Check DNS, Urls + Redirects, Certificates and Content of your Website

...

skip EDNS-Check

skip Content-Check

check links

DNS-problem - authoritative Nameserver refused, not defined or timeout

Checked:
16.05.2026 04:08:06

Older results

X - 01.05.2026 13:38:26

X - 19.01.2026 21:51:02

X - 19.01.2026 21:15:31

X - 28.12.2025 15:42:24

X - 25.12.2025 06:10:14

X - 24.12.2025 10:25:09

X - 23.12.2025 22:52:08

X - 23.12.2025 21:51:20

X - 08.12.2025 16:06:01

X - 18.11.2025 14:04:23

1. IP-Addresses

Host	Type	IP-Address	is auth.	∑ Queries	∑ Timeout
vodafone.com.pg	A	43.245.58.77 Port Moresby/National Capital/Papua New Guinea (PG) - Digitec Communications Limited No Hostname found	yes	2	0
	AAAA		yes
www.vodafone.com.pg	CNAME	vodafone.com.pg	yes	1	0
	A	43.245.58.77 Port Moresby/National Capital/Papua New Guinea (PG) - Digitec Communications Limited No Hostname found	yes
*.vodafone.com.pg	A	Name Error	yes
	AAAA	Name Error	yes
	AAAA	Name Error	yes
	CNAME	Name Error	yes

2. DNSSEC

Zone (*)	DNSSEC - Informations

Zone: (root)
(root)	1 DS RR published


	DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest 4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=


	• Status: Valid because published


	3 DNSKEY RR found


	Public Key with Algorithm 8, KeyTag 20326, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 8, KeyTag 38696, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 8, KeyTag 54393, Flags 256


	1 RRSIG RR to validate DNSKEY RR found


	RRSIG-Owner (root), Algorithm: 8, 0 Labels, original TTL: 172800 sec, Signature-expiration: 01.06.2026, 00:00:00 +, Signature-Inception: 11.05.2026, 00:00:00 +, KeyTag 20326, Signer-Name: (root)


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20326 used to validate the DNSKEY RRSet


	• Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest "4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: pg
pg	1 DS RR in the parent zone found


	DS with Algorithm 15, KeyTag 23985, DigestType 2 and Digest FDXZedysl5cPFCk4zhvl1q96yf51qLglT6HrklHHw38=


	1 RRSIG RR to validate DS RR found


	RRSIG-Owner pg., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 28.05.2026, 17:00:00 +, Signature-Inception: 15.05.2026, 16:00:00 +, KeyTag 54393, Signer-Name: (root)


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 54393 used to validate the DS RRSet in the parent zone


	3 DNSKEY RR found


	Public Key with Algorithm 15, KeyTag 21558, Flags 256


	Public Key with Algorithm 15, KeyTag 21762, Flags 256


	Public Key with Algorithm 15, KeyTag 23985, Flags 257 (SEP = Secure Entry Point)


	1 RRSIG RR to validate DNSKEY RR found


	RRSIG-Owner pg., Algorithm: 15, 1 Labels, original TTL: 3600 sec, Signature-expiration: 01.06.2026, 13:42:05 +, Signature-Inception: 11.05.2026, 12:12:05 +, KeyTag 23985, Signer-Name: pg


	• Status: Good - Algorithmus 15 and DNSKEY with KeyTag 23985 used to validate the DNSKEY RRSet


	• Status: Valid Chain of trust. Parent-DS with Algorithm 15, KeyTag 23985, DigestType 2 and Digest "FDXZedysl5cPFCk4zhvl1q96yf51qLglT6HrklHHw38=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: com.pg
com.pg	0 DS RR in the parent zone found


	DS-Query in the parent zone has a valid NSEC3 RR as result with the hashed query name "qro3s0g2r9sqq9ksmajf00pp19tru8k6" between the hashed NSEC3-owner "qro3s0g2r9sqq9ksmajf00pp19tru8k6" and the hashed NextOwner "r5hcdipr4ip9edc65eos05kn9e02o0sk". So the parent zone confirmes the not-existence of a DS RR. Bitmap: TXT, RRSIG Validated: RRSIG-Owner qro3s0g2r9sqq9ksmajf00pp19tru8k6.pg., Algorithm: 15, 2 Labels, original TTL: 3600 sec, Signature-expiration: 31.05.2026, 13:42:05 +, Signature-Inception: 10.05.2026, 12:12:05 +, KeyTag 21558, Signer-Name: pg


	0 DNSKEY RR found




Zone: vodafone.com.pg
vodafone.com.pg	0 DS RR in the parent zone found


	DS-Query in the parent zone sends valid NSEC3 RR with the Hash "qro3s0g2r9sqq9ksmajf00pp19tru8k6" as Owner. That's the Hash of "com.pg" with the NextHashedOwnerName "r5hcdipr4ip9edc65eos05kn9e02o0sk". So that domain name is the Closest Encloser of "vodafone.com.pg". Opt-Out: True. Bitmap: TXT, RRSIG Validated: RRSIG-Owner qro3s0g2r9sqq9ksmajf00pp19tru8k6.pg., Algorithm: 15, 2 Labels, original TTL: 3600 sec, Signature-expiration: 05.06.2026, 22:49:01 +, Signature-Inception: 15.05.2026, 21:19:01 +, KeyTag 21762, Signer-Name: pg


	0 DNSKEY RR found




Zone: www.vodafone.com.pg
www.vodafone.com.pg	0 DS RR in the parent zone found

3. Name Servers

Domain	Nameserver	NS-IP
vodafone.com.pg	• ns1.lae.vodafone.com.pg	103.25.142.88 Lae/Morobe Province/Papua New Guinea (PG) - Digitec Communications Limited	•
	•	2405:9f40:2000:f::8 Port Moresby/National Capital/Papua New Guinea (PG) - Digitec Communications Limited	•
	• ns1.pom.vodafone.com.pg	43.245.56.88 Port Moresby/National Capital/Papua New Guinea (PG) - Digitec Communications Limited	•
	•	2405:9f40:0:f::8 Port Moresby/National Capital/Papua New Guinea (PG) - Digitec Communications Limited	•
	• ns2.lae.vodafone.com.pg	103.25.142.89 Lae/Morobe Province/Papua New Guinea (PG) - Digitec Communications Limited	•
	•	2405:9f40:2000:f::9 Port Moresby/National Capital/Papua New Guinea (PG) - Digitec Communications Limited	•
	• ns2.pom.vodafone.com.pg	43.245.56.89 Port Moresby/National Capital/Papua New Guinea (PG) - Digitec Communications Limited	•
	•	2405:9f40:0:f::9 Port Moresby/National Capital/Papua New Guinea (PG) - Digitec Communications Limited	•
com.pg	• ns1.unitech.ac.pg
pg	• dns.pch.pg / 8.fra.pch
	• gransy1.nic.pg		•
	• gransy2.nic.pg		•
	• ns1.unitech.ac.pg
	• uot.nic.pg		•

4. SOA-Entries

Domain:	pg
Zone-Name:
Primary:
Mail:
Serial:
Refresh:
Retry:
Expire:
TTL:
num Entries:	1

Domain:	pg
Zone-Name:	pg
Primary:	ns1.unitech.ac.pg
Mail:	dns.unitech.ac.pg
Serial:	2026051503
Refresh:	21600
Retry:	3600
Expire:	604800
TTL:	3600
num Entries:	3

Domain:	pg
Zone-Name:	pg
Primary:	ns1.unitech.ac.pg
Mail:	dns.unitech.ac.pg
Serial:	2026051602
Refresh:	21600
Retry:	3600
Expire:	604800
TTL:	3600
num Entries:	1

Domain:	com.pg
Zone-Name:
Primary:
Mail:
Serial:
Refresh:
Retry:
Expire:
TTL:
num Entries:	1

Domain:	vodafone.com.pg
Zone-Name:	vodafone.com.pg
Primary:	ns1.pom.vodafone.com.pg
Mail:	data.services.vodafone.com.pg
Serial:	2020091108
Refresh:	86400
Retry:	3600
Expire:	604800
TTL:	86400
num Entries:	8

5. Screenshots

Startaddress: https://vodafone.com.pg/, address used: https://vodafone.com.pg/, Screenshot created 2026-05-16 04:19:28 +00:0

Mobil (412px x 732px)

715 milliseconds

Screenshot mobile - https://vodafone.com.pg/

Mobil + Landscape (732px x 412px)

708 milliseconds

Screenshot mobile landscape - https://vodafone.com.pg/

Screen (1280px x 1680px)

2467 milliseconds

Screenshot Desktop - https://vodafone.com.pg/

Mobile- and other Chrome-Checks

	width	height
visual Viewport	397	732
content Size	397	1750

Good: No horizontal scrollbar. Content-size width = visual Viewport width.

6. Url-Checks

show header:

Domainname	Http-Status	redirect	Sec.	G
• http://vodafone.com.pg/ 43.245.58.77	301	https://vodafone.com.pg/ Html is minified: 100.69 %	0.680	A
Location: https://vodafone.com.pg/
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Sat, 16 May 2026 02:10:33 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 146

• http://www.vodafone.com.pg/ 43.245.58.77	301	https://vodafone.com.pg/ Html is minified: 100.69 %	0.340	E
Location: https://vodafone.com.pg/
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Sat, 16 May 2026 02:10:33 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 146

• https://vodafone.com.pg/ 43.245.58.77 No Compression used - 14100 / 75952 - 18.56 % possible Inline-JavaScript (∑/total): 6/3547 Inline-CSS (∑/total): 0/0	200	Html is minified: 141.85 % Other inline scripts (∑/total): 0/0	12.143	I
Cache-Control: no-cache
Pragma: no-cache
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
Content-Security-Policy: default-src 'self'; object-src 'none'; script-src https://ajax.googleapis.com https://ap.gateway.mastercard.com https://wbcfj.gateway.mastercard.com https://wbcfj.gateway.mastercard.com/form/version/52/merchant/TESTFJ82046592/session.js 'self' 'unsafe-inline' 'unsafe-eval' .googleapis.com .gstatic.com https://www.googletagmanager.com www.google.com .google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com/iframe_api platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com .twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net .eloqua.com js.hs-scripts.com js.hs-analytics.net .en25.com cdn.ampproject.org https://maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js https://webchat.vodafone.com.pg https://googleads.g.doubleclick.net https://snap.licdn.com https://vodafonepng.elmotalent.com.au https://vodafonepng.elmotalent.com.au/bundles/jonlilckfinder/ckfinder.js https://connect.facebook.net/en_US/fbevents.js https://snap.licdn.com/li.lms-analytics/insight.min.js https://analytics.google.com https://pos.baidu.com; style-src 'self' 'unsafe-inline' .googleapis.com .gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ .twimg.com https://webchat.vodafone.com.pg https://vodafonepng.elmotalent.com.au vodafonepng.elmotalent.com.au; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data: https://webchat.vodafone.com.pg https://vodafonepng.elmotalent.com.au; img-src 'self' .gstatic.com .googleapis.com .google-analytics.com .vodafone.com.pg platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://.insight.sitefinity.com https://.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ .twimg.com data: blob: .eloqua.com track.hubspot.com https://www.google.com.fj https://pos.baidu.com https://px.ads.linkedin.com https://www.google.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com https://syndication.twitter.com https://static.licdn.com https://dec.azureedge.net https://.insight.sitefinity.com https://.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css .twimg.com .eloqua.com track.hubspot.com https://www.google.com.fj https://pos.baidu.com https://vodafonepng.elmotalent.com.au; media-src 'self' data: blob:; child-src https://ap.gateway.mastercard.com https://wbcfj.gateway.mastercard.com https://pay.mpaisa.vodafone.com.fj 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://player.vimeo.com/ https://w.soundcloud.com/ https://td.doubleclick.net vodafonepng.elmotalent.com.au apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com; connect-src 'self' accounts.google.com https://.insight.sitefinity.com https://.dec.sitefinity.com .mktoresp.com https://uat.windcave.com https://sec.windcave.com https://webchat.vodafone.com.pg https://analytics.google.com https://stats.g.doubleclick.net https://cdn.linkedin.oribi.io https://pagead2.googlesyndication.com https://vodafonepng.elmotalent.com.au https://snap.licdn.com/li.lms-analytics/insight.min.js https://pos.baidu.com;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Powered-By: ASP.NET
Date: Sat, 16 May 2026 02:10:35 GMT
Content-Type: text/html; charset=utf-8
Expires: -1
Content-Length: 75952

• https://www.vodafone.com.pg/ 43.245.58.77 No Compression used - 14100 / 75952 - 18.56 % possible Inline-JavaScript (∑/total): 6/3547 Inline-CSS (∑/total): 0/0	200	Html is minified: 141.85 % Other inline scripts (∑/total): 0/0	12.613	I
Cache-Control: no-cache
Pragma: no-cache
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
Content-Security-Policy: default-src 'self'; object-src 'none'; script-src https://ajax.googleapis.com https://ap.gateway.mastercard.com https://wbcfj.gateway.mastercard.com https://wbcfj.gateway.mastercard.com/form/version/52/merchant/TESTFJ82046592/session.js 'self' 'unsafe-inline' 'unsafe-eval' .googleapis.com .gstatic.com https://www.googletagmanager.com www.google.com .google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com/iframe_api platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com .twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net .eloqua.com js.hs-scripts.com js.hs-analytics.net .en25.com cdn.ampproject.org https://maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js https://webchat.vodafone.com.pg https://googleads.g.doubleclick.net https://snap.licdn.com https://vodafonepng.elmotalent.com.au https://vodafonepng.elmotalent.com.au/bundles/jonlilckfinder/ckfinder.js https://connect.facebook.net/en_US/fbevents.js https://snap.licdn.com/li.lms-analytics/insight.min.js https://analytics.google.com https://pos.baidu.com; style-src 'self' 'unsafe-inline' .googleapis.com .gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ .twimg.com https://webchat.vodafone.com.pg https://vodafonepng.elmotalent.com.au vodafonepng.elmotalent.com.au; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data: https://webchat.vodafone.com.pg https://vodafonepng.elmotalent.com.au; img-src 'self' .gstatic.com .googleapis.com .google-analytics.com .vodafone.com.pg platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://.insight.sitefinity.com https://.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ .twimg.com data: blob: .eloqua.com track.hubspot.com https://www.google.com.fj https://pos.baidu.com https://px.ads.linkedin.com https://www.google.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com https://syndication.twitter.com https://static.licdn.com https://dec.azureedge.net https://.insight.sitefinity.com https://.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css .twimg.com .eloqua.com track.hubspot.com https://www.google.com.fj https://pos.baidu.com https://vodafonepng.elmotalent.com.au; media-src 'self' data: blob:; child-src https://ap.gateway.mastercard.com https://wbcfj.gateway.mastercard.com https://pay.mpaisa.vodafone.com.fj 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://player.vimeo.com/ https://w.soundcloud.com/ https://td.doubleclick.net vodafonepng.elmotalent.com.au apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com; connect-src 'self' accounts.google.com https://.insight.sitefinity.com https://.dec.sitefinity.com .mktoresp.com https://uat.windcave.com https://sec.windcave.com https://webchat.vodafone.com.pg https://analytics.google.com https://stats.g.doubleclick.net https://cdn.linkedin.oribi.io https://pagead2.googlesyndication.com https://vodafonepng.elmotalent.com.au https://snap.licdn.com/li.lms-analytics/insight.min.js https://pos.baidu.com;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Powered-By: ASP.NET
Date: Sat, 16 May 2026 02:10:49 GMT
Content-Type: text/html; charset=utf-8
Expires: -1
Content-Length: 75952

• http://vodafone.com.pg/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 43.245.58.77 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	301	https://vodafone.com.pg/ Html is minified: 100.69 % Other inline scripts (∑/total): 0/0	0.347	A
Visible Content:
Location: https://vodafone.com.pg/
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Sat, 16 May 2026 02:11:01 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 146

• http://www.vodafone.com.pg/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 43.245.58.77 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	301	https://vodafone.com.pg/ Html is minified: 100.69 % Other inline scripts (∑/total): 0/0	0.350	E
Visible Content:
Location: https://vodafone.com.pg/
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Sat, 16 May 2026 02:11:01 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 146

• https://43.245.58.77/ 43.245.58.77 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	404	Html is minified: 103.96 % Other inline scripts (∑/total): 0/0	10.830	N
Not Found
Certificate error: RemoteCertificateNameMismatch
Server: Microsoft-HTTPAPI/2.0
Date: Sat, 16 May 2026 02:11:03 GMT
Connection: close
Content-Type: text/html; charset=us-ascii
Content-Length: 315

