQjBbp3C9hdkj9o%3D&alr=yes&cpn=mkGFpE-ZXtQWjUA8&cver=1.20221204.00.00&cm2rm=sn-capm-vnae7e,sn-5goly7l&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=yy&mm=34&mn=sn-5hne6nsd&ms=ltu&mt=1670385166&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIhAIl8JXlEWVFWYxjBrZwq28dT1Ou86r-1ZV4vePJs_U49AiBZ776lI-AfgZ2IvNSwiPp94Sb57FD19CLLKZznnS69gw%3D%3D&range=686-187409&rn=9&rbuf=0&pot=D40VbZoqwtADjS3pksDjv7sGni1f5APOadQBCnhe6QhvgQma73fNb5ZktJXjAbYd8QLNzshxW2QmDHCRMHDUOBEC5MmQBkXxYZyS9B00OPwb3dsh6LKV6eqEJpWkRDkxkQM9tvU= HTTP/1.1
Host: rr3---sn-5hne6nsd.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Tue, 14 May 2019 16:06:00 GMT
Content-Type: video/webm
Date: Wed, 07 Dec 2022 03:57:11 GMT
Expires: Wed, 07 Dec 2022 03:57:11 GMT
Cache-Control: private, max-age=21299
Accept-Ranges: bytes
Content-Length: 186724
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feeb81330-af0b-4cc3-bd0e-591ba064667a.jpeg | 34.120.237.76 | 200 OK | 7.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feeb81330-af0b-4cc3-bd0e-591ba064667a.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashc9257f2e3b9bd1b3aa262b0f4bf57968 4bcdd6ecd63834aa1010faf19457a97f37ae99fa 9afd592279c51b533b3bf72a860cf4a8f2bc6cf01b07d1ab6f11f0ff302e0ef6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feeb81330-af0b-4cc3-bd0e-591ba064667a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7392
x-amzn-requestid: f4b6890a-7a8f-48f8-b2af-365cb5f681e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cpwREFiXoAMFSMw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d60d3-009e524f30c72d0629c877bb;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 03:09:07 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C0-H0LUbxaxMEXoDf6PXEFAvVTj2D9K2M7eshRo39QzAAWSk2ubepA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 03:27:19 GMT
age: 1794
etag: "4bcdd6ecd63834aa1010faf19457a97f37ae99fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| downloads.mailchimp.com/images/signup-forms/popup/textBadge.svg | 143.204.55.116 | 200 OK | 2.9 kB |
URL HTTP/1.1downloads.mailchimp.com/images/signup-forms/popup/textBadge.svg IP143.204.55.116:0
File typeSVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text Hash8ccb03508055e57adb4cccc5f0d12922 e1eb2628d634cd2bd35d2801988569188a3874de df434c9b18358d341df42cf1ed468fca285fd39089b9e4c0b6a6fae49a298046
GET /images/signup-forms/popup/textBadge.svg HTTP/1.1
Host: downloads.mailchimp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://downloads.mailchimp.com/css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/common.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 18 Nov 2022 17:40:46 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 06 Dec 2022 19:05:51 GMT
ETag: W/"08dce9f767c64a8247f61eb5897a5a7f"
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: UTZEVdAOWwgKqsD-Lrsq0hvb9RRCSw2zfMY-pWxYm0kq3oj7vaD9TQ==
Age: 31884
Vary: Accept-Encoding, Origin
|
|
| ocsp.pki.goog/s/gts1d4/V-Bm3rQSQn0 | 142.250.74.131 | 200 OK | 471 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1d4/V-Bm3rQSQn0 IP142.250.74.131:0
Hash76ca286b7182310815fdd16eed4d6418 97a3270a37f1b3af14850717bd95b4c2e502c9f3 bfb6a40344a02ca64aae8d5dfd30c20be8692b445c7d38da14d0d99c8e59ad98
POST /s/gts1d4/V-Bm3rQSQn0 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 03:57:14 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| tebohomafodi.co.za/wp-content/themes/twentyseventeen/style.css?ver=20221101 | 41.185.8.59 | 200 OK | 0 B |
URL HTTP/2tebohomafodi.co.za/wp-content/themes/twentyseventeen/style.css?ver=20221101 IP41.185.8.59:0
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/themes/twentyseventeen/style.css?ver=20221101 HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: text/css
content-length: 84335
last-modified: Tue, 01 Nov 2022 23:31:24 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Libre+Franklin%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C800%2C800i&subset=latin%2Clatin-ext&display=fallback | 142.250.74.106 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Libre+Franklin%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C800%2C800i&subset=latin%2Clatin-ext&display=fallback IP142.250.74.106:0
GET /css?family=Libre+Franklin%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C800%2C800i&subset=latin%2Clatin-ext&display=fallback HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 07 Dec 2022 03:57:07 GMT
date: Wed, 07 Dec 2022 03:57:07 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/ | 41.185.8.59 | 200 OK | 0 B |
IP41.185.8.59:0
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET / HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:06 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.1.33
link: <https://tebohomafodi.co.za/wp-json/>; rel="https://api.w.org/", <https://tebohomafodi.co.za/wp-json/wp/v2/pages/73>; rel="alternate"; type="application/json", <https://tebohomafodi.co.za/>; rel=shortlink
x-tec-api-version: v1
x-tec-api-root: https://tebohomafodi.co.za/wp-json/tribe/events/v1/
x-tec-api-origin: https://tebohomafodi.co.za
X-Firefox-Spdy: h2
|
|
| tebohomafodi.co.za/wp-content/uploads/2019/03/cropped-IMG_1829.jpg | 41.185.8.59 | 200 OK | 0 B |
URL HTTP/2tebohomafodi.co.za/wp-content/uploads/2019/03/cropped-IMG_1829.jpg IP41.185.8.59:0
Analyzer | Verdict | Alert | mnemonic_dns | Sinkholed | | quad9 | Sinkholed | |
GET /wp-content/uploads/2019/03/cropped-IMG_1829.jpg HTTP/1.1
Host: tebohomafodi.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tebohomafodi.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 03:57:07 GMT
content-type: image/jpeg
content-length: 305333
last-modified: Wed, 24 Apr 2019 04:37:33 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|