7. Comments

	1. General Results, most used to calculate the result
A	name "vodafone.com.pg" is domain, public suffix is ".*.pg", top-level-domain is ".pg", top-level-domain-type is "country-code", Country is Papua New Guinea, tld-manager is "PNG DNS Administration Vice Chancellors Office The Papua New Guinea University of Technology", num .pg-domains preloaded: 0 (complete: 276475)
A	Good: All ip addresses are public addresses
	Warning: Only one ip address found: vodafone.com.pg has only one ip address.
	Warning: Only one ip address found: www.vodafone.com.pg has only one ip address.
	Warning: No ipv6 address found. Ipv6 is the future with a lot of new features. So every domain name should have an ipv6 address. See https://en.wikipedia.org/wiki/IPv6: vodafone.com.pg has no ipv6 address.
	Warning: No ipv6 address found. Ipv6 is the future with a lot of new features. So every domain name should have an ipv6 address. See https://en.wikipedia.org/wiki/IPv6: www.vodafone.com.pg has no ipv6 address.
A	Good: No asked Authoritative Name Server had a timeout
A	Good: destination is https
A	Good: No cookie sent via http.
	HSTS-Preload-Status: unknown. Domain never included in the Preload-list. Check https://hstspreload.org/ to learn some basics about the Google-Preload-List.
A	Good: All urls with http status 200/404 have a complete Content-Type header (MediaType / MediaSubType + correct charset)
A	http://vodafone.com.pg/ 43.245.58.77	301	https://vodafone.com.pg/	Correct redirect http - https with the same domain name
A	http://vodafone.com.pg/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 43.245.58.77	301	https://vodafone.com.pg/	Correct redirect http - https with the same domain name
C	Error - no preferred version www or non-www. Select one version as preferred version, then add a redirect https + not-preferred version to https + preferred version. Perhaps in your port 443 vHost something like "RewriteEngine on" + "RewriteCond %{SERVER_NAME} = example.com" + "ReWriteRule ^ https://www.example.com%{REQUEST_URI} [END,QSA,R=permanent]" (three rows, without the "). That should create a redirect https + example.com ⇒ https + www.example.com. Or switch both values to use the non-www version as your preferred version.
C	Error - more then one version with Http-Status 200. After all redirects, all users (and search engines) should see the same https url: Non-www or www, but not both with http status 200.
E	http://www.vodafone.com.pg/ 43.245.58.77	301	https://vodafone.com.pg/	Wrong redirect one domain http to other domain https. First redirect to https without new dns query, so the server can send the HSTS header. That's fundamental using HSTS (Http Strict Transport Security). First step: Add correct redirects http ⇒ https. Perhaps in your port 80 vHost something like "RewriteEngine on" + "RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,QSA,R=permanent]" (two rows, without the "). Don't add this in your port 443 vHost, that would create a loop. Then recheck your domain, should be Grade C. There is the rule to select one https version as preferred version.
I	https://vodafone.com.pg/ 43.245.58.77	200		Content problems or problems with resources included - http links, files doesn't exist, different Content-Type definitions. Check the Html-Content - Part.
I	https://www.vodafone.com.pg/ 43.245.58.77	200		Content problems or problems with resources included - http links, files doesn't exist, different Content-Type definitions. Check the Html-Content - Part.
M	https://43.245.58.77/ 43.245.58.77	404		Misconfiguration - main pages should never send http status 400 - 499
N	https://43.245.58.77/ 43.245.58.77	404		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
O	vodafone.com.pg / 43.245.58.77 / 443			Old connection: Cipher Suites without Forward Secrecy (FS) found. Remove all of these Cipher Suites, use only Cipher Suites with Forward Secrecy: Starting with ECDHE- or DHE - the last "E" says: "ephemeral". Or use Tls.1.3, then all Cipher Suites use FS. 7 Cipher Suites without Forward Secrecy found
O	www.vodafone.com.pg / 43.245.58.77 / 443			Old connection: Cipher Suites without Forward Secrecy (FS) found. Remove all of these Cipher Suites, use only Cipher Suites with Forward Secrecy: Starting with ECDHE- or DHE - the last "E" says: "ephemeral". Or use Tls.1.3, then all Cipher Suites use FS. 7 Cipher Suites without Forward Secrecy found
X	Fatal error: Nameserver doesn't support TCP connection: dns.pch.pg: Timeout
	Info: Checking all ip addresses of that domain without sending the hostname only one certificate found. Checking all ip addresses and sending the hostname only one certificate found. Both certificates are the same. So that domain doesn't require Server Name Indication (SNI), it's the primary certificate of that set of ip addresses.: Domain vodafone.com.pg, 1 ip addresses, 1 different http results.
	Info: Checking all ip addresses of that domain without sending the hostname only one certificate found. Checking all ip addresses and sending the hostname only one certificate found. Both certificates are the same. So that domain doesn't require Server Name Indication (SNI), it's the primary certificate of that set of ip addresses.: Domain www.vodafone.com.pg, 1 ip addresses, 1 different http results.
B	No _mta-sts TXT record found (mta-sts: Mail Transfer Agent Strict Transport Security - see RFC 8461). Read the result of server-daten.de (Url-Checks, Comments, Connections and DomainServiceRecords) to see a complete definition. Domainname: _mta-sts.vodafone.com.pg
	2. Header-Checks
A	vodafone.com.pg 43.245.58.77	Content-Security-Policy		Ok: Header without syntax errors found: default-src 'self'; object-src 'none'; script-src https://ajax.googleapis.com https://ap.gateway.mastercard.com https://wbcfj.gateway.mastercard.com https://wbcfj.gateway.mastercard.com/form/version/52/merchant/TESTFJ82046592/session.js 'self' 'unsafe-inline' 'unsafe-eval' .googleapis.com .gstatic.com https://www.googletagmanager.com www.google.com .google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com/iframe_api platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com .twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net .eloqua.com js.hs-scripts.com js.hs-analytics.net .en25.com cdn.ampproject.org https://maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js https://webchat.vodafone.com.pg https://googleads.g.doubleclick.net https://snap.licdn.com https://vodafonepng.elmotalent.com.au https://vodafonepng.elmotalent.com.au/bundles/jonlilckfinder/ckfinder.js https://connect.facebook.net/en_US/fbevents.js https://snap.licdn.com/li.lms-analytics/insight.min.js https://analytics.google.com https://pos.baidu.com; style-src 'self' 'unsafe-inline' .googleapis.com .gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ .twimg.com https://webchat.vodafone.com.pg https://vodafonepng.elmotalent.com.au vodafonepng.elmotalent.com.au; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data: https://webchat.vodafone.com.pg https://vodafonepng.elmotalent.com.au; img-src 'self' .gstatic.com .googleapis.com .google-analytics.com .vodafone.com.pg platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://.insight.sitefinity.com https://.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ .twimg.com data: blob: .eloqua.com track.hubspot.com https://www.google.com.fj https://pos.baidu.com https://px.ads.linkedin.com https://www.google.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com https://syndication.twitter.com https://static.licdn.com https://dec.azureedge.net https://.insight.sitefinity.com https://.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css .twimg.com .eloqua.com track.hubspot.com https://www.google.com.fj https://pos.baidu.com https://vodafonepng.elmotalent.com.au; media-src 'self' data: blob:; child-src https://ap.gateway.mastercard.com https://wbcfj.gateway.mastercard.com https://pay.mpaisa.vodafone.com.fj 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://player.vimeo.com/ https://w.soundcloud.com/ https://td.doubleclick.net vodafonepng.elmotalent.com.au apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com; connect-src 'self' accounts.google.com https://.insight.sitefinity.com https://.dec.sitefinity.com .mktoresp.com https://uat.windcave.com https://sec.windcave.com https://webchat.vodafone.com.pg https://analytics.google.com https://stats.g.doubleclick.net https://cdn.linkedin.oribi.io https://pagead2.googlesyndication.com https://vodafonepng.elmotalent.com.au https://snap.licdn.com/li.lms-analytics/insight.min.js https://pos.baidu.com;
E				Critical: Duplicated entries found img-src 'self' .gstatic.com .googleapis.com .google-analytics.com .vodafone.com.pg platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://.insight.sitefinity.com https://.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ .twimg.com data: blob: .eloqua.com track.hubspot.com https://www.google.com.fj https://pos.baidu.com https://px.ads.linkedin.com https://www.google.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com https://syndication.twitter.com https://static.licdn.com https://dec.azureedge.net https://.insight.sitefinity.com https://.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css .twimg.com .eloqua.com track.hubspot.com https://www.google.com.fj https://pos.baidu.com https://vodafonepng.elmotalent.com.au Duplicated entries: .eloqua.com, .twimg.com, https://.dec.sitefinity.com, https://.insight.sitefinity.com, https://dec.azureedge.net, https://delicious.com, https://pos.baidu.com, https://syndication.twitter.com, https://www.google.com.fj, pbs.twimg.com, track.hubspot.com, www.facebook.com, www.linkedin.com, www.redditstatic.com
A				Good: default-src directive only with 'none' or 'self', additional sources are blocked.
A				Good: default-src without 'unsafe-inline' or 'unsave-eval'.
E				Bad: No form-action directive found. Use one to limit the form - action - destinations. form-action is a navigation-directive, so default-src isn't used.
E				Bad: No frame-ancestors directive found. Use one to limit the pages allowed to use this page in frame / iframe / object / embed / applet. frame-ancestors is a navigation-directive, so default-src isn't used.
E				Bad: No base-uri directive found. Use one to limit the URLs which can be used in a document's <base> element. Because it's a document directive, default-src isn't used, so an own directive is required.
A				Good: object-src only with 'none' or 'self' found, no scheme, no other urls. That blocks object / embed / applet - elements.
F				Critical: script-src with 'unsafe-inline' or 'unsafe-eval' and without a nonce found. That's dangerous, don't use it. If you really need one of these unsafe directives, add a nonce.
A				Good: script-src without * and a scheme found.
A				Good: script-src without data: schema found. Why is this important? The data: schema allows hidden code injection. Insert <script src='data:application/javascript;base64,YWxlcnQoJ1hTUycpOw=='></script> in your page and see what happens.
A				Good: frame-src without data: defined or frame-src missing and the default-src used as fallback not allows the data: schema. That blocks hidden code injection. Insert <iframe src="data:text/html;charset=utf-8;base64,PCFET0NUWVBFIGh0bWw+PGh0bWw+PGJvZHk+PHA+YmVmb3JlPHNjcmlwdCB0eXBlPSJ0ZXh0L2phdmFzY3JpcHQiPmFsZXJ0KCdYU1MnKTwvc2NyaXB0PjxwPmFmdGVyPC9ib2R5PjwvaHRtbD4="></iframe> in your page and see what happens.
A		X-Content-Type-Options		Ok: Header without syntax errors found: nosniff
A		Referrer-Policy		Ok: Header without syntax errors found: no-referrer-when-downgrade
A		X-Frame-Options		Ok: Header without syntax errors found: SAMEORIGIN
B				Info: Header is deprecated. May not longer work in modern browsers. SAMEORIGIN. Better solution: Use a Content-Security-Policy Header with a frame-ancestors directive. DENY - use 'none', SAMEORIGIN - use 'self'. If you want to allow some domains to frame your page, add these urls.
A		X-Xss-Protection		Ok: Header without syntax errors found: 1; mode=block
B				Info: Header is deprecated. May not longer work in modern browsers. 1; mode=block
A	www.vodafone.com.pg 43.245.58.77	Content-Security-Policy		Ok: Header without syntax errors found: default-src 'self'; object-src 'none'; script-src https://ajax.googleapis.com https://ap.gateway.mastercard.com https://wbcfj.gateway.mastercard.com https://wbcfj.gateway.mastercard.com/form/version/52/merchant/TESTFJ82046592/session.js 'self' 'unsafe-inline' 'unsafe-eval' .googleapis.com .gstatic.com https://www.googletagmanager.com www.google.com .google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com/iframe_api platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com .twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net .eloqua.com js.hs-scripts.com js.hs-analytics.net .en25.com cdn.ampproject.org https://maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js https://webchat.vodafone.com.pg https://googleads.g.doubleclick.net https://snap.licdn.com https://vodafonepng.elmotalent.com.au https://vodafonepng.elmotalent.com.au/bundles/jonlilckfinder/ckfinder.js https://connect.facebook.net/en_US/fbevents.js https://snap.licdn.com/li.lms-analytics/insight.min.js https://analytics.google.com https://pos.baidu.com; style-src 'self' 'unsafe-inline' .googleapis.com .gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ .twimg.com https://webchat.vodafone.com.pg https://vodafonepng.elmotalent.com.au vodafonepng.elmotalent.com.au; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data: https://webchat.vodafone.com.pg https://vodafonepng.elmotalent.com.au; img-src 'self' .gstatic.com .googleapis.com .google-analytics.com .vodafone.com.pg platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://.insight.sitefinity.com https://.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ .twimg.com data: blob: .eloqua.com track.hubspot.com https://www.google.com.fj https://pos.baidu.com https://px.ads.linkedin.com https://www.google.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com https://syndication.twitter.com https://static.licdn.com https://dec.azureedge.net https://.insight.sitefinity.com https://.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css .twimg.com .eloqua.com track.hubspot.com https://www.google.com.fj https://pos.baidu.com https://vodafonepng.elmotalent.com.au; media-src 'self' data: blob:; child-src https://ap.gateway.mastercard.com https://wbcfj.gateway.mastercard.com https://pay.mpaisa.vodafone.com.fj 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://player.vimeo.com/ https://w.soundcloud.com/ https://td.doubleclick.net vodafonepng.elmotalent.com.au apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com; connect-src 'self' accounts.google.com https://.insight.sitefinity.com https://.dec.sitefinity.com .mktoresp.com https://uat.windcave.com https://sec.windcave.com https://webchat.vodafone.com.pg https://analytics.google.com https://stats.g.doubleclick.net https://cdn.linkedin.oribi.io https://pagead2.googlesyndication.com https://vodafonepng.elmotalent.com.au https://snap.licdn.com/li.lms-analytics/insight.min.js https://pos.baidu.com;
E				Critical: Duplicated entries found img-src 'self' .gstatic.com .googleapis.com .google-analytics.com .vodafone.com.pg platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://.insight.sitefinity.com https://.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ .twimg.com data: blob: .eloqua.com track.hubspot.com https://www.google.com.fj https://pos.baidu.com https://px.ads.linkedin.com https://www.google.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com https://syndication.twitter.com https://static.licdn.com https://dec.azureedge.net https://.insight.sitefinity.com https://.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css .twimg.com .eloqua.com track.hubspot.com https://www.google.com.fj https://pos.baidu.com https://vodafonepng.elmotalent.com.au Duplicated entries: .eloqua.com, .twimg.com, https://.dec.sitefinity.com, https://.insight.sitefinity.com, https://dec.azureedge.net, https://delicious.com, https://pos.baidu.com, https://syndication.twitter.com, https://www.google.com.fj, pbs.twimg.com, track.hubspot.com, www.facebook.com, www.linkedin.com, www.redditstatic.com
A				Good: default-src directive only with 'none' or 'self', additional sources are blocked.
A				Good: default-src without 'unsafe-inline' or 'unsave-eval'.
E				Bad: No form-action directive found. Use one to limit the form - action - destinations. form-action is a navigation-directive, so default-src isn't used.
E				Bad: No frame-ancestors directive found. Use one to limit the pages allowed to use this page in frame / iframe / object / embed / applet. frame-ancestors is a navigation-directive, so default-src isn't used.
E				Bad: No base-uri directive found. Use one to limit the URLs which can be used in a document's <base> element. Because it's a document directive, default-src isn't used, so an own directive is required.
A				Good: object-src only with 'none' or 'self' found, no scheme, no other urls. That blocks object / embed / applet - elements.
F				Critical: script-src with 'unsafe-inline' or 'unsafe-eval' and without a nonce found. That's dangerous, don't use it. If you really need one of these unsafe directives, add a nonce.
A				Good: script-src without * and a scheme found.
A				Good: script-src without data: schema found. Why is this important? The data: schema allows hidden code injection. Insert <script src='data:application/javascript;base64,YWxlcnQoJ1hTUycpOw=='></script> in your page and see what happens.
A				Good: frame-src without data: defined or frame-src missing and the default-src used as fallback not allows the data: schema. That blocks hidden code injection. Insert <iframe src="data:text/html;charset=utf-8;base64,PCFET0NUWVBFIGh0bWw+PGh0bWw+PGJvZHk+PHA+YmVmb3JlPHNjcmlwdCB0eXBlPSJ0ZXh0L2phdmFzY3JpcHQiPmFsZXJ0KCdYU1MnKTwvc2NyaXB0PjxwPmFmdGVyPC9ib2R5PjwvaHRtbD4="></iframe> in your page and see what happens.
A		X-Content-Type-Options		Ok: Header without syntax errors found: nosniff
A		Referrer-Policy		Ok: Header without syntax errors found: no-referrer-when-downgrade
A		X-Frame-Options		Ok: Header without syntax errors found: SAMEORIGIN
B				Info: Header is deprecated. May not longer work in modern browsers. SAMEORIGIN. Better solution: Use a Content-Security-Policy Header with a frame-ancestors directive. DENY - use 'none', SAMEORIGIN - use 'self'. If you want to allow some domains to frame your page, add these urls.
A		X-Xss-Protection		Ok: Header without syntax errors found: 1; mode=block
B				Info: Header is deprecated. May not longer work in modern browsers. 1; mode=block
F	vodafone.com.pg 43.245.58.77	Permissions-Policy		Critical: Missing Header:
B	vodafone.com.pg 43.245.58.77	Cross-Origin-Embedder-Policy		Info: Missing Header
B	vodafone.com.pg 43.245.58.77	Cross-Origin-Opener-Policy		Info: Missing Header
B	vodafone.com.pg 43.245.58.77	Cross-Origin-Resource-Policy		Info: Missing Header
F	www.vodafone.com.pg 43.245.58.77	Permissions-Policy		Critical: Missing Header:
B	www.vodafone.com.pg 43.245.58.77	Cross-Origin-Embedder-Policy		Info: Missing Header
B	www.vodafone.com.pg 43.245.58.77	Cross-Origin-Opener-Policy		Info: Missing Header
B	www.vodafone.com.pg 43.245.58.77	Cross-Origin-Resource-Policy		Info: Missing Header
	3. DNS- and NameServer - Checks
A	Info:: 7 Root-climbing DNS Queries required to find all IPv4- and IPv6-Addresses of 2 Name Servers.
A	Info:: 7 Queries complete, 3 with IPv6, 4 with IPv4.
	Warning: Only some DNS Queries done via ipv6. IPv6 is the future, so the name servers of your name servers should have ipv6 addresses.
A	Good: Some ip addresses of name servers found with the minimum of two DNS Queries. One to find the TLD-Zone, one to ask the TLD-Zone.ns1.pom.vodafone.com.pg (43.245.56.88), ns2.pom.vodafone.com.pg (43.245.56.89)
	Ok (4 - 8):: An average of 3.5 queries per domain name server required to find all ip addresses of all name servers.
A	Info:: 4 different Name Servers found: ns1.lae.vodafone.com.pg, ns1.pom.vodafone.com.pg, ns2.lae.vodafone.com.pg, ns2.pom.vodafone.com.pg, 2 Name Servers included in Delegation: ns1.pom.vodafone.com.pg, ns2.pom.vodafone.com.pg, 4 Name Servers included in 1 Zone definitions: ns1.lae.vodafone.com.pg, ns1.pom.vodafone.com.pg, ns2.lae.vodafone.com.pg, ns2.pom.vodafone.com.pg, 1 Name Servers listed in SOA.Primary: ns1.pom.vodafone.com.pg.
A	Good: Only one SOA.Primary Name Server found.: ns1.pom.vodafone.com.pg.
A	Good: SOA.Primary Name Server included in the delegation set.: ns1.pom.vodafone.com.pg.
X	Fatal: Inconsistency between delegation and zone. The set of NS records served by the authoritative name servers must match those proposed for the delegation in the parent zone. Read https://www.iana.org/help/nameserver-requirements and send it to your Name Server Hoster.: ns1.lae.vodafone.com.pg (103.25.142.88): Delegation: ns1.pom.vodafone.com.pg, ns2.pom.vodafone.com.pg, Zone: ns1.lae.vodafone.com.pg, ns1.pom.vodafone.com.pg, ns2.lae.vodafone.com.pg, ns2.pom.vodafone.com.pg. Name Servers defined in Zone, missing in Delegation: ns1.lae.vodafone.com.pg, ns2.lae.vodafone.com.pg.
X	Fatal: Inconsistency between delegation and zone. The set of NS records served by the authoritative name servers must match those proposed for the delegation in the parent zone. Read https://www.iana.org/help/nameserver-requirements and send it to your Name Server Hoster.: ns1.lae.vodafone.com.pg (2405:9f40:2000:f::8): Delegation: ns1.pom.vodafone.com.pg, ns2.pom.vodafone.com.pg, Zone: ns1.lae.vodafone.com.pg, ns1.pom.vodafone.com.pg, ns2.lae.vodafone.com.pg, ns2.pom.vodafone.com.pg. Name Servers defined in Zone, missing in Delegation: ns1.lae.vodafone.com.pg, ns2.lae.vodafone.com.pg.
X	Fatal: Inconsistency between delegation and zone. The set of NS records served by the authoritative name servers must match those proposed for the delegation in the parent zone. Read https://www.iana.org/help/nameserver-requirements and send it to your Name Server Hoster.: ns1.pom.vodafone.com.pg (43.245.56.88): Delegation: ns1.pom.vodafone.com.pg, ns2.pom.vodafone.com.pg, Zone: ns1.lae.vodafone.com.pg, ns1.pom.vodafone.com.pg, ns2.lae.vodafone.com.pg, ns2.pom.vodafone.com.pg. Name Servers defined in Zone, missing in Delegation: ns1.lae.vodafone.com.pg, ns2.lae.vodafone.com.pg.
X	Fatal: Inconsistency between delegation and zone. The set of NS records served by the authoritative name servers must match those proposed for the delegation in the parent zone. Read https://www.iana.org/help/nameserver-requirements and send it to your Name Server Hoster.: ns1.pom.vodafone.com.pg (2405:9f40:0:f::8): Delegation: ns1.pom.vodafone.com.pg, ns2.pom.vodafone.com.pg, Zone: ns1.lae.vodafone.com.pg, ns1.pom.vodafone.com.pg, ns2.lae.vodafone.com.pg, ns2.pom.vodafone.com.pg. Name Servers defined in Zone, missing in Delegation: ns1.lae.vodafone.com.pg, ns2.lae.vodafone.com.pg.
X	Fatal: Inconsistency between delegation and zone. The set of NS records served by the authoritative name servers must match those proposed for the delegation in the parent zone. Read https://www.iana.org/help/nameserver-requirements and send it to your Name Server Hoster.: ns2.lae.vodafone.com.pg (103.25.142.89): Delegation: ns1.pom.vodafone.com.pg, ns2.pom.vodafone.com.pg, Zone: ns1.lae.vodafone.com.pg, ns1.pom.vodafone.com.pg, ns2.lae.vodafone.com.pg, ns2.pom.vodafone.com.pg. Name Servers defined in Zone, missing in Delegation: ns1.lae.vodafone.com.pg, ns2.lae.vodafone.com.pg.
X	Fatal: Inconsistency between delegation and zone. The set of NS records served by the authoritative name servers must match those proposed for the delegation in the parent zone. Read https://www.iana.org/help/nameserver-requirements and send it to your Name Server Hoster.: ns2.lae.vodafone.com.pg (2405:9f40:2000:f::9): Delegation: ns1.pom.vodafone.com.pg, ns2.pom.vodafone.com.pg, Zone: ns1.lae.vodafone.com.pg, ns1.pom.vodafone.com.pg, ns2.lae.vodafone.com.pg, ns2.pom.vodafone.com.pg. Name Servers defined in Zone, missing in Delegation: ns1.lae.vodafone.com.pg, ns2.lae.vodafone.com.pg.
X	Fatal: Inconsistency between delegation and zone. The set of NS records served by the authoritative name servers must match those proposed for the delegation in the parent zone. Read https://www.iana.org/help/nameserver-requirements and send it to your Name Server Hoster.: ns2.pom.vodafone.com.pg (43.245.56.89): Delegation: ns1.pom.vodafone.com.pg, ns2.pom.vodafone.com.pg, Zone: ns1.lae.vodafone.com.pg, ns1.pom.vodafone.com.pg, ns2.lae.vodafone.com.pg, ns2.pom.vodafone.com.pg. Name Servers defined in Zone, missing in Delegation: ns1.lae.vodafone.com.pg, ns2.lae.vodafone.com.pg.
X	Fatal: Inconsistency between delegation and zone. The set of NS records served by the authoritative name servers must match those proposed for the delegation in the parent zone. Read https://www.iana.org/help/nameserver-requirements and send it to your Name Server Hoster.: ns2.pom.vodafone.com.pg (2405:9f40:0:f::9): Delegation: ns1.pom.vodafone.com.pg, ns2.pom.vodafone.com.pg, Zone: ns1.lae.vodafone.com.pg, ns1.pom.vodafone.com.pg, ns2.lae.vodafone.com.pg, ns2.pom.vodafone.com.pg. Name Servers defined in Zone, missing in Delegation: ns1.lae.vodafone.com.pg, ns2.lae.vodafone.com.pg.
A	Good: All Name Server Domain Names have a Public Suffix.
A	Good: All Name Server Domain Names ending with a Public Suffix have minimal one IPv4- or IPv6 address.
A	Good: All Name Server ip addresses are public.
A	Good: Minimal 2 different name servers (public suffix and public ip address) found: 4 different Name Servers found
A	Good: All name servers have ipv4- and ipv6-addresses.: 4 different Name Servers found
	Warning: All Name Servers have the same Top Level Domain / Public Suffix. If there is a problem with that Top Level Domain, your domain may be affected. Better: Use Name Servers with different top level domains.: 4 Name Servers, 1 Top Level Domain: *.pg
	Warning: All Name Servers have the same domain name. If there is a problem with that domain name (or with the name servers of that domain name), your domain may be affected. Better: Use Name Servers with different domain names / different top level domains.: Only one domain name used: com.pg
	Warning: All Name Servers from the same Country / IP location.: 4 Name Servers, 1 Countries: PG
A	Info: Ipv4-Subnet-list: 4 Name Servers, 2 different subnets (first Byte): 103., 43., 2 different subnets (first two Bytes): 103.25., 43.245., 2 different subnets (first three Bytes): 103.25.142., 43.245.56.
A	Good: Name Server IPv4-addresses from different subnet found:
A	Info: IPv6-Subnet-list: 4 Name Servers with IPv6, 1 different subnets (first block): 2405:, 1 different subnets (first two blocks): 2405:9f40:, 2 different subnets (first three blocks): 2405:9f40:0000:, 2405:9f40:2000:, 2 different subnets (first four blocks): 2405:9f40:0000:000f:, 2405:9f40:2000:000f:
A	Good: Name Server IPv6 addresses from different subnets found.
A	Info: Nameserver mit different domain names found. May be a problem with DNS-Updates
A	Good: Nameserver supports TCP connections: 8 good Nameserver
A	Good: Nameserver supports Echo Capitalization: 8 good Nameserver
A	Good: Nameserver supports EDNS with max. 512 Byte Udp payload, message is smaller: 8 good Nameserver
A	Good: Nameserver has passed 10 EDNS-Checks (OP100, FLAGS, V1, V1OP100, V1FLAGS, DNSSEC, V1DNSSEC, NSID, COOKIE, CLIENTSUBNET): 8 good Nameserver
	Nameserver doesn't pass all EDNS-Checks: ns1.unitech.ac.pg: OP100: no result. FLAGS: no result. V1: no result. V1OP100: no result. V1FLAGS: no result. DNSSEC: no result. V1DNSSEC: no result. NSID: no result. COOKIE: no result. CLIENTSUBNET: no result.
	Nameserver doesn't pass all EDNS-Checks: ns1.unitech.ac.pg: OP100: no result. FLAGS: no result. V1: no result. V1OP100: no result. V1FLAGS: no result. DNSSEC: no result. V1DNSSEC: no result. NSID: no result. COOKIE: no result. CLIENTSUBNET: no result.
A	Good: All SOA have the same Serial Number
A	Good: CAA entries found, creating certificate is limited: sectigo.com is allowed to create wildcard-certificates
	4. Content- and Performance-critical Checks
	Fatal: All checks of /.well-known/acme-challenge/random-filename have a redirect, destination doesn't have the random filename. Creating a Letsencrypt certificate via http-01 challenge may not work. Trouble creating a certificate? Use https://community.letsencrypt.org/ to ask.
	https://vodafone.com.pg/ 43.245.58.77	200		Warning: https result with status 200 and size greater then 1024 Bytes without Compression found. Add Compression support (gzip, deflate, br - these are checked) so the html content is compressed.
	https://www.vodafone.com.pg/ 43.245.58.77	200		Warning: https result with status 200 and size greater then 1024 Bytes without Compression found. Add Compression support (gzip, deflate, br - these are checked) so the html content is compressed.
	https://vodafone.com.pg/ 43.245.58.77	200		Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
	https://www.vodafone.com.pg/ 43.245.58.77	200		Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
	https://vodafone.com.pg/ 43.245.58.77	200		Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
	https://www.vodafone.com.pg/ 43.245.58.77	200		Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
A	Good: Every https connection via port 443 supports the http/2 protocol via ALPN.
A	Good: Some script Elements (type text/javascript) with a src-Attribute have a defer / async - Attribute. So loading and executing these JavaScripts doesn't block parsing and rendering the Html-Output.
	https://vodafone.com.pg/ 43.245.58.77	200		Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 28 script elements without defer/async.
	https://www.vodafone.com.pg/ 43.245.58.77	200		Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 28 script elements without defer/async.
	Warning: Svg-Images greater 1024 Bytes without internal compression are found. Svg is an Xml-Application, so Compression is required to reduce the size of the file. 10 images (type image/svg+xml, image/x-icon, image/vnd.microsoft.icon) found without compression.
	Warning: CSS / JavaScript found without Compression. Compress these ressources, gzip, deflate, br are checked. 14 external CSS / JavaScript files without Compression found - 54 with Compression, 68 complete
A	Good: All images with internal compression not compressed. Some Images (.png, .jpg, .jpeg, .webp, .gif) are already compressed, so an additional compression isn't helpful. 34 images (type image/png, image/jpg, image/jpeg, image/webp, image/gif) found without additional Compression. Not required because these images are already compressed
	Warning: CSS / JavaScript files with a missing or too short Cache-Control header found. Browsers should cache and re-use these files. 0 external CSS / JavaScript files without Cache-Control-Header, 8 with Cache-Control, but no max-age, 8 with Cache-Control max-age too short (minimum 7 days), 54 with Cache-Control long enough, 70 complete.
	Warning: Images with a missing or too short Cache-Control header found. Browsers should cache and re-use these files. 0 image files without Cache-Control-Header, 0 with Cache-Control, but no max-age, 2 with Cache-Control max-age too short (minimum 7 days), 46 with Cache-Control long enough, 48 complete.
A	Good: Some checked attribute values are enclosed in quotation marks (" or ').: 529 Html-Elements checked, 527 without problems.
I	Wrong: Attribute values found, not enclosed in quotation marks (" or ').: 2 Html-Elements with attributes and missing enclosed quotation marks found. 2 wrong attributes.
A	Good: Some img-elements have a valid alt-attribute.: 48 img-elements found, 36 img-elements with correct alt-attributes (defined, not an empty value).
	Wrong: img-elements without alt-attribute or empty alt-attribute found. The alt-attribute ("alternative") is required and should describe the img. So Screenreader and search engines are able to use these informations.: 2 img-elements without alt-attribute, 10 img-elements with empty alt-attribute found.
A	Good: Domainname is not on the "Specially Designated Nationals And Blocked Persons List" (SDN). That's an US-list of individuals and companies owned or controlled by, or acting for or on behalf of, targeted countries. It also lists individuals, groups, and entities, such as terrorists and narcotics traffickers designated under programs that are not country-specific. Collectively, such individuals and companies are called "Specially Designated Nationals" or "SDNs." Their assets are blocked and U.S. persons are generally prohibited from dealing with them. So if a domain name is on that list, it's impossible to create a Letsencrypt certificate with that domain name. Check the list manual - https://www.treasury.gov/resource-center/sanctions/sdn-list/pages/default.aspx
	https://43.245.58.77/ 43.245.58.77	404	10.830 seconds	Warning: 404 needs more then one second
A	Info: Different Server-Headers found
A	Duration: 688193 milliseconds, 688.193 seconds

8. Connections

Domain

Port

Cert.

Protocol

KeyExchange

Strength

Cipher

Strength

HashAlgorithm

OCSP stapling

Domain/KeyExchange

IP/Strength

Port/Cipher

Cert./Strength

Protocol/HashAlgorithm

OCSP stapling

vodafone.com.pg

43.245.58.77

443

Tls12

ECDH Ephermal

384

Aes256

256

Sha384

supported

vodafone.com.pg

43.245.58.77

443

Tls12

ECDH Ephermal

384

Aes256

256

Sha384

supported

http/2 via ALPN supported
No SNI required - domain included in main certificate

Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
No SNI required - domain included in main certificate

Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=*.vodafone.com.pg
	2	CN=Sectigo Public Server Authentication CA DV R36, O=Sectigo Limited, C=GB

www.vodafone.com.pg

43.245.58.77

443

Tls12

ECDH Ephermal

384

Aes256

256

Sha384

supported

www.vodafone.com.pg

43.245.58.77

443

Tls12

ECDH Ephermal

384

Aes256

256

Sha384

supported

http/2 via ALPN supported
No SNI required - domain included in main certificate

Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
No SNI required - domain included in main certificate

Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=*.vodafone.com.pg
	2	CN=Sectigo Public Server Authentication CA DV R36, O=Sectigo Limited, C=GB

43.245.58.77

443

name does not match

Tls12

ECDH Ephermal

384

Aes256

256

Sha384

supported

43.245.58.77

443

name does not match

Tls12

ECDH Ephermal

384

Aes256

256

Sha384

supported

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=*.vodafone.com.pg
	2	CN=Sectigo Public Server Authentication CA DV R36, O=Sectigo Limited, C=GB

9. Certificates

CN=*.vodafone.com.pg

31.07.2025

08.08.2026
expires in 61 days

*.vodafone.com.pg, vodafone.com.pg - 2 entries

CN=*.vodafone.com.pg

31.07.2025

08.08.2026
expires in 61 days

*.vodafone.com.pg, vodafone.com.pg - 2 entries

Keyalgorithm	RSA encryption (4096 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	6FC3B4D37304427AADE1570F1764D5CA
Thumbprint:	6965E5FD50D2BCD6A2D36B4D6687B0F89287E19B
SHA256 / Certificate:	HtbltUUBj2SHlT3QXYMmw71ExI+TWX2xQaggDCAhvgM=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	f7739b16589f30a51318de670773349dcd9e11b27eb8d18ab22b5b3744273c2f
SHA256 hex / Subject Public Key Information (SPKI):	f7739b16589f30a51318de670773349dcd9e11b27eb8d18ab22b5b3744273c2f (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://ocsp.sectigo.com
OCSP - must staple:	no
Certificate Transparency:	yes
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

CN=Sectigo Public Server Authentication CA DV R36, O=Sectigo Limited, C=GB

22.03.2021

22.03.2036
expires in 3575 days

CN=Sectigo Public Server Authentication CA DV R36, O=Sectigo Limited, C=GB

22.03.2021

22.03.2036
expires in 3575 days

Keyalgorithm	RSA encryption ( bit)
Signatur:	SHA384 With RSA Encryption
Serial Number:	397A66CC2756362E0DAA87CA6EABE3B1
Thumbprint:	DD55B4520291E276588F0DD02FAFD83A7368E0FA
SHA256 / Certificate:	jFTDNLZrpOQmdyr0o/kTbBmhrscp/bKMU1wHpaTvIuA=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	6bd9212ce649c659c9cabc6cb60fcffac7a20c29be61fdceb2b5f2168701688d
SHA256 hex / Subject Public Key Information (SPKI):
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://ocsp.sectigo.com
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

CN=Sectigo Public Server Authentication Root R46, O=Sectigo Limited, C=GB

22.03.2021

22.03.2046
expires in 7227 days

CN=Sectigo Public Server Authentication Root R46, O=Sectigo Limited, C=GB

22.03.2021

22.03.2046
expires in 7227 days

Keyalgorithm	RSA encryption (4096 bit)
Signatur:	SHA384 With RSA Encryption
Serial Number:	758DFD8BAE7C0700FAA925A7E1C7AD14
Thumbprint:	AD98F9F3E47D753B65D482B3A45217BB6EF5E438
SHA256 / Certificate:	e7ZHpirurIi/JXqlItAf/qOV4KtFxz+T9lZU7DjyWgY=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	0e8bb18bbeefb381be21bfc1a206d317298462ad104855f04a0542699708d3d4
SHA256 hex / Subject Public Key Information (SPKI):
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

Issuer				last 7 days	active	num Certs
CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, C=GB, ST=Greater Manchester				0	0	3
CN=Sectigo Public Server Authentication CA DV R36, O=Sectigo Limited, C=GB				0	1	1

CertSpotter-Id	Issuer	not before	not after	Domain names	LE-Duplicate	next LE
11324565682 leaf cert	CN=Sectigo Public Server Authentication CA DV R36, O=Sectigo Limited, C=GB	2025-07-31 00:00:00	2026-08-07 23:59:59	*.vodafone.com.pg, vodafone.com.pg - 2 entries
7885902262 leaf cert	CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, C=GB, ST=Greater Manchester	2024-08-07 00:00:00	2025-08-07 23:59:59	*.vodafone.com.pg, vodafone.com.pg - 2 entries
5623506219 leaf cert	CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, C=GB, ST=Greater Manchester	2023-08-03 00:00:00	2024-08-08 23:59:59	*.vodafone.com.pg, vodafone.com.pg - 2 entries
3996363537 leaf cert	CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, C=GB, ST=Greater Manchester	2022-07-28 00:00:00	2023-08-14 23:59:59	*.vodafone.com.pg, vodafone.com.pg - 2 entries

2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > of the last months are listed

Issuer				last 7 days	active	num Certs
CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, C=GB, ST=Greater Manchester				0	0	1

CRT-Id	Issuer	not before	not after	Domain names	LE-Duplicate	next LE
10048680712 precert	CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, C=GB, ST=Greater Manchester	2023-08-02 22:00:00	2024-08-08 21:59:59	*.vodafone.com.pg, vodafone.com.pg 2 entries

11. Html-Content - Entries

Summary

							Subresource Integrity (SRI)
Domainname	HtmlElement	rel/property	∑	∑ size	∑ problems	∑ int.	∑ ext.	∑ Origin poss.	∑ SRI ParseErrors	∑ SRI valid	∑ SRI missing
https://vodafone.com.pg/ 43.245.58.77	a		183		0			0	0	0
	form		1		0			0	0	0
	iframe (1)		1		0			0	0	0
	img		24	15,746,432 Bytes	0	18	6	0	0	0
	link	alternate	1		0			0	0	0
	link	stylesheet	6	46,703 Bytes	0	6	0	0	0	0
	link	other	2	2,059 Bytes	0	1	0	0	0	0
	meta	og	5	75,952 Bytes	0	1	0	0	0	0
	meta	other	11		0			0	0	0
	script		29	781,391 Bytes	28	25	4	1	0	1	0
https://www.vodafone.com.pg/ 43.245.58.77	a		183		0			0	0	0
	form		1		0			0	0	0
	iframe (1)		1		0			0	0	0
	img		24	15,746,432 Bytes	0	23	1	0	0	0
	link	alternate	1		0			0	0	0
	link	stylesheet	6	46,703 Bytes	0	6	0	0	0	0
	link	other	2	2,059 Bytes	0	1	0	0	0	0
	meta	og	5	75,952 Bytes	0	0	1	0	0	0
	meta	other	11		0			0	0	0
	script		29	781,390 Bytes	28	25	4	1	0	1	0
https://43.245.58.77/ 43.245.58.77	meta	other	1		0			0	0	0

Details (currently limited to 500 rows - some problems with spam users)

Domainname	Html-Element	name/equiv/ property/rel	href/src/content	HttpStatus	∑	Status
https://vodafone.com.pg/ 43.245.58.77	a						3	ok
								ok


	a		#				4	ok
								ok


	a		/				2	ok
								ok


	a		/about				2	ok
								ok


	a		/about/about-us				1	ok
								ok


	a		/about/careers				1	ok
								ok


	a		/about/privacy-policy				1	ok
								ok


	a		/about/store-locations				3	ok
								ok


	a		/business				2	ok
								ok


	a		/business/products-and-solutions				1	ok
								ok


	a		/e-Shop/checkout/Preview/				1	ok
								ok


	a		/help				3	ok
								ok


	a		/my-corporate/dashboard				2	ok
								ok


	a		/my-corporate/Dashboard/				1	ok
								ok


	a		/my-vodafone/dashboard				1	ok
								ok


	a		/my-vodafone/direct-top-up				1	ok
								ok


	a		/my-vodafone/web-top-up				3	ok
								ok


	a		/my-vodafone-login				1	ok
								ok


	a		/personal				1	ok
								ok


	a		/personal/news-blog				1	ok
								ok


	a		/personal/prepaid				2	ok
								ok


	a		/personal/prepaid/mobile-broadband				2	ok
								ok


	a		/personal/prepaid/mobile-broadband/broadband-devices				2	ok
								ok


	a		/personal/prepaid/mobile-broadband/broadband-topup				2	ok
								ok


	a		/personal/prepaid/mobile-broadband/data-device-setup-guide				2	ok
								ok


	a		/personal/prepaid/mobile-broadband/terms-and-conditions				2	ok
								ok


	a		/personal/prepaid/mobile-internet				2	ok
								ok


	a		/personal/prepaid/mobile-internet/faqs---4g				2	ok
								ok


	a		/personal/prepaid/mobile-internet/faq's---mobile-internet				2	ok
								ok


	a		/personal/prepaid/mobile-internet/Konektplans				2	ok
								ok


	a		/personal/prepaid/mobile-internet/pay-as-you-go				2	ok
								ok


	a		/personal/prepaid/mobile-internet/setup-guide				2	ok
								ok


	a		/personal/prepaid/mobile-internet/terms-conditions				2	ok
								ok


	a		/personal/prepaid/new-plans				3	ok
								ok


	a		/personal/prepaid/new-plans/newcombo-packs				2	ok
								ok


	a		/personal/prepaid/new-plans/toktokplans				2	ok
								ok


	a		/personal/prepaid/new-plans/wantok-kombo-plans				2	ok
								ok


	a		/personal/prepaid/rates				2	ok
								ok


	a		/personal/prepaid/rates/international-call-rates				2	ok
								ok


	a		/personal/prepaid/rates/recharge-validity				2	ok
								ok


	a		/personal/prepaid/rates/roaming-rates				3	ok
								ok


	a		/personal/prepaid/rates/standard-rates				2	ok
								ok


	a		/personal/products-services				3	ok
								ok


	a		/personal/products-services/discover-more				2	ok
								ok


	a		/personal/products-services/discover-more/change-system-language				2	ok
								ok


	a		/personal/products-services/discover-more/device-information				2	ok
								ok


	a		/personal/products-services/discover-more/esim				2	ok
								ok


	a		/personal/products-services/discover-more/voicemail				2	ok
								ok


	a		/personal/products-services/low-balance-service				2	ok
								ok


	a		/personal/products-services/low-balance-service/borrowcreditonloan				2	ok
								ok


	a		/personal/products-services/low-balance-service/call-me-back				2	ok
								ok


	a		/personal/products-services/low-balance-service/pay4mevoiceservice				2	ok
								ok


	a		/personal/products-services/low-balance-service/share-credit				2	ok
								ok


	a		/personal/products-services/low-balance-service/top-up-me				2	ok
								ok


	a		/personal/products-services/mobile-apps				2	ok
								ok


	a		/personal/products-services/mobile-apps/my-vodafone-mobile-app				2	ok
								ok


	a		/personal/products-services/mobile-apps/my-vodafone-mobile-app/cookies-policy				1	ok
								ok


	a		/personal/products-services/mobile-apps/my-vodafone-mobile-app/privacy-cookie-policy				1	ok
								ok


	a		/personal/products-services/mobile-apps/my-vodafone-mobile-app/terms-and-conditions				1	ok
								ok


	a		/personal/products-services/topup-options				2	ok
								ok


	a		/personal/products-services/topup-options/international-top-up				2	ok
								ok


	a		/personal/products-services/topup-options/international-top-up/ding-international-top-up				1	ok
								ok


	a		/personal/products-services/topup-options/topup-agents				2	ok
								ok


	a		/personal/specials-offers				5	ok
								ok


	a		/personal/specials-offers/devices				2	ok
								ok


	a		/personal/specials-offers/devices/apple-iphone				3	ok
								ok


	a		/personal/specials-offers/devices/mix_devices				3	ok
								ok


	a		/personal/specials-offers/devices/pocket-wifi				3	ok
								ok


	a		/personal/specials-offers/devices/samsung				3	ok
								ok


	a		/personal/specials-offers/promotions				2	ok
								ok


	a		/personal/specials-offers/promotions/free-sim-offer				3	ok
								ok


	a		/personal/specials-offers/promotions/Hourly-Passes				2	ok
								ok


	a		/personal/specials-offers/promotions/international-calls1				2	ok
								ok


	a		/personal/specials-offers/promotions/Nait-Plan				2	ok
								ok


	a		/personal/specials-offers/promotions/supa-sunday				2	ok
								ok


	a		/personal/specials-offers/specials				2	ok
								ok


	a		/personal/specials-offers/specials/doubleup				3	ok
								ok


	a		/personal/specials-offers/specials/free-voda-tok2				2	ok
								ok


	a		/personal/specials-offers/specials/giftingplans				2	ok
								ok


	a		/personal/specials-offers/specials/mywantok				1	ok
								ok


	a		/privacy-policy				1	ok
								ok


	a		/sitemap				1	ok
								ok


	a		/terms-conditions				1	ok
								ok


	a		https://pg.linkedin.com/company/vodafone-png				1	ok
								ok


	a		https://vodafone.com.pg/personal/specials-offers/devices/mix_devices				2	ok
								ok


	a		https://vodafone.com.pg/personal/specials-offers/promotions/free-sim-offer				2	ok
								ok


	a		https://vodafone.com.pg/personal/specials-offers/specials/doubleup				2	ok
								ok


	a		https://vodafone.com.pg/personal/specials-offers/specials/free-voda-tok2				2	ok
								ok


	a		https://vodafone.com.pg/personal/specials-offers/specials/giftingplans				2	ok
								ok


	a		https://www.facebook.com/Vodafone-Papua-New-Guinea-110483477954794				1	ok
								ok


	a		https://www.instagram.com/vodafonepapuanewguinea/				1	ok
								ok


	a		https://www.tiktok.com/@vodafonepng				1	ok
								ok


	a		https://www.vodafone.com.pg/personal/products-services/mobile-apps/my-vodafone-mobile-app				2	ok
								ok


	a		https://www.youtube.com/channel/UCZq9cyLU6afyu_YkvlL6Tzw?app=desktop				1	ok
								ok


	a		https://x.com/Vodafone_PNG				1	ok
								ok


	form						1	ok
								ok


	iframe (1)	src	https://www.googletagmanager.com/ns.html?id=GTM-TL6DXKS				1	Attribute values must be enclosed with " or ' (Unicode Codepoint 34 or 39).



	img	src	/images/default-source/features/departures.svg?sfvrsn=15cc075f_2		200		1	ok
	alt: image			image/svg+xml X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 1150 Bytes

	img	src	/images/default-source/features/handshake.svg?sfvrsn=497de330_2		200		1	ok
	alt: image			image/svg+xml X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 7259 Bytes

	img	src	/images/default-source/features/mybill.svg?sfvrsn=7494ac7a_2		200		1	ok
	alt: image			image/svg+xml X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 1741 Bytes

	img	src	/images/default-source/features/online-payment.svg?sfvrsn=705fc68f_2		200		1	ok
	alt: image			image/svg+xml X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 6038 Bytes

	img	src	/images/default-source/features/placeholder.svg?sfvrsn=f3421ce2_2		200		1	ok
	alt: image			image/svg+xml X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 1416 Bytes

	img	src	/images/default-source/features/user.svg?sfvrsn=17602379_2		200		1	ok
	alt: image			image/svg+xml X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			898 Bytes

	img	src	/images/default-source/footer-images/logo-footer		200		1	ok
	alt: Vodafone PNG			image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 16972 Bytes

	img	src	/images/default-source/home/1024e37e5ad9a41778e3c8f3137aa5105.png?sfvrsn=20d47697_0		200		1	ok
	alt: Image 1			image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 281267 Bytes

	img	src	/images/default-source/home/4.png?sfvrsn=5cb620c6_1		200		1	ok
	alt: Image			image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 103504 Bytes

	img	src	/images/default-source/home/530d18096-ea4f-4d31-8c7e-3eeaf93fdb32.png?sfvrsn=b4a308bf_1		200		1	ok
	alt: Image 2			image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 70112 Bytes

	img	src	/images/default-source/home/69e9c0b8e5a00469fbdac7090685c5d99.png?sfvrsn=b49c4d88_0		200		1	ok
	alt: Image 1			image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 340215 Bytes

	img	src	/images/default-source/home/7.png?sfvrsn=77f6ff_1		200		1	ok
	alt: Image 1			image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 44970 Bytes

	img	src	/images/default-source/home/8.png?sfvrsn=535684dc_1		200		1	ok
	alt: Image 2			image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 52083 Bytes

	img	src	/images/default-source/home/9.png?sfvrsn=79259d7f_1		200		1	ok
	alt: Image 3			image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 44255 Bytes

	img	src	/images/default-source/home/web-elements_gox-(2).png?sfvrsn=3090ebdc_1/WEB-ELEMENTS_GOx-(2).png		200		1	ok
	alt: Image			image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 92254 Bytes

	img	src	/images/default-source/home/web-elements_gox2a807df1-96b4-4e64-b436-0747db4793ff.png?sfvrsn=946ec886_1/		200		1	ok
	alt: Image 3			image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 65935 Bytes

	img	src	/images/default-source/logo/logo.png?sfvrsn=ce556a2e_2		200		1	ok
	alt: logo			image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 2997 Bytes

	img	src	/ResourcePackages/VFL/assets/dist/images/social/sa-x.png		200		1	ok
	alt: image			image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: max-age=2592000 with long duration found.			No Compression - 648 Bytes
	ETag: "903dfeadfbedb1:0"

	img	src	https://www.facebook.com/tr?id=505771264359188&ev=PageView&noscript=1		200		1	ok
	no alt-Attribute			text/plain missing X-Content-Type-Options nosniff				ok
				0 Bytes
	Server-Header Access-Control-Allow-Origin: https://vodafone.com.pg			Cross-Origin Resource Sharing (CORS) not supported

	img	src	https://www.vodafone.com.pg/images/default-source/about-us/double-data-b7174ef8-dab3-44ca-80fe-0a665f26460f.jpg?sfvrsn=d92021c7_1		200		1	ok
	no alt-Attribute			image/jpeg X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 4220726 Bytes
	Server-Header Access-Control-Allow-Origin: not found			Cross-Origin Resource Sharing (CORS) not supported

	img	src	https://www.vodafone.com.pg/images/default-source/about-us/free-sime73c7b58-11d4-4a46-b4ab-8c4a200c6174.jpg?sfvrsn=cf45f29d_2		200		1	ok
	no alt-Attribute			image/jpeg X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 308053 Bytes
	Server-Header Access-Control-Allow-Origin: not found			Cross-Origin Resource Sharing (CORS) not supported

	img	src	https://www.vodafone.com.pg/images/default-source/about-us/web-voda_tok_-7pm-7am-may-(1920-x-1000-px)-(19).jpg?sfvrsn=2fd9e5cf_1		200		1	ok
	no alt-Attribute			image/jpeg X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 2968504 Bytes
	Server-Header Access-Control-Allow-Origin: not found			Cross-Origin Resource Sharing (CORS) not supported

	img	src	https://www.vodafone.com.pg/images/default-source/about-us/web-voda_tok_-7pm-7am-may-(1920-x-1000-px)-(20).jpg?sfvrsn=c29da06a_1		200		1	ok
	no alt-Attribute			image/jpeg X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 2754633 Bytes
	Server-Header Access-Control-Allow-Origin: not found			Cross-Origin Resource Sharing (CORS) not supported

	img	src	https://www.vodafone.com.pg/images/default-source/about-us/web-voda_tok_-7pm-7am-may-(1920-x-1000-px)-(21)1143fd81-9957-4d35-b727-1d9a0aafa9c0.jpg?sfvrsn=2464a7bc_1		200		1	ok
	no alt-Attribute			image/jpeg X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 4360802 Bytes
	Server-Header Access-Control-Allow-Origin: not found			Cross-Origin Resource Sharing (CORS) not supported

	link	alternate	https://www.vodafone.com.pg				1	ok
								ok


	link	canonical	https://vodafone.com.pg				1	ok
								ok


	link	shortcut icon	/favicon.png		200		1	ok
				image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: max-age=2592000 with long duration found.			No Compression - 2059 Bytes
	ETag: "aca1dd3384dd81:0"

	link	stylesheet	/ResourcePackages/VFL/assets/dist/css/custom.css?package=VFL		200		1	ok
				text/css X-Content-Type-Options nosniff found				ok
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 16756/89858 Bytes
	ETag: "0fd7e338361d81:0"
	local SRI possible, possible hash-values: sha256-/+ApCCstJv+yXP7kureQEi2a4MTX7nn/G/PAGUYj5zo= sha384-Y0PQTXPs7cgWogPM6k7vGRfSG3Z92ifM4CimYdiR91whsxIzvDYygyX1BnWLBJj2 sha512-4SgScTaZwox79F425XXVk6PnvYG7VeNhfxKds1bxOCHkZ87aG5QIUdUseeJG4T6ZsNfSAepBSBO3WRUf7SsUFA== <link rel="stylesheet" href="/ResourcePackages/VFL/assets/dist/css/custom.css?package=VFL" crossorigin="anonymous" integrity="sha256-/+ApCCstJv+yXP7kureQEi2a4MTX7nn/G/PAGUYj5zo=" />

	link	stylesheet	/ResourcePackages/VFL/assets/dist/css/font-awesome.min.css?package=VFL		200		1	ok
				text/css X-Content-Type-Options nosniff found				ok
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 6995/31004 Bytes
	ETag: "0e542384dd81:0"
	local SRI possible, possible hash-values: sha256-gg4WnOJIJAZtmXP9S2Vhqunc1tvvZDXakF1aHWSCmXw= sha384-aJb1qS3I4QnLhRo7PnB30F9VFxyRk6tR7Fh1y4a656NR3gZbyoFkiDcUo53Nb9Y9 sha512-lxSWMsFeszaQJzq/p4Y2rQRxmZNj4Rv1nKYaTeMkRObymds7gNUrLpQ3xkXsI1+o07jCDcw1DbueF18Ss4SaZA== <link rel="stylesheet" href="/ResourcePackages/VFL/assets/dist/css/font-awesome.min.css?package=VFL" crossorigin="anonymous" integrity="sha256-gg4WnOJIJAZtmXP9S2Vhqunc1tvvZDXakF1aHWSCmXw=" />

	link	stylesheet	/ResourcePackages/VFL/assets/dist/css/menu.css?package=VFL		200		1	ok
				text/css X-Content-Type-Options nosniff found				ok
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 1116/3745 Bytes
	ETag: "0e542384dd81:0"
	local SRI possible, possible hash-values: sha256-ZyfWrTzsBCFgmA9d6ZkXyCMh89pIvF1oz+YPh4VJddY= sha384-srtZ2YN7mR3sOYBvdSmrEi4Grd4JHiKVvU3IPGy2kd7ZLvpG0p3l94ZzWXOxhzzz sha512-0IQOonzSUcTWb18p4Fs00iwek75BCu2Le9EDHoF0e3Ssd+h+qUtJf8bMROMsIB3inrw7xhAFBaNDDxbC/hsCXw== <link rel="stylesheet" href="/ResourcePackages/VFL/assets/dist/css/menu.css?package=VFL" crossorigin="anonymous" integrity="sha256-ZyfWrTzsBCFgmA9d6ZkXyCMh89pIvF1oz+YPh4VJddY=" />

	link	stylesheet	/ResourcePackages/VFL/assets/dist/css/responsive.css?package=VFL		200		1	ok
				text/css X-Content-Type-Options nosniff found				ok
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 3329/20379 Bytes
	ETag: "0a9183209ddb1:0"
	local SRI possible, possible hash-values: sha256-8D4REDlqJUpAuSWxeDiurHEbYQklcqLnFO+6N4CqHwE= sha384-K8G+jy9VAZVjQDjZ7U2bO0q9RQlu6StY+3SRR7Uw4UhvvqV7smrukeCj833wxxcu sha512-4UQ1wNM6p1kfaGR3XILkGF9RkxbA+KC3t9HwWaI44DOytBrybUCKihJ2V1EE3xEeK+GciR4A++kga9+iueaDsw== <link rel="stylesheet" href="/ResourcePackages/VFL/assets/dist/css/responsive.css?package=VFL" crossorigin="anonymous" integrity="sha256-8D4REDlqJUpAuSWxeDiurHEbYQklcqLnFO+6N4CqHwE=" />

	link	stylesheet	/ResourcePackages/VFL/assets/dist/css/style.css?package=VFL		200		1	ok
				text/css X-Content-Type-Options nosniff found				ok
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 14387/74543 Bytes
	ETag: "801f2b71fbedb1:0"
	local SRI possible, possible hash-values: sha256-PP5zinlgYxADQCaZhgIhPB/6wUHfNI/4GJD6LMHAE/E= sha384-YNUqZo5AhOO+q3iia2e3Lav/8rS5ehIn7WXl/eYQbtdxcLuxIxkcE4AUYnS3UX6p sha512-ycWirNuJc7NmJ60vOPfzjhKuhcIcxoFkZ2mAkJb4Vt9o/X/GzNvadzvyJw4pjzEZTuP8PlI0ikLFWw9R0H83vg== <link rel="stylesheet" href="/ResourcePackages/VFL/assets/dist/css/style.css?package=VFL" crossorigin="anonymous" integrity="sha256-PP5zinlgYxADQCaZhgIhPB/6wUHfNI/4GJD6LMHAE/E=" />

	link	stylesheet	/ResourcePackages/VFL/assets/dist/css/woocommerce.css?package=VFL		200		1	ok
				text/css X-Content-Type-Options nosniff found				ok
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 4120/22024 Bytes
	ETag: "0e542384dd81:0"
	local SRI possible, possible hash-values: sha256-LoxzveSRnP3mI8/tvAZE4GJn/LtUYzvmLTepyRzlwUU= sha384-1QZMjUojSSgWtmiDcJrmrOPMNwz81dF+2qBn4c0wW17ffOe4MmZkUyh7cQKpFHZa sha512-zNEoToFrRVPblZ4qAvzMjqG7MqgUbcf5J3xiEulaeCd8Z4ZONGrN234HbUnJLyF1DfYhh4FzgLIHif5oO0EJUg== <link rel="stylesheet" href="/ResourcePackages/VFL/assets/dist/css/woocommerce.css?package=VFL" crossorigin="anonymous" integrity="sha256-LoxzveSRnP3mI8/tvAZE4GJn/LtUYzvmLTepyRzlwUU=" />

	meta	charset	utf-8				1	ok
								ok


	meta	og:description	For all your talk & data needs, get the latest mobile phones, mobile broadband or internet plans with Vodafone. Now offering 4G+ for better experience				1	ok
								ok


	meta	og:site_name	Vodafone - PNG				1	ok
								ok


	meta	og:title	Vodafone PNG \| Mobile Phones, Internet, Broadband Plans				1	ok
								ok


	meta	og:type	website				1	ok
								ok


	meta	og:url	https://vodafone.com.pg		200		1	ok
				text/html; charset=utf-8 X-Content-Type-Options nosniff found				ok
				75952 Bytes

	meta	Content-Security-Policy	default-src ; style-src 'self' http:// 'unsafe-inline'; script-src 'self' http://* 'unsafe-inline' 'unsafe-eval'				1	ok
								ok


	meta	Content-Security-Policy	default-src gap://ready file://* ; style-src 'self' http:// https://* 'unsafe-inline'; script-src 'self' http://* https://* 'unsafe-inline' 'unsafe-eval'				1	ok
								ok


	meta	description	For all your talk & data needs, get the latest mobile phones, mobile broadband or internet plans with Vodafone. Now offering 4G+ for better experience				1	ok
								ok


	meta	description	Mobile telecommunications company. Includes outlet maps, on-line service, network information, and pricing plans.				1	ok
								ok


	meta	facebook-domain-verification	4sq5qv4nwo9u3sr6bvjvj3oy7k6lln				1	ok
								ok


	meta	Generator	Sitefinity 14.0.7730.0 DX				1	ok
								ok


	meta	keywords	mobile internet, 4G flashnet, text promotions, customer care, price plans, specials, m-kina, samsung galaxy, mobile png, support				1	ok
								ok


	meta	keywords	Vodafone PNG, Plans, Rates, Mobile, internet, broadband, voice, sms, data, roaming				1	ok
								ok


	meta	robots					1	ok
								ok


	meta	viewport	width=device-width, initial-scale=1, maximum-scale=1				1	ok
								ok


	script	src	/Frontend-Assembly/Telerik.Sitefinity.Frontend.Identity/ResourcePackages/VFL/MVC/Scripts/LoginStatus/login-status.js?package=VFL&v=LTE4NjMzODQ4NjE%3d		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
				Compression required: 1681 Bytes
	local SRI possible, possible hash-values: sha256-1y7plopK9MEFxngkJGFwI5W1pPURNH/1X3WExgDpIxc= sha384-RsxDJz7mnLnx55xZMtMWm5XCWlrKsmKHjiEzT67eLsZgeQqWF/GdIqieY3pbPS/o sha512-RcL1U87YstlTSKybXetjh0uFjEWA/3zL2jkTu71RZ3gjoLLk5s8cqYGWIU1nSKps8vhoCoPkhoss5O7AItN/vQ== <script src="/Frontend-Assembly/Telerik.Sitefinity.Frontend.Identity/ResourcePackages/VFL/MVC/Scripts/LoginStatus/login-status.js?package=VFL&v=LTE4NjMzODQ4NjE%3d" crossorigin="anonymous" integrity="sha256-1y7plopK9MEFxngkJGFwI5W1pPURNH/1X3WExgDpIxc=" />

	script	src	/Frontend-Assembly/Telerik.Sitefinity.Frontend.Search/Mvc/Scripts/SearchBox/Search-box.js?package=VFL&v=MTQuMC43NzMwLjA%3d		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
				Compression required: 6882 Bytes
	local SRI possible, possible hash-values: sha256-Pxw09UcBlRxr2PbEK2qoaIkU7L8+rpHcQh7d4PtlGXg= sha384-aqXy/41MZaC52WD5+cKCgui8yNquHbYEBwIAEjD+dIl5nP7947ZKZ5h+IRwduZK+ sha512-OIdxUzFf7LlbWAQXjSQ4rqbr4ymp/93boqe3im2/MdDnKTE2u9l+FoTGFFfJUAVycjtgax8EO9aM1NnCQ+0UGA== <script src="/Frontend-Assembly/Telerik.Sitefinity.Frontend.Search/Mvc/Scripts/SearchBox/Search-box.js?package=VFL&v=MTQuMC43NzMwLjA%3d" crossorigin="anonymous" integrity="sha256-Pxw09UcBlRxr2PbEK2qoaIkU7L8+rpHcQh7d4PtlGXg=" />

	script	src	/ResourcePackages/Bootstrap4/assets/dist/js/bootstrap.min.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 15443/58078 Bytes
	ETag: "014d744534dd81:0"
	local SRI possible, possible hash-values: sha256-O82ALp93hJ58HpPIcnn7uwTUWUnSvnmwNWbOrN4psVg= sha384-lXqCKSCzpmJ9kRbg4c4nQHayMEuwgwGO+SmKQlcp/OuWw054bPqQcHRK9yyRbKpS sha512-Mnv0Cc3RZxcaMA73+V+sXLyAIyCyhy6oRexDT/eYeiHLDwNGqOs8uJFEe5ji5iLD1yG8KVv08m52NlnbuKCZQA== <script src="/ResourcePackages/Bootstrap4/assets/dist/js/bootstrap.min.js" crossorigin="anonymous" integrity="sha256-O82ALp93hJ58HpPIcnn7uwTUWUnSvnmwNWbOrN4psVg=" />

	script	src	/ResourcePackages/Bootstrap4/assets/dist/js/popper.min.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 7526/21262 Bytes
	ETag: "014d744534dd81:0"
	local SRI possible, possible hash-values: sha256-A/XDZwqERcCvdaG5NL4Xb2wc3jOfvnaxBizFHlkLypg= sha384-LsC345MdEcKqeNkjUm1MZY2zfeALf4Iqn+DbI/5gdhCoWMoTVQvkd/0n+yOSie0F sha512-fKPYWlEucWQuztdF9x+rMUvzO3DtklD7k8z3JdPT26qXFzT8xzlo9m5hEjA8fkG5LA09tV4FlkBL2SOu7fEI8Q== <script src="/ResourcePackages/Bootstrap4/assets/dist/js/popper.min.js" crossorigin="anonymous" integrity="sha256-A/XDZwqERcCvdaG5NL4Xb2wc3jOfvnaxBizFHlkLypg=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/equalize.min.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			587 Bytes
	ETag: "3945c42384dd81:0"
	local SRI possible, possible hash-values: sha256-F+ix5IV/t6ItWtWT46M40mBnLlLfOfAqLtt6mM0l0A0= sha384-4vJOnHZ9Wyw55OIgNI1mAVUor1VzA6Mk+L5SOPm69OOxUQT1QJNBjD9pJU4K4SVS sha512-Y1VkO1fYYyNSGSwokeRptXO93UfD9PFXP3vVgikaVgNzNV6di9VF/u/Z5a1wCDiBUHwYnExwYmcynb31dztMRg== <script src="/ResourcePackages/VFL/assets/dist/js/equalize.min.js" crossorigin="anonymous" integrity="sha256-F+ix5IV/t6ItWtWT46M40mBnLlLfOfAqLtt6mM0l0A0=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/jquery.min.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 33880/97105 Bytes
	ETag: "0e542384dd81:0"
	local SRI possible, possible hash-values: sha256-x5xAO52rULBHc02Ppu1I1nEEN2EW66hIJ04VzBnfLOg= sha384-GrJBOlHbJsbMDeRsqoKj13KR/saiKRgSQnT+TUCalsuBZ/xN7oEck1KucHI0GKb0 sha512-C/u+KdA3GQYX3rWOMlmhUdFYB+vKAdrHUfNeSlL0ni3AD57sWyWVO6yd/wd2b2VkL1Ydjjd5C7638j3bJW/jYQ== <script src="/ResourcePackages/VFL/assets/dist/js/jquery.min.js" crossorigin="anonymous" integrity="sha256-x5xAO52rULBHc02Ppu1I1nEEN2EW66hIJ04VzBnfLOg=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/jquery.themepunch.revolution.min.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 15094/54824 Bytes
	ETag: "0e542384dd81:0"
	local SRI possible, possible hash-values: sha256-GbRA240L3033x8aDZ0t/0AWnjs2XO1Ce1iWoJnKz4ac= sha384-MiK0nWDMEXh5mb+HrtwRLWn06LbwLt/4nje1PrF0Y+M1aCWVCeJobeB++CP0Z3QY sha512-OoSFjEK15sylFRufxpdLwX5C8pOFdDrrdOrOzrlBUf8/PmJq2HiY28Mt/VOlDzbD+FGU2e0gydKixz1bwR6oSw== <script src="/ResourcePackages/VFL/assets/dist/js/jquery.themepunch.revolution.min.js" crossorigin="anonymous" integrity="sha256-GbRA240L3033x8aDZ0t/0AWnjs2XO1Ce1iWoJnKz4ac=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/jquery.themepunch.tools.min.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 36120/104767 Bytes
	ETag: "0e542384dd81:0"
	local SRI possible, possible hash-values: sha256-dyLraeUAzUF61oAE/1aDUdPUf67pSEaMMRqN0896dw0= sha384-Up2ZBoQFVRBYpXrkgqMNtisRc9jOgPsTlwd33VFLWvk4DiDPj2017htuZJXJXf/1 sha512-CcYOp8j8vPO1lYHO6RYLSAEGJwAoCfrrW3KwtcXlanNUeSs7aH2HCQ2492M//NWrznPIk0SwUYNGIBbitJlDrg== <script src="/ResourcePackages/VFL/assets/dist/js/jquery.themepunch.tools.min.js" crossorigin="anonymous" integrity="sha256-dyLraeUAzUF61oAE/1aDUdPUf67pSEaMMRqN0896dw0=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/jquery-countTo.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression required: 2581 Bytes
	ETag: "3945c42384dd81:0"
	local SRI possible, possible hash-values: sha256-R0dU11VI+tdAu1geSwWWy5ocC0fPwD+Kbic8xtqbkIA= sha384-bDtVLDHABdmVeKZPCPQzXxzPYRZQn5oMST54L/VyMaWpQvdjZv6Le5ccgJN/Ws8f sha512-MGYq/SJcFnP32wfvbKg4oqJnrFT8hRNpm8bVeulvGm9vkOoyoFNKye6IZNrDPI4mNuEmE/Whz68paaDlN2NzLQ== <script src="/ResourcePackages/VFL/assets/dist/js/jquery-countTo.js" crossorigin="anonymous" integrity="sha256-R0dU11VI+tdAu1geSwWWy5ocC0fPwD+Kbic8xtqbkIA=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/main.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 5250/28984 Bytes
	ETag: "014d744534dd81:0"
	local SRI possible, possible hash-values: sha256-kVmwXlr5s+pvrJ0FUHQYT8LXpcWZcGQFY+7Gvc+NUzA= sha384-q69ZgZtXxH3xBPpKMrU7RxjcPvA/96Wjc9Yt+xtkfTsKQeuaP2wiOKtcpvxcx0I2 sha512-IM+8zkEN6dCH9W5b68RdFz4eo+o221q9euN38kDXg97fzTs/lPsUoXkkvPoYUwa23ipxDvPCZFWeER9JjT3Tcw== <script src="/ResourcePackages/VFL/assets/dist/js/main.js" crossorigin="anonymous" integrity="sha256-kVmwXlr5s+pvrJ0FUHQYT8LXpcWZcGQFY+7Gvc+NUzA=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/owl.carousel.min.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 11412/44348 Bytes
	ETag: "0e542384dd81:0"
	local SRI possible, possible hash-values: sha256-TgeBvdLLtdsE2jteBZ7so04yX6u4k77nRXtbq/W3wCk= sha384-cO2lde/a/fgTDiz6FTogh5uTQxdgqTbhoQ4eY2Fs9MJb/lh9ko5e54zLx9CoxLtT sha512-lgt2ETx4IgrMHIfkN8Zpj78QZrjPexWm1NM/Matp2OFr2YI8B84Yl9tNC9/giznlxwhbeaeo74B2DofZqnieLg== <script src="/ResourcePackages/VFL/assets/dist/js/owl.carousel.min.js" crossorigin="anonymous" integrity="sha256-TgeBvdLLtdsE2jteBZ7so04yX6u4k77nRXtbq/W3wCk=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/plugins.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 17666/52104 Bytes
	ETag: "0f323b0f24dd81:0"
	local SRI possible, possible hash-values: sha256-hXaEpcYBB+he/pVL07wBCpkqxWI30VPFMHlkInBQSUY= sha384-8AuUEUhaEIuWWAFXmrgGnRK6IdoIZbGHICfXTLg44cCvLhQSwNe7a4bUG1tNa/Ui sha512-1qvfz1/hpBQMu/sJQQjMzcAZrrKxE2+SrocgVeChlMEn0RUNIV49nd9yCCQWfmYrzIgc8UT+4qr6DaqF/tRjrQ== <script src="/ResourcePackages/VFL/assets/dist/js/plugins.js" crossorigin="anonymous" integrity="sha256-hXaEpcYBB+he/pVL07wBCpkqxWI30VPFMHlkInBQSUY=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/revolution.extension.actions.min.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 2181/7497 Bytes
	ETag: "0e542384dd81:0"
	local SRI possible, possible hash-values: sha256-7G/b0wdxA6ateL1PR/og2s6m1vSZu8NRztu6EjUlUDs= sha384-YW/Zh5NV3PrRLRnq8kdzuBC1L7ZXiBrJt3bonpluwqBbYA6JneMIPkyq1Y+fkQwY sha512-CsypHm+oTVPrQJEt/X81zvxb1xcvNnVulCiqWT2rBGj5Z9gjSV9dwrWrMlwmvgXWyxiww/EZXIIVJwYtN9DPWQ== <script src="/ResourcePackages/VFL/assets/dist/js/revolution.extension.actions.min.js" crossorigin="anonymous" integrity="sha256-7G/b0wdxA6ateL1PR/og2s6m1vSZu8NRztu6EjUlUDs=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/revolution.extension.carousel.min.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 2473/7359 Bytes
	ETag: "0e542384dd81:0"
	local SRI possible, possible hash-values: sha256-RXHFWGvrD/iqNApnm4w3Dmoj8OBNhWAcBf7TebiBMgA= sha384-MVZCEPpVfoxVKRrmoSsAHJXwPUQ8540pXZ1158KgJMQNRQQBwXFOcl7gy2m76lB2 sha512-dMASxa30u8zL3qKffY13AsUR35M+2CgOgtX+9Ohb+sjDJfvSrsBLA+5nCyFsOphDjvImjjdJzPo60PV29tWmhg== <script src="/ResourcePackages/VFL/assets/dist/js/revolution.extension.carousel.min.js" crossorigin="anonymous" integrity="sha256-RXHFWGvrD/iqNApnm4w3Dmoj8OBNhWAcBf7TebiBMgA=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/revolution.extension.kenburn.min.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 1289/3119 Bytes
	ETag: "0e542384dd81:0"
	local SRI possible, possible hash-values: sha256-i0MBe2dqxzSfgXPfqtekyXtIrINy6xcqupZzADP8kCQ= sha384-rii8mEyYbpHG0IfA0d6pwSpcgR0qioJ7d4Do5No7wS8WdDgYJhFvTWlHOeF/rABn sha512-Oa+4uRsJUUyHOBEZxFK1TUJGqyir1oVmLsDnHpS7iJe0JPMfCnzQrQNBFtIMBEKqHN+Q9E7nPdsKVfvVII3nFQ== <script src="/ResourcePackages/VFL/assets/dist/js/revolution.extension.kenburn.min.js" crossorigin="anonymous" integrity="sha256-i0MBe2dqxzSfgXPfqtekyXtIrINy6xcqupZzADP8kCQ=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/revolution.extension.layeranimation.min.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 8879/31988 Bytes
	ETag: "0e542384dd81:0"
	local SRI possible, possible hash-values: sha256-MZMMANOfNtjkCPoOv+H8cBhvep9E7P9C1pqVb+CYznQ= sha384-atKV2vLR7jhKhAh3T9bFkI+MJnqIehptDR5zkioHfWDtdwmiL4Uu52EKGu2GD8I7 sha512-zFbLBbjBEOOjKUnnsSpBdyMJ3i0JsnIKwg8kyEJ3I/n8BU15Dorlr8DuoiT/GyGpZiy8oD5IoY2ENUApLEGUPg== <script src="/ResourcePackages/VFL/assets/dist/js/revolution.extension.layeranimation.min.js" crossorigin="anonymous" integrity="sha256-MZMMANOfNtjkCPoOv+H8cBhvep9E7P9C1pqVb+CYznQ=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/revolution.extension.migration.min.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 1757/6110 Bytes
	ETag: "0e542384dd81:0"
	local SRI possible, possible hash-values: sha256-389BMpdf8UwvH5z9xOx7aJ/Brgk/f5iGN8UqVZ4mC2Q= sha384-w2zjSvFE9IZpKahDG6cTrP+3F6aBo+ZEcCm1yw8+K8npoHD825bP4nMhuafO1gwD sha512-k6Jd7WTRJUTky+myB1xegfsM6c5HtqYHcjGGPLmUKLaWRHYrbazJ5Rb5+DoOFnqukbl4K2M6DsuMjaYRO8M6Hg== <script src="/ResourcePackages/VFL/assets/dist/js/revolution.extension.migration.min.js" crossorigin="anonymous" integrity="sha256-389BMpdf8UwvH5z9xOx7aJ/Brgk/f5iGN8UqVZ4mC2Q=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/revolution.extension.navigation.min.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 6934/25833 Bytes
	ETag: "0e542384dd81:0"
	local SRI possible, possible hash-values: sha256-ifWE+CBl0/S4lpitdIvUdnyj4WLHHMlalwv4cJyqGNs= sha384-H93LgEFtN2jc0ilHjZmgTQiH7nU86HriD4kDEcsnKo6g0LqTppwPtfhAIhLC4g36 sha512-NJh5YvoIL/pzwez/n/TUbztm4vyv7lCaOGyiTBX6/gLwabz5ANmZc4c7rin1SiauQMJ9tNucHNzjkl/zAbiULA== <script src="/ResourcePackages/VFL/assets/dist/js/revolution.extension.navigation.min.js" crossorigin="anonymous" integrity="sha256-ifWE+CBl0/S4lpitdIvUdnyj4WLHHMlalwv4cJyqGNs=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/revolution.extension.parallax.min.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 2503/8580 Bytes
	ETag: "0e542384dd81:0"
	local SRI possible, possible hash-values: sha256-NibqmRR43bEzadp9EKYbAfOSJPm1E3QC764XXutsY8A= sha384-YW5tvloklfVII7aVxKz1bBR/D3sOkfMt1RSNmwLf5oZZw4C6cc9EKqaeSEOJXRdN sha512-cdbbh6tROl5NbOKeUXPmmyRDiE4Hfm8kQJxX6CdVlA7+c1fB7kAm1tkX2rBUyztpc0BxHpyBx619thFuDPcK2g== <script src="/ResourcePackages/VFL/assets/dist/js/revolution.extension.parallax.min.js" crossorigin="anonymous" integrity="sha256-NibqmRR43bEzadp9EKYbAfOSJPm1E3QC764XXutsY8A=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/revolution.extension.slideanims.min.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 6613/28131 Bytes
	ETag: "0e542384dd81:0"
	local SRI possible, possible hash-values: sha256-2Iop3GvEJpIKi6A88eUUc2AG6FHfPt4jWGSl+Y2SccY= sha384-OOwyyJIrQHYSVK5QRSiTTELJ6x8DVaC68vu/KKGOyDvd2Zb71/wYhrMQulfcx2rr sha512-1jyIhFvWYD/YWUaNit1jxYPPlrEgf2i75umdsTWb1rOfI4kqtSkiMe+fa0/E3FRtobAtk5pYMQ2G2a5DoVOG6g== <script src="/ResourcePackages/VFL/assets/dist/js/revolution.extension.slideanims.min.js" crossorigin="anonymous" integrity="sha256-2Iop3GvEJpIKi6A88eUUc2AG6FHfPt4jWGSl+Y2SccY=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/revolution.extension.video.min.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 5855/23249 Bytes
	ETag: "0e542384dd81:0"
	local SRI possible, possible hash-values: sha256-dkhN0altc/4JL3EzQXE6XJUYY5+FsBrW6A/m9Rm4HaU= sha384-d8zkoYzBRfXI4Hk9UvdFtsl3FyfOAvkv3epInhOuZscLZPqsKjOil/v+FEBJoP63 sha512-TjeiDFlraRfNdH9Tj57l0/SQmjkfkC5wAX00Otic/u8NnxkjlbK5OUrHA5oxDw6+U3MMB2pRf3QVaGVh/YFJrA== <script src="/ResourcePackages/VFL/assets/dist/js/revolution.extension.video.min.js" crossorigin="anonymous" integrity="sha256-dkhN0altc/4JL3EzQXE6XJUYY5+FsBrW6A/m9Rm4HaU=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/rev-slider.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 1359/16776 Bytes
	ETag: "0e542384dd81:0"
	local SRI possible, possible hash-values: sha256-jpkCNaIEjtXrMdsgyPm5f61danzjhQO/QP3ODN+KK40= sha384-yCD28sttTKcR6ASVPqEz5s9mmoNxlOiZDk7Vt6dCBVyAuv6LTToM4XiaKbeK/0zA sha512-lPcbnon94lv8SXnwXm7s8BZgIC+LugnxIV1Jy8NwhO5q8jy+pjZybE+0a9HeUUo890YZnY+BSUOeKlCZE7E8jg== <script src="/ResourcePackages/VFL/assets/dist/js/rev-slider.js" crossorigin="anonymous" integrity="sha256-jpkCNaIEjtXrMdsgyPm5f61danzjhQO/QP3ODN+KK40=" />

	script	src	/ScriptResource.axd?d=EydukmxBmDstn7gSYzQESPaxJ_6K1wvsUYrg4lHqGqcSqmpU1DyKJjOiM5eqd27-3_ZHAx6RxLY2lICx9J7yOdOW4TiqBTtsXGALy26-b1boUktjHKTJNnxiDKyLyaACV_UzQyhS2EGS3OOPU3OMQ62xH_Pd3q1Be_hwVPSGBV1RblGaKPTkYvI2u7Nj2_9x0&t=9721f93		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/x-javascript; charset=utf-8 X-Content-Type-Options nosniff found		Unknown Combination of MediaType "application" and Media Sub Type "x-javascript". Combinations must be IANA-registered, see https://www.iana.org/assignments/media-types/media-types.xhtml		Problems with Content-Type - Header - see details
	Cache-Control: public - max-age missing.			Compression required: 8271 Bytes
	local SRI possible, possible hash-values: sha256-dUW4gjhp+MaAv+nHP40tkpXZjokaWPJrGGpzecxsfq0= sha384-karz7369yPpvMpXFArqB2gjfiN420l7x+jj5rJSy3E+icDtIkqt8Df8WWs6K6hnu sha512-reaTj+2tALzkYY4GVWAfqu07Yhz+OEzVwARDnNOGBjlHBxaVbNWxtZ1XKzJhaVn4qv2P1h7VNGXjwG0azJi5EQ== <script src="/ScriptResource.axd?d=EydukmxBmDstn7gSYzQESPaxJ_6K1wvsUYrg4lHqGqcSqmpU1DyKJjOiM5eqd27-3_ZHAx6RxLY2lICx9J7yOdOW4TiqBTtsXGALy26-b1boUktjHKTJNnxiDKyLyaACV_UzQyhS2EGS3OOPU3OMQ62xH_Pd3q1Be_hwVPSGBV1RblGaKPTkYvI2u7Nj2_9x0&t=9721f93" crossorigin="anonymous" integrity="sha256-dUW4gjhp+MaAv+nHP40tkpXZjokaWPJrGGpzecxsfq0=" />

	script	src	/ScriptResource.axd?d=okuX3IVIBwfJlfEQK32K3uLGcUuGX4_RU9vtteykKnxpg3JMUcNQ9ymxosQ1lAgpFmu4f4g3qYR1smk-WDc5TZmRIaiUOSjTVHyMmH_WxWh7JeukaE98lbT_GJHYGqPyXrTCZY09aDPnCqUVOHix3C6oyDQLQv8kK6_x4-H8huDR7vpkoXmcfg0rc5djLE5B0&t=9721f93		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/x-javascript; charset=utf-8 X-Content-Type-Options nosniff found		Unknown Combination of MediaType "application" and Media Sub Type "x-javascript". Combinations must be IANA-registered, see https://www.iana.org/assignments/media-types/media-types.xhtml		Problems with Content-Type - Header - see details
	Cache-Control: public - max-age missing.			Compression required: 89478 Bytes
	local SRI possible, possible hash-values: sha256-82hEkGrSMJh3quMSG4f7FbngmAPLTDM63H4eNayS4Us= sha384-I9nvsY534/cx2CBx9qnDDuNkP4tBw4Va7eW8+2CXSaiPmfhB42fq032++kvT8woz sha512-WIJzXZoCOcXGPFyHuBYY48jcCdfXQ8NETFNblUe5tl3vpQnXgEVSxYHLhLYd0SJeKt1dymsSCGjsIB+peVBPSw== <script src="/ScriptResource.axd?d=okuX3IVIBwfJlfEQK32K3uLGcUuGX4_RU9vtteykKnxpg3JMUcNQ9ymxosQ1lAgpFmu4f4g3qYR1smk-WDc5TZmRIaiUOSjTVHyMmH_WxWh7JeukaE98lbT_GJHYGqPyXrTCZY09aDPnCqUVOHix3C6oyDQLQv8kK6_x4-H8huDR7vpkoXmcfg0rc5djLE5B0&t=9721f93" crossorigin="anonymous" integrity="sha256-82hEkGrSMJh3quMSG4f7FbngmAPLTDM63H4eNayS4Us=" />

	script	src	/ScriptResource.axd?d=VKaJmfFWDpQxp1_HxsR1qCn-klAHe5SukcxBVAylNKU5Tlmk_gPpSzbHV6rERLjHblLSZ7w24HvgyrrmdOUhxMVWL3nb532dQxBzLLemKwCqna4j0gZCSNq7L421NXt7HL38EN3HtacharT8MBGTBQfyWlR8B06F9-Gf-dIndvCJ7-E98ec95kpd8njJ38yH1hwcpQAYLcLAVudPH1fx-A2&t=9721f93		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/x-javascript; charset=utf-8 X-Content-Type-Options nosniff found		Unknown Combination of MediaType "application" and Media Sub Type "x-javascript". Combinations must be IANA-registered, see https://www.iana.org/assignments/media-types/media-types.xhtml		Problems with Content-Type - Header - see details
	Cache-Control: public - max-age missing.			Compression required: 253621 Bytes
	local SRI possible, possible hash-values: sha256-W4EnYMyaJGslgrjyvGQ9oudpll4VyDo1ArtGJjrlByY= sha384-FkUEzte0TXXUwhOoQrKtJdV6oMxVYYsegA/Csw0NL6Ve1Ib2wfCpdV4JRea+mMF4 sha512-QY0qkthNlnoYWifi4G2l232chgfnTb6c1kxnmMktBkGpmmEOuTrlOiCcAd3ztPjTfbsSOCGqiXEP/kLS4DiYcA== <script src="/ScriptResource.axd?d=VKaJmfFWDpQxp1_HxsR1qCn-klAHe5SukcxBVAylNKU5Tlmk_gPpSzbHV6rERLjHblLSZ7w24HvgyrrmdOUhxMVWL3nb532dQxBzLLemKwCqna4j0gZCSNq7L421NXt7HL38EN3HtacharT8MBGTBQfyWlR8B06F9-Gf-dIndvCJ7-E98ec95kpd8njJ38yH1hwcpQAYLcLAVudPH1fx-A2&t=9721f93" crossorigin="anonymous" integrity="sha256-W4EnYMyaJGslgrjyvGQ9oudpll4VyDo1ArtGJjrlByY=" />

	script	src	https://maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript; charset=utf-8 X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: public, max-age=31919000 - with long duration found.			Compression (br): 13551/48944 Bytes
	ETag: "14d449eb8876fa55e1ef3c2cc52b0c17"
	Server-Header Access-Control-Allow-Origin: *			Cross-Origin Resource Sharing (CORS) supported
	integrity: sha384-JZR6Spejh4U02d8jOt6vLEHfe/JQGiRRSQQxSfFWpi1MquVdAyjUar5+76PVCmYl crossorigin: anonymous				No SRI Parse error			valid

	script	src	https://wbcfj.gateway.mastercard.com/form/version/52/merchant/TESTFJ82046592/session.js		200		1	ok
	Missing defer / async attribute.			text/javascript; charset=UTF-8 X-Content-Type-Options nosniff found				ok
				Compression (gzip): 39346/116394 Bytes
	Server-Header Access-Control-Allow-Origin: not found			Cross-Origin Resource Sharing (CORS) not supported

	script	src	https://webchat.vodafone.com.pg/CustomerChat/Chat/Toolbox		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript; charset=utf-8 missing X-Content-Type-Options nosniff		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: private - max-age missing.			Compression required: 5327 Bytes
	Server-Header Access-Control-Allow-Origin: https://vodafone.com.pg,*			Cross-Origin Resource Sharing (CORS) not supported

	script	src	https://www.googletagmanager.com/gtag/js?id=G-XMZ6J6JE09		200		1	Problems with Content-Type - Header - see details
	async attribute found			application/javascript; charset=UTF-8 missing X-Content-Type-Options nosniff		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=900, private - max-age too short.			Compression (gzip): 177832/546969 Bytes
	Server-Header Access-Control-Allow-Origin: https://vodafone.com.pg			Cross-Origin Resource Sharing (CORS) not supported

https://www.vodafone.com.pg/ 43.245.58.77	a						3	ok
								ok


	a		#				4	ok
								ok


	a		/				2	ok
								ok


	a		/about				2	ok
								ok


	a		/about/about-us				1	ok
								ok


	a		/about/careers				1	ok
								ok


	a		/about/privacy-policy				1	ok
								ok


	a		/about/store-locations				3	ok
								ok


	a		/business				2	ok
								ok


	a		/business/products-and-solutions				1	ok
								ok


	a		/e-Shop/checkout/Preview/				1	ok
								ok


	a		/help				3	ok
								ok


	a		/my-corporate/dashboard				2	ok
								ok


	a		/my-corporate/Dashboard/				1	ok
								ok


	a		/my-vodafone/dashboard				1	ok
								ok


	a		/my-vodafone/direct-top-up				1	ok
								ok


	a		/my-vodafone/web-top-up				3	ok
								ok


	a		/my-vodafone-login				1	ok
								ok


	a		/personal				1	ok
								ok


	a		/personal/news-blog				1	ok
								ok


	a		/personal/prepaid				2	ok
								ok


	a		/personal/prepaid/mobile-broadband				2	ok
								ok


	a		/personal/prepaid/mobile-broadband/broadband-devices				2	ok
								ok


	a		/personal/prepaid/mobile-broadband/broadband-topup				2	ok
								ok


	a		/personal/prepaid/mobile-broadband/data-device-setup-guide				2	ok
								ok


	a		/personal/prepaid/mobile-broadband/terms-and-conditions				2	ok
								ok


	a		/personal/prepaid/mobile-internet				2	ok
								ok


	a		/personal/prepaid/mobile-internet/faqs---4g				2	ok
								ok


	a		/personal/prepaid/mobile-internet/faq's---mobile-internet				2	ok
								ok


	a		/personal/prepaid/mobile-internet/Konektplans				2	ok
								ok


	a		/personal/prepaid/mobile-internet/pay-as-you-go				2	ok
								ok


	a		/personal/prepaid/mobile-internet/setup-guide				2	ok
								ok


	a		/personal/prepaid/mobile-internet/terms-conditions				2	ok
								ok


	a		/personal/prepaid/new-plans				3	ok
								ok


	a		/personal/prepaid/new-plans/newcombo-packs				2	ok
								ok


	a		/personal/prepaid/new-plans/toktokplans				2	ok
								ok


	a		/personal/prepaid/new-plans/wantok-kombo-plans				2	ok
								ok


	a		/personal/prepaid/rates				2	ok
								ok


	a		/personal/prepaid/rates/international-call-rates				2	ok
								ok


	a		/personal/prepaid/rates/recharge-validity				2	ok
								ok


	a		/personal/prepaid/rates/roaming-rates				3	ok
								ok


	a		/personal/prepaid/rates/standard-rates				2	ok
								ok


	a		/personal/products-services				3	ok
								ok


	a		/personal/products-services/discover-more				2	ok
								ok


	a		/personal/products-services/discover-more/change-system-language				2	ok
								ok


	a		/personal/products-services/discover-more/device-information				2	ok
								ok


	a		/personal/products-services/discover-more/esim				2	ok
								ok


	a		/personal/products-services/discover-more/voicemail				2	ok
								ok


	a		/personal/products-services/low-balance-service				2	ok
								ok


	a		/personal/products-services/low-balance-service/borrowcreditonloan				2	ok
								ok


	a		/personal/products-services/low-balance-service/call-me-back				2	ok
								ok


	a		/personal/products-services/low-balance-service/pay4mevoiceservice				2	ok
								ok


	a		/personal/products-services/low-balance-service/share-credit				2	ok
								ok


	a		/personal/products-services/low-balance-service/top-up-me				2	ok
								ok


	a		/personal/products-services/mobile-apps				2	ok
								ok


	a		/personal/products-services/mobile-apps/my-vodafone-mobile-app				2	ok
								ok


	a		/personal/products-services/mobile-apps/my-vodafone-mobile-app/cookies-policy				1	ok
								ok


	a		/personal/products-services/mobile-apps/my-vodafone-mobile-app/privacy-cookie-policy				1	ok
								ok


	a		/personal/products-services/mobile-apps/my-vodafone-mobile-app/terms-and-conditions				1	ok
								ok


	a		/personal/products-services/topup-options				2	ok
								ok


	a		/personal/products-services/topup-options/international-top-up				2	ok
								ok


	a		/personal/products-services/topup-options/international-top-up/ding-international-top-up				1	ok
								ok


	a		/personal/products-services/topup-options/topup-agents				2	ok
								ok


	a		/personal/specials-offers				5	ok
								ok


	a		/personal/specials-offers/devices				2	ok
								ok


	a		/personal/specials-offers/devices/apple-iphone				3	ok
								ok


	a		/personal/specials-offers/devices/mix_devices				3	ok
								ok


	a		/personal/specials-offers/devices/pocket-wifi				3	ok
								ok


	a		/personal/specials-offers/devices/samsung				3	ok
								ok


	a		/personal/specials-offers/promotions				2	ok
								ok


	a		/personal/specials-offers/promotions/free-sim-offer				3	ok
								ok


	a		/personal/specials-offers/promotions/Hourly-Passes				2	ok
								ok


	a		/personal/specials-offers/promotions/international-calls1				2	ok
								ok


	a		/personal/specials-offers/promotions/Nait-Plan				2	ok
								ok


	a		/personal/specials-offers/promotions/supa-sunday				2	ok
								ok


	a		/personal/specials-offers/specials				2	ok
								ok


	a		/personal/specials-offers/specials/doubleup				3	ok
								ok


	a		/personal/specials-offers/specials/free-voda-tok2				2	ok
								ok


	a		/personal/specials-offers/specials/giftingplans				2	ok
								ok


	a		/personal/specials-offers/specials/mywantok				1	ok
								ok


	a		/privacy-policy				1	ok
								ok


	a		/sitemap				1	ok
								ok


	a		/terms-conditions				1	ok
								ok


	a		https://pg.linkedin.com/company/vodafone-png				1	ok
								ok


	a		https://vodafone.com.pg/personal/specials-offers/devices/mix_devices				2	ok
								ok


	a		https://vodafone.com.pg/personal/specials-offers/promotions/free-sim-offer				2	ok
								ok


	a		https://vodafone.com.pg/personal/specials-offers/specials/doubleup				2	ok
								ok


	a		https://vodafone.com.pg/personal/specials-offers/specials/free-voda-tok2				2	ok
								ok


	a		https://vodafone.com.pg/personal/specials-offers/specials/giftingplans				2	ok
								ok


	a		https://www.facebook.com/Vodafone-Papua-New-Guinea-110483477954794				1	ok
								ok


	a		https://www.instagram.com/vodafonepapuanewguinea/				1	ok
								ok


	a		https://www.tiktok.com/@vodafonepng				1	ok
								ok


	a		https://www.vodafone.com.pg/personal/products-services/mobile-apps/my-vodafone-mobile-app				2	ok
								ok


	a		https://www.youtube.com/channel/UCZq9cyLU6afyu_YkvlL6Tzw?app=desktop				1	ok
								ok


	a		https://x.com/Vodafone_PNG				1	ok
								ok


	form						1	ok
								ok


	iframe (1)	src	https://www.googletagmanager.com/ns.html?id=GTM-TL6DXKS				1	Attribute values must be enclosed with " or ' (Unicode Codepoint 34 or 39).



	img	src	/images/default-source/features/departures.svg?sfvrsn=15cc075f_2		200		1	ok
	alt: image			image/svg+xml X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 1150 Bytes

	img	src	/images/default-source/features/handshake.svg?sfvrsn=497de330_2		200		1	ok
	alt: image			image/svg+xml X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 7259 Bytes

	img	src	/images/default-source/features/mybill.svg?sfvrsn=7494ac7a_2		200		1	ok
	alt: image			image/svg+xml X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 1741 Bytes

	img	src	/images/default-source/features/online-payment.svg?sfvrsn=705fc68f_2		200		1	ok
	alt: image			image/svg+xml X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 6038 Bytes

	img	src	/images/default-source/features/placeholder.svg?sfvrsn=f3421ce2_2		200		1	ok
	alt: image			image/svg+xml X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 1416 Bytes

	img	src	/images/default-source/features/user.svg?sfvrsn=17602379_2		200		1	ok
	alt: image			image/svg+xml X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			898 Bytes

	img	src	/images/default-source/footer-images/logo-footer		200		1	ok
	alt: Vodafone PNG			image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 16972 Bytes

	img	src	/images/default-source/home/1024e37e5ad9a41778e3c8f3137aa5105.png?sfvrsn=20d47697_0		200		1	ok
	alt: Image 1			image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 281267 Bytes

	img	src	/images/default-source/home/4.png?sfvrsn=5cb620c6_1		200		1	ok
	alt: Image			image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 103504 Bytes

	img	src	/images/default-source/home/530d18096-ea4f-4d31-8c7e-3eeaf93fdb32.png?sfvrsn=b4a308bf_1		200		1	ok
	alt: Image 2			image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 70112 Bytes

	img	src	/images/default-source/home/69e9c0b8e5a00469fbdac7090685c5d99.png?sfvrsn=b49c4d88_0		200		1	ok
	alt: Image 1			image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 340215 Bytes

	img	src	/images/default-source/home/7.png?sfvrsn=77f6ff_1		200		1	ok
	alt: Image 1			image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 44970 Bytes

	img	src	/images/default-source/home/8.png?sfvrsn=535684dc_1		200		1	ok
	alt: Image 2			image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 52083 Bytes

	img	src	/images/default-source/home/9.png?sfvrsn=79259d7f_1		200		1	ok
	alt: Image 3			image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 44255 Bytes

	img	src	/images/default-source/home/web-elements_gox-(2).png?sfvrsn=3090ebdc_1/WEB-ELEMENTS_GOx-(2).png		200		1	ok
	alt: Image			image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 92254 Bytes

	img	src	/images/default-source/home/web-elements_gox2a807df1-96b4-4e64-b436-0747db4793ff.png?sfvrsn=946ec886_1/		200		1	ok
	alt: Image 3			image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 65935 Bytes

	img	src	/images/default-source/logo/logo.png?sfvrsn=ce556a2e_2		200		1	ok
	alt: logo			image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 2997 Bytes

	img	src	/ResourcePackages/VFL/assets/dist/images/social/sa-x.png		200		1	ok
	alt: image			image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: max-age=2592000 with long duration found.			No Compression - 648 Bytes
	ETag: "903dfeadfbedb1:0"

	img	src	https://www.facebook.com/tr?id=505771264359188&ev=PageView&noscript=1		200		1	ok
	no alt-Attribute			text/plain missing X-Content-Type-Options nosniff				ok
				0 Bytes
	Server-Header Access-Control-Allow-Origin: https://www.vodafone.com.pg			Cross-Origin Resource Sharing (CORS) not supported

	img	src	https://www.vodafone.com.pg/images/default-source/about-us/double-data-b7174ef8-dab3-44ca-80fe-0a665f26460f.jpg?sfvrsn=d92021c7_1		200		1	ok
	no alt-Attribute			image/jpeg X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 4220726 Bytes

	img	src	https://www.vodafone.com.pg/images/default-source/about-us/free-sime73c7b58-11d4-4a46-b4ab-8c4a200c6174.jpg?sfvrsn=cf45f29d_2		200		1	ok
	no alt-Attribute			image/jpeg X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 308053 Bytes

	img	src	https://www.vodafone.com.pg/images/default-source/about-us/web-voda_tok_-7pm-7am-may-(1920-x-1000-px)-(19).jpg?sfvrsn=2fd9e5cf_1		200		1	ok
	no alt-Attribute			image/jpeg X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 2968504 Bytes

	img	src	https://www.vodafone.com.pg/images/default-source/about-us/web-voda_tok_-7pm-7am-may-(1920-x-1000-px)-(20).jpg?sfvrsn=c29da06a_1		200		1	ok
	no alt-Attribute			image/jpeg X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 2754633 Bytes

	img	src	https://www.vodafone.com.pg/images/default-source/about-us/web-voda_tok_-7pm-7am-may-(1920-x-1000-px)-(21)1143fd81-9957-4d35-b727-1d9a0aafa9c0.jpg?sfvrsn=2464a7bc_1		200		1	ok
	no alt-Attribute			image/jpeg X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=7776000 with long duration found.			No Compression - 4360802 Bytes

	link	alternate	https://www.vodafone.com.pg				1	ok
								ok


	link	canonical	https://vodafone.com.pg				1	ok
								ok


	link	shortcut icon	/favicon.png		200		1	ok
				image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: max-age=2592000 with long duration found.			No Compression - 2059 Bytes
	ETag: "aca1dd3384dd81:0"

	link	stylesheet	/ResourcePackages/VFL/assets/dist/css/custom.css?package=VFL		200		1	ok
				text/css X-Content-Type-Options nosniff found				ok
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 16756/89858 Bytes
	ETag: "0fd7e338361d81:0"
	local SRI possible, possible hash-values: sha256-/+ApCCstJv+yXP7kureQEi2a4MTX7nn/G/PAGUYj5zo= sha384-Y0PQTXPs7cgWogPM6k7vGRfSG3Z92ifM4CimYdiR91whsxIzvDYygyX1BnWLBJj2 sha512-4SgScTaZwox79F425XXVk6PnvYG7VeNhfxKds1bxOCHkZ87aG5QIUdUseeJG4T6ZsNfSAepBSBO3WRUf7SsUFA== <link rel="stylesheet" href="/ResourcePackages/VFL/assets/dist/css/custom.css?package=VFL" crossorigin="anonymous" integrity="sha256-/+ApCCstJv+yXP7kureQEi2a4MTX7nn/G/PAGUYj5zo=" />

	link	stylesheet	/ResourcePackages/VFL/assets/dist/css/font-awesome.min.css?package=VFL		200		1	ok
				text/css X-Content-Type-Options nosniff found				ok
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 6995/31004 Bytes
	ETag: "0e542384dd81:0"
	local SRI possible, possible hash-values: sha256-gg4WnOJIJAZtmXP9S2Vhqunc1tvvZDXakF1aHWSCmXw= sha384-aJb1qS3I4QnLhRo7PnB30F9VFxyRk6tR7Fh1y4a656NR3gZbyoFkiDcUo53Nb9Y9 sha512-lxSWMsFeszaQJzq/p4Y2rQRxmZNj4Rv1nKYaTeMkRObymds7gNUrLpQ3xkXsI1+o07jCDcw1DbueF18Ss4SaZA== <link rel="stylesheet" href="/ResourcePackages/VFL/assets/dist/css/font-awesome.min.css?package=VFL" crossorigin="anonymous" integrity="sha256-gg4WnOJIJAZtmXP9S2Vhqunc1tvvZDXakF1aHWSCmXw=" />

	link	stylesheet	/ResourcePackages/VFL/assets/dist/css/menu.css?package=VFL		200		1	ok
				text/css X-Content-Type-Options nosniff found				ok
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 1116/3745 Bytes
	ETag: "0e542384dd81:0"
	local SRI possible, possible hash-values: sha256-ZyfWrTzsBCFgmA9d6ZkXyCMh89pIvF1oz+YPh4VJddY= sha384-srtZ2YN7mR3sOYBvdSmrEi4Grd4JHiKVvU3IPGy2kd7ZLvpG0p3l94ZzWXOxhzzz sha512-0IQOonzSUcTWb18p4Fs00iwek75BCu2Le9EDHoF0e3Ssd+h+qUtJf8bMROMsIB3inrw7xhAFBaNDDxbC/hsCXw== <link rel="stylesheet" href="/ResourcePackages/VFL/assets/dist/css/menu.css?package=VFL" crossorigin="anonymous" integrity="sha256-ZyfWrTzsBCFgmA9d6ZkXyCMh89pIvF1oz+YPh4VJddY=" />

	link	stylesheet	/ResourcePackages/VFL/assets/dist/css/responsive.css?package=VFL		200		1	ok
				text/css X-Content-Type-Options nosniff found				ok
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 3329/20379 Bytes
	ETag: "0a9183209ddb1:0"
	local SRI possible, possible hash-values: sha256-8D4REDlqJUpAuSWxeDiurHEbYQklcqLnFO+6N4CqHwE= sha384-K8G+jy9VAZVjQDjZ7U2bO0q9RQlu6StY+3SRR7Uw4UhvvqV7smrukeCj833wxxcu sha512-4UQ1wNM6p1kfaGR3XILkGF9RkxbA+KC3t9HwWaI44DOytBrybUCKihJ2V1EE3xEeK+GciR4A++kga9+iueaDsw== <link rel="stylesheet" href="/ResourcePackages/VFL/assets/dist/css/responsive.css?package=VFL" crossorigin="anonymous" integrity="sha256-8D4REDlqJUpAuSWxeDiurHEbYQklcqLnFO+6N4CqHwE=" />

	link	stylesheet	/ResourcePackages/VFL/assets/dist/css/style.css?package=VFL		200		1	ok
				text/css X-Content-Type-Options nosniff found				ok
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 14387/74543 Bytes
	ETag: "801f2b71fbedb1:0"
	local SRI possible, possible hash-values: sha256-PP5zinlgYxADQCaZhgIhPB/6wUHfNI/4GJD6LMHAE/E= sha384-YNUqZo5AhOO+q3iia2e3Lav/8rS5ehIn7WXl/eYQbtdxcLuxIxkcE4AUYnS3UX6p sha512-ycWirNuJc7NmJ60vOPfzjhKuhcIcxoFkZ2mAkJb4Vt9o/X/GzNvadzvyJw4pjzEZTuP8PlI0ikLFWw9R0H83vg== <link rel="stylesheet" href="/ResourcePackages/VFL/assets/dist/css/style.css?package=VFL" crossorigin="anonymous" integrity="sha256-PP5zinlgYxADQCaZhgIhPB/6wUHfNI/4GJD6LMHAE/E=" />

	link	stylesheet	/ResourcePackages/VFL/assets/dist/css/woocommerce.css?package=VFL		200		1	ok
				text/css X-Content-Type-Options nosniff found				ok
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 4120/22024 Bytes
	ETag: "0e542384dd81:0"
	local SRI possible, possible hash-values: sha256-LoxzveSRnP3mI8/tvAZE4GJn/LtUYzvmLTepyRzlwUU= sha384-1QZMjUojSSgWtmiDcJrmrOPMNwz81dF+2qBn4c0wW17ffOe4MmZkUyh7cQKpFHZa sha512-zNEoToFrRVPblZ4qAvzMjqG7MqgUbcf5J3xiEulaeCd8Z4ZONGrN234HbUnJLyF1DfYhh4FzgLIHif5oO0EJUg== <link rel="stylesheet" href="/ResourcePackages/VFL/assets/dist/css/woocommerce.css?package=VFL" crossorigin="anonymous" integrity="sha256-LoxzveSRnP3mI8/tvAZE4GJn/LtUYzvmLTepyRzlwUU=" />

	meta	charset	utf-8				1	ok
								ok


	meta	og:description	For all your talk & data needs, get the latest mobile phones, mobile broadband or internet plans with Vodafone. Now offering 4G+ for better experience				1	ok
								ok


	meta	og:site_name	Vodafone - PNG				1	ok
								ok


	meta	og:title	Vodafone PNG \| Mobile Phones, Internet, Broadband Plans				1	ok
								ok


	meta	og:type	website				1	ok
								ok


	meta	og:url	https://vodafone.com.pg		200		1	ok
				text/html; charset=utf-8 X-Content-Type-Options nosniff found				ok
				75952 Bytes
	Server-Header Access-Control-Allow-Origin: not found			Cross-Origin Resource Sharing (CORS) not supported

	meta	Content-Security-Policy	default-src ; style-src 'self' http:// 'unsafe-inline'; script-src 'self' http://* 'unsafe-inline' 'unsafe-eval'				1	ok
								ok


	meta	Content-Security-Policy	default-src gap://ready file://* ; style-src 'self' http:// https://* 'unsafe-inline'; script-src 'self' http://* https://* 'unsafe-inline' 'unsafe-eval'				1	ok
								ok


	meta	description	For all your talk & data needs, get the latest mobile phones, mobile broadband or internet plans with Vodafone. Now offering 4G+ for better experience				1	ok
								ok


	meta	description	Mobile telecommunications company. Includes outlet maps, on-line service, network information, and pricing plans.				1	ok
								ok


	meta	facebook-domain-verification	4sq5qv4nwo9u3sr6bvjvj3oy7k6lln				1	ok
								ok


	meta	Generator	Sitefinity 14.0.7730.0 DX				1	ok
								ok


	meta	keywords	mobile internet, 4G flashnet, text promotions, customer care, price plans, specials, m-kina, samsung galaxy, mobile png, support				1	ok
								ok


	meta	keywords	Vodafone PNG, Plans, Rates, Mobile, internet, broadband, voice, sms, data, roaming				1	ok
								ok


	meta	robots					1	ok
								ok


	meta	viewport	width=device-width, initial-scale=1, maximum-scale=1				1	ok
								ok


	script	src	/Frontend-Assembly/Telerik.Sitefinity.Frontend.Identity/ResourcePackages/VFL/MVC/Scripts/LoginStatus/login-status.js?package=VFL&v=LTE4NjMzODQ4NjE%3d		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
				Compression required: 1681 Bytes
	local SRI possible, possible hash-values: sha256-1y7plopK9MEFxngkJGFwI5W1pPURNH/1X3WExgDpIxc= sha384-RsxDJz7mnLnx55xZMtMWm5XCWlrKsmKHjiEzT67eLsZgeQqWF/GdIqieY3pbPS/o sha512-RcL1U87YstlTSKybXetjh0uFjEWA/3zL2jkTu71RZ3gjoLLk5s8cqYGWIU1nSKps8vhoCoPkhoss5O7AItN/vQ== <script src="/Frontend-Assembly/Telerik.Sitefinity.Frontend.Identity/ResourcePackages/VFL/MVC/Scripts/LoginStatus/login-status.js?package=VFL&v=LTE4NjMzODQ4NjE%3d" crossorigin="anonymous" integrity="sha256-1y7plopK9MEFxngkJGFwI5W1pPURNH/1X3WExgDpIxc=" />

	script	src	/Frontend-Assembly/Telerik.Sitefinity.Frontend.Search/Mvc/Scripts/SearchBox/Search-box.js?package=VFL&v=MTQuMC43NzMwLjA%3d		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
				Compression required: 6882 Bytes
	local SRI possible, possible hash-values: sha256-Pxw09UcBlRxr2PbEK2qoaIkU7L8+rpHcQh7d4PtlGXg= sha384-aqXy/41MZaC52WD5+cKCgui8yNquHbYEBwIAEjD+dIl5nP7947ZKZ5h+IRwduZK+ sha512-OIdxUzFf7LlbWAQXjSQ4rqbr4ymp/93boqe3im2/MdDnKTE2u9l+FoTGFFfJUAVycjtgax8EO9aM1NnCQ+0UGA== <script src="/Frontend-Assembly/Telerik.Sitefinity.Frontend.Search/Mvc/Scripts/SearchBox/Search-box.js?package=VFL&v=MTQuMC43NzMwLjA%3d" crossorigin="anonymous" integrity="sha256-Pxw09UcBlRxr2PbEK2qoaIkU7L8+rpHcQh7d4PtlGXg=" />

	script	src	/ResourcePackages/Bootstrap4/assets/dist/js/bootstrap.min.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 15443/58078 Bytes
	ETag: "014d744534dd81:0"
	local SRI possible, possible hash-values: sha256-O82ALp93hJ58HpPIcnn7uwTUWUnSvnmwNWbOrN4psVg= sha384-lXqCKSCzpmJ9kRbg4c4nQHayMEuwgwGO+SmKQlcp/OuWw054bPqQcHRK9yyRbKpS sha512-Mnv0Cc3RZxcaMA73+V+sXLyAIyCyhy6oRexDT/eYeiHLDwNGqOs8uJFEe5ji5iLD1yG8KVv08m52NlnbuKCZQA== <script src="/ResourcePackages/Bootstrap4/assets/dist/js/bootstrap.min.js" crossorigin="anonymous" integrity="sha256-O82ALp93hJ58HpPIcnn7uwTUWUnSvnmwNWbOrN4psVg=" />

	script	src	/ResourcePackages/Bootstrap4/assets/dist/js/popper.min.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 7526/21262 Bytes
	ETag: "014d744534dd81:0"
	local SRI possible, possible hash-values: sha256-A/XDZwqERcCvdaG5NL4Xb2wc3jOfvnaxBizFHlkLypg= sha384-LsC345MdEcKqeNkjUm1MZY2zfeALf4Iqn+DbI/5gdhCoWMoTVQvkd/0n+yOSie0F sha512-fKPYWlEucWQuztdF9x+rMUvzO3DtklD7k8z3JdPT26qXFzT8xzlo9m5hEjA8fkG5LA09tV4FlkBL2SOu7fEI8Q== <script src="/ResourcePackages/Bootstrap4/assets/dist/js/popper.min.js" crossorigin="anonymous" integrity="sha256-A/XDZwqERcCvdaG5NL4Xb2wc3jOfvnaxBizFHlkLypg=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/equalize.min.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			587 Bytes
	ETag: "3945c42384dd81:0"
	local SRI possible, possible hash-values: sha256-F+ix5IV/t6ItWtWT46M40mBnLlLfOfAqLtt6mM0l0A0= sha384-4vJOnHZ9Wyw55OIgNI1mAVUor1VzA6Mk+L5SOPm69OOxUQT1QJNBjD9pJU4K4SVS sha512-Y1VkO1fYYyNSGSwokeRptXO93UfD9PFXP3vVgikaVgNzNV6di9VF/u/Z5a1wCDiBUHwYnExwYmcynb31dztMRg== <script src="/ResourcePackages/VFL/assets/dist/js/equalize.min.js" crossorigin="anonymous" integrity="sha256-F+ix5IV/t6ItWtWT46M40mBnLlLfOfAqLtt6mM0l0A0=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/jquery.min.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 33880/97105 Bytes
	ETag: "0e542384dd81:0"
	local SRI possible, possible hash-values: sha256-x5xAO52rULBHc02Ppu1I1nEEN2EW66hIJ04VzBnfLOg= sha384-GrJBOlHbJsbMDeRsqoKj13KR/saiKRgSQnT+TUCalsuBZ/xN7oEck1KucHI0GKb0 sha512-C/u+KdA3GQYX3rWOMlmhUdFYB+vKAdrHUfNeSlL0ni3AD57sWyWVO6yd/wd2b2VkL1Ydjjd5C7638j3bJW/jYQ== <script src="/ResourcePackages/VFL/assets/dist/js/jquery.min.js" crossorigin="anonymous" integrity="sha256-x5xAO52rULBHc02Ppu1I1nEEN2EW66hIJ04VzBnfLOg=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/jquery.themepunch.revolution.min.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 15094/54824 Bytes
	ETag: "0e542384dd81:0"
	local SRI possible, possible hash-values: sha256-GbRA240L3033x8aDZ0t/0AWnjs2XO1Ce1iWoJnKz4ac= sha384-MiK0nWDMEXh5mb+HrtwRLWn06LbwLt/4nje1PrF0Y+M1aCWVCeJobeB++CP0Z3QY sha512-OoSFjEK15sylFRufxpdLwX5C8pOFdDrrdOrOzrlBUf8/PmJq2HiY28Mt/VOlDzbD+FGU2e0gydKixz1bwR6oSw== <script src="/ResourcePackages/VFL/assets/dist/js/jquery.themepunch.revolution.min.js" crossorigin="anonymous" integrity="sha256-GbRA240L3033x8aDZ0t/0AWnjs2XO1Ce1iWoJnKz4ac=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/jquery.themepunch.tools.min.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 36120/104767 Bytes
	ETag: "0e542384dd81:0"
	local SRI possible, possible hash-values: sha256-dyLraeUAzUF61oAE/1aDUdPUf67pSEaMMRqN0896dw0= sha384-Up2ZBoQFVRBYpXrkgqMNtisRc9jOgPsTlwd33VFLWvk4DiDPj2017htuZJXJXf/1 sha512-CcYOp8j8vPO1lYHO6RYLSAEGJwAoCfrrW3KwtcXlanNUeSs7aH2HCQ2492M//NWrznPIk0SwUYNGIBbitJlDrg== <script src="/ResourcePackages/VFL/assets/dist/js/jquery.themepunch.tools.min.js" crossorigin="anonymous" integrity="sha256-dyLraeUAzUF61oAE/1aDUdPUf67pSEaMMRqN0896dw0=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/jquery-countTo.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression required: 2581 Bytes
	ETag: "3945c42384dd81:0"
	local SRI possible, possible hash-values: sha256-R0dU11VI+tdAu1geSwWWy5ocC0fPwD+Kbic8xtqbkIA= sha384-bDtVLDHABdmVeKZPCPQzXxzPYRZQn5oMST54L/VyMaWpQvdjZv6Le5ccgJN/Ws8f sha512-MGYq/SJcFnP32wfvbKg4oqJnrFT8hRNpm8bVeulvGm9vkOoyoFNKye6IZNrDPI4mNuEmE/Whz68paaDlN2NzLQ== <script src="/ResourcePackages/VFL/assets/dist/js/jquery-countTo.js" crossorigin="anonymous" integrity="sha256-R0dU11VI+tdAu1geSwWWy5ocC0fPwD+Kbic8xtqbkIA=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/main.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 5250/28984 Bytes
	ETag: "014d744534dd81:0"
	local SRI possible, possible hash-values: sha256-kVmwXlr5s+pvrJ0FUHQYT8LXpcWZcGQFY+7Gvc+NUzA= sha384-q69ZgZtXxH3xBPpKMrU7RxjcPvA/96Wjc9Yt+xtkfTsKQeuaP2wiOKtcpvxcx0I2 sha512-IM+8zkEN6dCH9W5b68RdFz4eo+o221q9euN38kDXg97fzTs/lPsUoXkkvPoYUwa23ipxDvPCZFWeER9JjT3Tcw== <script src="/ResourcePackages/VFL/assets/dist/js/main.js" crossorigin="anonymous" integrity="sha256-kVmwXlr5s+pvrJ0FUHQYT8LXpcWZcGQFY+7Gvc+NUzA=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/owl.carousel.min.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 11412/44348 Bytes
	ETag: "0e542384dd81:0"
	local SRI possible, possible hash-values: sha256-TgeBvdLLtdsE2jteBZ7so04yX6u4k77nRXtbq/W3wCk= sha384-cO2lde/a/fgTDiz6FTogh5uTQxdgqTbhoQ4eY2Fs9MJb/lh9ko5e54zLx9CoxLtT sha512-lgt2ETx4IgrMHIfkN8Zpj78QZrjPexWm1NM/Matp2OFr2YI8B84Yl9tNC9/giznlxwhbeaeo74B2DofZqnieLg== <script src="/ResourcePackages/VFL/assets/dist/js/owl.carousel.min.js" crossorigin="anonymous" integrity="sha256-TgeBvdLLtdsE2jteBZ7so04yX6u4k77nRXtbq/W3wCk=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/plugins.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 17666/52104 Bytes
	ETag: "0f323b0f24dd81:0"
	local SRI possible, possible hash-values: sha256-hXaEpcYBB+he/pVL07wBCpkqxWI30VPFMHlkInBQSUY= sha384-8AuUEUhaEIuWWAFXmrgGnRK6IdoIZbGHICfXTLg44cCvLhQSwNe7a4bUG1tNa/Ui sha512-1qvfz1/hpBQMu/sJQQjMzcAZrrKxE2+SrocgVeChlMEn0RUNIV49nd9yCCQWfmYrzIgc8UT+4qr6DaqF/tRjrQ== <script src="/ResourcePackages/VFL/assets/dist/js/plugins.js" crossorigin="anonymous" integrity="sha256-hXaEpcYBB+he/pVL07wBCpkqxWI30VPFMHlkInBQSUY=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/revolution.extension.actions.min.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 2181/7497 Bytes
	ETag: "0e542384dd81:0"
	local SRI possible, possible hash-values: sha256-7G/b0wdxA6ateL1PR/og2s6m1vSZu8NRztu6EjUlUDs= sha384-YW/Zh5NV3PrRLRnq8kdzuBC1L7ZXiBrJt3bonpluwqBbYA6JneMIPkyq1Y+fkQwY sha512-CsypHm+oTVPrQJEt/X81zvxb1xcvNnVulCiqWT2rBGj5Z9gjSV9dwrWrMlwmvgXWyxiww/EZXIIVJwYtN9DPWQ== <script src="/ResourcePackages/VFL/assets/dist/js/revolution.extension.actions.min.js" crossorigin="anonymous" integrity="sha256-7G/b0wdxA6ateL1PR/og2s6m1vSZu8NRztu6EjUlUDs=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/revolution.extension.carousel.min.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 2473/7359 Bytes
	ETag: "0e542384dd81:0"
	local SRI possible, possible hash-values: sha256-RXHFWGvrD/iqNApnm4w3Dmoj8OBNhWAcBf7TebiBMgA= sha384-MVZCEPpVfoxVKRrmoSsAHJXwPUQ8540pXZ1158KgJMQNRQQBwXFOcl7gy2m76lB2 sha512-dMASxa30u8zL3qKffY13AsUR35M+2CgOgtX+9Ohb+sjDJfvSrsBLA+5nCyFsOphDjvImjjdJzPo60PV29tWmhg== <script src="/ResourcePackages/VFL/assets/dist/js/revolution.extension.carousel.min.js" crossorigin="anonymous" integrity="sha256-RXHFWGvrD/iqNApnm4w3Dmoj8OBNhWAcBf7TebiBMgA=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/revolution.extension.kenburn.min.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 1289/3119 Bytes
	ETag: "0e542384dd81:0"
	local SRI possible, possible hash-values: sha256-i0MBe2dqxzSfgXPfqtekyXtIrINy6xcqupZzADP8kCQ= sha384-rii8mEyYbpHG0IfA0d6pwSpcgR0qioJ7d4Do5No7wS8WdDgYJhFvTWlHOeF/rABn sha512-Oa+4uRsJUUyHOBEZxFK1TUJGqyir1oVmLsDnHpS7iJe0JPMfCnzQrQNBFtIMBEKqHN+Q9E7nPdsKVfvVII3nFQ== <script src="/ResourcePackages/VFL/assets/dist/js/revolution.extension.kenburn.min.js" crossorigin="anonymous" integrity="sha256-i0MBe2dqxzSfgXPfqtekyXtIrINy6xcqupZzADP8kCQ=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/revolution.extension.layeranimation.min.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 8879/31988 Bytes
	ETag: "0e542384dd81:0"
	local SRI possible, possible hash-values: sha256-MZMMANOfNtjkCPoOv+H8cBhvep9E7P9C1pqVb+CYznQ= sha384-atKV2vLR7jhKhAh3T9bFkI+MJnqIehptDR5zkioHfWDtdwmiL4Uu52EKGu2GD8I7 sha512-zFbLBbjBEOOjKUnnsSpBdyMJ3i0JsnIKwg8kyEJ3I/n8BU15Dorlr8DuoiT/GyGpZiy8oD5IoY2ENUApLEGUPg== <script src="/ResourcePackages/VFL/assets/dist/js/revolution.extension.layeranimation.min.js" crossorigin="anonymous" integrity="sha256-MZMMANOfNtjkCPoOv+H8cBhvep9E7P9C1pqVb+CYznQ=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/revolution.extension.migration.min.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 1757/6110 Bytes
	ETag: "0e542384dd81:0"
	local SRI possible, possible hash-values: sha256-389BMpdf8UwvH5z9xOx7aJ/Brgk/f5iGN8UqVZ4mC2Q= sha384-w2zjSvFE9IZpKahDG6cTrP+3F6aBo+ZEcCm1yw8+K8npoHD825bP4nMhuafO1gwD sha512-k6Jd7WTRJUTky+myB1xegfsM6c5HtqYHcjGGPLmUKLaWRHYrbazJ5Rb5+DoOFnqukbl4K2M6DsuMjaYRO8M6Hg== <script src="/ResourcePackages/VFL/assets/dist/js/revolution.extension.migration.min.js" crossorigin="anonymous" integrity="sha256-389BMpdf8UwvH5z9xOx7aJ/Brgk/f5iGN8UqVZ4mC2Q=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/revolution.extension.navigation.min.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 6934/25833 Bytes
	ETag: "0e542384dd81:0"
	local SRI possible, possible hash-values: sha256-ifWE+CBl0/S4lpitdIvUdnyj4WLHHMlalwv4cJyqGNs= sha384-H93LgEFtN2jc0ilHjZmgTQiH7nU86HriD4kDEcsnKo6g0LqTppwPtfhAIhLC4g36 sha512-NJh5YvoIL/pzwez/n/TUbztm4vyv7lCaOGyiTBX6/gLwabz5ANmZc4c7rin1SiauQMJ9tNucHNzjkl/zAbiULA== <script src="/ResourcePackages/VFL/assets/dist/js/revolution.extension.navigation.min.js" crossorigin="anonymous" integrity="sha256-ifWE+CBl0/S4lpitdIvUdnyj4WLHHMlalwv4cJyqGNs=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/revolution.extension.parallax.min.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 2503/8580 Bytes
	ETag: "0e542384dd81:0"
	local SRI possible, possible hash-values: sha256-NibqmRR43bEzadp9EKYbAfOSJPm1E3QC764XXutsY8A= sha384-YW5tvloklfVII7aVxKz1bBR/D3sOkfMt1RSNmwLf5oZZw4C6cc9EKqaeSEOJXRdN sha512-cdbbh6tROl5NbOKeUXPmmyRDiE4Hfm8kQJxX6CdVlA7+c1fB7kAm1tkX2rBUyztpc0BxHpyBx619thFuDPcK2g== <script src="/ResourcePackages/VFL/assets/dist/js/revolution.extension.parallax.min.js" crossorigin="anonymous" integrity="sha256-NibqmRR43bEzadp9EKYbAfOSJPm1E3QC764XXutsY8A=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/revolution.extension.slideanims.min.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 6613/28131 Bytes
	ETag: "0e542384dd81:0"
	local SRI possible, possible hash-values: sha256-2Iop3GvEJpIKi6A88eUUc2AG6FHfPt4jWGSl+Y2SccY= sha384-OOwyyJIrQHYSVK5QRSiTTELJ6x8DVaC68vu/KKGOyDvd2Zb71/wYhrMQulfcx2rr sha512-1jyIhFvWYD/YWUaNit1jxYPPlrEgf2i75umdsTWb1rOfI4kqtSkiMe+fa0/E3FRtobAtk5pYMQ2G2a5DoVOG6g== <script src="/ResourcePackages/VFL/assets/dist/js/revolution.extension.slideanims.min.js" crossorigin="anonymous" integrity="sha256-2Iop3GvEJpIKi6A88eUUc2AG6FHfPt4jWGSl+Y2SccY=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/revolution.extension.video.min.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 5855/23249 Bytes
	ETag: "0e542384dd81:0"
	local SRI possible, possible hash-values: sha256-dkhN0altc/4JL3EzQXE6XJUYY5+FsBrW6A/m9Rm4HaU= sha384-d8zkoYzBRfXI4Hk9UvdFtsl3FyfOAvkv3epInhOuZscLZPqsKjOil/v+FEBJoP63 sha512-TjeiDFlraRfNdH9Tj57l0/SQmjkfkC5wAX00Otic/u8NnxkjlbK5OUrHA5oxDw6+U3MMB2pRf3QVaGVh/YFJrA== <script src="/ResourcePackages/VFL/assets/dist/js/revolution.extension.video.min.js" crossorigin="anonymous" integrity="sha256-dkhN0altc/4JL3EzQXE6XJUYY5+FsBrW6A/m9Rm4HaU=" />

	script	src	/ResourcePackages/VFL/assets/dist/js/rev-slider.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=2592000 - with long duration found.			Compression (gzip): 1359/16776 Bytes
	ETag: "0e542384dd81:0"
	local SRI possible, possible hash-values: sha256-jpkCNaIEjtXrMdsgyPm5f61danzjhQO/QP3ODN+KK40= sha384-yCD28sttTKcR6ASVPqEz5s9mmoNxlOiZDk7Vt6dCBVyAuv6LTToM4XiaKbeK/0zA sha512-lPcbnon94lv8SXnwXm7s8BZgIC+LugnxIV1Jy8NwhO5q8jy+pjZybE+0a9HeUUo890YZnY+BSUOeKlCZE7E8jg== <script src="/ResourcePackages/VFL/assets/dist/js/rev-slider.js" crossorigin="anonymous" integrity="sha256-jpkCNaIEjtXrMdsgyPm5f61danzjhQO/QP3ODN+KK40=" />

	script	src	/ScriptResource.axd?d=EydukmxBmDstn7gSYzQESPaxJ_6K1wvsUYrg4lHqGqcSqmpU1DyKJjOiM5eqd27-3_ZHAx6RxLY2lICx9J7yOdOW4TiqBTtsXGALy26-b1boUktjHKTJNnxiDKyLyaACV_UzQyhS2EGS3OOPU3OMQ62xH_Pd3q1Be_hwVPSGBV1RblGaKPTkYvI2u7Nj2_9x0&t=9721f93		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/x-javascript; charset=utf-8 X-Content-Type-Options nosniff found		Unknown Combination of MediaType "application" and Media Sub Type "x-javascript". Combinations must be IANA-registered, see https://www.iana.org/assignments/media-types/media-types.xhtml		Problems with Content-Type - Header - see details
	Cache-Control: public - max-age missing.			Compression required: 8271 Bytes
	local SRI possible, possible hash-values: sha256-dUW4gjhp+MaAv+nHP40tkpXZjokaWPJrGGpzecxsfq0= sha384-karz7369yPpvMpXFArqB2gjfiN420l7x+jj5rJSy3E+icDtIkqt8Df8WWs6K6hnu sha512-reaTj+2tALzkYY4GVWAfqu07Yhz+OEzVwARDnNOGBjlHBxaVbNWxtZ1XKzJhaVn4qv2P1h7VNGXjwG0azJi5EQ== <script src="/ScriptResource.axd?d=EydukmxBmDstn7gSYzQESPaxJ_6K1wvsUYrg4lHqGqcSqmpU1DyKJjOiM5eqd27-3_ZHAx6RxLY2lICx9J7yOdOW4TiqBTtsXGALy26-b1boUktjHKTJNnxiDKyLyaACV_UzQyhS2EGS3OOPU3OMQ62xH_Pd3q1Be_hwVPSGBV1RblGaKPTkYvI2u7Nj2_9x0&t=9721f93" crossorigin="anonymous" integrity="sha256-dUW4gjhp+MaAv+nHP40tkpXZjokaWPJrGGpzecxsfq0=" />

	script	src	/ScriptResource.axd?d=okuX3IVIBwfJlfEQK32K3uLGcUuGX4_RU9vtteykKnxpg3JMUcNQ9ymxosQ1lAgpFmu4f4g3qYR1smk-WDc5TZmRIaiUOSjTVHyMmH_WxWh7JeukaE98lbT_GJHYGqPyXrTCZY09aDPnCqUVOHix3C6oyDQLQv8kK6_x4-H8huDR7vpkoXmcfg0rc5djLE5B0&t=9721f93		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/x-javascript; charset=utf-8 X-Content-Type-Options nosniff found		Unknown Combination of MediaType "application" and Media Sub Type "x-javascript". Combinations must be IANA-registered, see https://www.iana.org/assignments/media-types/media-types.xhtml		Problems with Content-Type - Header - see details
	Cache-Control: public - max-age missing.			Compression required: 89478 Bytes
	local SRI possible, possible hash-values: sha256-82hEkGrSMJh3quMSG4f7FbngmAPLTDM63H4eNayS4Us= sha384-I9nvsY534/cx2CBx9qnDDuNkP4tBw4Va7eW8+2CXSaiPmfhB42fq032++kvT8woz sha512-WIJzXZoCOcXGPFyHuBYY48jcCdfXQ8NETFNblUe5tl3vpQnXgEVSxYHLhLYd0SJeKt1dymsSCGjsIB+peVBPSw== <script src="/ScriptResource.axd?d=okuX3IVIBwfJlfEQK32K3uLGcUuGX4_RU9vtteykKnxpg3JMUcNQ9ymxosQ1lAgpFmu4f4g3qYR1smk-WDc5TZmRIaiUOSjTVHyMmH_WxWh7JeukaE98lbT_GJHYGqPyXrTCZY09aDPnCqUVOHix3C6oyDQLQv8kK6_x4-H8huDR7vpkoXmcfg0rc5djLE5B0&t=9721f93" crossorigin="anonymous" integrity="sha256-82hEkGrSMJh3quMSG4f7FbngmAPLTDM63H4eNayS4Us=" />

	script	src	/ScriptResource.axd?d=VKaJmfFWDpQxp1_HxsR1qCn-klAHe5SukcxBVAylNKU5Tlmk_gPpSzbHV6rERLjHblLSZ7w24HvgyrrmdOUhxMVWL3nb532dQxBzLLemKwCqna4j0gZCSNq7L421NXt7HL38EN3HtacharT8MBGTBQfyWlR8B06F9-Gf-dIndvCJ7-E98ec95kpd8njJ38yH1hwcpQAYLcLAVudPH1fx-A2&t=9721f93		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/x-javascript; charset=utf-8 X-Content-Type-Options nosniff found		Unknown Combination of MediaType "application" and Media Sub Type "x-javascript". Combinations must be IANA-registered, see https://www.iana.org/assignments/media-types/media-types.xhtml		Problems with Content-Type - Header - see details
	Cache-Control: public - max-age missing.			Compression required: 253621 Bytes
	local SRI possible, possible hash-values: sha256-W4EnYMyaJGslgrjyvGQ9oudpll4VyDo1ArtGJjrlByY= sha384-FkUEzte0TXXUwhOoQrKtJdV6oMxVYYsegA/Csw0NL6Ve1Ib2wfCpdV4JRea+mMF4 sha512-QY0qkthNlnoYWifi4G2l232chgfnTb6c1kxnmMktBkGpmmEOuTrlOiCcAd3ztPjTfbsSOCGqiXEP/kLS4DiYcA== <script src="/ScriptResource.axd?d=VKaJmfFWDpQxp1_HxsR1qCn-klAHe5SukcxBVAylNKU5Tlmk_gPpSzbHV6rERLjHblLSZ7w24HvgyrrmdOUhxMVWL3nb532dQxBzLLemKwCqna4j0gZCSNq7L421NXt7HL38EN3HtacharT8MBGTBQfyWlR8B06F9-Gf-dIndvCJ7-E98ec95kpd8njJ38yH1hwcpQAYLcLAVudPH1fx-A2&t=9721f93" crossorigin="anonymous" integrity="sha256-W4EnYMyaJGslgrjyvGQ9oudpll4VyDo1ArtGJjrlByY=" />

	script	src	https://maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript; charset=utf-8 X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: public, max-age=31919000 - with long duration found.			Compression (br): 13551/48944 Bytes
	ETag: "14d449eb8876fa55e1ef3c2cc52b0c17"
	Server-Header Access-Control-Allow-Origin: *			Cross-Origin Resource Sharing (CORS) supported
	integrity: sha384-JZR6Spejh4U02d8jOt6vLEHfe/JQGiRRSQQxSfFWpi1MquVdAyjUar5+76PVCmYl crossorigin: anonymous				No SRI Parse error			valid

	script	src	https://wbcfj.gateway.mastercard.com/form/version/52/merchant/TESTFJ82046592/session.js		200		1	ok
	Missing defer / async attribute.			text/javascript; charset=UTF-8 X-Content-Type-Options nosniff found				ok
				Compression (gzip): 39345/116394 Bytes
	Server-Header Access-Control-Allow-Origin: not found			Cross-Origin Resource Sharing (CORS) not supported

	script	src	https://webchat.vodafone.com.pg/CustomerChat/Chat/Toolbox		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript; charset=utf-8 missing X-Content-Type-Options nosniff		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: private - max-age missing.			Compression required: 5327 Bytes
	Server-Header Access-Control-Allow-Origin: https://www.vodafone.com.pg,*			Cross-Origin Resource Sharing (CORS) not supported

	script	src	https://www.googletagmanager.com/gtag/js?id=G-XMZ6J6JE09		200		1	Problems with Content-Type - Header - see details
	async attribute found			application/javascript; charset=UTF-8 missing X-Content-Type-Options nosniff		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: max-age=900, private - max-age too short.			Compression (gzip): 177832/546969 Bytes
	Server-Header Access-Control-Allow-Origin: https://www.vodafone.com.pg			Cross-Origin Resource Sharing (CORS) not supported

https://43.245.58.77/ 43.245.58.77	meta	Content-Type	text/html; charset=us-ascii				1	ok
								ok

12. Html-Parsing via https://validator.w3.org/nu/

	Type	Message	num found
Url used (first standard-https-result with http status 200): https://vodafone.com.pg/

Summary
	Good: No non-document-errors
	36 errors
	68 warnings
1.	error	Attribute `;` not allowed on element `div` at this point.	5
2.	error	Attribute `color` not allowed on element `div` at this point.	5
3.	error	Attribute `name` not allowed on element `meta` at this point.	4
4.	error	Element `meta` is missing one or more of the following attributes: `itemprop`, `property`.	4
5.	error	Attribute `personal` not allowed on element `li` at this point.	4
6.	error	Duplicate attribute `personal`.	4
7.	error	Bad start tag in `img` in `noscript` in `head`.	1
8.	error	An `img` element must have an `alt` attribute, except under certain conditions. For details, consult guidance on providing text alternatives for images.	1
9.	error	Stray end tag `noscript`.	1
10.	error	A `link` element must not appear as a descendant of a `body` element unless the `link` element has an `itemprop` attribute or has a `rel` attribute whose value contains `dns-prefetch`, `modulepreload`, `pingback`, `preconnect`, `prefetch`, `preload`, `prerender`, or `stylesheet`.	1
11.	error	A document must not include more than one `meta` element with its `name` attribute set to the value `description`.	1
12.	error	Stray end tag `head`.	1
13.	error	Start tag `body` seen but an element of the same type was already open.	1
14.	error	`=` in an unquoted attribute value. Probable causes: Attributes running together or a URL query string in an unquoted attribute value.	1
15.	error	Element `div` not allowed as child of element `h2` in this context. (Suppressing further errors from this subtree.)	1
16.	error	No space between attributes.	1
17.	warning	The `type` attribute is unnecessary for JavaScript resources.	10
18.	warning	Resource violates Content Security Policy (meta tag): external script `/ResourcePackages/VFL/assets/dist/js/revolution...` blocked by `script-src` directive.	9
19.	warning	Potentially bad value `”noopener` for attribute `rel` on element `a` Typo for `noopener`?	5
20.	warning	Resource violates Content Security Policy (meta tag): external script `/ResourcePackages/VFL/assets/dist/js/jquery.the...` blocked by `script-src` directive.	2
21.	warning	Resource violates Content Security Policy (meta tag): external script `/Frontend-Assembly/Telerik.Sitefinity.Frontend....` blocked by `script-src` directive.	2
22.	warning	Resource violates Content Security Policy (meta tag): external stylesheet `/ResourcePackages/VFL/assets/dist/css/custom.cs...` blocked by `style-src` directive.	1
23.	warning	Resource violates Content Security Policy (meta tag): external stylesheet `/ResourcePackages/VFL/assets/dist/css/style.css...` blocked by `style-src` directive.	1
24.	warning	Resource violates Content Security Policy (meta tag): external stylesheet `/ResourcePackages/VFL/assets/dist/css/woocommer...` blocked by `style-src` directive.	1
25.	warning	Resource violates Content Security Policy (meta tag): external stylesheet `/ResourcePackages/VFL/assets/dist/css/font-awes...` blocked by `style-src` directive.	1
26.	warning	Resource violates Content Security Policy (meta tag): external stylesheet `/ResourcePackages/VFL/assets/dist/css/menu.css?...` blocked by `style-src` directive.	1
27.	warning	Resource violates Content Security Policy (meta tag): external stylesheet `/ResourcePackages/VFL/assets/dist/css/responsiv...` blocked by `style-src` directive.	1
28.	warning	Resource violates Content Security Policy (meta tag): external script `/ScriptResource.axd?d=okuX3IVIBwfJlfEQK32K3uLGc...` blocked by `script-src` directive.	1
29.	warning	Resource violates Content Security Policy (meta tag): external script `/ScriptResource.axd?d=EydukmxBmDstn7gSYzQESPaxJ...` blocked by `script-src` directive.	1
30.	warning	Resource violates Content Security Policy (meta tag): external script `/ResourcePackages/Bootstrap4/assets/dist/js/pop...` blocked by `script-src` directive.	1
31.	warning	Resource violates Content Security Policy (meta tag): external script `/ResourcePackages/Bootstrap4/assets/dist/js/boo...` blocked by `script-src` directive.	1
32.	warning	Resource violates Content Security Policy (meta tag): external script `/ScriptResource.axd?d=VKaJmfFWDpQxp1_HxsR1qCn-k...` blocked by `script-src` directive.	1
33.	warning	Resource violates Content Security Policy (meta tag): image `/images/default-source/logo/logo.png?sfvrsn=ce5...` blocked by `img-src` directive.	1
34.	warning	Attribute `aria-hidden` is unnecessary for elements that have attribute `hidden`.	1
35.	warning	This document has heading elements but none of them has a computed heading level of 1.	1
36.	warning	Resource violates Content Security Policy (meta tag): image `/images/default-source/features/online-payment....` blocked by `img-src` directive.	1
37.	warning	Resource violates Content Security Policy (meta tag): image `/images/default-source/features/mybill.svg?sfvr...` blocked by `img-src` directive.	1
38.	warning	Resource violates Content Security Policy (meta tag): image `/images/default-source/features/user.svg?sfvrsn...` blocked by `img-src` directive.	1
39.	warning	Resource violates Content Security Policy (meta tag): image `/images/default-source/features/departures.svg?...` blocked by `img-src` directive.	1
40.	warning	Resource violates Content Security Policy (meta tag): image `/images/default-source/features/handshake.svg?s...` blocked by `img-src` directive.	1
41.	warning	Resource violates Content Security Policy (meta tag): image `/images/default-source/features/placeholder.svg...` blocked by `img-src` directive.	1
42.	warning	Resource violates Content Security Policy (meta tag): image `/images/default-source/home/7.png?sfvrsn=77f6ff_1` blocked by `img-src` directive.	1
43.	warning	Resource violates Content Security Policy (meta tag): image `/images/default-source/home/8.png?sfvrsn=535684...` blocked by `img-src` directive.	1
44.	warning	Resource violates Content Security Policy (meta tag): image `/images/default-source/home/9.png?sfvrsn=79259d...` blocked by `img-src` directive.	1
45.	warning	Resource violates Content Security Policy (meta tag): image `/images/default-source/home/69e9c0b8e5a00469fbd...` blocked by `img-src` directive.	1
46.	warning	Resource violates Content Security Policy (meta tag): image `/images/default-source/home/web-elements_gox-(2...` blocked by `img-src` directive.	1
47.	warning	Resource violates Content Security Policy (meta tag): image `/images/default-source/home/4.png?sfvrsn=5cb620...` blocked by `img-src` directive.	1
48.	warning	Resource violates Content Security Policy (meta tag): image `/images/default-source/home/1024e37e5ad9a41778e...` blocked by `img-src` directive.	1
49.	warning	Resource violates Content Security Policy (meta tag): image `/images/default-source/home/530d18096-ea4f-4d31...` blocked by `img-src` directive.	1
50.	warning	Resource violates Content Security Policy (meta tag): image `/images/default-source/home/web-elements_gox2a8...` blocked by `img-src` directive.	1
51.	warning	Empty heading.	1
52.	warning	Section lacks heading. Consider using `h2`-`h6` elements to add identifying headings to all sections, or else use a `div` element instead for any cases where no heading is needed.	1
53.	warning	Resource violates Content Security Policy (meta tag): image `/ResourcePackages/VFL/assets/dist/images/social...` blocked by `img-src` directive.	1
54.	warning	Resource violates Content Security Policy (meta tag): image `/images/default-source/footer-images/logo-footer` blocked by `img-src` directive.	1
55.	warning	Resource violates Content Security Policy (meta tag): external script `/ResourcePackages/VFL/assets/dist/js/jquery.min.js` blocked by `script-src` directive.	1
56.	warning	Resource violates Content Security Policy (meta tag): external script `/ResourcePackages/VFL/assets/dist/js/plugins.js` blocked by `script-src` directive.	1
57.	warning	Resource violates Content Security Policy (meta tag): external script `/ResourcePackages/VFL/assets/dist/js/equalize.m...` blocked by `script-src` directive.	1
58.	warning	Resource violates Content Security Policy (meta tag): external script `/ResourcePackages/VFL/assets/dist/js/jquery-cou...` blocked by `script-src` directive.	1
59.	warning	Resource violates Content Security Policy (meta tag): external script `/ResourcePackages/VFL/assets/dist/js/owl.carous...` blocked by `script-src` directive.	1
60.	warning	Resource violates Content Security Policy (meta tag): external script `/ResourcePackages/VFL/assets/dist/js/main.js` blocked by `script-src` directive.	1
61.	warning	Resource violates Content Security Policy (meta tag): external script `/ResourcePackages/VFL/assets/dist/js/rev-slider.js` blocked by `script-src` directive.	1
Details
	Type	Message + Sample
1	error	Bad start tag in `img` in `noscript` in `head`.
		From line 25, column 25 to line 27, column 6
		<noscript><img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=505771264359188&ev=PageView&noscript=1" /></nosc
2	error	An `img` element must have an `alt` attribute, except under certain conditions. For details, consult guidance on providing text alternatives for images.
		From line 25, column 25 to line 27, column 6
		<noscript><img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=505771264359188&ev=PageView&noscript=1" /></nosc
3	error	Stray end tag `noscript`.
		From line 27, column 7 to line 27, column 17
		=1" /></noscript> <!--
4	error	Attribute `name` not allowed on element `meta` at this point.
		From line 27, column 48 to line 27, column 132
		Code --> <meta name="facebook-domain-verification" content="4sq5qv4nwo9u3sr6bvjvj3oy7k6lln" /><meta
5	error	Element `meta` is missing one or more of the following attributes: `itemprop`, `property`.
		From line 27, column 48 to line 27, column 132
		Code --> <meta name="facebook-domain-verification" content="4sq5qv4nwo9u3sr6bvjvj3oy7k6lln" /><meta
6	error	Attribute `name` not allowed on element `meta` at this point.
		From line 27, column 588 to line 27, column 648
		- PNG" /><meta name="Generator" content="Sitefinity 14.0.7730.0 DX" /><link
7	error	Element `meta` is missing one or more of the following attributes: `itemprop`, `property`.
		From line 27, column 588 to line 27, column 648
		- PNG" /><meta name="Generator" content="Sitefinity 14.0.7730.0 DX" /><link
8	error	A `link` element must not appear as a descendant of a `body` element unless the `link` element has an `itemprop` attribute or has a `rel` attribute whose value contains `dns-prefetch`, `modulepreload`, `pingback`, `preconnect`, `prefetch`, `preload`, `prerender`, or `stylesheet`.
		From line 27, column 649 to line 27, column 703
		0.0 DX" /><link rel="canonical" href="https://vodafone.com.pg" /><meta
9	error	Attribute `name` not allowed on element `meta` at this point.
		From line 27, column 704 to line 27, column 895
		com.pg" /><meta name="description" content="For all your talk & data needs, get the latest mobile phones, mobile broadband or internet plans with Vodafone. Now offering 4G+ for better experience" /><meta
10	error	Element `meta` is missing one or more of the following attributes: `itemprop`, `property`.
		From line 27, column 704 to line 27, column 895
		com.pg" /><meta name="description" content="For all your talk & data needs, get the latest mobile phones, mobile broadband or internet plans with Vodafone. Now offering 4G+ for better experience" /><meta
11	error	A document must not include more than one `meta` element with its `name` attribute set to the value `description`.
		From line 27, column 704 to line 27, column 895
		com.pg" /><meta name="description" content="For all your talk & data needs, get the latest mobile phones, mobile broadband or internet plans with Vodafone. Now offering 4G+ for better experience" /><meta
12	error	Attribute `name` not allowed on element `meta` at this point.
		From line 27, column 896 to line 27, column 1012
		rience" /><meta name="keywords" content="Vodafone PNG, Plans, Rates, Mobile, internet, broadband, voice, sms, data, roaming" /></head
13	error	Element `meta` is missing one or more of the following attributes: `itemprop`, `property`.
		From line 27, column 896 to line 27, column 1012
		rience" /><meta name="keywords" content="Vodafone PNG, Plans, Rates, Mobile, internet, broadband, voice, sms, data, roaming" /></head
14	error	Stray end tag `head`.
		From line 27, column 1013 to line 27, column 1019
		oaming" /></head> <body
15	error	Start tag `body` seen but an element of the same type was already open.
		From line 27, column 1021 to line 27, column 1026
		/></head> <body> <!--
16	error	`=` in an unquoted attribute value. Probable causes: Attributes running together or a URL query string in an unquoted attribute value.
		From line 27, column 1132 to line 27, column 1132
		.com/ns.html?id=GTM-TL6DXKS he
17	error	Attribute `personal` not allowed on element `li` at this point.
		From line 146, column 13 to line 146, column 49
		<li Personal Personal class="active">
18	error	Duplicate attribute `personal`.
		From line 146, column 34 to line 146, column 34
		rsonal Personalclass="active"
19	error	Attribute `personal` not allowed on element `li` at this point.
		From line 350, column 13 to line 350, column 49
		<li Personal Personal class="active">
20	error	Duplicate attribute `personal`.
		From line 350, column 34 to line 350, column 34
		rsonal Personalclass="active"
21	error	Attribute `personal` not allowed on element `li` at this point.
		From line 540, column 13 to line 540, column 49
		<li Personal Personal class="active">
22	error	Duplicate attribute `personal`.
		From line 540, column 34 to line 540, column 34
		rsonal Personalclass="active"
23	error	Attribute `personal` not allowed on element `li` at this point.
		From line 690, column 13 to line 690, column 49
		<li Personal Personal class="active">
24	error	Duplicate attribute `personal`.
		From line 690, column 34 to line 690, column 34
		rsonal Personalclass="active"
25	error	Attribute `color` not allowed on element `div` at this point.
		From line 750, column 21 to line 767, column 53
		<div class="tp-caption tp-resizeme text-ffb922 font-rubik font-weight-500 center-mobile" data-x="['left','left','left','center']" data-hoffset="['-2','-2','-2','0']" data-y="['middle','middle','middle','middle']" data-voffset="['-118','-118','-118','-138']" data-fontsize="['20','20','20','16']" data-lineheight="['48','48','28','20']" color="#fff" ; data-width="full" data-height="none" data-whitespace="normal" data-transform_idle="o:1;" data-transform_in="y:[100%];z:0;rX:0deg;rY:0;rZ:0;sX:1;sY:1;skX:0;skY:0;opacity:0;s:2000;e:Power4.easeInOut;" data-transform_out="y:[100%];s:1000;e:Power2.easeInOut;s:1000;e:Power2.easeInOut;" data-mask_in="x:0px;y:[100%];" data-mask_out="x:inherit;y:inherit;" data-start="700" data-splitin="none" data-splitout="none" data-responsive_offset="on">
26	error	Attribute `;` not allowed on element `div` at this point.
		From line 750, column 21 to line 767, column 53
		<div class="tp-caption tp-resizeme text-ffb922 font-rubik font-weight-500 center-mobile" data-x="['left','left','left','center']" data-hoffset="['-2','-2','-2','0']" data-y="['middle','middle','middle','middle']" data-voffset="['-118','-118','-118','-138']" data-fontsize="['20','20','20','16']" data-lineheight="['48','48','28','20']" color="#fff" ; data-width="full" data-height="none" data-whitespace="normal" data-transform_idle="o:1;" data-transform_in="y:[100%];z:0;rX:0deg;rY:0;rZ:0;sX:1;sY:1;skX:0;skY:0;opacity:0;s:2000;e:Power4.easeInOut;" data-transform_out="y:[100%];s:1000;e:Power2.easeInOut;s:1000;e:Power2.easeInOut;" data-mask_in="x:0px;y:[100%];" data-mask_out="x:inherit;y:inherit;" data-start="700" data-splitin="none" data-splitout="none" data-responsive_offset="on">
27	error	Attribute `color` not allowed on element `div` at this point.
		From line 831, column 21 to line 848, column 53
		<div class="tp-caption tp-resizeme text-ffb922 font-rubik font-weight-500 center-mobile" data-x="['left','left','left','center']" data-hoffset="['-2','-2','-2','0']" data-y="['middle','middle','middle','middle']" data-voffset="['-118','-118','-118','-138']" data-fontsize="['20','20','20','16']" data-lineheight="['48','48','28','20']" color="#fff" ; data-width="full" data-height="none" data-whitespace="normal" data-transform_idle="o:1;" data-transform_in="y:[100%];z:0;rX:0deg;rY:0;rZ:0;sX:1;sY:1;skX:0;skY:0;opacity:0;s:2000;e:Power4.easeInOut;" data-transform_out="y:[100%];s:1000;e:Power2.easeInOut;s:1000;e:Power2.easeInOut;" data-mask_in="x:0px;y:[100%];" data-mask_out="x:inherit;y:inherit;" data-start="700" data-splitin="none" data-splitout="none" data-responsive_offset="on">
28	error	Attribute `;` not allowed on element `div` at this point.
		From line 831, column 21 to line 848, column 53
		<div class="tp-caption tp-resizeme text-ffb922 font-rubik font-weight-500 center-mobile" data-x="['left','left','left','center']" data-hoffset="['-2','-2','-2','0']" data-y="['middle','middle','middle','middle']" data-voffset="['-118','-118','-118','-138']" data-fontsize="['20','20','20','16']" data-lineheight="['48','48','28','20']" color="#fff" ; data-width="full" data-height="none" data-whitespace="normal" data-transform_idle="o:1;" data-transform_in="y:[100%];z:0;rX:0deg;rY:0;rZ:0;sX:1;sY:1;skX:0;skY:0;opacity:0;s:2000;e:Power4.easeInOut;" data-transform_out="y:[100%];s:1000;e:Power2.easeInOut;s:1000;e:Power2.easeInOut;" data-mask_in="x:0px;y:[100%];" data-mask_out="x:inherit;y:inherit;" data-start="700" data-splitin="none" data-splitout="none" data-responsive_offset="on">
29	error	Attribute `color` not allowed on element `div` at this point.
		From line 912, column 21 to line 929, column 53
		<div class="tp-caption tp-resizeme text-ffb922 font-rubik font-weight-500 center-mobile" data-x="['left','left','left','center']" data-hoffset="['-2','-2','-2','0']" data-y="['middle','middle','middle','middle']" data-voffset="['-118','-118','-118','-138']" data-fontsize="['20','20','20','16']" data-lineheight="['48','48','28','20']" color="#fff" ; data-width="full" data-height="none" data-whitespace="normal" data-transform_idle="o:1;" data-transform_in="y:[100%];z:0;rX:0deg;rY:0;rZ:0;sX:1;sY:1;skX:0;skY:0;opacity:0;s:2000;e:Power4.easeInOut;" data-transform_out="y:[100%];s:1000;e:Power2.easeInOut;s:1000;e:Power2.easeInOut;" data-mask_in="x:0px;y:[100%];" data-mask_out="x:inherit;y:inherit;" data-start="700" data-splitin="none" data-splitout="none" data-responsive_offset="on">
30	error	Attribute `;` not allowed on element `div` at this point.
		From line 912, column 21 to line 929, column 53
		<div class="tp-caption tp-resizeme text-ffb922 font-rubik font-weight-500 center-mobile" data-x="['left','left','left','center']" data-hoffset="['-2','-2','-2','0']" data-y="['middle','middle','middle','middle']" data-voffset="['-118','-118','-118','-138']" data-fontsize="['20','20','20','16']" data-lineheight="['48','48','28','20']" color="#fff" ; data-width="full" data-height="none" data-whitespace="normal" data-transform_idle="o:1;" data-transform_in="y:[100%];z:0;rX:0deg;rY:0;rZ:0;sX:1;sY:1;skX:0;skY:0;opacity:0;s:2000;e:Power4.easeInOut;" data-transform_out="y:[100%];s:1000;e:Power2.easeInOut;s:1000;e:Power2.easeInOut;" data-mask_in="x:0px;y:[100%];" data-mask_out="x:inherit;y:inherit;" data-start="700" data-splitin="none" data-splitout="none" data-responsive_offset="on">
31	error	Attribute `color` not allowed on element `div` at this point.
		From line 993, column 21 to line 1010, column 53
		<div class="tp-caption tp-resizeme text-ffb922 font-rubik font-weight-500 center-mobile" data-x="['left','left','left','center']" data-hoffset="['-2','-2','-2','0']" data-y="['middle','middle','middle','middle']" data-voffset="['-118','-118','-118','-138']" data-fontsize="['20','20','20','16']" data-lineheight="['48','48','28','20']" color="#fff" ; data-width="full" data-height="none" data-whitespace="normal" data-transform_idle="o:1;" data-transform_in="y:[100%];z:0;rX:0deg;rY:0;rZ:0;sX:1;sY:1;skX:0;skY:0;opacity:0;s:2000;e:Power4.easeInOut;" data-transform_out="y:[100%];s:1000;e:Power2.easeInOut;s:1000;e:Power2.easeInOut;" data-mask_in="x:0px;y:[100%];" data-mask_out="x:inherit;y:inherit;" data-start="700" data-splitin="none" data-splitout="none" data-responsive_offset="on">
32	error	Attribute `;` not allowed on element `div` at this point.
		From line 993, column 21 to line 1010, column 53
		<div class="tp-caption tp-resizeme text-ffb922 font-rubik font-weight-500 center-mobile" data-x="['left','left','left','center']" data-hoffset="['-2','-2','-2','0']" data-y="['middle','middle','middle','middle']" data-voffset="['-118','-118','-118','-138']" data-fontsize="['20','20','20','16']" data-lineheight="['48','48','28','20']" color="#fff" ; data-width="full" data-height="none" data-whitespace="normal" data-transform_idle="o:1;" data-transform_in="y:[100%];z:0;rX:0deg;rY:0;rZ:0;sX:1;sY:1;skX:0;skY:0;opacity:0;s:2000;e:Power4.easeInOut;" data-transform_out="y:[100%];s:1000;e:Power2.easeInOut;s:1000;e:Power2.easeInOut;" data-mask_in="x:0px;y:[100%];" data-mask_out="x:inherit;y:inherit;" data-start="700" data-splitin="none" data-splitout="none" data-responsive_offset="on">
33	error	Attribute `color` not allowed on element `div` at this point.
		From line 1074, column 21 to line 1091, column 53
		<div class="tp-caption tp-resizeme text-ffb922 font-rubik font-weight-500 center-mobile" data-x="['left','left','left','center']" data-hoffset="['-2','-2','-2','0']" data-y="['middle','middle','middle','middle']" data-voffset="['-118','-118','-118','-138']" data-fontsize="['20','20','20','16']" data-lineheight="['48','48','28','20']" color="#fff" ; data-width="full" data-height="none" data-whitespace="normal" data-transform_idle="o:1;" data-transform_in="y:[100%];z:0;rX:0deg;rY:0;rZ:0;sX:1;sY:1;skX:0;skY:0;opacity:0;s:2000;e:Power4.easeInOut;" data-transform_out="y:[100%];s:1000;e:Power2.easeInOut;s:1000;e:Power2.easeInOut;" data-mask_in="x:0px;y:[100%];" data-mask_out="x:inherit;y:inherit;" data-start="700" data-splitin="none" data-splitout="none" data-responsive_offset="on">
34	error	Attribute `;` not allowed on element `div` at this point.
		From line 1074, column 21 to line 1091, column 53
		<div class="tp-caption tp-resizeme text-ffb922 font-rubik font-weight-500 center-mobile" data-x="['left','left','left','center']" data-hoffset="['-2','-2','-2','0']" data-y="['middle','middle','middle','middle']" data-voffset="['-118','-118','-118','-138']" data-fontsize="['20','20','20','16']" data-lineheight="['48','48','28','20']" color="#fff" ; data-width="full" data-height="none" data-whitespace="normal" data-transform_idle="o:1;" data-transform_in="y:[100%];z:0;rX:0deg;rY:0;rZ:0;sX:1;sY:1;skX:0;skY:0;opacity:0;s:2000;e:Power4.easeInOut;" data-transform_out="y:[100%];s:1000;e:Power2.easeInOut;s:1000;e:Power2.easeInOut;" data-mask_in="x:0px;y:[100%];" data-mask_out="x:inherit;y:inherit;" data-start="700" data-splitin="none" data-splitout="none" data-responsive_offset="on">
35	error	Element `div` not allowed as child of element `h2` in this context. (Suppressing further errors from this subtree.)
		From line 1163, column 1 to line 1163, column 128
		-title"> <div id="BestDealHeading_C031_Col00" class="sf_colsIn container" data-sf-element="Container" data-placeholder-label="Container"><div c
36	error	No space between attributes.
		From line 1203, column 72 to line 1203, column 72
		t/Chat/Toolbox"defer></script>
37	warning	Resource violates Content Security Policy (meta tag): external stylesheet `/ResourcePackages/VFL/assets/dist/css/custom.cs...` blocked by `style-src` directive.
		From line 3, column 947 to line 3, column 1055
		con.png"> <link href="/ResourcePackages/VFL/assets/dist/css/custom.css?package=VFL" rel="stylesheet" type="text/css" /><link
38	warning	Resource violates Content Security Policy (meta tag): external stylesheet `/ResourcePackages/VFL/assets/dist/css/style.css...` blocked by `style-src` directive.
		From line 3, column 1056 to line 3, column 1163
		xt/css" /><link href="/ResourcePackages/VFL/assets/dist/css/style.css?package=VFL" rel="stylesheet" type="text/css" /><link
39	warning	Resource violates Content Security Policy (meta tag): external stylesheet `/ResourcePackages/VFL/assets/dist/css/woocommer...` blocked by `style-src` directive.
		From line 3, column 1164 to line 3, column 1277
		xt/css" /><link href="/ResourcePackages/VFL/assets/dist/css/woocommerce.css?package=VFL" rel="stylesheet" type="text/css" /><link
40	warning	Resource violates Content Security Policy (meta tag): external stylesheet `/ResourcePackages/VFL/assets/dist/css/font-awes...` blocked by `style-src` directive.
		From line 3, column 1278 to line 3, column 1396
		xt/css" /><link href="/ResourcePackages/VFL/assets/dist/css/font-awesome.min.css?package=VFL" rel="stylesheet" type="text/css" /><link
41	warning	Resource violates Content Security Policy (meta tag): external stylesheet `/ResourcePackages/VFL/assets/dist/css/menu.css?...` blocked by `style-src` directive.
		From line 3, column 1397 to line 3, column 1503
		xt/css" /><link href="/ResourcePackages/VFL/assets/dist/css/menu.css?package=VFL" rel="stylesheet" type="text/css" /><link
42	warning	Resource violates Content Security Policy (meta tag): external stylesheet `/ResourcePackages/VFL/assets/dist/css/responsiv...` blocked by `style-src` directive.
		From line 3, column 1504 to line 3, column 1616
		xt/css" /><link href="/ResourcePackages/VFL/assets/dist/css/responsive.css?package=VFL" rel="stylesheet" type="text/css" /> <!--
43	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 4, column 115 to line 4, column 245
		css'> --> <script src="https://wbcfj.gateway.mastercard.com/form/version/52/merchant/TESTFJ82046592/session.js" type="text/javascript" defer></scri
44	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 28, column 125 to line 28, column 391
		ript) --> <script src="/ScriptResource.axd?d=okuX3IVIBwfJlfEQK32K3uLGcUuGX4_RU9vtteykKnxpg3JMUcNQ9ymxosQ1lAgpFmu4f4g3qYR1smk-WDc5TZmRIaiUOSjTVHyMmH_WxWh7JeukaE98lbT_GJHYGqPyXrTCZY09aDPnCqUVOHix3C6oyDQLQv8kK6_x4-H8huDR7vpkoXmcfg0rc5djLE5B0&t=9721f93" type="text/javascript"></scri
45	warning	Resource violates Content Security Policy (meta tag): external script `/ScriptResource.axd?d=okuX3IVIBwfJlfEQK32K3uLGc...` blocked by `script-src` directive.
		From line 28, column 125 to line 28, column 391
		ript) --> <script src="/ScriptResource.axd?d=okuX3IVIBwfJlfEQK32K3uLGcUuGX4_RU9vtteykKnxpg3JMUcNQ9ymxosQ1lAgpFmu4f4g3qYR1smk-WDc5TZmRIaiUOSjTVHyMmH_WxWh7JeukaE98lbT_GJHYGqPyXrTCZY09aDPnCqUVOHix3C6oyDQLQv8kK6_x4-H8huDR7vpkoXmcfg0rc5djLE5B0&t=9721f93" type="text/javascript"></scri
46	warning	Resource violates Content Security Policy (meta tag): external script `/ScriptResource.axd?d=EydukmxBmDstn7gSYzQESPaxJ...` blocked by `script-src` directive.
		From line 28, column 401 to line 28, column 667
		></script><script src="/ScriptResource.axd?d=EydukmxBmDstn7gSYzQESPaxJ_6K1wvsUYrg4lHqGqcSqmpU1DyKJjOiM5eqd27-3_ZHAx6RxLY2lICx9J7yOdOW4TiqBTtsXGALy26-b1boUktjHKTJNnxiDKyLyaACV_UzQyhS2EGS3OOPU3OMQ62xH_Pd3q1Be_hwVPSGBV1RblGaKPTkYvI2u7Nj2_9x0&t=9721f93" type="text/javascript"></scri
47	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 28, column 401 to line 28, column 667
		></script><script src="/ScriptResource.axd?d=EydukmxBmDstn7gSYzQESPaxJ_6K1wvsUYrg4lHqGqcSqmpU1DyKJjOiM5eqd27-3_ZHAx6RxLY2lICx9J7yOdOW4TiqBTtsXGALy26-b1boUktjHKTJNnxiDKyLyaACV_UzQyhS2EGS3OOPU3OMQ62xH_Pd3q1Be_hwVPSGBV1RblGaKPTkYvI2u7Nj2_9x0&t=9721f93" type="text/javascript"></scri
48	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 28, column 677 to line 28, column 771
		></script><script src="/ResourcePackages/Bootstrap4/assets/dist/js/popper.min.js" type="text/javascript"></scri
49	warning	Resource violates Content Security Policy (meta tag): external script `/ResourcePackages/Bootstrap4/assets/dist/js/pop...` blocked by `script-src` directive.
		From line 28, column 677 to line 28, column 771
		></script><script src="/ResourcePackages/Bootstrap4/assets/dist/js/popper.min.js" type="text/javascript"></scri
50	warning	Resource violates Content Security Policy (meta tag): external script `/ResourcePackages/Bootstrap4/assets/dist/js/boo...` blocked by `script-src` directive.
		From line 28, column 781 to line 28, column 878
		></script><script src="/ResourcePackages/Bootstrap4/assets/dist/js/bootstrap.min.js" type="text/javascript"></scri
51	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 28, column 781 to line 28, column 878
		></script><script src="/ResourcePackages/Bootstrap4/assets/dist/js/bootstrap.min.js" type="text/javascript"></scri
52	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 28, column 888 to line 28, column 1176
		></script><script src="/ScriptResource.axd?d=VKaJmfFWDpQxp1_HxsR1qCn-klAHe5SukcxBVAylNKU5Tlmk_gPpSzbHV6rERLjHblLSZ7w24HvgyrrmdOUhxMVWL3nb532dQxBzLLemKwCqna4j0gZCSNq7L421NXt7HL38EN3HtacharT8MBGTBQfyWlR8B06F9-Gf-dIndvCJ7-E98ec95kpd8njJ38yH1hwcpQAYLcLAVudPH1fx-A2&t=9721f93" type="text/javascript"></scri
53	warning	Resource violates Content Security Policy (meta tag): external script `/ScriptResource.axd?d=VKaJmfFWDpQxp1_HxsR1qCn-k...` blocked by `script-src` directive.
		From line 28, column 888 to line 28, column 1176
		></script><script src="/ScriptResource.axd?d=VKaJmfFWDpQxp1_HxsR1qCn-klAHe5SukcxBVAylNKU5Tlmk_gPpSzbHV6rERLjHblLSZ7w24HvgyrrmdOUhxMVWL3nb532dQxBzLLemKwCqna4j0gZCSNq7L421NXt7HL38EN3HtacharT8MBGTBQfyWlR8B06F9-Gf-dIndvCJ7-E98ec95kpd8njJ38yH1hwcpQAYLcLAVudPH1fx-A2&t=9721f93" type="text/javascript"></scri
54	warning	Resource violates Content Security Policy (meta tag): image `/images/default-source/logo/logo.png?sfvrsn=ce5...` blocked by `img-src` directive.
		From line 85, column 21 to line 85, column 151
		personal"><img src="/images/default-source/logo/logo.png?sfvrsn=ce556a2e_2" data-retina="/images/default-source/logo/logo-2x.png" alt="logo"></a> <
55	warning	Attribute `aria-hidden` is unnecessary for elements that have attribute `hidden`.
		From line 94, column 5 to line 94, column 54
		tton> <span id='SearchInfo-1' aria-hidden="true" hidden></span
56	warning	This document has heading elements but none of them has a computed heading level of 1.
		From line 238, column 33 to line 238, column 54
		<h3 class="highlight"><a hre
57	warning	Resource violates Content Security Policy (meta tag): image `/images/default-source/features/online-payment....` blocked by `img-src` directive.
		From line 1156, column 104 to line 1156, column 222
		b-top-up"><img src="/images/default-source/features/online-payment.svg?sfvrsn=705fc68f_2" class="iconsvg" width="50" alt="image"><span
58	warning	Resource violates Content Security Policy (meta tag): image `/images/default-source/features/mybill.svg?sfvr...` blocked by `img-src` directive.
		From line 1157, column 172 to line 1157, column 282
		ashboard"><img src="/images/default-source/features/mybill.svg?sfvrsn=7494ac7a_2" class="iconsvg" width="50" alt="image"><span
59	warning	Resource violates Content Security Policy (meta tag): image `/images/default-source/features/user.svg?sfvrsn...` blocked by `img-src` directive.
		From line 1158, column 264 to line 1158, column 372
		bile-app"><img src="/images/default-source/features/user.svg?sfvrsn=17602379_2" class="iconsvg" width="50" alt="image"><span
60	warning	Resource violates Content Security Policy (meta tag): image `/images/default-source/features/departures.svg?...` blocked by `img-src` directive.
		From line 1159, column 239 to line 1159, column 353
		href="#"><img src="/images/default-source/features/departures.svg?sfvrsn=15cc075f_2" class="iconsvg" width="50" alt="image"><span
61	warning	Resource violates Content Security Policy (meta tag): image `/images/default-source/features/handshake.svg?s...` blocked by `img-src` directive.
		From line 1160, column 225 to line 1160, column 338
		s-offers"><img src="/images/default-source/features/handshake.svg?sfvrsn=497de330_2" class="iconsvg" width="50" alt="image"><span
62	warning	Resource violates Content Security Policy (meta tag): image `/images/default-source/features/placeholder.svg...` blocked by `img-src` directive.
		From line 1161, column 181 to line 1161, column 296
		ocations"><img src="/images/default-source/features/placeholder.svg?sfvrsn=f3421ce2_2" class="iconsvg" width="50" alt="image"><span
63	warning	Resource violates Content Security Policy (meta tag): image `/images/default-source/home/7.png?sfvrsn=77f6ff_1` blocked by `img-src` directive.
		From line 1163, column 250 to line 1163, column 342
		ew-plans"><img src="/images/default-source/home/7.png?sfvrsn=77f6ff_1" alt="Image 1" class="img-fluid"></a>
64	warning	Resource violates Content Security Policy (meta tag): image `/images/default-source/home/8.png?sfvrsn=535684...` blocked by `img-src` directive.
		From line 1164, column 89 to line 1164, column 183
		services"><img src="/images/default-source/home/8.png?sfvrsn=535684dc_1" class="img-fluid" alt="Image 2"></a>
65	warning	Resource violates Content Security Policy (meta tag): image `/images/default-source/home/9.png?sfvrsn=79259d...` blocked by `img-src` directive.
		From line 1165, column 87 to line 1165, column 181
		s-offers"><img src="/images/default-source/home/9.png?sfvrsn=79259d7f_1" class="img-fluid" alt="Image 3"></a>
66	warning	Resource violates Content Security Policy (meta tag): image `/images/default-source/home/69e9c0b8e5a00469fbd...` blocked by `img-src` directive.
		From line 1166, column 136 to line 1166, column 262
		im-offer"><img src="/images/default-source/home/69e9c0b8e5a00469fbdac7090685c5d99.png?sfvrsn=b49c4d88_0" class="img-fluid" alt="Image 1"></a>
67	warning	Resource violates Content Security Policy (meta tag): image `/images/default-source/home/web-elements_gox-(2...` blocked by `img-src` directive.
		From line 1167, column 165 to line 1167, column 301
		_devices"><img src="/images/default-source/home/web-elements_gox-(2).png?sfvrsn=3090ebdc_1/WEB-ELEMENTS_GOx-(2).png" class="img-fluid" alt="Image"></a>
68	warning	Resource violates Content Security Policy (meta tag): image `/images/default-source/home/4.png?sfvrsn=5cb620...` blocked by `img-src` directive.
		From line 1168, column 105 to line 1168, column 197
		doubleup"><img src="/images/default-source/home/4.png?sfvrsn=5cb620c6_1" class="img-fluid" alt="Image"></a>
69	warning	Resource violates Content Security Policy (meta tag): image `/images/default-source/home/1024e37e5ad9a41778e...` blocked by `img-src` directive.
		From line 1169, column 126 to line 1169, column 252
		/samsung"><img src="/images/default-source/home/1024e37e5ad9a41778e3c8f3137aa5105.png?sfvrsn=20d47697_0" class="img-fluid" alt="Image 1"></a>
70	warning	Resource violates Content Security Policy (meta tag): image `/images/default-source/home/530d18096-ea4f-4d31...` blocked by `img-src` directive.
		From line 1170, column 108 to line 1170, column 238
		e-iphone"><img src="/images/default-source/home/530d18096-ea4f-4d31-8c7e-3eeaf93fdb32.png?sfvrsn=b4a308bf_1" class="img-fluid" alt="Image 2"></a>
71	warning	Resource violates Content Security Policy (meta tag): image `/images/default-source/home/web-elements_gox2a8...` blocked by `img-src` directive.
		From line 1171, column 107 to line 1171, column 253
		ket-wifi"><img src="/images/default-source/home/web-elements_gox2a807df1-96b4-4e64-b436-0747db4793ff.png?sfvrsn=946ec886_1/" class="img-fluid" alt="Image 3"></a>
72	warning	Empty heading.
		From line 1175, column 175 to line 1175, column 205
		t-title"> <h2 class="title center-title"> </h
73	warning	Section lacks heading. Consider using `h2`-`h6` elements to add identifying headings to all sections, or else use a `div` element instead for any cases where no heading is needed.
		From line 1177, column 41 to line 1177, column 78
		/section> <section class="flat-projects style1"></sect
74	warning	Potentially bad value `”noopener` for attribute `rel` on element `a` Typo for `noopener`?
		From line 1180, column 24 to line 1180, column 158
		cial"><li><a href="https://www.facebook.com/Vodafone-Papua-New-Guinea-110483477954794" target="”_blank”" rel="”noopener" data-sf-ec-immutable=""><i cla
75	warning	Potentially bad value `”noopener` for attribute `rel` on element `a` Typo for `noopener`?
		From line 1181, column 11 to line 1181, column 129
		</li><li><a href="https://www.instagram.com/vodafonepapuanewguinea/ " target="”_blank”" rel="”noopener" data-sf-ec-immutable=""><i cla
76	warning	Potentially bad value `”noopener` for attribute `rel` on element `a` Typo for `noopener`?
		From line 1182, column 11 to line 1182, column 123
		</li><li><a href="https://pg.linkedin.com/company/vodafone-png" target="”_blank”" rel="”noopener" data-sf-ec-immutable=""><i cla
77	warning	Resource violates Content Security Policy (meta tag): image `/ResourcePackages/VFL/assets/dist/images/social...` blocked by `img-src` directive.
		From line 1183, column 64 to line 1183, column 192
		="_blank"><img class="iconsvg width-35" src="/ResourcePackages/VFL/assets/dist/images/social/sa-x.png" alt="image" data-sf-ec-immutable=""></a>
78	warning	Potentially bad value `”noopener` for attribute `rel` on element `a` Typo for `noopener`?
		From line 1184, column 34 to line 1184, column 170
		_youtube"><a href="https://www.youtube.com/channel/UCZq9cyLU6afyu_YkvlL6Tzw?app=desktop" target="”_blank”" rel="”noopener" data-sf-ec-immutable=""><i cla
79	warning	Potentially bad value `”noopener` for attribute `rel` on element `a` Typo for `noopener`?
		From line 1186, column 6 to line 1186, column 173
		/li> <li><a href="https://www.tiktok.com/@vodafonepng" target="”_blank”" rel="”noopener" style="vertical-align: bottom" class="fa fa-tiktok tiktok-mask" data-sf-ec-immutable=""></a></
80	warning	Resource violates Content Security Policy (meta tag): image `/images/default-source/footer-images/logo-footer` blocked by `img-src` directive.
		From line 1196, column 243 to line 1196, column 370
		h:175px;"><img src="/images/default-source/footer-images/logo-footer" alt="Vodafone PNG" title="Vodafone PNG" data-displaymode="Original"></p> <
81	warning	Resource violates Content Security Policy (meta tag): external script `/ResourcePackages/VFL/assets/dist/js/jquery.min.js` blocked by `script-src` directive.
		From line 1210, column 8 to line 1210, column 72
		</div> <script src="/ResourcePackages/VFL/assets/dist/js/jquery.min.js"></scri
82	warning	Resource violates Content Security Policy (meta tag): external script `/ResourcePackages/VFL/assets/dist/js/plugins.js` blocked by `script-src` directive.
		From line 1210, column 83 to line 1210, column 144
		</script> <script src="/ResourcePackages/VFL/assets/dist/js/plugins.js"></scri
83	warning	Resource violates Content Security Policy (meta tag): external script `/ResourcePackages/VFL/assets/dist/js/equalize.m...` blocked by `script-src` directive.
		From line 1210, column 355 to line 1210, column 421
		</script> <script src="/ResourcePackages/VFL/assets/dist/js/equalize.min.js"></scri
84	warning	Resource violates Content Security Policy (meta tag): external script `/ResourcePackages/VFL/assets/dist/js/jquery-cou...` blocked by `script-src` directive.
		From line 1210, column 432 to line 1210, column 500
		</script> <script src="/ResourcePackages/VFL/assets/dist/js/jquery-countTo.js"></scri
85	warning	Resource violates Content Security Policy (meta tag): external script `/ResourcePackages/VFL/assets/dist/js/owl.carous...` blocked by `script-src` directive.
		From line 1210, column 511 to line 1210, column 581
		</script> <script src="/ResourcePackages/VFL/assets/dist/js/owl.carousel.min.js"></scri
86	warning	Resource violates Content Security Policy (meta tag): external script `/ResourcePackages/VFL/assets/dist/js/main.js` blocked by `script-src` directive.
		From line 1210, column 592 to line 1210, column 650
		</script> <script src="/ResourcePackages/VFL/assets/dist/js/main.js"></scri
87	warning	Resource violates Content Security Policy (meta tag): external script `/ResourcePackages/VFL/assets/dist/js/jquery.the...` blocked by `script-src` directive.
		From line 1210, column 677 to line 1210, column 758
		lider --> <script src="/ResourcePackages/VFL/assets/dist/js/jquery.themepunch.tools.min.js"></scri
88	warning	Resource violates Content Security Policy (meta tag): external script `/ResourcePackages/VFL/assets/dist/js/jquery.the...` blocked by `script-src` directive.
		From line 1210, column 769 to line 1210, column 855
		</script> <script src="/ResourcePackages/VFL/assets/dist/js/jquery.themepunch.revolution.min.js"></scri
89	warning	Resource violates Content Security Policy (meta tag): external script `/ResourcePackages/VFL/assets/dist/js/rev-slider.js` blocked by `script-src` directive.
		From line 1210, column 866 to line 1210, column 930
		</script> <script src="/ResourcePackages/VFL/assets/dist/js/rev-slider.js"></scri
90	warning	Resource violates Content Security Policy (meta tag): external script `/ResourcePackages/VFL/assets/dist/js/revolution...` blocked by `script-src` directive.
		From line 1210, column 1061 to line 1210, column 1147
		ading --> <script src="/ResourcePackages/VFL/assets/dist/js/revolution.extension.actions.min.js"></scri
91	warning	Resource violates Content Security Policy (meta tag): external script `/ResourcePackages/VFL/assets/dist/js/revolution...` blocked by `script-src` directive.
		From line 1210, column 1158 to line 1210, column 1245
		</script> <script src="/ResourcePackages/VFL/assets/dist/js/revolution.extension.carousel.min.js"></scri
92	warning	Resource violates Content Security Policy (meta tag): external script `/ResourcePackages/VFL/assets/dist/js/revolution...` blocked by `script-src` directive.
		From line 1210, column 1256 to line 1210, column 1342
		</script> <script src="/ResourcePackages/VFL/assets/dist/js/revolution.extension.kenburn.min.js"></scri
93	warning	Resource violates Content Security Policy (meta tag): external script `/ResourcePackages/VFL/assets/dist/js/revolution...` blocked by `script-src` directive.
		From line 1210, column 1353 to line 1210, column 1446
		</script> <script src="/ResourcePackages/VFL/assets/dist/js/revolution.extension.layeranimation.min.js"></scri
94	warning	Resource violates Content Security Policy (meta tag): external script `/ResourcePackages/VFL/assets/dist/js/revolution...` blocked by `script-src` directive.
		From line 1210, column 1457 to line 1210, column 1545
		</script> <script src="/ResourcePackages/VFL/assets/dist/js/revolution.extension.migration.min.js"></scri
95	warning	Resource violates Content Security Policy (meta tag): external script `/ResourcePackages/VFL/assets/dist/js/revolution...` blocked by `script-src` directive.
		From line 1210, column 1556 to line 1210, column 1645
		</script> <script src="/ResourcePackages/VFL/assets/dist/js/revolution.extension.navigation.min.js"></scri
96	warning	Resource violates Content Security Policy (meta tag): external script `/ResourcePackages/VFL/assets/dist/js/revolution...` blocked by `script-src` directive.
		From line 1210, column 1656 to line 1210, column 1743
		</script> <script src="/ResourcePackages/VFL/assets/dist/js/revolution.extension.parallax.min.js"></scri
97	warning	Resource violates Content Security Policy (meta tag): external script `/ResourcePackages/VFL/assets/dist/js/revolution...` blocked by `script-src` directive.
		From line 1210, column 1754 to line 1210, column 1843
		</script> <script src="/ResourcePackages/VFL/assets/dist/js/revolution.extension.slideanims.min.js"></scri
98	warning	Resource violates Content Security Policy (meta tag): external script `/ResourcePackages/VFL/assets/dist/js/revolution...` blocked by `script-src` directive.
		From line 1210, column 1854 to line 1210, column 1938
		</script> <script src="/ResourcePackages/VFL/assets/dist/js/revolution.extension.video.min.js"></scri
99	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 1215, column 19 to line 1215, column 49
		</script> <script type="text/javascript"> $(
100	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 1221, column 13 to line 1221, column 43
		</script> <script type="text/javascript"> fun
101	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 1316, column 12 to line 1316, column 202
		/script> <script src="/Frontend-Assembly/Telerik.Sitefinity.Frontend.Identity/ResourcePackages/VFL/MVC/Scripts/LoginStatus/login-status.js?package=VFL&v=LTE4NjMzODQ4NjE%3d" type="text/javascript"></scri
102	warning	Resource violates Content Security Policy (meta tag): external script `/Frontend-Assembly/Telerik.Sitefinity.Frontend....` blocked by `script-src` directive.
		From line 1316, column 12 to line 1316, column 202
		/script> <script src="/Frontend-Assembly/Telerik.Sitefinity.Frontend.Identity/ResourcePackages/VFL/MVC/Scripts/LoginStatus/login-status.js?package=VFL&v=LTE4NjMzODQ4NjE%3d" type="text/javascript"></scri
103	warning	Resource violates Content Security Policy (meta tag): external script `/Frontend-Assembly/Telerik.Sitefinity.Frontend....` blocked by `script-src` directive.
		From line 1316, column 212 to line 1316, column 375
		></script><script src="/Frontend-Assembly/Telerik.Sitefinity.Frontend.Search/Mvc/Scripts/SearchBox/Search-box.js?package=VFL&v=MTQuMC43NzMwLjA%3d" type="text/javascript"></scri
104	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 1316, column 212 to line 1316, column 375
		></script><script src="/Frontend-Assembly/Telerik.Sitefinity.Frontend.Search/Mvc/Scripts/SearchBox/Search-box.js?package=VFL&v=MTQuMC43NzMwLjA%3d" type="text/javascript"></scri

13. Nameserver - IP-Adresses

Required Root-climbing DNS-Queries to find ip addresses of all Name Servers: ns1.lae.vodafone.com.pg, ns1.pom.vodafone.com.pg, ns2.lae.vodafone.com.pg, ns2.pom.vodafone.com.pg

QNr.	Domain	Type	NS used
1	pg	NS	k.root-servers.net (2001:7fd::1)
	Answer: dns.pch.pg, gransy1.nic.pg, gransy2.nic.pg, uot.nic.pg
2	ns1.lae.vodafone.com.pg	NS	dns.pch.pg (2001:500:14:6152:ad::1)
	Answer: ns1.pom.vodafone.com.pg, ns2.pom.vodafone.com.pg
	Answer: ns1.pom.vodafone.com.pg 43.245.56.88
	Answer: ns2.pom.vodafone.com.pg 43.245.56.89
3	ns2.lae.vodafone.com.pg	NS	dns.pch.pg (2001:500:14:6152:ad::1)
	Answer: ns1.pom.vodafone.com.pg, ns2.pom.vodafone.com.pg
	Answer: ns1.pom.vodafone.com.pg 43.245.56.88
	Answer: ns2.pom.vodafone.com.pg 43.245.56.89
4	ns1.lae.vodafone.com.pg: No A record found	A	ns1.pom.vodafone.com.pg (43.245.56.88)
5	ns1.lae.vodafone.com.pg: No AAAA record found	AAAA	ns1.pom.vodafone.com.pg (43.245.56.88)
6	ns2.lae.vodafone.com.pg: No A record found	A	ns1.pom.vodafone.com.pg (43.245.56.88)
7	ns2.lae.vodafone.com.pg: No AAAA record found	AAAA	ns1.pom.vodafone.com.pg (43.245.56.88)

14. CAA - Entries

Domainname	flag	Name	Value	∑ Queries
www.vodafone.com.pg	9	issuewild	sectigo.com	1
vodafone.com.pg	9	issuewild	sectigo.com	1
com.pg	0		no CAA entry found	1
pg	0		no CAA entry found	1

15. TXT - Entries

Domainname	TXT Entry	Status	∑ Queries
vodafone.com.pg	MS=ms49079065	ok	1
vodafone.com.pg	v=spf1 ip4:43.245.56.12 ip4:43.245.56.4 include:mx3.vodafone.com.pg include:mailcontrol.com include:spf.protection.outlook.com include:_spf.salesforce.com ~all	ok	1
www.vodafone.com.pg	MS=ms49079065	ok	1
www.vodafone.com.pg	v=spf1 ip4:43.245.56.12 ip4:43.245.56.4 include:mx3.vodafone.com.pg include:mailcontrol.com include:spf.protection.outlook.com include:_spf.salesforce.com ~all	ok	1
_acme-challenge.vodafone.com.pg		Name Error - The domain name does not exist	1
_acme-challenge.www.vodafone.com.pg		Name Error - The domain name does not exist	1
_acme-challenge.vodafone.com.pg.vodafone.com.pg		Name Error - The domain name does not exist	1
_acme-challenge.www.vodafone.com.pg.vodafone.com.pg		Name Error - The domain name does not exist	1
_acme-challenge.www.vodafone.com.pg.www.vodafone.com.pg		Name Error - The domain name does not exist	1

16. DomainService - Entries

Type		Domain	Pref	Value	DNS-error	num Answers	Status
MX		vodafone.com.pg	0	cust79554-1.in.mailcontrol.com	0	2	ok
	A			116.50.60.190	0	1	ok
	CNAME				0	0	ok
MX		vodafone.com.pg	5	cust79554-2.in.mailcontrol.com	0	2	ok
	A			116.50.58.190	0	1	ok
	CNAME				0	0	ok
SPF	TXT	vodafone.com.pg		v=spf1 ip4:43.245.56.12 ip4:43.245.56.4 include:mx3.vodafone.com.pg include:mailcontrol.com include:spf.protection.outlook.com include:_spf.salesforce.com ~all			ok
	TXT	mx3.vodafone.com.pg		v=spf1 ip4:43.245.58.82 ~all			ok
	TXT	mailcontrol.com		v=spf1 ip4:85.115.32.0/19 ip4:86.111.216.0/21 ip4:116.50.56.0/21 ip4:208.87.232.0/21 ip4:196.216.238.0/23 ip4:192.151.176.0/20 ~all			ok
	TXT	spf.protection.outlook.com		v=spf1 ip4:40.92.0.0/15 ip4:40.107.0.0/16 ip4:52.100.0.0/15 ip4:52.102.0.0/16 ip4:52.103.0.0/17 ip4:104.47.0.0/17 ip6:2a01:111:f400::/48 ip6:2a01:111:f403::/49 ip6:2a01:111:f403:8000::/51 ip6:2a01:111:f403:c000::/51 ip6:2a01:111:f403:f000::/52 -all			ok
	TXT	_spf.salesforce.com		v=spf1 exists:%{i}._spf.mta.salesforce.com -all			ok

17. Cipher Suites

Summary
Domain	IP	Port	num Ciphers	time	Std.Protocol	Forward Secrecy
vodafone.com.pg	43.245.58.77	443	15 Ciphers	182.70 sec		7 without, 8 FS	53.33 %
www.vodafone.com.pg	43.245.58.77	443	15 Ciphers	182.95 sec		7 without, 8 FS	53.33 %
Complete		2	30 Ciphers 15.00 Ciphers/Check	365.65 sec	182.82 sec/Check	14 without, 16 FS	53.33 %

Details
Domain	IP	Port	Cipher (OpenSsl / IANA)
vodafone.com.pg	43.245.58.77	443	ECDHE-RSA-AES256-GCM-SHA384		(Secure)	TLSv1.2	0xC0,0x30	FS
15 Ciphers, 182.70 sec			TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
			ECDH		RSA	AESGCM(256)	AEAD
			DHE-RSA-AES256-GCM-SHA384		(Secure)	TLSv1.2	0x00,0x9F	FS
			TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
			DH		RSA	AESGCM(256)	AEAD
			ECDHE-RSA-AES128-GCM-SHA256		(Secure)	TLSv1.2	0xC0,0x2F	FS
			TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
			ECDH		RSA	AESGCM(128)	AEAD
			DHE-RSA-AES128-GCM-SHA256		(Secure)	TLSv1.2	0x00,0x9E	FS
			TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
			DH		RSA	AESGCM(128)	AEAD
			ECDHE-RSA-AES256-SHA384		(Weak)	TLSv1.2	0xC0,0x28	FS
			TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
			ECDH		RSA	AES(256)	SHA384
			AES256-GCM-SHA384		(Weak)	TLSv1.2	0x00,0x9D	No FS
			TLS_RSA_WITH_AES_256_GCM_SHA384
			RSA		RSA	AESGCM(256)	AEAD
			AES256-SHA256		(Weak)	TLSv1.2	0x00,0x3D	No FS
			TLS_RSA_WITH_AES_256_CBC_SHA256
			RSA		RSA	AES(256)	SHA256
			ECDHE-RSA-AES128-SHA256		(Weak)	TLSv1.2	0xC0,0x27	FS
			TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
			ECDH		RSA	AES(128)	SHA256
			AES128-GCM-SHA256		(Weak)	TLSv1.2	0x00,0x9C	No FS
			TLS_RSA_WITH_AES_128_GCM_SHA256
			RSA		RSA	AESGCM(128)	AEAD
			AES128-SHA256		(Weak)	TLSv1.2	0x00,0x3C	No FS
			TLS_RSA_WITH_AES_128_CBC_SHA256
			RSA		RSA	AES(128)	SHA256
			ECDHE-RSA-AES256-SHA		(Weak)	TLSv1	0xC0,0x14	FS
			TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
			ECDH		RSA	AES(256)	SHA1
			ECDHE-RSA-AES128-SHA		(Weak)	TLSv1	0xC0,0x13	FS
			TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
			ECDH		RSA	AES(128)	SHA1
			AES256-SHA		(Weak)	SSLv3	0x00,0x35	No FS
			TLS_RSA_WITH_AES_256_CBC_SHA
			RSA		RSA	AES(256)	SHA1
			DES-CBC3-SHA		(Weak)	SSLv3	0x00,0x0A	No FS
			TLS_RSA_WITH_3DES_EDE_CBC_SHA
			RSA		RSA	3DES(168)	SHA1
			AES128-SHA		(Weak)	SSLv3	0x00,0x2F	No FS
			TLS_RSA_WITH_AES_128_CBC_SHA
			RSA		RSA	AES(128)	SHA1
www.vodafone.com.pg	43.245.58.77	443	ECDHE-RSA-AES256-GCM-SHA384		(Secure)	TLSv1.2	0xC0,0x30	FS
15 Ciphers, 182.95 sec			TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
			ECDH		RSA	AESGCM(256)	AEAD
			DHE-RSA-AES256-GCM-SHA384		(Secure)	TLSv1.2	0x00,0x9F	FS
			TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
			DH		RSA	AESGCM(256)	AEAD
			ECDHE-RSA-AES128-GCM-SHA256		(Secure)	TLSv1.2	0xC0,0x2F	FS
			TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
			ECDH		RSA	AESGCM(128)	AEAD
			DHE-RSA-AES128-GCM-SHA256		(Secure)	TLSv1.2	0x00,0x9E	FS
			TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
			DH		RSA	AESGCM(128)	AEAD
			ECDHE-RSA-AES256-SHA384		(Weak)	TLSv1.2	0xC0,0x28	FS
			TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
			ECDH		RSA	AES(256)	SHA384
			AES256-GCM-SHA384		(Weak)	TLSv1.2	0x00,0x9D	No FS
			TLS_RSA_WITH_AES_256_GCM_SHA384
			RSA		RSA	AESGCM(256)	AEAD
			AES256-SHA256		(Weak)	TLSv1.2	0x00,0x3D	No FS
			TLS_RSA_WITH_AES_256_CBC_SHA256
			RSA		RSA	AES(256)	SHA256
			ECDHE-RSA-AES128-SHA256		(Weak)	TLSv1.2	0xC0,0x27	FS
			TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
			ECDH		RSA	AES(128)	SHA256
			AES128-GCM-SHA256		(Weak)	TLSv1.2	0x00,0x9C	No FS
			TLS_RSA_WITH_AES_128_GCM_SHA256
			RSA		RSA	AESGCM(128)	AEAD
			AES128-SHA256		(Weak)	TLSv1.2	0x00,0x3C	No FS
			TLS_RSA_WITH_AES_128_CBC_SHA256
			RSA		RSA	AES(128)	SHA256
			ECDHE-RSA-AES256-SHA		(Weak)	TLSv1	0xC0,0x14	FS
			TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
			ECDH		RSA	AES(256)	SHA1
			ECDHE-RSA-AES128-SHA		(Weak)	TLSv1	0xC0,0x13	FS
			TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
			ECDH		RSA	AES(128)	SHA1
			AES256-SHA		(Weak)	SSLv3	0x00,0x35	No FS
			TLS_RSA_WITH_AES_256_CBC_SHA
			RSA		RSA	AES(256)	SHA1
			DES-CBC3-SHA		(Weak)	SSLv3	0x00,0x0A	No FS
			TLS_RSA_WITH_3DES_EDE_CBC_SHA
			RSA		RSA	3DES(168)	SHA1
			AES128-SHA		(Weak)	SSLv3	0x00,0x2F	No FS
			TLS_RSA_WITH_AES_128_CBC_SHA
			RSA		RSA	AES(128)	SHA1

18. Portchecks

No open Ports <> 80 / 443 found, so no additional Ports checked.

Permalink: https://check-your-website.server-daten.de/?i=7b4e1846-c242-4291-a4f4-5b43fa3187fe

Last Result: https://check-your-website.server-daten.de/?q=vodafone.com.pg - 2026-05-16 04:08:06

Do you like this page? Support this tool, add a link on your page:

<a href="https://check-your-website.server-daten.de/?q=vodafone.com.pg" target="_blank">Check this Site: vodafone.com.pg</a>

Do you really want to support this project? Donate: Check-your-website, IBAN DE98 1001 0010 0575 2211 07, SWIFT/BIC PBNKDEFF, Euro

QR-Code of this page - https://check-your-website.server-daten.de/?d=vodafone.com.pg

Check DNS, Urls + Redirects, Certificates and Content of your Website

Older results

1. IP-Addresses

2. DNSSEC

3. Name Servers

4. SOA-Entries

5. Screenshots

Mobile- and other Chrome-Checks

6. Url-Checks

7. Comments

1. General Results, most used to calculate the result

2. Header-Checks

3. DNS- and NameServer - Checks

4. Content- and Performance-critical Checks

8. Connections

9. Certificates

10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > of the last months are listed

11. Html-Content - Entries

Summary

Details (currently limited to 500 rows - some problems with spam users)

12. Html-Parsing via https://validator.w3.org/nu/

Summary

Details

13. Nameserver - IP-Adresses

14. CAA - Entries

15. TXT - Entries

16. DomainService - Entries

17. Cipher Suites

18. Portchecks